Last updated: July 12 2025
Welcome to Vino&Co.events (“we”, “our”, “us”). We respect your privacy and are committed to protecting the personal information you share with us. This Privacy Policy explains what data we collect, why we collect it, how we use it, and the choices you have.
1. Scope of this Policy
This Privacy Policy is an integral part of our Terms and Conditions and applies to the website https://vinoandco.events and any related sub-domains (collectively, the “Site”). By accessing or using the Site, you agree to the practices described here.
2. Information We Collect
2.1 Information you provide knowingly
Identification data – name, surname, billing address, shipping address.
Contact data – e-mail address, telephone or mobile number, social-media handle.
Transaction data – tickets or products purchased, date, quantity, price, chosen payment method.
Communications – messages, enquiries or feedback you send us.
2.2 Information collected automatically
Device & log data – IP address, browser type, operating system, referring URL, time-stamp, pages viewed.
Usage data – clicks, scrolls, events viewed, purchase funnels.
Cookies – small text files placed on your device to remember preferences, keep sessions, and compile analytics.
2.3 Sensitive data
We do not intentionally collect special-category data (e.g. health, religion). If you volunteer such data in a message, it will be processed only for the purpose of answering that specific request.
3. How We Use Your Information
We process your data only where a lawful basis applies:
| Purpose | Lawful basis |
|---|---|
| Order processing & ticket fulfilment | Contract performance |
| Customer support & enquiries | Contract performance / Legitimate interest |
| Personalised content & recommendations | Consent |
| Marketing e-mail, newsletters, retargeting ads | Consent (opt-in) |
| Analytics, statistics & service optimisation | Legitimate interest |
| Fraud prevention & security | Legitimate interest / Legal obligation |
| Compliance with Israeli Privacy Protection Law 5741-1981 and EU / UK GDPR (when applicable) | Legal obligation |
We do not sell or rent your personal information.
4. Sharing Your Data
We share data only with:
Service providers – payment gateways (e.g. Stripe), hosting, e-mail vendors, analytics tools – strictly on a need-to-know basis under data-processing agreements.
Event partners – when you buy a ticket sold by a third-party organiser; we pass only the data needed to issue the ticket.
Legal authorities – if required by court order, law, or to defend legal rights.
Corporate transactions – if we merge, acquire or sell assets; the new owner must honour this Policy.
5. Cookies & Similar Technologies
We use first-party and third-party cookies to:
keep you logged in and remember cart items
measure traffic and improve site performance
personalise ads (Google, Meta)
You may disable cookies in your browser or via our Cookie Settings banner without affecting core functionality, except that certain features (e.g. quick checkout) might not work.
6. Data Retention
Orders & invoices – kept 7 years (tax requirement).
Marketing consents – kept until you withdraw consent.
Inactive accounts – deleted after 24 months of inactivity.
Server logs – deleted or anonymised after 12 months.
7. Your Rights
Under the Israeli Privacy Protection Law 5741-1981 and, where applicable, the EU / UK GDPR, you have the right to:
Access – obtain a copy of the data we hold about you.
Rectification – correct inaccurate or incomplete data.
Deletion – request erasure (“right to be forgotten”) when data is no longer necessary or processed unlawfully.
Objection / restriction – object to processing or ask us to limit it.
Data portability – receive data in a structured, commonly-used format.
Withdraw consent – opt out of marketing at any time by clicking the “unsubscribe” link or e-mailing us.
To exercise any right, contact us at privacy@vinoandco.events. We may ask for proof of identity before fulfilling your request.
8. Data Security
We implement industry-standard safeguards:
HTTPS (TLS 1.3) encryption
PCI-DSS compliant payment processing (no card data stored on our servers)
WAF & DDoS protection
Role-based access control for staff
Regular backups and vulnerability scans
No system is 100 % secure; however, we strive to minimise risks.
9. International Transfers
Our servers are located in the European Union. If we transfer data outside Israel or the EEA, we rely on:
Adequacy decisions by the European Commission, or
Standard Contractual Clauses (SCCs) with additional safeguards.
10. Children
Our Site is not directed to children under 18. If you believe we have collected a child’s data, please notify us and we will delete it promptly.
11. Changes to This Policy
Material changes will be posted on this page and, where appropriate, notified by e-mail. The “Last updated” date will change accordingly. Continued use of the Site after changes constitutes acceptance.
12. Contact Us
For questions, data requests or complaints, contact our Data Protection Officer:
Vino&Co.events
E-mail: einatwinery@gmail.com
Phone: +972546748890
Address: Tel Aviv, Israel
You also have the right to lodge a complaint with the Israeli Privacy Protection Authority or your local supervisory authority.
