PREAMBLE

The Scandinavian restaurant “Kattegat” (hereinafter referred to as the “Restaurant”) respects the personal space of each individual and makes every effort to protect the confidential (personal) data (hereinafter referred to as “Confidential Data”) of all visitors to the Restaurant’s website – https://kattegat.com.ua (hereinafter referred to as the “Site”).

The Confidential Data of Site visitors is considered confidential information, and the receipt, collection, and further processing (hereinafter referred to as “Processing”) of such information is carried out by the Restaurant in accordance with the Law of Ukraine “On Personal Data Protection,” taking into account the recommendations of the Regulation (EC) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons concerning the processing of personal data and on the free movement of such data (General Data Protection Regulation), etc.

The principles of the Restaurant’s activities regarding the protection of Confidential Data include:

• The legality of the purposes and methods of processing personal data of Site visitors.
• Compliance of the purposes of Confidential Data processing with the purposes stated and declared at the time of collecting such data.
• Correspondence of the scope and nature of the processed Confidential Data to the methods and purposes of processing such data.
• Prohibition of combining databases created for incompatible purposes, containing Confidential Data of Site visitors.

The source of Confidential Data processing is information voluntarily provided by Site visitors or received by the Restaurant as technical data necessary for the proper protection of Confidential Data of visitors.

SECTION I
WHAT INFORMATION IS PROCESSED

1.1. The Restaurant processes information related to Site visitors only when the visitor voluntarily provides certain information or explicitly consents to its provision and/or use.

1.2. The information that the Restaurant may process includes:

1.2.1. Information that allows the identification of the Site visitor. In cases where the Site visitor chooses to interact with the Restaurant through feedback or by filling out specific registration forms on the Site or by other means, such as sending requests or letters, etc. Confidential Data may include information such as the visitor’s name, phone number, address, email address, and other similar information.

1.2.2. Technical data. When visiting the Site, certain information is automatically recorded on the Restaurant’s servers for system administration, statistical, or backup purposes using various technologies, including cookies, tags, IP address/URL tracking, and other tools.

• a) Recorded information may include the visitor’s internet service provider, in some cases – their IP address, information about the version of the browser software used, the operating system of the computer from which the Site was visited, the websites visited concurrently with the Site, and, if possible, search parameters that led the visitor to the Site, date/time stamps, the number of clicks, ads viewed, and more. Visitors can block or disable cookies on their computers, which will limit the collection of technical data through the use of cookies, but in such a case, visitors will not be able to use certain functionalities of the Site. The Site’s server may temporarily record the domain name or IP address of the visitor’s computer, as well as the date of access, files (file name and URL), HTTP response code, and the website from which the visitor accessed the site, the amount of bytes transferred during the visit.
• b) Cookies are used to make the Site safe, secure, and user-friendly, as well as to:
  – Provide support for security features and their activation.
  – Monitor violations of the privacy policy by visitors.
  – Evaluate the number and frequency of requests and detect and block visitors or devices attempting to perform batch data downloads from the website.
• c) The Restaurant may use Google Analytics, a service provided by Google, to understand and analyze the usage patterns of Site visitors. The Restaurant advises that Google also receives such information, and its use is governed by Google’s own privacy policy or the operator of the Google Analytics software. The Restaurant is not a party to visitors’ relationships with third parties, including Google Analytics, etc. Through the Google Analytics system, the Restaurant can collect statistics about site visits, including visited pages, page views, information that was downloaded, the countries of origin of visitors, and information about how visitors arrived at the site, among other things. None of these actions are associated with visitors personally and are evaluated solely in aggregate.

1.2.3. Payment information. The Restaurant does not directly collect information about the payment methods of Site visitors, such as their credit cards, etc. Payment data of visitors will be provided not by the Restaurant but by the respective operator. The Restaurant advises that this information will be processed not by the Restaurant but by the relevant entity, in accordance with its privacy policy or other agreement entered into with a specific visitor.

1.2.4. Personal data of children. The Restaurant does not seek to process information about visitors under the age of 18. If necessary, the Restaurant may unequivocally advise a child not to send any personal information to the Restaurant’s email address. If parents or other legal representatives of a child discover that the child has provided certain information to the Site and believe that such data should be deleted, the Restaurant will act upon their request to delete such information.

1.3. The Restaurant draws attention to the fact that when filling out questionnaire forms and agreeing to receive newsletters about events and news related to the Restaurant’s activities, Site visitors provide their personal information, including but not limited to name, surname, email address, and other information by which such visitors can be identified.

SECTION II
PROCESSING PURPOSE

2.1. Confidential Data and other information provided by visitors are used solely for the purpose for which it was provided to the Restaurant.

2.2. The Restaurant will use the relevant information to support and maintain communication with visitors, send correspondence, messages, including advertising and news, maintain the Restaurant’s databases, including contact lists, visitor databases, and donors, conduct statistical, advertising, sociological, and other research, and create agreements and other documents necessary to prevent violations of confidentiality, applicable laws, and contractual relations.

SECTION III
MEASURES TAKEN BY THE RESTAURANT

3.1. To protect Confidential Data, the Restaurant employs administrative, managerial, and technical security measures. The Restaurant adheres to international standards for information control and uses mechanisms for controlling the protection of Site visitors’ information.

3.2. Restaurant employees understand and implement control measures and are familiar with the privacy policy.

3.3. The Restaurant expects that Site visitors will act responsibly in safeguarding their personal data.

3.4. The Restaurant takes technical, organizational, and legal measures to protect Confidential Data of visitors from unauthorized or accidental access, destruction, distortion, blocking, copying, distribution, and other unlawful actions.

3.5. If possible, access to the Site, when such functionality is available, is authorized using a visitor’s login and password. The responsibility for maintaining this information lies with the visitor, who is not entitled to transfer their login and password to third parties and is also obliged to take measures to ensure their confidentiality.

3.6. In general, the Restaurant does not verify the accuracy of the received (collected) information about the visitor, except in cases where such verification is necessary for the Restaurant to fulfill its obligations to the visitor, as well as when such verification is required by the laws of Ukraine.

3.7. The Restaurant makes reasonable efforts to ensure the accuracy and completeness of visitors’ personal information. The Restaurant relies on visitors to inform the Restaurant of changes to their personal data that may affect their relationship with the Restaurant. In the event of an error, the Restaurant asks to be informed to correct it where technically possible.

3.8. Site visitor Confidential Data is not transferred to, owned by, disclosed, sold, or exchanged with any third parties.

3.9. The transfer of Confidential Data is carried out exclusively with the consent of the visitor, except in cases defined by legislation.

3.10. The Restaurant makes every reasonable effort to protect Site visitors’ Confidential Data from unauthorized access, modification, disclosure: shredding paper records, permanently deleting electronic records, etc.

3.11. The Restaurant reserves the right to retain Confidential Data indefinitely until the visitor requests the deletion of their Confidential Data.

3.12. Confidential Data is processed electronically and processed using automated systems, except in cases where non-automated processing of Confidential Data is required to comply with legal requirements.

SECTION IV
RIGHTS AND OBLIGATIONS

4.1. Visitors have the right to:

Exercise free access to information about themselves by uploading their personal pages on the Site using their login and password, if technically possible.
Set the desired level of confidentiality regarding information about themselves using the Site (conditions of access to information).
Make changes and corrections to information about themselves on their personal page on the Site, provided that such changes and corrections contain up-to-date and accurate information.
Delete information about themselves from their personal page on the site, except as provided by the current legislation of Ukraine.
Ask the Site for information about the terms of access to their personal data, including information about third parties to whom their data is transferred.

4.2. The Restaurant will not disclose phone numbers, addresses of residence, or other Confidential Information of visitors.

SECTION V
GUARANTEES AND STATEMENTS

5.1. The Restaurant certifies that among its ultimate beneficial owners and other individuals, legal entities, and other legal entities that are part of the ownership structure of the Restaurant and/or persons related to the Restaurant by control/management relationships (hereinafter referred to as “Persons”) there are no:

• Individuals who are residents of the Russian Federation and/or the Republic of Belarus.
• Entities created and registered in accordance with the legislation of the Russian Federation and the Republic of Belarus.
• Individuals who are ultimate beneficial owners, members, or participants (shareholders) of entities created and registered in accordance with the legislation of the Russian Federation and/or the Republic of Belarus, residents of the Russian Federation and/or the Republic of Belarus, legal entities created and registered in accordance with the legislation of the Russian Federation and/or the Republic of Belarus.
• Other individuals subject to the moratorium (prohibition) in accordance with current legislation, in particular, Resolution of the Cabinet of Ministers of Ukraine No. 187 dated March 3, 2022, “On Ensuring the Protection of National Interests Against Future Claims of the State of Ukraine Due to the Military Aggression of the Russian Federation.”

SECTION VI
ACCESS PROCEDURE

6.1. Site visitors have the right to access their own personal information in records that are stored or under the control of the Restaurant, subject to certain exceptions defined by applicable legislation.

6.2. A Site visitor may request access to their personal information by writing a letter to the contact address and providing the maximum possible amount of information about themselves to expedite the Restaurant’s consideration of such a request.

6.3. The Restaurant will respond to the respective request within 10 business days unless a longer period is prescribed by current legislation.

SECTION VII
LIMITATIONS AND LIABILITY

7.1. The Restaurant is not responsible for lost benefits or lost profits, unearned income of Site visitors arising from the use of the Site.

7.2. Copying information from the Site may be done for non-commercial purposes for posting on visitors’ pages, posts, or social networks.

7.3. Site visitors assume responsibility for all risks arising from the use of the Site. To the maximum extent permitted by law, neither the Restaurant nor any other party involved in the creation, maintenance, or servicing of the Site shall be liable for direct, indirect, or incidental damages, whenever incurred, and arising from the visitor’s access to the Site, use of it, even if the Restaurant warned the visitor of the possibility of such damages or losses.

7.4. When working with the Site, visitors are not granted any rights to intellectual property, neither to the Site nor to its maintenance or the use of any branding elements or logos of the Site.

7.5. The Restaurant is not responsible if Confidential Information:

• Became public knowledge before its loss or disclosure.
• Was obtained from a third party.
• Was disclosed with the consent of the visitor.
• Disclosure occurred not due to the fault of the Restaurant, and if the Restaurant has taken all reasonable measures to preserve such information.

7.6. The transfer of Confidential Data when visiting third-party websites is not covered by the provisions of this Privacy Policy.

7.7. The Restaurant urges visitors to be responsible when deciding on the amount of information about themselves to be posted on the Site.

SECTION VIII
FINAL PROVISIONS

7.1. The Restaurant reserves the right at its discretion to change, amend, add, or delete parts of this Privacy Policy by posting an updated version on the Site.

7.2. The continued use of the Site by the visitor after changes and/or additions to the applicable policies implies the visitor’s acceptance and consent to such changes and/or additions.

Slava Ukraini!
Yours faithfully,
Kattegat Restaurant Team

Limited Liability Company “Valhalla”
EDRPOU Code: 44938548
Location: 02147, Kyiv, Yevgena Sverstyuka Street, Building 6
+38 (068) 241-63-17