PROCESSING OF PERSONAL DATA
This privacy policy includes information about how Cornelius Restaurant collects and uses your personal data on our website (corneliusrestaurant.no) and in our internal systems. The policy contains information that you are entitled to receive in accordance with the General Data Protection Regulation (GDPR). This includes how we collect your information from our website and through our data processing providers.
Visitors to our website are free to provide their personal data in connection with services, such as when booking tables, gift cards, requesting quotes, etc. The basis for processing is the consent of the individual user.
The only data Cornelius Restaurant stores via its website, which is operated via WordPress, is usage patterns from IP addresses collected via Google Analytics.
TellUs is our data processor for reservations, with the Guestmaker service collecting information from bookings made directly on these pages, as well as from bookings we enter manually. Guestmaker also handles all registered additional data that we enter for each individual booking. Only Cornelius Restaurant and Guestmaker have access to the information collected. A separate data processing agreement between the parties regulates what information the supplier has access to and how it should be processed. The data we register is stored on servers within the EU.
INFORMATION CAPSULES/COOKIES
We also use cookies, which are small text files placed on your computer when you visit a website. These are typically used to improve your user experience when visiting our website, corneliusrestaurant.no. If you wish to avoid the use of cookies, you can set your browser to not accept them. See your browser's help pages for settings. Please note that if you choose to exclude cookies, some of the features oncorneliusrestaurant.nomay stop working.
ANALYSIS
The reason we place cookies on your computer is so that we can collect anonymous information about visitors tocorneliusrestaurant.comfor analysis. The purpose of this is to collect statistics that can be used to further develop and improve thecorneliusrestaurant.comwebsite. Examples of this type of data are: the number of visitors to the site, how the site is used, how long the visit lasts, which website users come from, and which browsers are used. We do not collect information that can be traced back to you as a user.
SURVEYS
Cornelius Restaurant uses Tripadvisor to conduct a survey after restaurant visits. This is to get feedback on your experiences as a guest with us. We want to ensure that our guests have received the experience and quality they expect from us. Cornelius Restaurant will not share this information with others or use the information for purposes other than those specified.
EMAIL AND TELEPHONE
Cornelius Restaurant uses email and telephone as part of its daily work to fulfill its statutory duties under the Personal Data Act. The head of the department where the email or telephone call is received has day-to-day responsibility for the processing of personal data in this context. Relevant information obtained from telephone calls and email exchanges that take place as part of an order is recorded in our restaurant management system, which is a Google Spreadsheet. This information is treated confidentially and in accordance with the rules and roles that we have established internally for each employee. When you book a table or register for an event or other arrangement under our auspices, the information you provide us is stored for administrative purposes and to collect any participation fees.
Some of our employees also use email and SMS in general correspondence with internal and external contacts. Individuals are responsible for deleting messages that are no longer relevant and for reviewing and deleting unnecessary content in their email inboxes at least once a year. When an employee leaves the company, their email accounts are deleted, but certain relevant emails will normally be transferred to colleagues.
Telephone calls (telephone numbers to and from, as well as the time of the call) are logged in our telephone system, Proximo Bedriftsnett. This log is necessary for administration and operation, and is also used as a basis for statistics at an aggregate level. The log is deleted after approximately one year. In addition, employees have an overview of the most recent calls on their phones. No other systematic recording of telephone calls where the caller can be identified is made.
CARD PAYMENT
When you pay by card at our venues, we are unable to see the full card number in our systems. We only send the total amount to the card company, not what you have purchased. To process a payment, the card company handles all card information. They store the information in a secure and responsible manner and are certified according to the card companies' strictest PCI regulations.
INFORMATION ABOUT EMPLOYEES
Cornelius Restaurant processes personal data about its employees at Tidsbanken for the purpose of administering salaries and personnel responsibilities. The legal basis for this is provided by the Personal Data Act. The general manager and our administration have day-to-day responsibility for this. The information necessary for the payment of salaries is recorded, such as basic data, salary level, time registration, tax percentage, tax municipality, and more. Other information about employees is related to their work instructions and work arrangements.
The information is only disclosed in connection with salary payments and other legally required disclosures. Deletion routines for employee personal data comply with the Accounting Act and the Archives Act. Information about names, positions, and areas of work is considered public information and may be published on our website.
OUR RESPONSIBILITY
Cornelius Restaurant is responsible for processing all personal data you provide to us in order to make reservations, rent meeting rooms, and book other courses and events under our auspices. Those who are registered in our systems have the right to access their own personal data. They also have the right to request that incorrect, incomplete, or inaccurate information be corrected, deleted, or supplemented.
CHANGE IN OUR PRIVACY POLICY
Cornelius Restaurant reserves the right to change this privacy policy. If the changes we make are significant, we will send you a notification by email, provided you have given us your consent to do so. If you have any comments, questions, or are dissatisfied with the way your personal data is processed, you can initially contact us by email: booking@cornelius-restaurant.no. If you are still dissatisfied after contacting us, you can contact the supervisory authority in Norway, which is the Norwegian Data Protection Authority, here is their website datatilsynet.no