Privacy Policy for La Forchetta DC
We are staunchly committed to protecting and meticulously safeguarding the privacy, confidentiality, and security of personal information relating to our website visitors and service users. This commitment extends across all our operations, systems, and processes.
This policy applies where we are acting as a data controller with respect to the personal data of our website visitors and service users; in other words, where we determine the purposes and means of the processing of that personal data. In this role, we are responsible for maintaining comprehensive oversight of how your personal information is collected, used, and protected throughout our systems.
We may process usage data (“usage data”), which comprehensively includes browser type, operating system, page views, navigation paths, timing and duration of visits, click patterns, device identifiers, and interaction metrics. This information is collected through automated tracking technologies, server logs, and analytics tools and may include time spent on specific menu pages, reservation patterns, and dining preference interactions. The source of this data is our analytics software and server monitoring systems. We process this information for several important purposes, including improving website performance, enhancing user experience, analyzing service usage patterns, and optimizing restaurant operations, which enables us to deliver personalized dining experiences, streamline our reservation system, and enhance our digital services. The legal basis for this processing is our legitimate interests in monitoring and improving our website and services.
We may process account data (“account data”), which comprehensively includes name, email address, telephone number, physical address, reservation history, dietary preferences, and payment information. This information is collected through registration forms, reservation systems, and direct customer input and may include special occasion details, seating preferences, and loyalty program participation. The source of this data is direct user submission and our reservation management system. We process this information for managing restaurant reservations, processing payments, maintaining customer relationships, and providing personalized services, which enables us to ensure smooth dining experiences, handle special requests, and maintain accurate customer records. The legal basis for this processing is the performance of a contract between you and us and/or taking steps at your request to enter into such a contract.
We may process profile data (“profile data”), which comprehensively includes dining preferences, allergen information, favorite dishes, past orders, special requests, and anniversary dates. This information is collected through customer feedback, reservation notes, and dining history analysis and may include wine preferences, table location preferences, and service customization requests. The source of this data is customer interactions and dining history records. We process this information for personalizing dining experiences, managing dietary requirements, improving service quality, and maintaining customer preferences, which enables us to provide tailored recommendations, ensure dietary compliance, and enhance customer satisfaction. The legal basis for this processing is our legitimate interests in providing personalized and efficient restaurant services.
Your Rights:
Right to Access: You have the right to access your personal data that we hold about you and receive a copy of this information in a structured format. This includes the ability to review all personal information we maintain, verify the lawfulness of processing, and confirm how your data is being used. To exercise this right, you can submit a formal request through our website or contact our privacy team directly. We will respond within 30 days and may require government-issued identification, proof of address, and account verification to confirm your identity.
Right to Rectification: You have the right to have inaccurate or incomplete personal data corrected. This includes the ability to update contact information, correct reservation details, and modify preference settings. To exercise this right, you can access your account settings online or submit a correction request through our customer service team. We will process your request within 15 days and may require account verification, supporting documentation, and specific details about the information to be corrected.
Right to Erasure: You have the right to request the deletion of your personal data when it is no longer necessary for the purposes for which it was collected. This includes the ability to remove account information, delete reservation history, and withdraw consent for data processing. To exercise this right, you can submit a deletion request through our privacy portal or contact our data protection officer. We will complete the erasure within 30 days and may require password confirmation, written request verification, and account ownership proof.
Right to Restrict Processing: You have the right to limit how we use your personal data in specific circumstances, such as when you contest the accuracy of the data or object to our processing. This includes the ability to pause data processing, temporarily block marketing communications, and limit data sharing with third parties. To exercise this right, you can submit a processing restriction request through our website or contact our privacy team. We will implement restrictions within 7 days and may require identity verification, specific restriction parameters, and processing purpose confirmation.
Right to Data Portability: You have the right to receive your personal data in a machine-readable format and have it transferred to another service provider. This includes the ability to export reservation history, download personal information, and transfer dining preferences to other restaurants. To exercise this right, you can request a data export through our website or contact our technical support team. We will provide the portable data within 30 days and may require account authentication, format specifications, and recipient details verification.Data Handling and Security
We process Service Data which includes reservation details, dining preferences, dietary requirements, and seating arrangements. This processing involves automated booking systems and manual review by our staff, enabling us to provide optimal dining experiences and service customization. For example, in the context of restaurant operations, this includes managing table assignments, special occasion preparations, and dietary accommodation. The legal basis for this processing is legitimate business interests and contractual necessity, specifically to fulfill our service obligations and enhance guest experiences.
We process Technical Data which includes device information, IP addresses, browser types, and system configurations. This processing involves automated collection through website cookies and analytics tools, enabling us to optimize website performance and user experience. For example, this includes adapting our website display for different devices and monitoring system performance. The legal basis for this processing is legitimate interests, specifically to maintain website security and improve service delivery.
We process Communication Data which includes email correspondence, phone records, feedback forms, and customer service interactions. This processing involves recording and analyzing customer communications, enabling us to provide responsive customer service and maintain service quality. For example, this includes managing reservation confirmations, special requests, and feedback responses. The legal basis for this processing is legitimate interests and consent, specifically to maintain effective communication channels and improve service quality.
We process Transaction Data which includes payment information, reservation history, and purchase records. This processing involves secure payment processing and transaction logging, enabling us to manage financial operations and maintain accurate records. For example, this includes processing deposits, managing cancellations, and maintaining billing records. The legal basis for this processing is contractual necessity and legal obligations, specifically to complete financial transactions and comply with accounting requirements.
We process Preference Data which includes dining preferences, allergen information, and special requests. This processing involves maintaining guest profiles and preference tracking, enabling us to provide personalized service and maintain guest satisfaction. For example, this includes remembering preferred seating arrangements and dietary restrictions. The legal basis for this processing is legitimate interests and explicit consent, specifically to enhance guest experience and ensure appropriate accommodation of special requirements.
Security Measures
Our comprehensive encryption protocols ensure end-to-end protection of your data, incorporating industry-standard algorithms and regular security updates to maintain data integrity. This includes regular security assessments and penetration testing by qualified professionals.
We implement multi-layered security infrastructure, including advanced firewalls and intrusion detection systems that continuously monitor for and prevent unauthorized access attempts. This infrastructure undergoes regular updates and enhancements.
Access to personal data is strictly controlled through role-based permissions, multi-factor authentication, and detailed access logs. We maintain comprehensive audit trails of all data access and modifications.
Our continuous monitoring systems provide real-time threat detection and automated response protocols, ensuring immediate action against potential security threats.
We maintain comprehensive backup procedures with encrypted offsite storage and regular recovery testing, ensuring data availability and integrity.
All staff undergo regular security awareness training and must comply with detailed data protection protocols, including specific training for handling sensitive data.
International Transfers
We may transfer your personal data to countries outside your jurisdiction. These transfers are protected by appropriate safeguards, including Standard Contractual Clauses, Binding Corporate Rules, and Privacy Shield certification. Each international transfer is conducted under strict protocols that ensure:
– Adequate data protection standards
– Compliant processing procedures
– Enforceable data subject rights
– Effective legal remedies
International transfers are protected by ISO 27001 standards, GDPR requirements, and CCPA guidelines, ensuring compliance with international data protection regulations. We implement additional measures including:
– Regular compliance audits
– Data protection impact assessments
– Documented transfer mechanisms
– Continuous monitoring procedures
Regarding international transfers, you maintain specific rights including:
– Right to information about transfers
– Right to object to transfers
– Right to withdraw consent
– Right to data protection guarantees
Data Retention
We maintain specific retention periods for different data categories:
Account Information: 7 years from last activity to comply with business and tax regulations
Usage Data: 2 years to analyze long-term usage patterns and improve services
Transaction Records: 7 years to meet financial reporting requirements
Communication History: 3 years to maintain service continuity and reference
Technical Logs: 1 year for security monitoring and system optimization
These retention periods are determined by:
– Legal requirements
– Business purposes
– Technical necessities
– User preferences
Special circumstances affecting retention:
– Legal obligations
– Dispute resolution
– Security investigationsCookie Policy for laforchettadc.com
Our website uses various types of cookies to enhance and optimize your experience. Essential cookies serve fundamental functions for basic website operations. These cookies manage user sessions, maintain security protocols, and ensure technical stability. In our restaurant context, these cookies enable secure online reservation processing, menu customization, and order tracking.
Essential cookies are fundamental to website functionality. These cookies authenticate users, protect against unauthorized access, and maintain basic site operations. We use them specifically for:
– User authentication
– Security measures
– Basic site operations
– Session management
– Technical stability
Functional cookies enhance your experience by remembering your preferences. They enable:
– Language preferences
– Region-specific content
– User interface customization
– Feature optimization
– Personalized settings
Analytics cookies help us understand user behavior. They collect information about:
– Page interactions
– Navigation patterns
– Feature usage
– Session duration
– User preferences
Performance cookies assess and improve website operation by:
– Monitoring site speed
– Identifying technical issues
– Optimizing content delivery
– Analyzing user experience
– Tracking system performance
You can control cookie preferences through:
– Browser settings
– Cookie consent tools
– Privacy preferences
– Account settings
For EU residents, we ensure:
– Explicit consent mechanisms
– Data minimization
– Purpose limitation
– Storage limitations
– Processing transparency
California residents have additional rights:
– Right to know about personal information collected
– Right to delete personal data
– Right to opt-out of data sales
– Right to non-discrimination
– Right to access collected information
Regarding users under 13:
– Age verification requirements
– Parental consent procedures
– Limited data collection
– Special protection measures
– Parental access rights
Policy updates involve:
– Regular review procedures
– User notifications
– Consent renewal when required
– Clear change documentation
– Continuous compliance monitoring
For privacy-related inquiries:
– Primary Contact: [email protected]
– Response Time: Within 48 hours
– Verification Required: For data-related requests
– Available Support: Privacy concerns, data requests, rights exercise
This policy was created specifically for laforchettadc.com and covers all associated services within the restaurant industry.
