Privacy Policy

1. Information We Collect

1.1 Personal Information You Provide

We may collect personal information that you voluntarily provide when you:

• Make a reservation: Name, phone number, email address, party size, date and time preferences
• Place an order: Name, delivery address, phone number, email address, payment information
• Subscribe to our newsletter: Email address, name, preferences
• Contact us: Name, email address, phone number, message content
• Participate in promotions: Name, contact information, and any other information required for the promotion
• Create an account: Username, password, contact details, order history

1.2 Information Collected Automatically

When you visit our website, we automatically collect certain information, including:

• Device Information: IP address, browser type, operating system, device identifiers
• Usage Data: Pages visited, time spent on pages, links clicked, referring website
• Location Data: General location based on IP address
• Cookies and Tracking Technologies: See Section 4 for details

1.3 Information from Third Parties

We may receive information about you from third parties, such as:

• Payment processors: Transaction details, payment method information
• Delivery partners: Delivery status, driver information
• Social media platforms: If you interact with us on social media or use social login features
• Analytics providers: Aggregated usage and demographic information

2. How We Use Your Information

We use the information we collect for the following purposes:

2.1 Service Delivery

• Process and fulfill reservations and orders
• Communicate with you about your orders, reservations, or inquiries
• Coordinate delivery and provide customer support
• Send transactional messages (confirmations, receipts, updates)

2.2 Business Operations

• Improve our menu, services, and customer experience
• Analyze usage patterns and trends
• Conduct internal research and development
• Maintain security and prevent fraud
• Comply with legal obligations

2.3 Marketing and Communications

• Send promotional emails, newsletters, and special offers (with your consent)
• Personalize your experience based on preferences
• Conduct surveys and request feedback
• Announce new menu items, locations, or services

2.4 Legal and Safety

• Comply with legal obligations and regulatory requirements
• Enforce our terms and conditions
• Protect the rights, property, and safety of Birds Rotisserie, our customers, and others
• Respond to legal requests and prevent illegal activities

3. How We Share Your Information

We do not sell your personal information. We may share your information in the following circumstances:

3.1 Service Providers

We share information with third-party vendors who perform services on our behalf:

• Payment processors (credit card processing, payment gateway services)
• Delivery and logistics partners
• Cloud storage and hosting providers
• Email marketing platforms
• Analytics and data analysis providers
• Customer relationship management (CRM) systems

These service providers are contractually obligated to protect your information and use it only for the purposes we specify.

3.2 Business Transfers

If Birds Rotisserie is involved in a merger, acquisition, reorganization, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change and the choices you may have.

3.3 Legal Requirements

We may disclose your information if required by law or in response to:

• Court orders, subpoenas, or legal processes
• Government or regulatory requests
• Protection of our legal rights or property
• Investigation of fraud or security issues
• Emergency situations involving safety or public health

3.4 With Your Consent

We may share your information for other purposes with your explicit consent.

4. Cookies and Tracking Technologies

4.1 What Are Cookies?

Cookies are small text files stored on your device that help us provide and improve our services. We use both session cookies (which expire when you close your browser) and persistent cookies (which remain until deleted or expired).

4.2 Types of Cookies We Use

4.3 Third-Party Cookies

We use third-party services that may set cookies, including:

• Google Analytics: Website traffic analysis
• Facebook Pixel: Advertising and retargeting
• Social media plugins: Sharing and interaction features

4.4 Managing Cookies

You can control cookies through your browser settings. Most browsers allow you to:

• View and delete cookies
• Block third-party cookies
• Block all cookies
• Clear cookies when you close your browser

For more information, visit: www.allaboutcookies.org

5. Data Security

We implement reasonable technical, administrative, and physical security measures to protect your personal information from unauthorized access, disclosure, alteration, or destruction, including:

• Encryption: SSL/TLS encryption for data transmission
• Access Controls: Restricted access to personal information on a need-to-know basis
• Secure Storage: Protected databases and secure servers
• Regular Audits: Periodic security assessments and updates
• Employee Training: Staff education on data protection practices

6. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

Retention Periods:

• Account Information: Until you request deletion or close your account
• Order and Reservation History: 7 years for accounting and tax purposes
• Marketing Communications: Until you unsubscribe or withdraw consent
• Website Analytics: Typically 26 months (Google Analytics default)
• Legal and Compliance Records: As required by applicable law

When your information is no longer needed, we will securely delete or anonymize it.

7. Your Privacy Rights

Depending on your location and applicable laws (including Thailand's PDPA, EU's GDPR, and California's CCPA), you may have the following rights:

7.1 Access and Portability

• Right to Access: Request a copy of the personal information we hold about you
• Data Portability: Receive your data in a structured, commonly used format

7.2 Correction and Deletion

• Right to Rectification: Correct inaccurate or incomplete personal information
• Right to Erasure: Request deletion of your personal information (subject to legal obligations)

7.3 Control and Objection

• Right to Restrict Processing: Limit how we use your information
• Right to Object: Object to processing based on legitimate interests or for marketing purposes
• Right to Withdraw Consent: Withdraw previously given consent at any time

7.4 Complaint

• Right to Complain: Lodge a complaint with your local data protection authority

7.5 How to Exercise Your Rights

To exercise any of these rights, please contact us at:

• Email: info@birdsrotisserie.com
• Mail: Birds Rotisserie, 16 Soi Sukhumvit 23, Khlong Toei Nuea, Watthana, Bangkok 10110

We will respond to your request within 30 days or as required by applicable law. We may require verification of your identity before processing your request.

8. International Data Transfers

Birds Rotisserie operates primarily in Thailand. If you access our services from outside Thailand, please be aware that your information may be transferred to, stored, and processed in Thailand or other countries where our service providers operate.

We take appropriate measures to ensure that your personal information receives adequate protection in accordance with this Privacy Policy and applicable data protection laws, including:

• Standard contractual clauses approved by relevant authorities
• Ensuring service providers comply with recognized data protection frameworks
• Implementing appropriate technical and organizational safeguards

9. Children's Privacy

Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately at info@birdsrotisserie.com, and we will take steps to delete such information.

10. Third-Party Links

Our website may contain links to third-party websites, social media platforms, or services that are not operated by Birds Rotisserie. We are not responsible for the privacy practices of these third parties. We encourage you to review the privacy policies of any third-party sites you visit.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make changes, we will:

• Update the "Last Updated" date at the top of this policy
• Post the revised policy on our website
• Notify you of material changes via email or prominent website notice (when required by law)

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

13. Governing Law

This Privacy Policy is governed by and construed in accordance with the laws of Thailand, including the Personal Data Protection Act B.E. 2562 (2019) (PDPA), without regard to conflict of law principles.

Any disputes arising from or relating to this Privacy Policy shall be subject to the exclusive jurisdiction of the courts of Bangkok, Thailand.

14. Additional Information for Specific Jurisdictions

For EU/EEA Residents (GDPR)

If you are located in the European Union or European Economic Area:

• Our legal basis for processing includes consent, contract performance, legitimate interests, and legal obligations
• You have the right to lodge a complaint with your local supervisory authority
• Data transfers outside the EU/EEA are protected by appropriate safeguards

For California Residents (CCPA/CPRA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act:

• Right to know what personal information is collected, used, shared, or sold
• Right to delete personal information (subject to exceptions)
• Right to opt-out of the sale of personal information (we do not sell personal information)
• Right to non-discrimination for exercising your rights

To exercise these rights, contact us at info@birdsrotisserie.com.

For Thailand Residents (PDPA)

As a business operating in Thailand, we comply with Thailand's Personal Data Protection Act B.E. 2562 (2019):

• We process personal data lawfully, fairly, and transparently
• You have the right to access, correct, delete, and restrict processing of your personal data
• You may file complaints with the Personal Data Protection Committee of Thailand