Your choices regarding cookies on this site

Oracle and our third party partners may use cookies for the following purposes:

  • required cookies are necessary for the site to function
  • functional cookies help us to prefill your details on your next order and to optimize the site for easy reordering
  • advertising cookies allow for interest-based advertising and tailored content across your browsers and devices

Please visit our Cookie policy for more information.

Cookie Preferences

Functional

These cookies allow the Controller’s web application to remember choices you make while browsing and/or using the application (such as your user name, language or the region you are in) and provide enhanced, more personal features.

These cookies can also be used to remember changes you have made to text size, language and other parts of web pages that you can customize.

The information these cookies collect will not personally identify you, and they cannot track your browsing activity on non Controller’s websites.

For reliable review of your order status, on-screen on the application, in real-time, and also for easy reordering, your data may be saved on your device, serving a cookie locally. View cookies.

 Gold Leaf Thai
Open navigation Close navigation

Privacy Policy

1. Introduction

This Privacy Policy establishes the principles under which this restaurant and its designated service providers collect, use, retain, and disclose personal information obtained in the course of service delivery. The policy applies to all data collected through the following means:
1)  the food ordering website affiliated with the restaurant and through which this Privacy Policy is made available;

2) electronic communications, including email correspondence linking to or referencing this Policy; and
3)  offline interactions and engagements between the restaurant and its customers.

Collectively, these communication channels and touchpoints shall be referred to as the “Services.”

This Privacy Policy further outlines the practices undertaken by the restaurant, including the processing of personal information during website visits or upon the placement of online orders via the Services.

2. Personal Information

In connection with the provision of Services, personal information may be collected and processed. Such information may include, but is not limited to, the following categories:

  • Identification and Contact Details, such as full name, honorific or title, telephone number, email address, and postal address;

  • Account Information, including login credentials, security preferences, and authentication tokens;

  • Transactional Data, such as product or service orders, delivery addresses, payment confirmation details, and customer notes;

  • Payment Information, including credit or debit card information, billing identifiers, and related transactional data;

  • Device and Technical Information, including IP address, device identifiers, operating system specifications, language settings, screen resolution, browser type, cookie identifiers, and access timestamps.

Such data may be obtained through voluntary disclosures by users (e.g., during account creation or order placement), or automatically collected through the use of cookies and similar tracking technologies.

3. Use of Personal Information

Personal information collected by or on behalf of the restaurant shall be used solely for legitimate and lawful purposes, which may include the following:

  • To facilitate and process food orders, deliver products or services, process payments, and provide confirmations or receipts;

  • To maintain user accounts, authenticate identities, and enable secure access to Services;

  • To distribute newsletters, promotional content, or marketing communications, where consent has been obtained or where otherwise permitted by law;

  • To monitor and analyze the usage of the Services for the purpose of system maintenance, performance enhancement, or customer behavior insights;

  • To generate anonymized, aggregated data for internal reporting or business planning purposes.

All uses of personal information shall be limited to the purposes for which it was collected, unless otherwise permitted or required by applicable law.

4. Disclosure of Personal Information

Personal data collected in connection with the Services may be disclosed, on a strictly need-to-know basis, to the following categories of recipients:

  • Technology and platform providers responsible for supporting the food ordering system and related functionalities;

  • Payment processors and financial institutions engaged to process customer payments securely;

  • Third-party service providers that assist in data hosting, security, communications infrastructure, analytics, and customer support;

  • Government authorities, regulatory bodies, or law enforcement agencies, when such disclosure is required under applicable law or is necessary for the protection of legal rights or public safety.

Disclosures shall be made in accordance with applicable privacy and data protection legislation and under appropriate contractual safeguards.

5. Data Security

The restaurant employs reasonable and industry-standard technical, administrative, and physical safeguards to protect personal information from unauthorized access, disclosure, alteration, or destruction. Notwithstanding these efforts, it is acknowledged that no data transmission over the Internet or electronic storage system can be guaranteed to be entirely secure.

Users are encouraged to protect their credentials and report any suspicious activities to the restaurant immediately. For additional information concerning security practices, users may refer to the contact details outlined in the “Contacting Us” section of this Policy.

6. Rights of Data Subjects

Individuals whose personal information is processed under this Policy are entitled to exercise specific rights in accordance with applicable data protection laws. These rights may include, without limitation:

6.1 Right to Withdraw from Direct Marketing

Users may, at any time, opt out of receiving promotional or marketing communications via electronic means. Upon opting out, the restaurant shall cease to send non-essential marketing materials. However, administrative or service-related communications may still be sent as necessary for operational purposes.

6.2 Right to Access, Rectify, or Erase Personal Data

Users have the right to request access to their personal data and, where applicable, to request that inaccurate or outdated information be corrected. Subject to legal grounds and technical feasibility, users may also request the deletion of their data.

6.3 Right to Restrict or Object to Processing

Users may request the restriction of processing activities where data accuracy is contested, processing is unlawful, or where data is no longer required for the purposes initially stated. In addition, users may object to processing based on legitimate interests or direct marketing.

6.4 Right to Data Portability

Where processing is based on consent or contract and carried out by automated means, users may request to receive their personal data in a structured, commonly used, and machine-readable format, or have it transmitted directly to another data controller.

Requests related to any of the above rights shall be addressed in writing and handled in accordance with applicable legal timelines and identity verification procedures.

7. Data Retention

Personal information collected shall be retained for no longer than is necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is mandated by law or justified by legitimate business interests.

Retention criteria may include:

  • The duration of the customer relationship;

  • Legal and regulatory obligations concerning recordkeeping;

  • Potential or ongoing litigation, enforcement, or regulatory proceedings.

Once the applicable retention period has expired, personal data shall be securely deleted or irreversibly anonymized.

8. Sensitive Personal Data

This restaurant does not intentionally collect or process sensitive personal data, such as information related to health conditions, racial or ethnic origin, religious beliefs, political affiliations, biometric identifiers, or criminal records. Users are expressly advised not to submit such information through any of the Services.

The Services are not intended for use by individuals under the age of majority as defined by applicable jurisdiction. In the event that such data is inadvertently collected, users may contact the restaurant to request its removal.

9. Contacting Us

Inquiries regarding this Privacy Policy, or requests related to personal data access, correction, or deletion, may be directed to the restaurant’s designated contact point. Contact details shall be made available on the restaurant’s official website or via authorized support channels.

Users are advised not to transmit sensitive payment or identification information through unencrypted email, as such communications are not always secure.

10. Revisions to this Privacy Policy

This Privacy Policy may be revised or updated periodically to reflect changes in legal requirements, operational practices, or technology. The effective date of the latest revision shall be clearly indicated at the top of the Policy.

In instances where material changes are made, users shall be notified through appropriate means, which may include website banners, system alerts, or direct email communications.