Privacy Policy

Name: Porto Sushi
Price range: $$

Last updated: May 2026

Porto Sushi ("we", "us", "our") operates the portosushi.com website and online ordering platform. This page informs you of our policies regarding the collection, use, and disclosure of personal data when you use our service.

1. Data We Collect

We collect the following personal data when you place an order or create an account: - Contact information: name, email address, phone number - Delivery address (for delivery orders) - Order history and preferences - Date and time of your last account login (for security, fraud prevention, and service quality) - Internal staff operational notes to improve service (e.g. customer-stated preferences). Visible only to authorised personnel; obtainable by the customer via an access request under Art. 15 GDPR. - Payment information is processed securely by Stripe and is never stored on our servers

2. How We Use Your Data

Your personal data is used exclusively to: - Process and deliver your orders - Send order confirmations and status updates via email - Manage your account and saved addresses - Improve our service and user experience - Comply with legal obligations Internal staff notes are used exclusively to improve service and are never shared with third parties. They are deleted together with the account.

3. Payment Processing

All payments are processed securely through Stripe, Inc. We never store, process, or have access to your full credit card details. Stripe’s privacy policy applies to payment data: https://stripe.com/privacy

4. Cookies

We use essential cookies to maintain your cart, session, and language preferences. These are strictly necessary for the service to function. Analytics cookies are only used with your explicit consent.

5. Data Retention

Order data is retained for accounting and legal purposes as required by Italian law. Account data is retained until you request deletion. You may request deletion of your account and associated data at any time by contacting us. Specific retention periods: - Billing and order data: 10 years (fiscal obligation, Art. 2220 of the Italian Civil Code) - Account data and internal notes: until the account is deleted - Consent cookies: 12 months

6. Your Rights (GDPR)

Under the General Data Protection Regulation (GDPR), you have the right to: - Access your personal data - Rectify inaccurate data - Request deletion of your data - Object to processing of your data - Data portability - Withdraw consent at any time To exercise these rights, contact us at info@portosushi.com. We will respond within 30 days.

7. Data Controller

Porto Sushi Lungomare Andrea Doria 73 58018 Porto Ercole (GR), Italy Email: info@portosushi.com