Last updated: 9 months ago
This privacy policy is for the mobile application Dhillons ("the App") and maintained by Migsoft Ltd. and governs the privacy of its users who choose to use it.
The policy sets out the different areas where user privacy is concerned and outlines the obligations & requirements of the users, the App and App owners. Furthermore, the way this App processes, stores and protects user data and information will also be detailed within this policy.
We are committed to protecting the privacy of all users of the App, including all users who access the Service through the mobile application on any platform or device. Please read the following Privacy Policy which explains how we use and protect your information.
We are registered with the Information Commissioner's Office (no. A8146011) under the Data Protection Act 2018. By downloading, accessing and/or using the App and the Service, you agree and where required you consent to the collection, use and transfer of your information as set out in this policy.
This App and its owners take a proactive approach to user privacy and ensure the necessary steps are taken to protect the privacy of its users throughout their usage experience. This App complies with all UK national laws and requirements for user privacy.
1.1. When you use the App or the Service to make an Order from a Restaurant through the App, you may be asked to provide information about yourself including your name, contact details (such as telephone and mobile numbers and e-mail address), delivery address and payment information (such as credit or debit card information). We may also collect information about your usage of the App and Service and information about you from the materials (such as messages and reviews) you post through the App and the e-mails or communications you send to us.
1.2. By accessing and using the Dhillons mobile application and the Service, you should expect that our data collection and usage as set out in this Privacy Policy will apply. We may collect technical information from your mobile device or your use of the App and the Service, including but not limited to location data and certain characteristics of, and performance data about, your device, carrier/operating system including device and connection type, IP address, mobile payment methods, interaction with other retail technology such as use of NFC Tags, QR Codes or use of mobile vouchers, push notification tokens, and App usage analytics. Unless you have elected to remain anonymous through your device and/or platform settings, this information may be collected and used by us automatically when you use the App and the Service on your mobile device(s). You may manage certain data collection preferences through your device settings or the App settings.
1.3 Under UK GDPR, we process your personal data based on the following legal grounds:
You can withdraw your consent for marketing at any time through your account settings or by contacting us.
2.1. The personal information you provide will enable us to grant you access to the relevant features of the Dhillons mobile application and to deliver our services effectively. This information facilitates our billing processes and enables both Dhillons and our partner restaurants to communicate with you regarding your orders when necessary. Such communications may include order status updates and other pertinent information delivered via email, telephone calls, or mobile messaging services (including but not limited to SMS and MMS). We shall analyze and utilize the collected information to administer, support, enhance, and develop our business operations, for statistical and analytical purposes, and to implement fraud prevention measures. Where applicable, you may express your preferences regarding data usage through the application settings, and such preferences shall be honored in accordance with this Privacy Policy.
2.2. We may utilize your information to solicit your feedback regarding our services and to inform you of significant modifications or enhancements to the mobile application or our service offerings.
2.3. Where you have provided explicit consent, we may utilize your information to inform you of our additional products and services that may align with your interests. Such communications may be conducted through postal mail, telephone, mobile messaging services (including SMS and MMS), and electronic mail.
2.4. Where you have provided explicit consent, we may share your information with carefully selected third-party organizations (including entities within the food service, beverage, hospitality, marketing, and advertising sectors) to inform you of products and services that may be of interest to you. These communications may be delivered via postal mail, telephone, mobile messaging services (including SMS and MMS), and/or electronic mail. Such data sharing also enables us to analyze collected information to administer, support, enhance, and develop our business operations and service offerings.
2.5. Should you wish to withdraw consent for the use of your data in the aforementioned manner or modify your communication preferences, please contact us using the details specified in Section 7 below and/or update your profile settings accordingly within the application.
2.6. By submitting reviews regarding the Dhillons service and/or partner restaurants, you hereby grant consent for such reviews to be utilized within the application and in our marketing or advertising materials. For this purpose, you will be identified solely by your first name and city of residence, along with any additional information you may explicitly consent to disclose.
3.1. The information you provide shall be transferred to and stored on secure servers, which may be located within or outside the European Economic Area. Such information may be accessed by our personnel operating outside the United Kingdom and by third-party service providers, including affiliated companies within the Dhillons corporate group (comprising our subsidiaries, affiliates, ultimate holding company, and its subsidiaries and affiliates), who perform services on our behalf for the purposes outlined in this policy. While countries outside the European Economic Area may not maintain equivalent data protection standards, we shall implement appropriate measures to ensure your information is processed in accordance with this Privacy Policy.
3.2. Third-party service providers with whom we share your information may perform various functions including payment processing and customer support services. Additionally, we may be required to provide your information to partner restaurants with which you have placed orders to facilitate order fulfillment. By submitting your personal data, you consent to such transfer, storage, and processing. We shall implement all reasonably necessary measures to ensure your data is handled securely and in accordance with this Privacy Policy.
3.3. Subject to your consent, we may permit carefully vetted third parties, including marketing and advertising organizations, our affiliates, and business associates, to contact you periodically regarding services that may be of interest to you. Such communications may be conducted via postal mail, telephone, mobile messaging services (including SMS and MMS), and electronic mail. Should you wish to modify these communication preferences, please contact us using the details provided in Section 7 below and/or adjust your profile settings accordingly.
3.4. In the event that our business enters into a joint venture, merger, acquisition, or sale with another business entity, your information may be disclosed or transferred to the respective target company, our new business partners, owners, or their professional advisors.
3.5. We may utilize and disclose your information when we are under a legal obligation to do so, or when we reasonably believe such disclosure is necessary to: comply with legal requirements; enforce the Terms of Service and other applicable agreements; or protect the rights, property, or safety of Dhillons, our partner restaurants, or third parties. This includes exchanging information with other organizations for fraud protection and prevention purposes.
3.6. We collaborate with Viva Wallet, a trusted third-party payment service provider, which processes all credit card transactions on our behalf. When you complete a payment transaction, your payment card details are processed directly through Viva Wallet's secure payment infrastructure and are not stored on our servers. Viva Wallet has been carefully selected and is contractually obligated to comply with UK GDPR requirements and maintain the security and confidentiality of your personal information in accordance with our privacy standards.
4.1. We implement comprehensive measures to protect your information against unauthorized access, unlawful processing, accidental loss, destruction, and damage. Your information shall be retained for a reasonable period or as required by applicable law.
4.2. To ensure optimal security of your personal data, we employ industry-standard encryption protocols for all data transmissions through our mobile application. All data is stored in secure databases protected by advanced firewalls and stringent access controls. Our entire infrastructure operates using secure communication protocols to guarantee protected data exchange between your device and our servers.
4.3. Where you have selected a password for accessing certain features of the application, you bear responsibility for maintaining its confidentiality. We strongly advise against sharing your password with any third parties. Except in cases of our negligent disclosure of your password to unauthorized parties, we shall not be liable for any unauthorized transactions conducted using your credentials.
4.4. While we implement comprehensive security measures to protect your information, we acknowledge that data transmission via the internet cannot be guaranteed as completely secure. Although we employ rigorous protocols to safeguard your data, any transmission remains at your own risk. Upon receipt of your information, we utilize strict procedures and security features to prevent unauthorized access.
4.5. We retain your personal data only for the duration necessary to provide our services and as required by legal obligations. Should you wish to delete your account and associated personal data, you may do so at any time through the Delete Account function located in the My Profile section of the application. Upon account deletion, we shall remove your personal information from our active databases, though certain information may be retained in backup systems for legal compliance purposes. Please note that specific data may be retained where necessary to comply with legal obligations, resolve disputes, or enforce our agreements.
5.1. You maintain the right to access the information we hold about you ("Access Request") and to request corrections to ensure accuracy and currency of such information. To exercise this right, please contact us using the details provided in Section 7 below. In the event of an Access Request, we reserve the right to charge a fee of ten pounds sterling (£10.00) to cover administrative costs associated with providing details of the information we hold about you.
6.1 Users who contact Dhillons through the application do so at their own discretion and assume responsibility for any personal information provided. Your personal information is maintained privately and stored securely until such time as it is no longer required or serves no purpose, in accordance with the Data Protection Act 2018. While we have implemented comprehensive security measures for all communication processes, users acknowledge that they engage with such processes at their own risk.
6.2 Dhillons utilizes submitted information to provide you with additional details about our products and services or to assist in addressing your inquiries or concerns. This includes subscribing you to our email newsletter program where you have provided express permission during the submission process, or where you have previously purchased from or inquired about our products or services that relate to the newsletter content. Your details shall not be disclosed to unauthorized third parties.
7.1 Dhillons operates an email newsletter program designed to inform subscribers about our products and services. Users may subscribe through an automated process within the application at their discretion. Certain subscriptions may be processed manually through prior written agreement.
7.2 All subscriptions are managed in compliance with UK Spam Laws as detailed in the Privacy and Electronic Communications Regulations 2003. Personal information relating to subscriptions is held securely in accordance with the Data Protection Act 2018. No personal details are disclosed to third parties or shared with entities outside of Dhillons. Under the Data Protection Act 2018, you may request a copy of personal information held within our email newsletter program. A nominal fee may apply. To request such information, please contact us using the details provided below.
7.3 Email marketing campaigns distributed by Dhillons may contain tracking mechanisms within the email content. Subscriber engagement is tracked and stored in a secure database for analysis and evaluation purposes. Tracked activities may include, but are not limited to: email opens, email forwards, link clicks within email content, and the timing, dates, and frequency of such activities.
7.4 This information is utilized to refine future email campaigns and provide subscribers with more relevant content based on their engagement patterns.
7.5 In compliance with UK Spam Laws and the Privacy and Electronic Communications Regulations 2003, subscribers are provided with the opportunity to unsubscribe at any time through an automated system. This process is detailed in the footer of each email campaign. Where an automated unsubscription system is unavailable, clear instructions for unsubscription shall be provided.
8.1 While the Dhillons mobile application ("the App") endeavors to maintain the highest standards of security and relevance in all external links and third-party integrations, Users are strongly advised to exercise reasonable caution before interacting with any external links that may appear within the App interface, including but not limited to restaurant partner websites, payment gateway redirections, or promotional content.
8.2 Dhillons and its parent company, affiliates, and operators ("the Company") cannot guarantee, warrant, or verify the content, security protocols, or data handling practices of any externally linked platforms or third-party services, notwithstanding our rigorous vetting procedures and ongoing monitoring efforts. Users expressly acknowledge that they access such external links at their own risk and discretion.
8.3 The Company shall not be held liable, whether directly or indirectly, for any damages, losses, security breaches, data compromises, or any other implications arising from or in connection with the User's interaction with external links, third-party services, or content accessed through such links, including but not limited to financial losses, data breaches, or service disruptions.
9.1 The App may display sponsored content, promotional materials, and targeted advertisements delivered through our authorized advertising partners and restaurant partners. Such advertising partners maintain independent privacy policies and data collection practices that govern their respective services and may differ substantially from those outlined in this Privacy Policy.
9.2 User interaction with any advertisement or sponsored content may initiate tracking mechanisms, including but not limited to the deployment of cookies, device identifiers, and analytical tools that monitor referral traffic, user engagement metrics, and conversion rates. Such tracking technologies may store persistent identifiers on the User's device.
9.3 The placement of restaurant promotions, special offers, and featured listings within the App may be influenced by commercial arrangements between the Company and participating restaurants. Users acknowledge that clicking on sponsored content or promotional materials is undertaken at their own risk, and the Company disclaims all liability for any consequences arising from such interactions.
10.1 All communications, user-generated content, and interactions facilitated through third-party social media platforms integrated within the App or associated with Dhillons' official social media presence are governed by the respective terms of service, community guidelines, and privacy policies of each social media platform.
10.2 Users are cautioned to exercise prudence and discretion when sharing personal information, order details, delivery addresses, or payment information through social media channels. The Company will never solicit sensitive personal data, payment credentials, or account passwords through social media platforms. Users requiring assistance with sensitive account matters are directed to contact our customer support through the App's secure messaging system or official customer service channels.
10.3 The App may incorporate social sharing functionality enabling Users to share their dining experiences, favorite restaurants, or special offers directly to social media platforms. Users acknowledge that utilizing such sharing features may result in the respective social media platform tracking, storing, and processing data related to such sharing activities, including but not limited to user identifiers, shared content, and engagement metrics.
10.4 Any reviews, ratings, or feedback posted through social media integration features become subject to both the Company's content policies and the respective platform's terms of service. The Company reserves the right to moderate, remove, or report content that violates applicable policies or legal requirements.
11.1 The Company may utilize URL shortening services and deep linking technologies within push notifications, SMS communications, email correspondence, and social media posts to direct Users to specific App features, promotional offers, or order tracking interfaces.
11.2 While the Company implements reasonable security measures to ensure the integrity of all shortened URLs and deep links distributed through official channels, Users are advised to verify the authenticity of such links before interaction. The Company cannot assume liability for fraudulent or malicious links distributed by unauthorized third parties impersonating Dhillons or its affiliated services.
11.3 Users acknowledge that deep linking functionality may bypass certain App security features or login requirements based on the User's authentication status and device security settings. Users are responsible for maintaining appropriate device-level security measures.
12.1 The Company reserves the unqualified right to modify, amend, or update this Privacy Policy at any time to reflect changes in legal requirements, industry standards, technological capabilities, or business operations. All amendments shall become effective immediately upon publication within the App.
12.2 Material changes to this Privacy Policy that substantially affect User rights or data processing activities will be communicated through one or more of the following channels: (i) prominent in-App notifications, (ii) push notifications to Users who have enabled such communications, (iii) email notifications to registered Users at their registered email addresses, and (iv) mandatory acknowledgment prompts upon subsequent App access.
12.3 Continued use of the App following the publication of Privacy Policy amendments constitutes acceptance of the revised terms. Users who object to any amendments are advised to discontinue use of the App and may request account deletion in accordance with Section [X] of this Privacy Policy.
12.4 The Company maintains a versioned archive of all Privacy Policy iterations, which may be requested by Users for review purposes through official customer support channels, subject to reasonable administrative procedures and timeframes.
13.1 The Company acknowledges the legitimate concerns and sensitivities surrounding the collection, processing, and storage of personal data in the digital commerce environment. This section delineates our comprehensive data management protocols and the specific purposes for which User information is collected and processed.
13.2 All User data is stored on secure, encrypted servers maintained within tier-1 data centers located in the United Kingdom and European Union, ensuring compliance with applicable data protection regulations including but not limited to the UK GDPR and EU GDPR. The Company collects and processes the following categories of personal information: full legal name, mobile telephone number, email address, delivery addresses, and order history, exclusively for the following legitimate business purposes:
13.3 The Company does not directly store, process, or have access to any payment card information, bank account details, or other financial credentials. All payment processing is conducted through PCI-DSS compliant third-party payment processors, including but not limited to Stripe, which maintain independent security protocols and data protection measures.
13.4 Access to User data is strictly controlled through role-based permissions and multi-factor authentication protocols. Authorized access is limited to:
13.5 Users maintain the unqualified right to access, review, rectify, and request deletion of all personal data held by the Company in accordance with applicable data protection legislation. Data subject access requests should be submitted through the App's privacy settings or directed to our Data Protection Officer at [ghiurcaalin@gmail.com].
13.6 The Company implements industry-standard technical and organizational measures to protect User data against unauthorized access, alteration, disclosure, or destruction, including but not limited to:
13.6 User data shall be retained only for the duration necessary to fulfill the purposes outlined herein, after which it shall be securely deleted or anonymized in accordance with our data retention policy, unless longer retention is required by law or legitimate business interests.
By email: ghiurcaalin@gmail.com
By visiting this page on our website: https://dhillons.co.uk/support
Restaurants and Merchants are solely responsible for their interactions with you and any and all claims, injuries, illnesses, damages, liabilities, and costs (“Claims”) suffered by you (or, if applicable, any recipient of a Dhillons Gift Card or a Merchant Gift Card) as a result of your (or such recipient’s) interaction with or visit to any Restaurant or Merchant or from any product or service of any Restaurant or Merchant. You hereby release the Dhillons Parties from any and all such Claims.
The only exception to the above would be an issue directly caused by a technical problem when using Dhillons services (such as failure to communicate the order to restaurant). In such instances, Dhillons will be happy to issue a full refund.