McDONALD’S APP GREECE Privacy Statement
Last updated: 18th of July 2024
The company PREMIER CAPITAL HELLAS SINGLE MEMBER SOCIETE ANONYME- Establishment, Exploitation and Operation of Restaurants, with the distinctive title “PREMIER CAPITAL HELLAS Single Member S.A.” (hereinafter referred to as the “Premier Capital”, “we” or “us”) with Commercial Registry no. 001246501000 which operates from its headquarters at 9 Kleisouras str., 14452, Metamorfosi, Athens, Greece is committed to protecting and respecting your privacy.
This privacy statement (together with our terms of use terms of use and any other documents referred to on it) sets out the basis on which any personal information we collect from you, or that you provide us, will be processed by us. Please read the following carefully to understand our views and practices regarding your personal data and how we will treat it.
1. Data Controller ▾
The data controller of your personal information is Premier Capital Hellas SA with registered seat at at 9 Kleisouras str., 14452, Metamosfosi , Athens, Greece.
2. Legal Basis for the Processing of Your Personal Information ▾
Your personal information is processed on the basis of (i) your consent (Art. 6(1)(a) GDPR), (ii) the necessity for the performance of a contract concluded with you (Art. 6(1)(b) GDPR), and (iii) our prevailing legitimate interest (Art. 6(1)(f) GDPR).
3. Information We collect ▾
We may collect personal information about you when you use the McDONALD’S APP GREECE (the “App”). The information we collect falls into three categories: (a) information you provide us; (b) information we collect through automated methods, and (c) information we collect from other sources.
Generally, your providing of your personal information is voluntary. However, there may be situations where your providing of personal information is necessary to provide a service or is required by law. Please note that in certain cases, we may be unable to provide you with our services unless you provide the information. We will let you know when the providing of your personal information is necessary.
We may combine the information you provide us, with information that is collected through automated methods, and with information we receive from other sources.
3.1 We collect information you provide us
You may provide us the following information:
3.2 We collect information through automated methods
We may use automated technology to collect information from your mobile device when you use our App.
We may collect information about your:
Our App may collect information about the exact location of your mobile device using geolocation and technology such as GPS, Wi-Fi, Bluetooth, or cell tower proximity. For most mobile devices, you will be requested to give your permission for Us to process this information. You are able to withdraw your permission for us to collect this information by using the device or web-browser settings. If you have any questions about how to prevent us from collecting exact information about your location, we recommend you contact your mobile-device service provider, the device manufacturer, or your web-browser provider. Some services may not work properly without information about your location. If you would like us to delete information we have collected which could identify your location, please contact us at the contact details of Section 14 below. By law, we may need to keep certain information
3.3 We collect information from other sources
We may collect information about you from other companies and organizations, including public databases, social media platforms, or third party partners such as analytics or marketing providers. We may also collect information that is publicly available. For example, we may collect public profile information about you when you interact with us through social media. We may also collect communications to us or regarding us on social media.
We may combine the information you provide us, with information that is collected through automated methods, and with information we receive from other sources.
4. How we use the information we collect ▾
4.1 We may use the information we collect in the following ways
To provide our services through the App:
To market to you, improve our services through the App, and the following additional legitimate business interests:
To comply with applicable law:
With your consent (where required by applicable law), we may use the information we collect for the following purposes:
We may use the information we collect about you in other ways, which we will tell you about at the time we collect it or for which we will seek your consent.
5. How we share the information we collect ▾
We do not sell your personal information and only share your information as described in this privacy statement.
We may share your personal information with vendors who provide services to us, such as fulfilling orders, providing data processing and other information technology services, managing promotions, contests, prize draws and sweepstakes, carrying out research and analysis, and personalizing individual customer experiences. We do not allow these vendors to use this information or to share it for any purpose other than to provide services on our behalf.
We may, for strategic or other business reasons, decide to sell or transfer all or part of our business. As part of that sale or transfer, we may pass information we have collected and stored, including your personal information, to anyone involved in the sale or transfer.
We may share your personal information with suppliers who help to protect you and McDonald’s from fraud. One such supplier is Sift Science, Inc. (“Sift”) who uses the information as a controller for the benefit of McDonald’s and others in accordance with its privacy notice located at https://sift.com/service-privacy. To exercise your rights in relation to Sift’s processing of your personal data, please contact Sift directly as set out in Part VI (How to contact us) of Sift’s privacy notice.
We may also share your personal information with third parties who provide online payment services. One such third party is Adyen who uses the information as a controller for the benefit of McDonald’s and others in accordance with its privacy notice located at https://www.adyen.com/policies-and-disclaimer/privacy-policy. To exercise your rights in relation to Adyen’s processing of your personal data, please contact Adyen directly as set out in Adyen’s privacy notice.
There may be times where we may share information when it does not directly identify you. For example, we may share anonymous, aggregated statistics about your use of our App. Or we may combine information about you with other customers and share the information in a way that does not link to a specific customer.
We have the right to use or share information as necessary to keep to any law, regulation or legal request, to protect our App and in-restaurant technology, to bring or defend legal claims, to protect the rights, interests, safety and security of our organization, our employees or franchisees, or members of the public, or in connection with investigating fraud or other crime, or violations of our policies.
6. Your choices ▾
If you have agreed to receive marketing communications from us, you can later opt out by following the opt-out instructions in the marketing communications we send you. You can also generally find your communication preferences with instructions on how to opt out in the profile section of the App. You may also have the ability to change your communication preferences using your device settings. You can also opt out by contacting us at the contact details referred to in 14. If you do opt out of receiving marketing communications from us, we may still send communications to you about your transactions, any accounts you have with us, and any contests, competitions, prize draws or sweepstakes you have entered. Opting out of one form of communication does not mean you have opted out of other forms as well. For example, if you opt out of receiving marketing emails, you may still receiving marketing text messages if you have opted in to receiving them.
We do not share personal information with third parties for their own direct marketing purposes, unless you give us permission to do so. When we give you notice, and you consent, we will share your personal information as you direct us to.
We keep your information for the length of time needed to carry out the purposes outlined in this privacy statement and to adhere to our policies on keeping records (unless a longer period is needed by law).
You are in control of any personal information you provide to us through our App. If at any time, you would like to correct the personal information we have about you, please contact us, using the contact details provided in Section 14.
7. Use of the App and other technology ▾
We, and our vendors who provide services to us, use technologies on our App to collect information and provide you with the services.
For example, we may use certain technologies to:
8. Links to other websites and social media ▾
The App may offer links to websites that are run by us or by third parties. If you visit one of these linked websites, you should read the website’s privacy policy, terms and conditions, and their other policies. We are not responsible for the policies and practices of third parties. Any information you give to those organizations is dealt with under their privacy policy, terms and conditions, and other policies.
We may also have providers of other apps, tools, widgets and plug-ins on our App, such as Facebook “Like” buttons, which may also use automated methods to collect information about how you use these features. These organizations may use your information in line with their own policies.
9. Retention of personal information ▾
We keep your information for the length of time needed to carry out the purposes outlined in this privacy statement and to adhere to our policies on keeping records (unless a longer period is needed by law). Our records policies reflect applicable laws. We will retain and use your information to the extent necessary to comply with our legal obligations (for example, if we are required to retain your information to comply with applicable tax/revenue laws), resolve disputes, enforce our agreements, and as otherwise described in this statement.
10. International Data Transfers ▾
Your personal information that we collect may be transferred to, and stored at, a destination outside the European Economic Area ("EEA"), including countries that that may not offer the same protection as offered in your country of residence. As part of the processing described in this privacy statement we also subcontract processing to, or share your personal information with, third parties located in countries outside the EEA to countries that have not been found by the European Commission to provide adequate protection. Therefore your personal information may be processed by staff operating outside the EEA, who works for us or for one of our suppliers. Such staff maybe engaged in, among other things, the provision of support services.
In such cases, we take measures (such as standard data protection clauses) necessary to ensure that your personal information receives an adequate level of protection. If you have any questions about the safeguards we use when transferring your personal information internationally or if you want to obtain a copy of the standard contractual clauses we use to safeguard personal information we transfer, please contact us using the contact information provided in Section 14.
11. Information security ▾
We keep your information for the length of time needed to carry out the purposes outlined in this privacy statement and to adhere to our policies on keeping records (unless a longer period is needed by law). Our records policies reflect applicable laws. We will retain and use your information to the extent necessary to comply with our legal obligations (for example, if we are required to retain your information to comply with applicable tax/revenue laws), resolve disputes, enforce our agreements, and as otherwise described in this statement.
12. Your Personal Information Rights ▾
12.1 In connection with your personal information rights, you may request the following:
12.2 You may exercise these rights free of charge unless the request is unfounded or excessive, for instance because it is repetitive.
12.3 For the exercise of your rights, please contact us using the contact details provided in Section 14. In some situations, we may refuse to act or may impose limitations on your rights, as permitted by applicable law. Before We are able to provide you with any information or correct any inaccuracies, we may ask you to verify your identity and/or provide other details to help us respond to your request.
12.4 In all cases, you have a right to file a complaint with the Hellenic Data Protection Authority (1-3 Kifisias Avenue, 115 23, Athens, +30 210 6475600, contact@dpa.gr, www.dpa.gr).
13. Changes to our privacy statement ▾
This privacy statement is in effect as of the date noted at the top of the statement. We may change this privacy statement from time to time. If We do, we will post the revised version here and change the “last updated date” (the date it applies from) at the top of the statement. You should check here regularly for the most up-to-date version of the statement.
14. How to contact us ▾
If you want to contact us about this privacy statement or if you wish to exercise your rights, you can reach us at:
PREMIER CAPITAL HELLAS SA
9, Kleisouras Street
Metamorfosi – P.C. 14452
Greece
dataprivacy@gr.mcd.com