Effective Date: May 25th, 2018
WHO WE ARE
Hakkasan Group (“Company”, “we”, “our”, or “us”) operates the site and subsites located at and mobile applications (collectively “Site”) and provides the content (including email and electronic communications) and services (collectively “Services”) offered on or through the Site. “Platform” means the “Site” and/or “Services”.
ABOUT THIS DOCUMENT
This Privacy Notice explains how we collect, use, share, and protect information about users of the Platform, and the choices users have about how we collect and use certain information about them.
Third-party Websites: This Privacy Notice does not apply to the websites of third parties to which the Platform links. We do not endorse, and are not responsible for the content of such websites, their policies or practices, or any product or service that they offer. Any activity you perform on such third-party websites will be subject to the privacy policies and other terms and conditions expressed therein. We recommend that you review third-party terms before providing any personal information to them.
We modify this Privacy Notice from time to time in accordance with the “Modifications” section below .
By using the Platform, you represent that you are at least 16 years old. The Service is a general audience service. Our content is not directed towards children who are under the age of 16, nor do we knowingly collect personal information from children under the age of 16. If we become aware that a child under the age of 16 has provided us with personal information without parental consent, that information will be deleted. Parents who have questions about personal information that has been submitted by a child under the age of 16 should email us at the address provided in the “How to Contact Us” section.
WHAT WE COLLECT
Categories of data we collect:
SOURCES OF DATA
Most of the personal data we collect comes through various forms across our Platform. Certain fields on these forms are mandatory in order for us to complete the associated transactions. Mandatory fields are indicated with an asterisks.
We also collect data from your browser. This data collection occurs automatically as a consequence of your browser interacting with our servers. This data is captured in logs
We collect personal information from third-party service providers including OpenTable (restaurant reservations), Seven Rooms (restaurant reservations), Hotpoint (photo booths), Zenreach (Wi-Fi access), Ticketmaster (ticket sales to events), Bookmyshow (ticket sales to events), American Express (global dining program), Facebook (Facebook lead forms), Full Contact (provides additional contact information by matching e-mail address with full contact database, and verifies e-mail addresses are valid), Hotspot International (photo booths), Woobox (sweepstakes administration), and New Epoch (sweepstakes administration). We only receive your information from these services if you give them consent to share it with us.
WHY WE COLLECT
We collect this information for the following purposes:
GDPR LAWFUL BASES
In accordance with the EU General Data Protection Regulation (GDPR), we have determined that we have the following legal bases to collect and process personal information of users who are in the EEA:
ONLINE TRACKING & YOUR CHOICES:
THIRD-PARTY TRACKING & INTEREST-BASED ADVERTISING:
THIRD-PARTY SITES & SOCIAL MEDIA:
We use your information to deliver ads to you on social media platforms including Facebook, Instagram, Snapchat, and Twitter.
We do not share your personal information outside of our corporate group for any commercial or marketing purpose unrelated to our products and services without asking you first. We do not rent or sell our customer lists. However, there are still a few limited situations where we share personal information:
If you wish to opt-out of our marketing communications and data sharing practices, please email [email protected]. Please note that even though you may opt-out of receiving marketing-related communications from us, we may still send you important administrative messages.
We do not retain your personal data indefinitely. We employ a data retention policy which ensures we can complete our contractual and legal obligations, as well as meet our internal business intelligence needs. You may request more information about how we retain your personal information through a data request described in the following section.
YOUR RIGHTS TO YOUR DATA
You have the right to request a copy of the data we have on you and know how we use that information. If you wish to request this information, send an email to [email protected] with the word “Access” in the subject line. The email account from which you send the email request must match the email account for the personal data record requested. Depending on the amount and categories of data in the requested record, we will respond to your initial email with additional questions to verify that your identity matches the requested record. While we fully respect your right to request your data, we must verify your identity first.
If you find any mistakes in your data record, you may request that we correct the record by emailing your corrections to [email protected]. Please use the word “Correction” in the subject line. If we decide not to correct your data record, we will explain our reason(s) in writing within 30 days.
You have the right to request that we erase the data we possess regarding you. If you wish to exercise this right, send an email to [email protected] with the word “Erase” in the subject line. If we decide not to erase your data record, we will explain our reason(s) in writing within 30 days.
In certain circumstances, you have the right to request that we restrict the processing of the personal data that we have collected about you; for example, where you believe that the personal data that hold about you is not accurate or lawfully held.
In certain circumstances, you have the right to receive the personal data concerning you that you have provided us in a structured, commonly used, machine readable format, and the right to obtain that we transmit the data to another entity where technically feasible.
In certain circumstances, you have the right to request that we stop processing your personal data.
You have the right to request that we stop sending you marketing communications.
In certain circumstances, you have the right no to be subject to a decision based solely on automated processing – including profiling – that produces legal effects or similarly affects you.
We may seek to rely on your consent in order to process certain personal data. Where we do so, you have the right not to provide your consent, and the right to withdraw your consent at any time. If you withdraw your consent, this will not affect the lawfulness of the processing conducted based on consent before its withdraw.
You have the right to file a complaint with a relevant data protection supervisory authority and the right to file a complaint in court if you feel we have violated this policy. If so, we will cooperate with the authority to resolve the issue.
We take security seriously and care about the integrity of your personal information. We use commercially reasonable methods to transmit your data securely including HTTPS, TLS/SSL protocol, and public key encryption. Data is stored using Amazon’s S3 cloud service. However, we cannot guarantee that unauthorized third parties will never be able to defeat our security measures or use your personal information for improper purposes. In the event that any information under our control is compromised as a result of a security breach, we will take reasonable steps to investigate the situation and where appropriate, notify those individuals whose information may have been compromised and take other steps, in accordance with any applicable laws and regulations.
INTERNATIONAL DATA TRANSFERS
We are a global organization and provide services throughout the world. Sharing data cross-border is essential to our services so that you can receive the same high-quality services from us wherever you are. As a result, we will, in accordance with the law, transfer your personal data to other countries which may have different data protection standards than those in your country of residence.
Our Site is hosted in the United States. If you are accessing the site from the EEA or other regions with laws governing data collection and use that differ from U.S. law, you should be aware that your data will be transferred outside the EEA. When we transfer personal data from the EEA and Switzerland to other countries, including to the United States, we rely on third-party service providers who use a variety of legal mechanisms to help ensure your data is appropriately protected such as Binding Corporate Rules, Privacy Shield certification, or Standard Contractual Clauses. Unless we have your explicit consent, we will not transfer your personal data from the EEA and Switzerland to other countries without appropriate safeguards (specifically, Binding Corporate Rules, Privacy Shield certification, or Standard Contractual Clauses) in place.
We will modify this Privacy Notice from time to time. We will notify you of material changes to this Privacy Notice by posting the amended terms in accordance with applicable laws. If you do not agree with the proposed changes, you should discontinue your use of the Platform before the new Privacy Notice takes effect. If you continue using our Platform after the new terms take effect, you will be bound by the modified Privacy Notice.
HOW TO CONTACT US
If you have any questions about this Privacy Notice, please contact us:
By email at: [email protected].
By postal mail at:
Hakkasan Holdings, LLC
6385 S. Rainbow Blvd., Suite 800
Las Vegas, NV 89118
Local Representative in the EEA:
Company Name: Hakkasan Limited
Email address: [email protected]
Postal address: 3rd Floor, Elsley House, 24-30 Great Titchfield Street, London, W1W 8BF, United Kingdom