Privacy Statement

1. What data do we collect?

When making a reservation, we ask for the following information:

  • Name
  • Email address
  • Phone number
  • Number of guests
  • Date & time of reservation
  • Optional comments

2. Why do we collect this data?

We only use this information to manage and confirm your reservation. Without this data, we cannot register your reservation. It is therefore not possible to make an online reservation. If you still wish to reserve without providing personal data such as name, email address or phone number, please contact us by phone or visit us in person.

After your visit, a single automated follow-up e-mail may be sent asking you to leave a review. This only happens when your reservation was made via our online system. There is no separate opt-out, but you are of course free to ignore the e-mail.

3. Who do we share your data with?

We do not share your data with third parties unless it is necessary for managing your reservation. Your data is stored and processed via the following services:

  • Firebase (database and authentication)
  • Google Calendar (for internal use)
  • Vercel (website hosting)

We have not signed separate data processing agreements with these parties at this time. However, they provide standard processing terms as part of their terms of use that comply with the GDPR.

4. How long do we keep your data?

Your data is retained for a maximum of 6 months after the reservation date, unless legal obligations require a longer retention period. After this period your data is automatically deleted from our database and any linked calendar events are anonymised.

For statistical purposes (GDPR Art. 89) we retain pseudonymised aggregate data — such as total reservation counts and visit frequencies — indefinitely. This data contains no name, e-mail address or phone number; contact details are one-way hashed (SHA-256) before being stored, making them impossible to reverse.

5. Analytics processing

We use aggregated internal statistics to gain insight into booking patterns, such as peak days and average group size. For this purpose we store the following data:

  • Counts (total reservations, covers, language preference, etc.)
  • Time patterns (day of week, time slot, month)
  • Visit frequency per pseudonymised customer (first name + hashed contact detail)

The analytics data is processed on the basis of legitimate interest (GDPR Art. 6(1)(f)) and statistical purposes (GDPR Art. 89). It does not contain a full name, e-mail address or phone number in readable form.

6. Security

We take appropriate security measures to protect your data, such as:

  • Encrypted connections (HTTPS)
  • Secure access to our database and calendar
  • Access is restricted to authorized personnel only

7. Your rights

You have the right to:

  • Request access to your data
  • Correct or delete your data
  • Object to the use of your data
  • Withdraw your consent at any time

For requests or questions, please contact us at: mennyskitchen@gmail.com

8. Contact details

Mennys Kitchen
Piet Heinstraat 66, 2518CK Den Haag
mennyskitchen@gmail.com
+31 61 150 3903
www.mennyskitchen.nl

Privacy Statement | Menny's Kitchen data & GDPR | Menny's Kitchen