The General Data Protection Regulation (GDPR) is an EU law that sets out strict requirements on how data of EU citizens is handled.
Merlinc SW Ltd trading as La Grotta is committed to respecting your privacy and we recognise your need to know that your personal information is being lawfully processed and held in accordance with the Data Protection Act 1998.
This Privacy Statement is designed to help you understand how we may use and safeguard the personal information you provide to us in this website.
In general, you may browse this website without providing any personal information.
Our website is hosted on the wix.com platform. Your data maybe stored through Wix.com's data storage database and general Wix.com applications. They store your data on secure servers behind a firewall.
Like many websites, this website uses "cookies" to enable us to keep track of the usage of this website. Cookies are small pieces of information that are stored in the hard drive of your computer by your browser. Your browser will have the option to prevent websites using cookies (refer to your browser's help screen or manual), but please note that this may reduce the functionality of this site and other websites. The cookies cannot identify users. If you continue to use this site, we assume you are happy with this.
To remove Cookies on:
Open Google Chrome.
Click the More icon in the upper-right corner.
At the bottom, click Show advanced settings.
Under Privacy, click Content settings.
Under Cookies, click All cookies and site data.
Type Wix in the Search cookies field.
Click Remove all shown.
Open Internet Explorer.
Click the Settings icon in the upper-right corner.
Select Internet Options.
In the General tab under Browsing History, select Settings.
Click View Files.
Type Wix in the Search Temporary Internet Files field.
Click on a cookie then select all cookies using Ctrl+A.
Press Delete on your keyboard.
Click Manage Website Data.
Type Wix in the Search field.
Click Remove All.
Google Analytics is used to establish how our site is being used, analysing trends and gathering demographic information. No identifiable, personal data is collected
Data we collect:
Identity data (Name/email address/postal address)
Contact data (billing address/email address/telephone number)
Financial data (payment card details)
Transaction data (details of purchases and date & time of sale)
The data we collect when you complete our "contact us" page is:
* Your Name
* A telephone number
* An email address
Due to the Government's Track & Trace, we are now required to take a name, number and/or address with every booking If the booking is made via telephone/email, we will ask for these details and they will be kept within our diary. This information is kept on our system until the date of your booking and then deleted from our electronic records.
If you have walked in with no booking, we now have a QR code which will link you to a secure holding page for you to enter your contact details. This is GDPR compliant as per government guidelines. This is held for 21 days.
We do not hold any information for marketing purposes and will not pass any information on to third parties, unless such bookings are made via a third party. We then write the data within a restaurant diary which is stored within our premises. We then store previous years diaries in a locked cabinet.
If the booking is made via telephone, we will take the following personal information from you:
* Your Name
*A telephone number or email address
This information is written within a diary and is stored within our premises (please see address below). We then store previous years diaries in a locked cabinet.
Why is this data collected:
We use this information to carry out service requests and fulfil the bookings required.
We use this information to notify you of any changes to your booking.
How long do we keep such information:
We can only keep specific information for as long as necessary for the purposes we collected it for, including for the purposes of satisfying any legal or accounting requirements.
Information we receive from other sources:
From time to time, we may receive CV's either through post or emailed to email@example.com. This may contain sensitive data which we need for research when establishing your working experience. By sending us such information you are allowing us to receive such data purely for the purpose of job applications. No information will be passed on to third parties. Data of this manner is kept securely in a filing system, and is then shredded or incinerated when no longer required.
Merlinc SW Ltd uses CCTV images to provide a secure and safe environment for our visitors and staff at 9 Union Street, Broadmead, Bristol, BS32 4FL.
We use the CCTV for images only. No recording of voices, i.e. conversations are recorded.
The purposes of the CCTV within our premises are:
To help in the prevention of crime
To assist police/legal officers in the identification of offenders
To assist with the identification of unauthorised actions
To clarify complaints made in person or through social media
Our cameras are located at various positions within La Grotta restaurant to cover all areas as to provide clear images. There are NO cameras within toilets or staff changing areas.
The CCTV is filming 24 hours a day and is stored on a hard drive of a recording device, which is held securely within our premises. We keep the recording for 1 month before being deleted and overwritten. If police/legal teams are involved in a specific event, such images maybe kept for longer.
The recordings are kept in a secure office onsite and are viewed by management only when required. We will only disclose recordings in the event of a incident or criminal activity to police/legal teams.
Individuals have the right to receive a copy of the personal data that the we hold about them, including CCTV images if they are recognisable from the image. If you wish to access any CCTV images relating to you, you must make a written request to the Company’s Director. There will generally be no fee charged for the supply of the images, unless the request is considered when a request is manifestly unfounded or excessive , particularly if it is repetitive or to comply with requests for further copies of the same information, in line with GDPR guidelines. Your request must include the date and approximate time when the images were recorded and the location of the particular CCTV camera, so that the images can be easily located and your identity can be established as the person in the images.
Changes to this policy:
We are committed to working with you to resolve, quickly and fairly, any complaints you may have about privacy. If you do have such complaints, please contact us.
La Grotta Bristol
0117 929 0466