The purpose of this document is to summarise how personal data is processed for online users to comply with the General Data Protection Regulation (EU GDPR 2016/679).


The scope of this document is for the online users of Fish and Fish Ltd. (the Company).


1Our role in your privacy
If you are a Fish & Fish customer then you most likely have provided us, and will provide us in the future, with your personal data. We hope that this policy will help you understand what we do with your data and show you how trustworthy we are.
2Our responsibilities
It is our responsibility to ensure that we handle your data lawfully, and more importantly, securely. It is also your job to inform yourself on everything we do with your data, which is why you are reading this policy.
3Your responsibilities
  • Ensure that you read this and inform yourself about our data processing activities.
  • If you provide us with personal data about other people, or if others give us your data, we will only use that information for the specific reason for which it was provided to us.
  • Luckily, we do not handle a large amount of your data, nor do we ask too much from you either, which keeps this policy short and sweet.
  • 4When and how we collect your data
  • From the first moment you interact with Fish & Fish, we are collecting data. Sometimes you provide us with data, sometimes its obtained automatically.
  • The only data collected automatically are through the cookies on our website, so please read the cookie policy.
  • You give us the rest of the data when you:
    • Have any general enquiries
    • You can opt to give us this information via our website, over the phone, in an email or even face to face.
  • 5What data do we collect?
  • Contact details:
    Name and surname, email address, phone number.
  • Data that identifies you: Anything you may write in the “Introduction/Comments” field in the “Contact Us” page.
  • Data on how you use fishandfish.com: Cookie data, website statistics and analytics. Please read the cookie data for the full list.
  • 6How and why we use your data
    The new General Data Protection Regulation means that we can only use your data for certain purposes and for those reasons we must have a lawful basis to use said data. We obtain your personal data for the following purposes:
  • General queries and customer support - The only information we require of you when managing your queries are basic contact details and your message. We need this to be able to reply and solve any issues you might have.
    Legal basis for processing: Legitimate interest.
  • Marketing purposes - We only process users that visit our website whilst logged into Facebook. This is to monitor the users traffic that find an interest in our website whilst browsing social media. Should we ever decide to push marketing material, rest assured that we will not process your data without your prior consent.
    Legal basis for processing: Consent.
  • Improving fishandfish.com - The two areas in which we gather data to improve fishandfish are through our cookies and through any reviews you may leave on our social media pages.
    Legal basis for processing: Legitimate interest.
  • 7What do these legal basis’ mean?
  • Legitimate interest:Processing data is necessary for our legitimate interest to fulfil our services and satisfy our customers.
  • Consent: Processing data is only allowed after obtaining our customers’ consent.
  • 8Your privacy choices and rights
  • You can choose not to provide us with personal data. If you choose to do this, you are still allowed to use our website, but we might not be able to resolve any requests without obtaining your data.
  • You can turn off cookies in your browser by changing its settings. You can block cookies by changing some settings in your browser, and you can also delete certain cookies. This will still allow you to use our website, but you might not be able to access its full functionality and features.
  • 9Your rights
    You can exercise your rights by sending contacting us from the “Contact Us” page of our website. You have the right to:
  • Be informed of everything we do with your personal data.;
  • Request a copy of all the personal data we may hold on you;
  • Rectify any personal data you may have previously give us;
  • Request that we erase the personal data we may hold on you (this is not an absolute right, as we may be bound by certain legal obligations to retain your data for a certain period of time);
  • Restrict processing of your personal data (although you understand that restricting processing may lead to our inability to fulfil a request);
  • Request us to provide a copy of your personal data we may hold on you to another food and beverage handling organisation of your choice.
  • Object to us using your personal data (again you understand that objecting to processing your personal data may lead to our inability to fulfil a request).
  • Further rights referring to any automated decision-making and profiling. It’s important that you know that we do not use any automated decision-making tools and/or systems.
  • 10How secure is the data we collect?
    We keep all digital data secure in an encrypted and password protected server with limited access to authorised personnel only, as well as our physical data in a locked cabinet. We have adequate levels of security appropriate to our company’s infrastructure and security framework.
    11Keep in mind
    Unfortunately, data transmitted over the internet is not always 100% safe and secure and it’s very difficult to guarantee such security, and although we take all necessary precautions to ensure your data is safe, be aware that you provide us with your data at your own risk. If you ever think or believe that your data might have been breached, then please contact us immediately via the “Contact Us” page on our website.
    12How long do we store your data?
    Besides our cookies, we are obligated by applicable laws to store your contact data for a minimum of five (5) years after we have helped resolve any queries.
    13Third parties who process your data
    We partner with third parties who run and host our website and power our emails. It is sometimes necessary for us to share your data with these third parties, however it is only ever done in order for our online services to work well and be improved. We take appropriate steps to make sure that your data is processed securely and in accordance with this policy.
    14Helping us make this great
    Great job and well done for getting to the bottom of this document. We have designed this to be as transparent, informative, clear and useful as possible. We also welcome feedback from our customers to help us improve our services and make our words more informative for you. We try our best to make sure that this, and any other policy related to your personal data, is as up to date as possible, therefore we frequently upload our updated policy on our website, so please do not make this the last time you read this policy. If you’ve got any queries about your data please get in touch via the “Contact Us” page on our website.
    15Website Operation
    The company reserves the right to change, add, suspend, cancel, remove or otherwise modify this and any other policy at any time without prior notice.