This Privacy Notice applies to the processing of Personal Information collected in the context of Mastercard “Priceless.com – Taste Club – Angelina Restaurant Experience” Campaign (“the Campaign”). This Privacy Notice does not cover the collection and use of your Personal Information by Mastercard in the context of other campaigns and programs, by third parties on other Mastercard branded websites, by your Mastercard Card issuers (e.g., your bank), or any other information or communications that may reference Mastercard outside of the Campaign.
This Privacy Notice describes the types of Personal Information we collect in connection with the Campaign, the purposes for which we collect that Personal Information, the other parties with whom we may share it and the measures we take to protect the security of the data. It also tells you about your rights and choices with respect to your Personal Information, and how you can reach us to update your contact information or get answers to questions you may have about our privacy practices.
Your participation in the Campaign is subject to this Privacy Notice and to our Terms and Conditions. For more information about Mastercard’s privacy practices, please visit Mastercard’s Global Privacy Notice at https://www.mastercard.co.uk/en-gb/vision/terms-of-use/commitment-to-privacy/privacy.html.
We may collect the following Personal Information:
Your or the recipient’s first name, last name, contact phone number, email address and any dietary requirements for themselves and their guest(s).
For the purpose of this Privacy Notice, “Personal Information” means any information relating to an identified or identifiable individual. In connection with the Campaign, we obtain Personal Information relating to you from various sources described below.
Where applicable, we indicate whether and why you must provide us with your Personal Information, as well as the consequences of failing to do so. If you do not provide Personal Information when requested, you may not be able to benefit from the Campaign if that information is necessary to provide you with it or if we are legally required to collect it.
a. Personal Information Provided by You
In connection with the Campaign, we ask you to provide certain Personal Information, such as as your or the recipient’s first name, last name, contact phone number, email address and any dietary requirements for themselves and their guest(s).
In the following case, it is the responsibility of the participant to obtain consent in accordance with the applicable data protection laws of the relevant countries:
Mastercard and Big Group will keep the data of entrants for up to 3 months after the end of the promotion and the winners’ data for up to 3 months after the prize has been fulfilled.
b. Personal Information Obtained from Your Interaction with the priceless.com website
We may collect certain information by automated means, such as cookies and similar technologies. This information may include your IP address, MAC address, device ID, network information, information on actions taken on our website, dates and times of actions, and other mobile trackers. We use this information to improve the Campaign by assessing how many users access or use our service, which content, products, and features of our service most interest our visitors, what types of offers our customers like to see, and how our service performs from a technical point of view. For more information about the use of cookies, visit our Cookie Consent Tool in the bottom right corner of our website (the “Manage cookies” box).
We May Use Your Personal Information to:
We may use the Personal Information we obtain about you to:
We will only process your Personal Information for the above purposes when we have a valid legal ground for the processing, including if:
We May Share Personal Information with:
Subject to applicable law, you have the right to:
If you are located in the EEA or Switzerland, you can exercise your rights via Mastercard’s My Data portal. You may also submit a request as described in the “How to Contact Us” section.
Subject to applicable law, you have the right to:
Those rights may be limited in some circumstances by local law requirements.
If you are located in the EEA or Switzerland, you can exercise your rights via Mastercard’s My Data Portal. You may also submit a request as described in the “How To Contact Us” section.
We maintain appropriate security safeguards to protect your Personal Information and only retain it for a limited period of time.
We maintain appropriate administrative, technical, and physical safeguards to protect Personal Information against accidental or unlawful destruction, accidental loss, unauthorized alteration, unauthorized disclosure or access, misuse, and any other unlawful form of processing of the Personal Information in our possession. We restrict access to Personal Information about you to those employees who need to know that information to provide products or services to you.
We also take measures to delete your Personal Information or keep it in a form that does not permit identifying you when this information is no longer necessary for the purposes for which we process it in the context of the Campaign or when you request their deletion, unless we are required by law to keep the information for a longer period. We complete periodic reviews of our databases, and have established specific time limits for data deletion, taking into account the type of data collected, the type of services provided in the context of the Campaign, the length of the customer relationship, possible re-enrolment with the program, mandatory retention periods, and the statute of limitations.
We may transfer your Personal Information outside of the EEA, including to the United States, in compliance with our Binding Corporate Rules and other data transfer mechanisms.
Mastercard is a global business. We may transfer or disclose Personal Information we collect about you to recipients in countries other than your country, including to the United States where our global headquarters are located. These countries may not have the same data protection laws as the country in which you initially provided the information. When we transfer or disclose your Personal Information to other countries, we will protect that information as described in this Privacy Notice.
We comply with applicable legal requirements providing adequate safeguards for the transfer of Personal Information to countries other than the country where you are located. In particular, we have established and implemented a set of Binding Corporate Rules (“BCRs”) that have been recognized by EEA data protection authorities as providing an adequate level of protection to the Personal Information we process globally. A copy of our BCRs is available here. We may also transfer Personal Information to countries for which adequacy decisions have been issued, use contractual protections for the transfer of Personal Information to third parties, such as the European Commission's Standard Contractual Clauses. You may contact us as specified in the “How To Contact Us” section below to obtain a copy of the safeguards we use to transfer Personal Information outside of the EEA.
This Privacy Notice may be updated periodically to reflect changes in our privacy practices.
This Privacy Notice may be updated periodically to reflect changes in our Personal Information practices. We will notify you of any significant changes to our Privacy Notice and indicate at the top of the notice when it was most recently updated. If we update this Privacy Notice, in certain circumstances, we may seek your consent.
If you are located in the EEA or Switzerland, you may submit your request to exercise your rights in relation to your Personal Information on Mastercard’s “My Data” Portal. Otherwise, you can e-mail us at privacyanddataprotection@mastercard.com.
Mastercard Europe SA is the entity responsible for the processing of your Personal Information.
If you are located in the EEA or Switzerland, you can easily exercise your rights via Mastercard’s “My Data” Portal. You may submit a request to exercise your rights or share any questions, comments, or complaints about this Privacy Notice or our privacy practices by e-mailing us at privacyanddataprotection@mastercard.com, or writing to us at:
Data Protection Officer
Mastercard Europe SA
Chaussée de Tervuren 198A
B-1410 Waterloo
Belgium
For more information on Mastercard’s privacy practices in other contexts, please refer to our Global Privacy Notice available at https://www.mastercard.co.uk/en-gb/vision/terms-of-use/commitment-to-privacy/privacy.html
For all other enquiries about your Mastercard card and your purchase, you must contact your issuing bank or the participating merchant. More information about how to contact them can be found on their respective website.