Privacy Policy

1. Introduction

Ironbite ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website, use our mobile applications, or order our food services.

We are the data controller responsible for your personal data. Our registered address is 42 Far Gosford Street, Coventry, CV1 5DW, UK.

2. Information We Collect

2.1 Information You Provide

• Account Information: Name, email address, phone number, delivery address
• Order Information: Food preferences, order history, payment details
• Communication: Messages, feedback, support requests
• Marketing Preferences: Newsletter subscriptions, promotional preferences

2.2 Information We Automatically Collect

• Technical Data: IP address, browser type, device information, operating system
• Usage Data: Pages visited, time spent, interactions, app usage patterns
• Performance Data: Page load times, error logs, Core Web Vitals
• Location Data: Delivery location, approximate location for service area verification

3. How We Use Your Information

We use your information for the following purposes:

• Service Provision: Process orders, deliver food, manage your account
• Communication: Send order confirmations, delivery updates, customer support
• Improvement: Analyze usage patterns, improve our services, develop new features
• Marketing: Send promotional offers (with your consent)
• Legal Compliance: Meet legal obligations, prevent fraud, ensure food safety

4. Legal Basis for Processing

We process your personal data based on the following legal grounds:

• Contract: To fulfill our service agreement with you
• Legitimate Interest: To improve our services and prevent fraud
• Consent: For marketing communications and optional features
• Legal Obligation: To comply with food safety and tax regulations

5. Data Sharing and Disclosure

We may share your information with:

• Service Providers: Payment processors, delivery partners, IT services
• Legal Authorities: When required by law or to protect rights
• Business Partners: Only with your explicit consent

We never sell your personal information to third parties.

6. Data Retention

We retain your personal data for as long as necessary to:

• Provide our services to you
• Comply with legal obligations
• Resolve disputes and enforce agreements
• Improve our services

Typically, we retain data for 7 years for accounting purposes and 3 years for marketing data.

7. Your Rights

Under GDPR, you have the following rights:

• Access: Request a copy of your personal data
• Rectification: Correct inaccurate or incomplete data
• Erasure: Request deletion of your data
• Portability: Receive your data in a structured format
• Objection: Object to processing based on legitimate interests
• Restriction: Limit how we process your data
• Withdraw Consent: Withdraw consent for marketing communications

8. Cookies and Tracking

We use cookies and similar technologies to enhance your experience, analyze usage, and provide personalized content. For detailed information about our use of cookies, please see our Cookie Policy.

9. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These include encryption, access controls, and regular security assessments.

10. International Transfers

Your data is primarily processed within the UK and European Economic Area (EEA). If we transfer data outside the EEA, we ensure adequate protection through approved mechanisms such as Standard Contractual Clauses.

11. Children's Privacy

Our services are not intended for children under 16. We do not knowingly collect personal information from children under 16. If you believe we have collected such information, please contact us immediately.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on our website and updating the "Last updated" date. Your continued use of our services constitutes acceptance of the updated policy.

13. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

14. Complaints

If you believe we have not handled your personal data properly, you have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk.