Privacy Policy

Last Updated: [Date]

1. Introduction

This Privacy Policy explains how სუფრა 24/7 რესტორანი ("we," "our," or "us") collects, uses, discloses, and protects your personal data when you use our website sufra.runto.rest (the "Service"). By accessing the Service, you agree to this policy. If you disagree, please refrain from using the Service.

We comply with:

• The General Data Protection Regulation (GDPR) for users in the European Union (EU).
• Georgian data protection laws (e.g., Law of Georgia on Personal Data Protection).

2. Data We Collect

We may collect:

• Personal Data: Name, email, phone number, billing address (processed via EU payment gateways like Stripe/PayPal).
• Payment Data: Transaction details (handled by third-party processors; we do not store full card numbers).
• Technical Data: IP address, browser type, device information, cookies (see Section 5).
• Usage Data: Pages visited, session duration (via analytics tools like Google Analytics).

3. How We Use Your Data

We process data to:

• Provide and improve the Service.
• Process payments (via EU-based processors).
• Communicate with you (e.g., support, updates).
• Comply with legal obligations (e.g., tax laws in Georgia/EU).

Legal Basis (GDPR):

• Contractual necessity (e.g., processing payments).
• Legitimate interest (e.g., analytics, fraud prevention).
• Consent (e.g., marketing emails—you may opt out).

4. Data Sharing & Third Parties

We may share data with:

• Payment Processors: EU-based services (e.g., Stripe, PayPal) under their privacy policies.
• Analytics Providers: Google Analytics (anonymized data).
• Legal Authorities: If required by Georgian/EU law.

We do not sell your data.

5. Cookies & Tracking

We use cookies to:

• Enable login sessions.
• Analyze traffic (opt-out via browser settings).
• Remember preferences.

6. Data Security

We implement:

• Encryption (SSL/TLS).
• Regular security audits.
• Restricted access to personal data.

7. Your Rights (GDPR & Georgian Law)

You may:

• Access, correct, or delete your data.
• Withdraw consent (e.g., unsubscribe from emails).
• Request data portability.
• Lodge complaints with Georgian/EU regulators.

Contact us at: sufra.batumi@mail.ru to exercise these rights.

8. International Transfers

Data may be transferred to:

• EU: For payment processing (under GDPR safeguards).
• Other Jurisdictions: With your consent or where legally permitted.

9. Changes to This Policy

We may update this policy. Changes take effect upon posting on the Service.