GDPR Compliance Policy

**GDPR (General Data Protection Regulation) Compliance Policy**


This GDPR Compliance Policy outlines how Teknik Bibliotek AB ("we," "us," or "our") complies with the General Data Protection Regulation (GDPR) in relation to the processing of personal data on the Table and Menu website at https://www.tableandmenu.com/ ("website").


**1. Data Controller**


1.1 Teknik Bibliotek AB is the data controller responsible for the processing of personal data collected through the website.


**2. Lawful Basis for Processing**


2.1 We will only process personal data when there is a lawful basis for doing so. Lawful bases may include the necessity of processing for the performance of a contract, compliance with a legal obligation, protection of vital interests, consent, the performance of a task carried out in the public interest, or the legitimate interests pursued by us or a third party.


**3. Types of Personal Data Processed**


3.1 We collect and process personal data as outlined in our Privacy Policy. This may include names, email addresses, phone numbers, and other information provided by users during the subscription process or table reservation.


**4. Purpose of Processing Personal Data**


4.1 Personal data is processed for specific, explicit, and legitimate purposes. These purposes may include user authentication, transaction processing, communication, and improvement of website services.


**5. Data Minimization**


5.1 We will only collect and process personal data that is necessary for the intended purpose. Data collected will be kept accurate and up-to-date.


**6. Data Security**


6.1 We implement appropriate technical and organizational measures to ensure the security of personal data. This includes protection against unauthorized or unlawful processing and accidental loss, destruction, or damage.


**7. Data Subject Rights**


7.1 Individuals have the right to access, rectify, erase, or restrict the processing of their personal data. Users may exercise these rights by contacting us at contact@teknikbibliotek.com.


**8. Data Transfer**


8.1 We may transfer personal data to third-party service providers for the purposes outlined in our Privacy Policy. Any such transfers will comply with GDPR requirements.


**9. Data Breach Notification**


9.1 In the event of a data breach that poses a risk to the rights and freedoms of individuals, we will promptly notify the relevant supervisory authority and, where required, affected individuals.


**10. Data Protection Officer (DPO)**


10.1 We have appointed a Data Protection Officer to ensure compliance with GDPR. The DPO can be contacted at dpo@teknikbibliotek.com.


**11. Updates to This Policy**


11.1 We may update this GDPR Compliance Policy to reflect changes in our practices or legal requirements. Users will be notified of any significant changes.


**12. Contact Information**


If you have any questions about this GDPR Compliance Policy, please contact us at:


Teknik Bibliotek AB  

Höstvädersgatan 61, 418 33 Göteborg, Sweden  

Email: contact@teknikbibliotek.com


*Last updated: [10/12/2023]*