Privacy Policy for Heron Hearth

Heron Hearth ("we," "our," or "us") is dedicated to protecting the privacy of our clients, website visitors, and culinary workshop participants. This Privacy Policy outlines how we collect, use, disclose, and safeguard your information when you interact with our online platform and engage with our premium catering and event management services, including bespoke menu creation, corporate event catering, wedding banquet services, private dining experiences, culinary workshops, food styling, full-service event planning, equipment rental, staff provision, dietary-specific meal preparation, and sustainable sourcing.

1. Information We Collect

We collect various types of information to provide and improve our services, communicate with you, and fulfill our contractual obligations.

1.1 Personal Data You Provide Directly

When you make inquiries, request a quote, book our services, participate in workshops, or communicate with us, you may provide us with personally identifiable information, including:

• Contact Information: Name, email address, phone number, and physical address.
• Event Details: Dates, times, locations, guest counts, event type (e.g., wedding, corporate), and specific event requirements.
• Dietary Information: Allergies, intolerances, dietary restrictions (e.g., vegan, halal, gluten-free) necessary for bespoke menu creation and safe food preparation.
• Payment Information: While we do not directly store full payment card details, we process payment transactions through secure third-party payment processors. We may retain records of transactions.
• Communication Content: Any information you provide in emails, messages, or during phone calls.
• Feedback: Information you provide in reviews, surveys, or testimonials.

1.2 Data Collected Automatically

When you visit our online platform, we may automatically collect certain information about your device and browsing activity:

• Log Data: Your IP address, browser type, operating system, referring URLs, pages viewed, and the dates/times of your visits.
• Cookies and Tracking Technologies: Information about your interaction with our site, collected through cookies, web beacons, and similar technologies. This helps us understand user behavior and improve our platform.

2. How We Use Your Information

We use the information we collect for various purposes, primarily to deliver our services and enhance your experience:

• Service Provision: To provide and manage our catering and event management services, including bespoke menu creation, event planning, and dietary-specific meal preparation.
• Communication: To respond to your inquiries, send service-related notifications (e.g., booking confirmations, event updates), and provide customer support.
• Personalization: To tailor our services and communications to your preferences, including menu suggestions and workshop recommendations.
• Marketing: To send you promotional materials, newsletters, and offers about our services that we believe may be of interest to you, where you have provided consent.
• Legal and Safety: To comply with legal obligations, resolve disputes, enforce our agreements, and protect the rights, property, or safety of Heron Hearth, our clients, or others.
• Improvement of Services: To analyze how our services and online platform are used, identify trends, and improve functionality and user experience.
• Culinary Workshops: To manage registrations, communicate workshop details, and ensure a suitable learning environment.

3. Data Sharing and Disclosure

We do not sell your personal data. We may share your information in the following circumstances:

• Service Providers: With trusted third-party service providers who assist us in operating our business and providing our services (e.g., payment processors, IT support, delivery partners, event venues). These providers are contractually obligated to protect your data and only use it for the purposes specified by us.
• Legal Requirements: If required to do so by law or in response to valid requests by public authorities (e.g., a court order or government agency).
• Business Transfers: In connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business by another company.
• With Your Consent: We may share your information with third parties when we have your explicit consent to do so.

4. International Data Transfers (GDPR Compliance)

Our operations are based in Singapore. If you are located outside Singapore and choose to provide information to us, please note that we may transfer your data, including Personal Data, to Singapore and process it there. By submitting your personal data, you agree to this transfer, storing, and processing. Where applicable, we rely on appropriate safeguards such as Standard Contractual Clauses approved by the European Commission for transfers of personal data from the EEA to countries not considered to provide an adequate level of data protection.

5. Data Security

We implement appropriate technical and organizational measures to protect your personal data from unauthorized access, accidental loss, destruction, or alteration. These measures include data encryption, access controls, and regular security assessments. However, no method of transmission over the internet or method of electronic storage is 100% secure, and we cannot guarantee absolute security.

6. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements. To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.

7. Your Data Protection Rights

Depending on your location and applicable law, you may have the following rights regarding your personal data:

• Right to Access: You have the right to request copies of your personal data.
• Right to Rectification: You have the right to request that we correct any information you believe is inaccurate or complete information you believe is incomplete.
• Right to Erasure (Right to Be Forgotten): You have the right to request that we erase your personal data, under certain conditions.
• Right to Restrict Processing: You have the right to request that we restrict the processing of your personal data, under certain conditions.
• Right to Object to Processing: You have the right to object to our processing of your personal data, under certain conditions.
• Right to Data Portability: You have the right to request that we transfer the data that we have collected to another organization, or directly to you, under certain conditions.
• Right to Withdraw Consent: Where we rely on your consent to process your personal data, you have the right to withdraw that consent at any time.

To exercise any of these rights, please contact us using the details provided below. We will respond to your request within the timeframes specified by applicable data protection laws.

8. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to track the activity on our online platform and hold certain information. You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our service.

9. Links to Other Websites

Our online platform may contain links to other websites that are not operated by us. If you click on a third-party link, you will be directed to that third party's site. We strongly advise you to review the Privacy Policy of every site you visit. We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services.

10. Children's Privacy

Our services are not intended for individuals under the age of 18. We do not knowingly collect personally identifiable information from anyone under the age of 18. If you are a parent or guardian and you are aware that your child has provided us with Personal Data, please contact us. If we become aware that we have collected Personal Data from children without verification of parental consent, we take steps to remove that information from our servers.

11. Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page. You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.

12. Contact Us

If you have any questions about this Privacy Policy, your personal data, or wish to exercise your data protection rights, please contact us:

Heron Hearth
10 Anson Road, #28-15 International Plaza, Singapore, Singapore, 079903

This Privacy Policy was last updated.