Book a table

— Your data

Privacy Policy

ROSSO Café is committed to protecting the privacy of website visitors and guests. This policy describes what data is collected, why, and how to exercise your rights.

1. Data controller

ROSSO Café
Jl. Pantai Seseh, Munggu, Mengwi, Badung, Bali 80361
Email: ciao@rossocafe.bali

2. Data collected

The website rossocafe.bali is a showcase site. We do not collect any personal data directly through the site (no forms, no customer accounts, no cart).

Data may be collected in the following contexts:

  • WhatsApp reservation — your name, phone number and preferences are shared with us through the WhatsApp conversation.
  • On the premises — only information strictly necessary for service (name for a reservation, allergies if disclosed).
  • Technical navigation data — your browser automatically transmits certain information (IP address, browser type, pages visited) to our host GitHub Pages, for security and proper functioning.

3. Purposes

Any data collected is only used to:

  • Manage your reservation and restaurant service
  • Reply to your questions and requests
  • Comply with our legal and accounting obligations
  • Ensure the security and proper functioning of the site

No data is used for automated commercial prospecting nor resold to third parties.

4. Retention period

WhatsApp conversations are kept for the time necessary to manage your reservation, then archived according to our legal obligations (generally 1 to 3 years depending on context). Accounting obligations may require longer retention of certain documents.

5. Cookies

The website rossocafe.bali does not use any tracking, analytics or advertising cookies. No pixel, tracker, or remarketing tool is integrated.

The only external requests made by your browser concern:

  • Loading Google Fonts (Alfa Slab One, DM Sans, Pacifico)
  • Visits to our external links (Instagram, WhatsApp, Google Maps) — subject to the policies of those sites

6. Your rights

In accordance with applicable data protection regulations (notably the GDPR for EU residents and Indonesian Personal Data Protection Law No. 27/2022), you have the following rights:

  • Right of access to your data
  • Right to rectification
  • Right to erasure ("right to be forgotten")
  • Right to object to processing
  • Right to restriction of processing
  • Right to portability

To exercise these rights, contact us at ciao@rossocafe.bali. We commit to responding within one month.

7. Security

We implement reasonable technical and organizational measures to protect data against loss, unauthorized access, disclosure or destruction. Hosting on GitHub Pages guarantees HTTPS encryption of all communications.

8. Transfers outside the EU

Our host GitHub Pages being located in the United States, certain technical data may be processed outside the European Union. Such transfers are governed by the European Commission's standard contractual clauses.

9. Changes

This policy may be updated at any time. The date of the last update is indicated below. We invite you to consult it regularly.

10. Contact & complaints

For any question about your data: ciao@rossocafe.bali.

EU residents may also lodge a complaint with their country's supervisory authority (in France: CNIL — cnil.fr).

Last updated: June 2026