Elevate Your Event with Authentic Flavour. Book Our Grazing Table Today.

Order before Thursday 3pm for pickup or delivery on weekend orders!

Privacy Policy

The Hibiscus Table ("we," "us," "our") values your privacy and is committed to protecting your personal data. This privacy policy explains how we collect, use, store, and protect your information when you visit, use our services, or make a purchase from (the "Site") or otherwise communicate with us (collectively, the "Services") in accordance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and guidance from the Information Commissioner's Office (ICO).

1. Information We Collect

We may collect the following types of personal data:

  • Identity Data: Name, title, and contact details (e.g., phone number, email, address).
  • Transaction Data: Details of purchases, including payment methods and delivery information.
  • Communication Data: Records of communications, including inquiries, feedback, and complaints.
  • Marketing Data: Preferences regarding marketing communications and responses to promotions.
  • Technical Data: IP address, browser type, and usage patterns (via cookies).

2. How We Collect Your Data

We collect data through:

  • Direct interactions: When you place an order, contact us, or sign up for newsletters.
  • Automated technologies: Cookies and similar tools when you visit our website.
  • Third parties: Payment processors or delivery partners who share necessary data with us.

3. How We Use Your Data

We process your data for the following purposes:

  • Order Fulfilment: To process and deliver orders, including payment and delivery.
  • Customer Service: To respond to inquiries, feedback, and complaints.
  • Marketing: To send promotional materials, if you have opted in.
  • Legal Compliance: To comply with legal obligations, such as regulatory requirements.
  • Improvement: To analyse website traffic and customer preferences to enhance our services.

 4. Legal Basis for Processing

We process your personal data based on:

  • Consent: For marketing communications (you can withdraw consent anytime).
  • Contractual Obligation: To fulfil your orders and provide services.
  • Legal Compliance: To meet statutory obligations.
  • Legitimate Interest: To improve services and ensure secure transactions.

5. Data Sharing

We only share your data when necessary:

  • Service Providers: For payment processing, delivery, or IT support.
  • Legal Authorities: If required by law or to prevent fraud.
  • Marketing Tools: Only if you have opted in to receive marketing communications.

We never sell your data to third parties.

6. Data Security

We use robust security measures to protect your data, including:

  • Encrypted payment processing systems.
  • Secure servers and firewalls.
  • Regular audits of data protection practices.

7. Data Retention

We retain personal data only as long as necessary:

  • Transactional Data: Kept for up to 7 years to comply with tax and legal obligations.
  • Marketing Data: Retained until you opt out of receiving communications.

8. Your Rights

You have the following rights under UK GDPR:

  • Access: Request a copy of your personal data.
  • Correction: Rectify inaccurate or incomplete data.
  • Erasure: Request deletion of your data (subject to legal obligations).
  • Restriction: Limit the processing of your data.
  • Objection: Object to data processing based on legitimate interests.
  • Data Portability: Receive your data in a portable format.

To exercise your rights, contact us at [Insert Contact Email].

9. Cookies

Our website uses cookies to improve user experience. You can manage cookie preferences in your browser settings. For more details, see our Cookie Policy;  https://www.shopify.com/legal/cookies

10. Marketing Communications

We only send marketing emails if you have opted in. You can unsubscribe at any time via the link in the email or by contacting us directly.

11. Third-Party Links

Our website may include links to third-party sites. We are not responsible for their privacy practices, so please review their privacy policies. Third-party sites include:

  • Shopify
  • Our Payment processors
  • Our service providers such as vendors, IT Support 

12. Changes to This Policy

We may update this policy periodically to reflect changes in our practices or legal requirements. The latest version will always be available on our website.

13. Contact Us

If you have any questions, concerns or complaints about this privacy policy or how we process your personal information, contact us:

The Hibiscus Table