Privacy Policy for The Vinyl Bean

Welcome to The Vinyl Bean, where we serve freshly brewed coffee, espresso drinks, artisanal teas, pastries, and light snacks, alongside live music events and comfy seating. This Privacy Policy outlines how we collect, use, and protect your personal data when you visit our site, view our menu, check our event schedule, or place online orders for our products. We are committed to safeguarding your privacy and ensuring transparency in our data practices, in compliance with the General Data Protection Regulation (GDPR) and other applicable data protection laws.

1. Information We Collect

We collect various types of information in connection with the services we provide.

• Personal Information You Provide: This includes information you voluntarily provide when you interact with our site, such as when you place an online order. This may include your name, contact details (e.g., email address, phone number), and payment information (processed securely through third-party payment gateways, we do not store full payment card details).
• Transaction Data: Details about the products you purchase from us, including order history, preferences, and payment receipts.
• Technical Data: Information about your device and how you access our site, including IP address, browser type and version, time zone setting, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access this website.
• Usage Data: Information about how you use our site, products, and services, such as pages visited, order frequency, and interactions with our content.

2. How We Use Your Information

We use the information we collect for various purposes, primarily to provide and improve our services to you:

• To Process and Fulfill Orders: To manage your online orders, process payments, and arrange for pickup or delivery of your purchases.
• To Provide Customer Support: To respond to your inquiries, requests, and feedback, and to resolve any issues you may encounter.
• To Manage Your Account: If you create an account with us, to manage your profile, order history, and preferences.
• To Improve Our Site and Services: To understand how our site is used, analyze trends, personalize your experience, and develop new features and offerings.
• For Marketing Purposes: With your consent, to send you updates about our menu, special offers, upcoming live music events, and other news. You can opt out of these communications at any time.
• For Security and Fraud Prevention: To protect our site, our customers, and our business from fraudulent activities and unauthorized access.
• To Comply with Legal Obligations: To meet applicable legal requirements, regulations, or requests from law enforcement.

3. Legal Basis for Processing Personal Data

We will only process your personal data when we have a lawful basis to do so under GDPR:

• Performance of a Contract: To fulfill our contractual obligations to you, such as processing your online orders.
• Legitimate Interests: Where processing is necessary for our legitimate interests (or those of a third party) and your fundamental rights do not override those interests (e.g., for improving our services, security).
• Consent: Where you have given explicit consent for us to process your personal data for a specific purpose, such as marketing. You have the right to withdraw consent at any time.
• Legal Obligation: Where processing is necessary to comply with a legal or regulatory obligation.

4. Sharing Your Information

We do not sell, rent, or trade your personal data to third parties. We may share your information with:

• Service Providers: Third-party vendors who perform services on our behalf, such as payment processing, website hosting, analytics, and marketing assistance. These providers are obligated to protect your data and are prohibited from using it for any other purpose.
• Legal and Regulatory Authorities: When required by law or to respond to valid legal requests, such as summons or court orders.

5. Data Security

We implement appropriate technical and organizational measures to protect your personal data from unauthorized access, disclosure, alteration, or destruction. We regularly review our security procedures to consider new technologies and methods. Despite our efforts, no security system is impenetrable, and we cannot guarantee the absolute security of your information.

6. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements. To determine the appropriate retention period, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure of your personal data, the purposes for which we process your personal data, and whether we can achieve those purposes through other means, and the applicable legal requirements.

7. Your Data Protection Rights (GDPR)

Under GDPR, you have the following rights regarding your personal data:

• The Right to Access: You have the right to request copies of your personal data.
• The Right to Rectification: You have the right to request that we correct any information you believe is inaccurate or complete information you believe is incomplete.
• The Right to Erasure: You have the right to request that we erase your personal data, under certain conditions.
• The Right to Restrict Processing: You have the right to request that we restrict the processing of your personal data, under certain conditions.
• The Right to Object to Processing: You have the right to object to our processing of your personal data, under certain conditions.
• The Right to Data Portability: You have the right to request that we transfer the data that we have collected to another organization, or directly to you, under certain conditions.
• The Right to Withdraw Consent: Where our processing is based on your consent, you have the right to withdraw that consent at any time.

To exercise any of these rights, please contact us using the contact details provided below. We will respond to your request within one month.

8. Cookies and Tracking Technologies

Our site uses cookies and similar tracking technologies to enhance your browsing experience, analyze site traffic, and personalize content. You can set your browser to refuse all or some browser cookies, or to alert you when websites set or access cookies. If you disable or refuse cookies, please note that some parts of this website may become inaccessible or not function properly. For more detailed information on the cookies we use and how to manage your preferences, please refer to our Cookie Policy (as applicable, if a separate one exists).

9. Third-Party Links

Our site may contain links to third-party websites, plug-ins, and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy policies. When you leave our site, we encourage you to read the privacy policy of every website you visit.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. We will notify you of any significant changes by posting the new Privacy Policy on this page. We encourage you to review this Privacy Policy periodically for any updates.

11. Contact Us

If you have any questions about this Privacy Policy, your personal data, or wish to exercise any of your data protection rights, please do not hesitate to contact us:

• The Vinyl Bean
• unnamed road, UK
• UK

Thank you for trusting The Vinyl Bean with your data.