Privacy politics

In Café Bar Bilbao, located at Plaza Nueva, 6, 48005 Bilbao, Bizkaia, Euskal Herria, we are committed to protecting the privacy of our customers and users. This Privacy Policy explains how we collect, use, and protect your personal data in accordance with Regulation (EU) 2016/679 (GDPR) and Organic Law 3/2018 (LOPDGDD).

1. Identity of the Data Controller

Café Bar Bilbao Phone: 944151671 Email: info@bilbao-cafebar.com Address: Plaza Nueva, 6, 48005 Bilbao, Bizkaia, Euskal Herria

2. Personal data we may collect

We only process the information necessary to manage our relationship with our customers. We may collect:

  • Contact details (name, email, phone number) when you make a reservation or contact us.
  • Billing information, when applicable.
  • Images captured by video surveillance cameras, if installed, for the security of the premises.
  • Data derived from web browsing (if we have a website with cookies).

3. Purposes of data processing

Your data may be used for:

  • Reservation management and customer service.
  • Sending service-related information (confirmations, modifications, or inquiries).
  • Compliance with legal obligations.
  • Security of the establishment (video surveillance, if applicable).
  • Improving the user experience (in case of cookie use on the website).

4. Legal basis for data processing

The legal basis for processing your data is:

  • Performance of a contract or provision of a service.
  • Consent of the data subject, when freely given (for example, for commercial communications).
  • Legitimate interest, such as security through video surveillance.
  • Compliance with legal obligations (tax, accounting, health regulations).

5. Data retention period

Data will be retained:

  • For as long as the commercial relationship is maintained.
  • For the time necessary to comply with legal obligations.
  • In the case of video surveillance, images will be kept for a maximum of 30 days, unless they must be provided to authorities.

6. Disclosure of data to third parties

Your data will not be sold or transferred to third parties, except where legally required or when necessary for the provision of the service (e.g., reservation software providers, hosting services, tax advisors). All such providers comply with the GDPR.

7. Users’ rights

You may exercise the following rights:

  • Right of access
  • Right to rectification
  • Right to erasure
  • Right to object
  • Right to restriction of processing
  • Right to data portability
  • Right to withdraw consent at any time

To exercise these rights, you may contact: ???? info@bilbao-cafebar.com ???? 944151671

You may also lodge a complaint with the Spanish Data Protection Agency (AEPD).

8. Data security

Bilbao Café Bar applies technical and organizational measures to protect your personal data against unauthorized access, loss, or alteration.

9. On-site contact hours

For in-person matters related to privacy, our opening hours are:

Monday – Friday: 7:00 – 23:00
Saturdays: 8:30 – 22:30
Sundays: 8:30 – 15:00

If you wish, I can adapt this to a more formal legal format, add a cookies section, or prepare it as a PDF ready to print or upload to your website.