Your choices regarding cookies on this site

Oracle and our third party partners may use cookies for the following purposes:

  • required cookies are necessary for the site to function
  • functional cookies help us to prefill your details on your next order and to optimize the site for easy reordering
  • advertising cookies allow for interest-based advertising and tailored content across your browsers and devices

Please visit our Cookie policy for more information.

Cookie Preferences

Functional

These cookies allow the Controller’s web application to remember choices you make while browsing and/or using the application (such as your user name, language or the region you are in) and provide enhanced, more personal features.

These cookies can also be used to remember changes you have made to text size, language and other parts of web pages that you can customize.

The information these cookies collect will not personally identify you, and they cannot track your browsing activity on non Controller’s websites.

For reliable review of your order status, on-screen on the application, in real-time, and also for easy reordering, your data may be saved on your device, serving a cookie locally. View cookies.

 Spice & Fire
Open navigation Close navigation

Privacy Policy

🌶️ Privacy Policy for Spice & Fire

Last Updated: [Insert Date]

Welcome to Spice & Fire (referred to as "we," "us," or "our"). We are committed to protecting the privacy and security of your personal data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

This policy describes how we collect, use, and process your personal data when you:

  • Visit our restaurant at 50 Whalley Rd, Accrington.

  • Place a collection or delivery order with us (online, by phone, or in person).

  • Visit our website, www.spice-and-fire.uk.

1. Who We Are (Data Controller)

Spice & Fire is the Data Controller responsible for your personal data.

  • Name: Spice & Fire

  • Address: 50 Whalley Rd, Accrington BB5 1AR

  • Contact Number: 01254-23-88-53

  • Email:

2. The Data We Collect About You

We may collect, use, store, and transfer different kinds of personal data about you, which we have grouped together as follows:

Data CategoryExamples of Data CollectedPurpose/Reason for CollectionContact DataName, billing/delivery address, email address, telephone numbers.To process and deliver your food orders and manage your account.Transaction DataDetails about payments to and from you, and other details of products and services you have purchased from us.To manage payments and refunds and fulfil our contract with you.Technical DataInternet Protocol (IP) address, browser type and version, time zone setting, location, and operating system.To administer and protect our website (troubleshooting, data analysis, testing).Profile DataYour username and password (for online orders), purchase/order history, feedback, and marketing preferences.To provide a personalised service and manage our relationship with you.CCTV DataImages/video footage of you while on our premises.For security purposes, crime prevention, and staff safety.
Export to Sheets

We do not knowingly collect any Special Categories of Personal Data about you (this includes details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health, etc.), unless you voluntarily provide dietary or allergy information related to your food order.

3. How Your Personal Data is Collected

We use different methods to collect data from and about you:

  • Direct Interactions: You give us your data when you:

    • Place an order over the phone or in person.

    • Create an account on our website or app.

    • Sign up for marketing or promotions.

    • Give us feedback or contact us with an enquiry.

  • Automated Technologies: When you interact with our website, we may automatically collect Technical Data about your equipment, browsing actions, and patterns using cookies and similar technologies.

  • Third Parties: We may receive personal data about you from third parties, such as:

    • Third-party online ordering platforms (e.g., Just Eat, Deliveroo) when you place an order through them.

    • Payment providers (e.g., banks).

4. How We Use Your Personal Data (Legal Basis)

We will only use your personal data when the law allows us to. Most commonly, we use your data in the following circumstances:

Purpose/ActivityType of Data UsedLegal Basis for ProcessingTo process and deliver your order(including managing payments and refunds).Contact, Transaction, ProfilePerformance of a Contract with you.To manage our relationship (e.g., notifying you of changes to our terms or policy).Contact, ProfileNecessary to comply with a Legal Obligation and for our Legitimate Interests (to keep our records updated).To send you marketing communicationsabout our offers and news.Contact, ProfileYour Consent (if you opt-in) or Legitimate Interests (if you are an existing customer).For security and crime prevention (using CCTV).CCTV DataLegitimate Interests (to protect our staff, customers, and business assets).To improve our services (website analysis and troubleshooting).Technical, ProfileLegitimate Interests (to define customer types and keep our website running).
Export to Sheets
5. Sharing Your Personal Data

We may have to share your personal data with third parties for the purposes set out in section 4, including:

  • Service Providers who act as data processors (e.g., third-party online ordering systems, payment processing services, delivery drivers/platforms).

  • Professional Advisers including lawyers, bankers, auditors, and insurers.

  • HM Revenue & Customs, regulators, and other authorities who require reporting of processing activities in certain circumstances.

We require all third parties to respect the security of your personal data and to treat it in accordance with the law.

6. Data Security and Retention

  • Data Security: We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used, or accessed in an unauthorised way, altered, or disclosed.

  • Data Retention: We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements. For example, we typically keep transaction data for six years after your last purchase to satisfy tax and accounting obligations.

7. Your Legal Rights

Under UK data protection law, you have rights regarding your personal data, including the right to:

  • Request access to your personal data (commonly known as a "data subject access request").

  • Request correction of the data we hold about you.

  • Request erasure of your personal data (where there is no good reason for us to continue processing it).

  • Object to processing of your personal data where we are relying on a legitimate interest.

  • Withdraw consent at any time where we are relying on consent to process your personal data (e.g., for marketing).

If you wish to exercise any of the rights set out above, please contact us using the details in Section 1. You also have the right to make a complaint at any time to the supervisory authority in the UK for data protection issues, which is the Information Commissioner’s Office (ICO) (www.ico.org.uk).

Would you like me to focus on a specific part of the policy, such as the marketing or CCTV clauses, or perhaps draft a simple Cookie Policy?