1. Introduction and Definitions
Here at mmmLUNCH we take your privacy very seriously and have put together the following policy which outlines the information that Trask Tech Ltd (hereafter “mmmLUNCH”, “us”, or “we”) may collect and how we use that information to help better serve our visitors and users (each a “User”, or collectively “Users”) of our website http://mmmlunch.menu (the “Website”), our mobile app (“App”) and the service (“Service”) in general. It also outlines the information which we make available to our selected vendors (“vendors”) from whom you make your lunch purchases. When you first place a pre-order, you will be asked to create a user account with mmmLUNCH (“User Account”).
“Personal data” means any and all personally identifiable information that specifically identifies a User as an individual. “Non-personal data” means any and all information that does not directly identify a User. In addition, non-personal data means “aggregate” and “de-personalised” information, which is data mmmLUNCH collects about the use of the mmmLUNCH Service, from which any personally identifiable data has been removed.
3. Information We Collect
At various points through your use of our Services we will collection certain pieces of information in order to provide that particular part of the Service, or to help improve the Service.
- 3.1 Technical Information
- 3.2 Registering a User Account
When you create a user account in order to place pre-orders we collect your name, email address and selected vendor location. We use your name in order to ensure your orders are correctly labelled and your email address in order to provide you with updates on your orders. We will never share your email address without your expressed consent. Our Vendors do not have access to your email address.
- 3.3 Geo-location
Our service makes use of geo-location features on your device, monitoring for the presence of Bluetooth beacons. However, this is only passive monitoring, we do not track store this information, it is just used to help improve your experience when using the service.
- 3.4 Payments
When you make a debit or credit card payment through the app, your card information is provided to our payment processing provider, JudoPay. We only collect the last four digits of your card number. We record this information so you can easily see which card you have used when making a payment. If you use our Speedy Checkout feature, your card details are securely retained by our payment processing provider. Using a process called tokenisation, they provide us with a token which we securely store on your device’s keychain for future payment requests. We do not store this token anywhere on our servers. When you want to make a payment, we send this token and your card verification number (which you provide each time) to our payment processing provider which they can map back to your actual card details. This allows you to quickly and more importantly, securely, make topups without having to type in your full card number each time. For even greater security, we also offer Apple Pay if your iOS device supports this.
- 3.5 Newsletters
When you create your account we will subscribe you to our newsletter to send you periodic email updates to the Service. You may opt out of these updates at any time by following the links in the newsletter.
- 3.6 Push Notifications
Where supported by your device, the Service uses Push Notifications. You can opt out of these at any time by disabling this option within your User Account.
4. Disclosing your personal information
a. In the event that we sell any or all of our business to the buyer.
b. Where we are legally required by law enforcement or other government officials in connection with an investigation of fraud, intellectual property infringements, or other activity that is illegal or may expose a User or us to legal liability.
c. We may also disclose a User’s personal data to third parties when we have a reason to believe that a disclosure is necessary to address potential or actual injury or interference with our rights, property, operations, Users or others who may be harmed or may suffer loss or damage, or mmmLUNCH believes that such disclosure is necessary to protect our rights, combat fraud and/or comply with a judicial proceeding, court order, or legal process served on us. To the extent permitted by applicable law, we will make reasonable efforts to notify affected Users of such disclosure through our website or in another reasonable manner.
d. We may at times disclose the information to third-parties who we select to assist in providing the Service. These third parties will only have access to the personal information they require to perform the specific element of the Service we have tasked them with.
We may use and disclose non-personal data in an aggregated form for purposes of analysing usage of the Services, managing and providing the Service, and to further develop the Service and other mmmLUNCH services and products.
A User may choose to disclose data about him or herself in the course of contributing user-generated content to the Service. Any data that a User discloses in in this way or in support forums, community blogs or the like is public information, and there is no expectation of privacy or confidentiality.
The Service may use ‘cookies’ and other technologies such as pixel tags, locally shared objects, clear GIFs and web beacons. We class information collected by cookies and similar technologies as non-personal data. Please note: A cookie is a small bit of record-keeping information that websites often store on a User’s computer. Our cookies do not include personal data and are typically used to quickly identify a User’s device and to “remember” the User. Users can disable cookies or set their browsers to alert them when cookies are being sent to their device. You can adjust the settings on your computer to decline any cookies if you wish. This can be easily done, by activating the reject cookies setting on your computer or device. Please be advised that disabling cookies may affect the website. We may also gather detail about your general Internet usage by using the cookie. Where used, these cookies are downloaded to your computer and stored on the computer’s hard drive. Such information will not identify you personally. It is statistical data. This statistical data does not identify any personal details.
We may also use HTML5 storage (locally stored objects). HTML 5 storage, such as HTML5 Web Storage, are used for similar purposes as cookies (see above) but typically may contain a greater amount and different types of data than browser cookies. Web Beacons and pixel tags: A “web beacon” or a “pixel tag” is an electronic image that allows us to count Users who have visited certain pages or viewed certain advertisements. Web beacons, like cookies, do not include personal data. E-mails and other electronic communications we send to a User may contain pixel tags that enable us to track a User’s usage of the communication, including whether the communication was opened and/or what links were followed, if any.
The Service is intended for Adults aged 18 and over. We do not knowingly collect or solicit personal information from children or knowingly allow children to register on our Website. If you are a child, please do not attempt to register or send any information about yourself to us, including your name, address, telephone number, or email address. In the event that we learn that we have collected personal information from a child we will delete that information as quickly as possible. If you believe that we might have any information from or about a child, please contact us immediately at [email protected].
Unfortunately the sending of information via the Internet is not totally secure and on occasion such information can be intercepted. We cannot guarantee the security of data that you choose to send us electronically. Sending such information is entirely at your own risk.
7. Third Party Links
A User’s access to and use of the Service may be subject to certain third party terms and conditions and privacy policies, including but not limited to application stores, mobile software platforms, social networking services and payment providers. mmmLUNCH is not liable for any such third party terms and conditions and their use of Users’ personal data.
8. Data Protection Act
Trask Tech Ltd complies with the principles set out in the Data Protection Act 1998 and is registered with the Information Commissioner’s Office. You have the right to access any information that we hold relating to you. Please note that we reserve the right to charge a fee to cover costs incurred by us in providing you with the information. We aim to respond to all requests within four weeks. Please contact [email protected] with any requests.
9. Contacting Us