Mythic Goblin is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, and protect your personal data when you visit our café, use our website, or interact with us.

1. Information We Collect

We may collect and process the following types of personal data:

• Personal Details: Name, email address, phone number, and any other contact information you provide when making reservations or inquiries.

• Payment Information: Card details or other payment data, which are processed securely through our payment provider.

• Feedback & Preferences: Information shared through surveys, feedback forms, or preferences for board games or events.

• Website Usage: Data about your visit to our website, including IP address, browser type, pages viewed, and other analytics data collected via cookies (see Section 7).

2. How We Use Your Information

We use your data to:

• Process bookings and reservations.

• Communicate with you about your inquiries, bookings, or events.

• Improve our services, menu offerings, and customer experience.

• Send promotional offers or updates about events (if you’ve opted in).

• Ensure compliance with legal and regulatory obligations.

3. Legal Basis for Processing

We process your personal data based on:

• Consent: When you sign up for newsletters or promotional offers.

• Contractual Necessity: To provide services like reservations or purchases.

• Legal Obligations: Compliance with applicable laws or regulations.

4. How We Share Your Data

We do not sell or share your personal data with third parties, except:

• With trusted service providers (e.g., payment processors or event management platforms) for operational purposes.

• If required by law or regulatory authorities.

• In the case of a business transfer, where your data may be shared with new owners under similar terms.

5. How We Protect Your Data

We implement appropriate technical and organizational measures to safeguard your data, including:

• Encrypted payment processing systems.

• Secure storage of customer records.

• Regular security audits to prevent unauthorized access.

6. How Long We Keep Your Data

We retain your data only as long as necessary for the purposes outlined in this policy, unless a longer retention period is required by law. For example:

• Booking records: Retained for up to 2 years.

• Marketing data: Retained until you opt out.

7. Cookies and Website Analytics

Our website uses cookies to enhance your browsing experience. Cookies may collect information about your preferences or usage.

You can manage your cookie preferences through your browser settings. For detailed information about cookies, please see our [Cookie Policy].

8. Your Rights

Under the UK GDPR, you have the following rights:

• Access: Request a copy of your personal data.

• Rectification: Correct any inaccurate or incomplete data.

• Erasure: Request deletion of your data in certain circumstances.

• Restriction: Limit the processing of your data.

• Data Portability: Request transfer of your data to another service.

• Objection: Object to data processing for specific purposes, such as direct marketing.

To exercise these rights, contact us using the details below.

9. Third-Party Links

Our website or promotional materials may contain links to third-party websites. We are not responsible for the privacy practices of these websites.

10. Contact Us

If you have any questions about this Privacy Policy or wish to exercise your rights, please contact us at:

Mythic Goblin

Arch 89, Tiverton Street, SE1 6FX, London

Email: [email protected]

Phone: 7743 030238

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page, and the “last updated” date will reflect the latest revision.