Privacy Policy

1. Introduction

Welcome to hipigaa.com's Privacy Policy. This policy describes how we collect, use, process, and disclose your information, including personal information, in conjunction with your access to and use of our office meal delivery services.

We respect your privacy and are committed to protecting your personal data. This privacy policy will inform you about how we look after your personal data when you visit our website and tell you about your privacy rights and how the law protects you.

2. Information We Collect

We collect several types of information from and about users of our website, including:

• Personal Identifiers: Name, delivery address, email address, telephone number, and payment information.
• Order Information: Meal preferences, order history, delivery instructions, and dietary requirements.
• Technical Data: Internet protocol (IP) address, browser type and version, time zone setting, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access this website.
• Usage Data: Information about how you use our website, products, and services.
• Communication Data: Your preferences in receiving marketing from us and our third parties and your communication preferences.

3. How We Use Your Information

We use the information we collect about you for various purposes, including to:

• Process and deliver your meal orders
• Manage payments, fees, and charges
• Communicate with you about your orders, services, and promotional offers
• Personalize your experience and deliver content and product offerings relevant to your interests
• Improve our website, products/services, marketing, and customer relationships
• Administer and protect our business and website (including troubleshooting, data analysis, testing, system maintenance, support, reporting, and hosting of data)
• Comply with legal obligations and enforce our terms of service

4. Legal Basis for Processing (GDPR Compliance)

Under the General Data Protection Regulation (GDPR), we rely on the following legal bases to process your personal data:

• Contract Performance: Processing necessary for the performance of a contract with you (e.g., to deliver the meals you order).
• Legitimate Interests: Processing necessary for our legitimate interests (e.g., to develop and improve our services), provided these interests are not overridden by your rights.
• Legal Obligation: Processing necessary to comply with our legal obligations.
• Consent: Processing based on your specific consent (e.g., for sending marketing communications).

5. Data Retention

We will retain your personal data only for as long as necessary to fulfill the purposes for which we collected it, including for the purposes of satisfying any legal, accounting, or reporting requirements.

To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure, the purposes for which we process your personal data, and applicable legal requirements.

6. Your Data Protection Rights

Under the GDPR and other applicable data protection laws, you have the following rights:

• Access: You can request copies of your personal data.
• Rectification: You can request that we correct inaccurate or complete incomplete data.
• Erasure: You can request that we erase your personal data in certain circumstances.
• Restriction: You can request that we restrict the processing of your data in certain circumstances.
• Data Portability: You can request the transfer of your data to you or a third party.
• Objection: You can object to the processing of your personal data in certain circumstances.
• Automated Decision-Making: You have rights related to automated decision-making and profiling.

To exercise any of these rights, please contact us using the information provided in the "Contact Us" section. We may need to request specific information from you to help us confirm your identity and ensure your right to access your personal data.

7. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to track activity on our website and hold certain information. Cookies are files with small amounts of data which may include an anonymous unique identifier.

We use the following types of cookies:

• Essential Cookies: Required for the operation of our website.
• Analytical/Performance Cookies: Allow us to recognize and count visitors and see how visitors move around our website.
• Functionality Cookies: Enable us to personalize content for you.
• Targeting Cookies: Record your visit to our website, the pages you have visited, and the links you have followed.

You can set your browser to refuse all or some browser cookies or to alert you when websites set or access cookies. If you disable or refuse cookies, please note that some parts of this website may become inaccessible or not function properly.

8. Data Security

We have implemented appropriate security measures to prevent your personal data from being accidentally lost, used, or accessed in an unauthorized way, altered, or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors, and other third parties who have a business need to know.

We have procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.

9. Third-Party Services

Our website may include links to third-party websites, plug-ins, and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy statements. We encourage you to read the privacy policy of every website you visit.

10. Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date.

You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.