Privacy Policy for Catch41Naples.com
1. Introduction
Catch 41 Naples (“we,” “our,” or “us”), accessible via catch41naples.com, is committed to protecting your privacy and safeguarding your personal data in accordance with the highest standards of data protection. This Privacy Policy is designed to inform you about how we collect, use, disclose, and store your personal information, and to ensure transparency and accountability in fulfilling our compliance obligations under applicable data protection laws, including the European Union’s General Data Protection Regulation (“GDPR”) and the California Consumer Privacy Act (“CCPA”).
Your privacy is of paramount importance to us, and we approach all data processing with a privacy-first mindset, ensuring that your rights and freedoms are at the forefront of everything we do.
2. Scope of this Policy and Data Controller Role
This Privacy Policy applies to all visitors, users, and others who access or use our website at catch41naples.com (the “Site”) and communicate with us electronically. For purposes of data protection law, Catch 41 Naples is the Data Controller responsible for the processing of your personal data as outlined herein.
3. Categories of Data Processed
We collect and process various categories of personal data depending on your interaction with the Site and services. These categories include:
a) Usage Data
Information relating to how you use catch41naples.com, including your IP address, browser type and version, device identifiers, operating system, referral sources, access times, page views, and website navigation paths.
b) Account Data
If you create an account or make a purchase, we collect data such as your full name, email address, postal address, and telephone number.
c) Profile Data
Information such as order history, dining preferences, dietary restrictions, loyalty program participation, and behaviors related to use of our services.
d) Communication Data
Records of correspondence through forms, emails, or chat functions, including support queries, service feedback, and message history.
e) Technical Data
Device-related information including IP address, browser specifications, time zone settings, language preferences, network identifiers, and other technical details reported automatically.
f) Transaction Data
Details of financial transactions you conduct via our Site, including payment method, billing and shipping addresses, order amounts, and purchase history. Note: We do not store full payment card numbers; transactions are handled securely by third-party processors.
g) Preference Data
Marketing and communication preferences, email subscription status, and data enabling us to suggest products or services that might interest you.
4. Legal Bases for Processing
We collect and use your personal data pursuant to the following legal grounds:
– Consent: Where you have explicitly provided your consent for specific processing activities, such as subscribing to newsletters or accepting cookies beyond those strictly necessary.
– Contractual Necessity: To provide you with the products or services you request, including processing transactions or communicating order confirmations.
– Legitimate Interests: To operate and improve the Site, conduct marketing within applicable limits, and ensure network and information security.
– Legal Obligation: To comply with applicable legislation, law enforcement requests, or regulatory frameworks.
5. Your Rights
Under GDPR and CCPA, you possess specific rights regarding your personal data. Subject to applicable laws and verification requirements, you may exercise:
– Right of Access – Obtain confirmation and access to your personal data processed by us.
– Right to Rectification – Request correction of inaccurate or incomplete data.
– Right to Erasure (“Right to be Forgotten”) – Request deletion of your personal data, where legally permissible.
– Right to Restriction – Request limited processing under specified conditions.
– Right to Data Portability – Request a machine-readable copy of your data or its transmission to another service provider.
– Right to Object – Object to processing based on our legitimate interests or for direct marketing.
– Rights under CCPA – Request to know, delete or opt-out of sale/sharing (if applicable) of your personal data.
To exercise any of these rights, you may contact us at [email protected].
6. Security Measures
We implement a combination of technical and organizational measures designed to ensure data confidentiality, integrity, and availability. These include:
– Encryption protocols for data transmission and storage.
– Tiered access controls and authentication controls to limit data access.
– Regular security audits and vulnerability assessments.
– Periodic staff training on data protection responsibilities.
– Secure data backup and disaster recovery protocols.
Despite these measures, no method of transmission or electronic storage is entirely secure. We encourage users to take protective steps, including maintaining password confidentiality.
7. International Data Transfers
Where personal data is transferred outside of the territory in which it was collected (for example, from the EEA to the U.S.), we use appropriate legal safeguards, including Standard Contractual Clauses approved by the European Commission, to ensure an adequate level of data protection consistent with GDPR requirements.
8. Data Retention
We retain your personal data only as long as necessary to fulfil the purposes for which it was collected, including:
– Usage & Technical Data: Retained for up to 12 months for analytics.
– Transaction Data: Retained for a minimum of 7 years for legal and accounting obligations.
– Account Data and Profile Data: Retained while your account remains active and for 24 months after inactivity or deletion.
– Communication Data: Retained for 3 years for recordkeeping and service improvement.
– Preference Data: Retained until you withdraw consent or opt out of communications.
Data may be retained longer if required by legal obligations or to defend legal claims.
9. Cookie Policy
We use cookies and similar technologies on catch41naples.com to enhance user experience, analyze traffic, and personalize content. Types include:
– Essential Cookies: Required for core website functionality (e.g., page navigation, order processing).
– Functional Cookies: Help remember user preferences and device settings.
– Analytics Cookies: Collect anonymized data for traffic analysis and website improvement (e.g., Google Analytics).
– Performance Cookies: Monitor website performance and identify problems.
10. Cookie Management & Compliance
Upon visiting catch41naples.com, you are presented with a cookie management tool compliant with GDPR and CCPA. You may accept or manage individual cookie preferences through the provided interface or by adjusting your browser settings. You may also opt out of non-essential cookies at any time.
California residents may use the “Do Not Sell or Share My Personal Information” link, where applicable, to exercise their data sale/transfer rights.
11. Children’s Data
Our website and services are not directed toward children under the age of 13. We do not knowingly collect personal data from individuals under 13. If we become aware that a child has provided us with personal data without verifiable parental consent, we will take steps to delete such data promptly. Parents or guardians may contact us at [email protected] to request deletion of a minor’s information.
12. Changes to This Policy
We may update or modify this Privacy Policy as necessary to reflect changes in legal requirements, business practices, or technological advancements. Any material changes will be communicated through appropriate channels, including notices on the Site. Continued use of the Site following an update signifies acceptance of the revised policy.
13. How to Contact Us
For any questions, concerns, or requests relating to this Privacy Policy or the handling of your personal data, please contact us via email at:
You may also visit our website at catch41naples.com for further information or to exercise your privacy rights.
—
We remain fully committed to protecting your personal data and upholding your rights under applicable privacy laws. Please do not hesitate to contact us regarding any privacy concerns.