Privacy Policy

Data Controller Information

The data controller for the purposes of the General Data Protection Regulation (GDPR) is:

Data We Collect

We collect different types of personal data depending on how you interact with our services. The data collection occurs through various means including our website, contact forms, and during the provision of our analysis services.

Information You Provide Directly

• Contact Information: Name, email address, phone number, company name
• Business Information: Details about your cloud kitchen operations, business requirements
• Communication Data: Messages, enquiries, and correspondence with our team
• Service Data: Information provided during consultations and analysis services

Information Collected Automatically

• Website Usage Data: Pages visited, time spent, browser type, device information
• Technical Data: IP address, browser settings, operating system
• Cookies and Tracking: As described in our Cookie Policy

How We Use Your Information

We use the personal data we collect for specific purposes based on legitimate business interests and legal obligations. Our use of your data is always proportionate and respects your privacy rights.

Service Provision

• Providing cloud kitchen profitability analysis services
• Responding to enquiries and providing customer support
• Scheduling consultations and managing client relationships
• Delivering analysis reports and recommendations

Business Operations

• Processing payments and managing billing
• Maintaining business records and compliance
• Improving our services and developing new offerings
• Website functionality and user experience enhancement

Legal Compliance

• Complying with legal obligations and regulatory requirements
• Protecting our rights and defending legal claims
• Preventing fraud and ensuring security

Cookies and Tracking Technologies

We may use cookies and tracking technologies for analytics, advertising, and remarketing purposes, including Google Ads. These technologies help us measure campaign effectiveness, deliver relevant advertisements, and improve our services. You can manage your cookie preferences at any time through our cookie consent banner. For detailed information about our use of cookies, please review our Cookie Policy.

Data Sharing and Disclosure

We do not sell, rent, or trade your personal information to third parties. We may share your data only in the following circumstances:

• Service Providers: Trusted third-party service providers who assist in delivering our services
• Legal Requirements: When required by law, court order, or regulatory authority
• Business Protection: To protect our rights, property, or safety, or that of our clients
• Consent: When you have given explicit consent for specific sharing purposes

Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, comply with legal obligations, and resolve disputes. Specifically, we retain client data for up to seven years after the completion of services for business and legal compliance purposes. Website usage data and cookies are retained for shorter periods as outlined in our Cookie Policy. You may request deletion of your data subject to our legal and business obligations.

Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include encryption, access controls, regular security assessments, and staff training. However, no method of transmission over the internet or electronic storage is completely secure, and we cannot guarantee absolute security.

Your Rights

Under the GDPR and applicable data protection laws, you have specific rights regarding your personal data:

• Right of Access: Request information about how your data is processed
• Right to Rectification: Request correction of inaccurate or incomplete data
• Right to Erasure: Request deletion of your personal data in certain circumstances
• Right to Restrict Processing: Request limitation of data processing
• Right to Data Portability: Request transfer of your data in a structured format
• Right to Object: Object to processing based on legitimate interests
• Right to Withdraw Consent: Withdraw consent where processing is based on consent

To exercise these rights, please contact us using the contact information provided below. We will respond to your request within one month and may require verification of your identity.

International Data Transfers

As we operate primarily within the European Union, your data is generally processed within the EU/EEA. If we transfer data outside the EU/EEA, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses or adequacy decisions by the European Commission.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, services, or legal requirements. We will notify you of any material changes by posting the updated policy on our website and updating the "Last updated" date. Your continued use of our services after such changes constitutes acceptance of the updated policy.

Contact Information

If you have any questions about this Privacy Policy, wish to exercise your rights, or need to contact us regarding data protection matters, please reach out to us:

You also have the right to lodge a complaint with the relevant data protection authority if you believe your rights have been violated. In Slovenia, this is the Information Commissioner (Informacijski pooblaščenec).