Masked boy pointing at parent

Privacy Policy

Updated Feb 2022.

Rolly’s respect and care for your privacy. This Policy explains when and why we collect, use and share personal information about you and people that use our mobile applications, websites or use our digital channels to contact us (combined called “online services”).

By using our online services or by contacting us you agree to this Privacy Policy and that we process your personal information. You also agree that we can use digital communication channels to contact you.

For questions related to data protection, please contact us at hello@rollys.se.

Data processing – How we collect, what we collect and why we collect it

Personal information
The basic information you provide us with when registering for a user account or place a guest order like, first and last name, telephone number, e-mail address, information collected from social media profiles and permissions for marketing on behalf of the branded website owner. A personal user identification code is created and used by the website. We may also store communication and correspondence if you contact us or report a problem with the technology we provide. The purpose is to secure a higher quality in our interactions and services.

This data constitutes your personal identifiable information (PII), which means that this data on your request can be deleted and/or exported to you in a machine-readable format.
For orders that are delivered to a car (so called “in-car-delivery”), we also collect car registration number and color of the car. This data is deleted after the order has been carried out.

Legitimate interests: prevention of crime and suspicious, malicious behaviour, such as fraud.
Lawfulness of processing: this information is needed to fulfil our commitment to you, to comply with our legal obligations and our legitimate interest.

Location data
If you agree to share your location of your computer and/or mobile device your position will most likely be used to customise your user experience, our online services and to prevent fraud. We can also use your location to present localised marketing offerings.
This data is anonymised and not portable.
Lawfulness of processing: this information is need to fulfil our commitment to you and our legitimate interest.
Legitimate interests: prevention of crime and suspicious, malicious behaviour, such as fraud, to provide you with content on updates during the ordering process, and to facilitate efficient operation and monitoring of our business.

Transaction data
Details of transactions you carry out through our online services. This is used to keep track of your orders and provide an order history and for customisation of content, to enhance user experience and permission marketing.
This data constitutes your personal identifiable information (PII), which means that this data on your request can be deleted and/or exported to you in a machine-readable format.
Lawfulness of processing: this information is needed to comply with our legal obligations, fulfil our commitment to you, and our legitimate interest.

Behavioural data
Details of your visits to our site including, but not limited to, traffic data, weblogs and other communication data. This is used to be able to improve our website and detect problems.
This data is anonymised and not portable.
Legitimate interests: To provide and enhance user experience, and to prevention of crime and suspicious, malicious behaviour, such as fraud.
Lawfulness of processing: this information is needed to fulfil our commitment to you, and our legitimate interest.

Technovax data
When you use our online services, we may collect technical information, including the type of mobile device you use, a unique device identifier like IMEI number, device token, MAC address of the device’s wireless network interface, IP address, mobile phone number used by the device, mobile network information, operating system, web browser and versions of the same. This is used to be able to improve our website and detect problems.
This data is anonymised and not portable.
Lawfulness of processing: this information is needed to fulfil our commitment to you, and our legitimate interest.
Legitimate interests: prevention of crime and suspicious, malicious behaviour, such as fraud.

Payment data
The payment options connected to orders and transactions. If you select to store credit card (Recurring Payments/EasyPayment) a tokenisation solution provided by our bank and payment integration provider will be used. Card data is never stored in any of our online services.
This data is anonymised and not portable.
Lawfulness of processing: this information is needed to fulfil our commitment to you, and to comply with our legal obligations.

Password
The password provided during account registration that enable sign in to a user account is stored encrypted. You are responsible for selecting a strong password and keeping this confidential.
This data is anonymised and not portable.
Lawfulness of processing: this information is needed to fulfil our commitment to you, and to comply with our legal obligations.

Use of cookies
We use cookies to identify, keep track of and count the website visitor, for more information please read our Cookies Policy further down.
This data is anonymised and not portable.
Lawfulness of processing: this information is needed to fulfil our commitment to you, and to comply with our legal obligations.
Legitimate interests: Cookies is being used to provide you with content on updates during the ordering process, and to facilitate efficient operation and monitoring of our business.

Use of push-notifications
When you are using our online services, you will get the question to allow push-notifications. We use push-notifications to tell you about the ordering process, inform about news in our online services and changes to our terms and polices, and to show targeted marketing offers.
You yourself can turn on or off the push-notifications in the user settings of the online service.

If you want to customise push-notifications without having a user account, please contact hello@rollys.dk

Sensitive personal information
Lawfulness of processing: User consent by allowing push-notifications.
We do not knowingly or intentionally collect data classified as “sensitive personal information”.

Surveillance videos
In some of our restaurants, we use security cameras to protect our guests, personnel and property from crime. Surveillance videos are only shared with law enforcement upon specific request when it is required in an investigation of a crime. Surveillance Videos are deleted after 30 days.
Lawfulness of processing: our legitimate interest.
Legitimate interests: to protect our guests, employees and property from crime.

Conditions under which we may disclose data to other parties
Personal data may be disclosed to our service provider only to the extent necessary to run our business and to fulfil our obligations to you, and where required by law or to enforce our legal rights. We do not sell your personal information to third parties.

Transferring of data
Personal data may be transferred outside the European Union and the European economic zone, when we do so we will ensure that appropriate safeguards are in place and that parties involved are compliant with EU-U.S. Privacy shield or similar regulations.

How we keep your data secure
Your Personal identifiable information (PII) is protected by both technical and organisational means. All transfers of PII and tokens will be encrypted. All PII is stored in a secure way and access to data is monitored, restricted to need to know basis and have committed themselves to confidentiality.

How long do we retain your information
We only retain personal identifiable information as long as we deem necessary for performing our services to you and to comply with our legal obligations (e.g. maintain records for tax authorities).

Your rights
You have the right to;
● access to your data in a portable, machine-readable format.
● request corrections and/or additions to your data
● erasing of erroneous, unnecessary, incomplete or obsolete data
● object to the use of individual automated decision making and/or profiling
● restrict us to further process or access your data
● have your data/account deleted
● to complain to a supervisory authority

Amendments to the Privacy policy
The Privacy Policy can be changed at any time. Please always check the date for latest update before placing a new order. If you do not agree to any change(s) you shall stop using our online services.

 
 

Cookie policy

This Cookie Policy explains how our organisation uses cookies when you use our website.

What are cookies?
Cookies are text files that are placed on your computer to gather standard information and information about visitor behaviour. When you visit our websites, we are able to collect information from you automatically via cookies or similar technology.
For further information, visit allaboutcookies.org.

How do we use cookies?
There are a number of different types of cookies, but our website uses:

● Strictly necessary – Rolly’s uses these cookies to ensure that the website works properly. This category only involves cookies that ensure basic and security functions on the website, such as showing content, validating your session and so on. These cookies do not save any personal data.
● Functional — Rolly’s uses these cookies so that we can recognise you on our website and remember your previously selected preferences. These may include your preferred language, your location or enabling the user to listen to audio or watch a video. A mixture of first-party and third-party cookies are used.
● Statistics – Rolly’s uses these cookies to gather information about the use of the website, for example pages visited, traffic sources, content management and other website metrics.
● Advertising – Rolly’s uses these cookies to gather information about the user, such as your age, gender and interests. Rolly’s occasionally shares certain limited aspects of this data with third parties for the purposes of advertising.

How to manage your cookies
You can set your web browser to not accept cookies, and the above website will tell you how to remove cookies from your web browser. Please note that in a few cases, some of our website functions will not work as a result.

Cookie policy for other websites
The website www.rollys.se might contain links to other websites. Our Cookie Policy applies only to our website, so if you click on a link to another website, you should read their cookie policy.

Changes to our cookie policy
Rolly’s keeps its Cookie Policy under regular review and publishes any updates on this website. This Cookie Policy was last updated on 02.15.2022.

How to contact us
If you have any further questions about Rolly’s’ Cookie Policy or the data we hold on you, or if you would like to exercise any of your data protection rights, please get in touch.
Email us at hello@rollys.se

How to contact the appropriate authority
If you would like to lodge a complaint or if you feel that Rolly’s has not dealt satisfactorily with your concerns, you can contact the Swedish Authority for Privacy Protection.

Email: mikael@rollys.se
Phone: +46 73-990 06 84