Privacy Policy

1. Introduction

Welcome to Phiris’s Privacy and Cookies Policy. We respect your privacy and are committed to protecting your personal data. This policy describes how we handle the information we collect about you when you visit our website, request our services, or communicate with us.

Who We Are

Phiris (“we”, “us”, or “our”) is a catering company based in the United Kingdom, primarily providing services for weddings, corporate events, private dinners, and religious gatherings. In this policy, “you” means the individual visiting our website or engaging with our services.

Children’s Data

Our services are not intended for children, and we do not knowingly collect personal data relating to anyone under the age of 16. If you believe a child has provided personal data to us, please contact [email protected].

2. The Data We Collect About You

Personal data (also referred to as personal information) is any information about an individual from which that person can be identified.

We may collect, use, store, and transfer different kinds of personal data about you, including:

1. Identity Data: Name, title (e.g., Mr, Mrs, Ms, Dr).
2. Contact Data: Email address, telephone number, billing address, venue address (if different), and any other contact information provided.
3. Event Details: Date, type of event, number of guests, and any relevant dietary or logistical information.
4. Marketing and Communications Data: Your preferences in receiving marketing and updates from us, including how you prefer to be contacted.

We do not collect any special categories of personal data (such as health or religious beliefs) unless they are directly relevant to catering requirements, and only when you provide such information voluntarily.

3. How Your Personal Data Is Collected

We collect data from and about you through:

• Direct interactions: When you fill out forms on our website, send us emails, speak with us by telephone, or otherwise provide us with information.
• Automated technologies: As you interact with our website, we may automatically collect certain Technical Data (e.g., IP address, browser type, browsing actions) through cookies and similar technologies. For details, see our Cookies section below.
• Third parties: We may receive technical data from analytics providers (e.g., Google) and other vendors that assist us in delivering or improving our services.

4. How We Use Your Personal Data

We will only use your personal data when the law allows us to. Most commonly, we will use your personal data:

1. To provide our catering services: We use your contact details, venue information, and preferences to deliver the services you have requested.
2. To manage our relationship with you: This may include notifying you about updates to our terms or requesting feedback on our services.
3. For internal business purposes: Such as data analysis, audits, fraud prevention, security measures, and record-keeping.
4. For marketing: Where you have opted in to receive marketing communications from us, we may send newsletters or promotions. You can opt out at any time by contacting us or following the unsubscribe link in our emails.

We do not sell or share your personal data with third parties for their own direct marketing purposes.

5. Disclosures of Your Personal Data

We may share your personal data:

• With service providers that help us operate our business (e.g., payment processors, data storage, professional advisers).
• With analytics providers such as Google Analytics 4 and Microsoft Clarity, which process certain data for the purposes described in this policy.
• Where we are legally required to do so (e.g., HM Revenue & Customs, law enforcement, regulatory authorities).
• With a potential buyer or investor in the event we sell or transfer part of our business.

We require that all third parties respect the security of your personal data and treat it in accordance with the law. They are only permitted to process your personal data for specified purposes and in accordance with our instructions.

6. International Transfers

Where we use providers (such as Google) that operate outside the United Kingdom or European Economic Area, your data may be transferred internationally. We ensure that appropriate safeguards are in place (e.g., standard contractual clauses) to protect your data to a standard equivalent to UK and EU data protection law.

7. Data Security

We have implemented appropriate technical and organisational measures to prevent your personal data from being accidentally lost, accessed, or used in an unauthorised way. We also limit access to your personal data to those employees, contractors, and third-party service providers who have a business need to know. They will only process your personal data on our instructions and are subject to confidentiality obligations.

8. Data Retention

We will only keep your personal data for as long as necessary to fulfil the purposes we collected it for, including satisfying any legal, accounting, or reporting requirements. To determine the appropriate retention period, we consider:

• The nature and sensitivity of the data.
• The potential risk of harm from unauthorised use or disclosure.
• The purposes for which we process your personal data and whether we can achieve those purposes through other means.
• Applicable legal requirements.

9. Your Legal Rights

Under certain circumstances, you have rights under data protection laws in relation to your personal data, including the right to:

1. Request Access to your personal data.
2. Request Correction of the personal data we hold.
3. Request Erasure of your personal data (in certain situations).
4. Object to processing of your personal data where we rely on a legitimate interest.
5. Request Restriction of processing your personal data.
6. Request the Transfer of your personal data to you or a third party.
7. Withdraw Consent at any time where we are relying on consent to process your personal data.

If you wish to exercise any of these rights, please contact us at [email protected].

10. Cookies and Similar Technologies

Our website uses cookies to distinguish you from other users. A cookie is a small text file placed on your computer (or other device) when you browse websites. We use these cookies to improve our website’s functionality, analyse site usage, and assist in our marketing efforts.

Google Analytics 4 (GA4) and Microsoft Clarity

We use Google Analytics 4 to gather information on how visitors use our website, such as the pages they visit and the links they click. Microsoft Clarity helps us understand user interactions on our site. Both services deploy cookies to track user sessions.

If you wish to disable cookies, you can do so through your browser settings. Please note, however, that some website features may not function properly if you disable all cookies.

Below is a table detailing the main cookies used on our site for GA4 and Clarity:

Cookie Name	Expiration	Purpose
_ga	2 years	Used by GA4 to distinguish unique users.
_ga_<property>	2 years	Used by GA4 to persist session state.
_gid	24 hours	Used by GA4 to distinguish users.
_gat	1 minute	Used by GA4 to throttle request rates.
CLARITY	Varies (up to 1 yr)	Used by Microsoft Clarity to track user interactions.
_clsk	24 hours	Connects multiple page views by a user into a single Clarity session record.

For more information on how Google processes your data, please visit Google’s Privacy Policy. For information on Microsoft Clarity, please see Microsoft’s Privacy Statement.

11. Changes to This Privacy Policy

We may update this policy from time to time. Any updates will be posted on our website with a revised “Last Updated” date. We encourage you to review this policy periodically to stay informed about how we are protecting your data.

12. Contact Us

If you have any questions about this Privacy and Cookies Policy, including any requests to exercise your legal rights, please contact us:

Phiris
Email: [email protected]