Last updated: 28 June 2026
This Privacy Policy explains how SIA BALTIAKA processes personal data through the AKA Latvian Cuisine website, table-reservation services and communications with customers.
1. Data controller
The controller responsible for processing your personal data is:
SIA BALTIAKA
Registration number: 40203049100
VAT number: LV40203049100
Restaurant address: Kalēju iela 37, Riga, LV-1050, Latvia
Email: info@akariga.lv
Telephone: +371 67 880 898
In this Privacy Policy, “AKA”, “AKA Latvian Cuisine”, “we”, “us” and “our” refer to SIA BALTIAKA.
2. Scope of this policy
This Privacy Policy applies when you:
- visit akariga.lv;
- make, change or cancel a table reservation;
- request a group reservation or join a waiting list;
- communicate with us by telephone or email;
- provide information concerning dietary, accessibility or other dining requirements;
- agree to receive restaurant offers or promotional communications;
- interact with services linked from our website, including Tableo, Google Maps, Instagram and Tripadvisor.
The current public website does not provide customer accounts, public comments, customer image uploads or an online shop. If these functions are introduced, this Privacy Policy will be updated as necessary.
3. Personal data we process
3.1 Website and technical information
When you visit akariga.lv, our website hosting, security and technical-service providers may automatically process information such as:
- IP address;
- browser type and version;
- device type and operating system;
- pages and files requested;
- date and time of access;
- referring page or website;
- approximate location derived from the IP address;
- error, diagnostic and security information.
This information is used to provide the website, maintain its security, investigate technical problems and prevent abuse.
3.2 Reservation information
Table reservations are handled using the Tableo reservation platform.
When you make or manage a reservation, we and Tableo may process:
- your name;
- email address;
- mobile or telephone number;
- reservation date and time;
- number of adults and children;
- requested dining area;
- waiting-list information;
- group-booking information;
- booking status, including confirmation, modification, cancellation or non-attendance;
- language preference;
- special requests and information entered in free-text fields;
- correspondence concerning the reservation;
- your choice concerning restaurant offers and promotions.
A reservation cannot normally be administered without the contact and booking information marked as required on the reservation form.
3.3 Dietary, allergy and accessibility information
You may choose to provide information concerning allergies, dietary requirements, health conditions or accessibility needs.
Some of this information may constitute special-category personal data under the General Data Protection Regulation.
We ask you to provide only the information necessary for us to respond to your request. Where legally required, we process this information on the basis of your explicit consent. You may withdraw that consent, although doing so may affect our ability to accommodate the request safely.
3.4 Group bookings and deposits
Larger groups or special events may require a deposit or another payment arrangement.
Where a deposit or payment is required, we may process:
- the payer’s name and contact details;
- payment amount;
- payment date and status;
- reservation or invoice reference;
- information concerning refunds, cancellations or disputes;
- limited payment-card information provided by the payment processor, such as the final four digits or a tokenised reference.
Full payment-card details are processed by the payment-service provider. We do not normally receive or store the complete card number or card security code.
The applicable deposit, cancellation and refund conditions will be communicated before payment is requested.
3.5 Email and telephone enquiries
When you contact us by email or telephone, we may process:
- your name;
- email address or telephone number;
- the content of your message;
- information relating to a reservation, group event, complaint or enquiry;
- subsequent correspondence and internal notes required to handle the matter.
3.6 Marketing information
If you separately agree to receive occasional offers and promotions, we may process:
- your name;
- email address or telephone number;
- language or communication preference;
- consent record;
- messages sent to you;
- unsubscribe or objection information.
Marketing consent is voluntary and is not required to make an ordinary restaurant reservation.
4. Purposes and legal bases
4.1 Managing reservations and restaurant services
We process reservation and contact information to:
- create, confirm, change or cancel bookings;
- manage restaurant capacity and table allocation;
- communicate booking confirmations, reminders and changes;
- manage waiting lists and group requests;
- prepare for dietary or accessibility requirements;
- provide the requested restaurant service.
The legal basis is taking steps at your request before entering into a contract and performing our contract with you.
4.2 Managing deposits and payments
Where a deposit or other payment is required, we process the necessary information to arrange, confirm, account for, refund or dispute that payment.
The legal basis is taking pre-contractual steps, performing a contract and complying with accounting or tax obligations.
4.3 Responding to communications
We process information supplied by email or telephone to answer questions, provide assistance and handle requests or complaints.
Depending on the circumstances, the legal basis is taking pre-contractual steps, performing a contract or our legitimate interest in communicating with customers and managing the restaurant.
4.4 Operating and protecting the website
Technical information is processed to:
- deliver website pages and files;
- maintain website and server security;
- diagnose errors;
- prevent spam, fraud and misuse;
- investigate security incidents;
- maintain reliable website operation.
The legal basis is our legitimate interest in providing a secure and reliable website.
4.5 Meeting legal obligations
We may process and retain personal data where necessary to comply with accounting, tax, consumer-protection, food-safety or other applicable legal obligations.
The legal basis is compliance with a legal obligation.
4.6 Protecting legal rights
We may process and retain relevant information where necessary to establish, exercise or defend legal claims, respond to a dispute, recover an unpaid amount or protect our legal rights.
The legal basis is our legitimate interest in protecting the restaurant and its legal rights.
4.7 Marketing
Promotional email, text-message or similar electronic marketing is sent only where the necessary consent has been obtained.
You may withdraw consent at any time by using the unsubscribe option in the communication or by contacting us at info@akariga.lv.
Withdrawal does not affect the lawfulness of processing performed before consent was withdrawn.
5. Tableo reservation service
Our online reservation service is provided through Tableo Ltd.
For restaurant reservations and dining-related services, AKA Latvian Cuisine is the controller of the reservation record. We determine why the reservation information is required and how it is used to provide restaurant services.
Tableo generally acts as our data processor when it:
- provides reservation-management software;
- records and updates bookings;
- sends confirmations, reminders and booking messages;
- supports waiting lists and group requests;
- assists with payment or deposit functions;
- provides technical and customer support.
Tableo may act as an independent controller for its own platform security, fraud prevention, service diagnostics, analytics, legal compliance and other purposes described in its privacy policy.
Tableo may use authorised payment, email, SMS, messaging, support and technical-service providers.
Your use of the Tableo platform is also subject to the Tableo privacy policy and terms displayed during the reservation process.
6. Cookies and similar technologies
Akariga.lv may use cookies and similar technologies required to:
- provide and secure the website;
- maintain technical sessions;
- remember privacy or cookie choices;
- balance website traffic;
- prevent abuse;
- provide functions specifically requested by the visitor.
Strictly necessary cookies may be used without consent where they are required to provide the website or a service requested by you.
Analytics, advertising, social-media or other non-essential cookies must remain disabled until you provide consent through the website’s cookie-preference tool.
Where non-essential cookies are used, you must be able to:
- accept or reject them;
- make choices by cookie category;
- withdraw or change consent later;
- access information about their provider, purpose and duration.
You may also delete or block cookies through your browser settings. Blocking necessary cookies may prevent parts of the website or reservation service from operating correctly.
Tableo and external platforms may use their own cookies when you open their websites or services. Their cookies are governed by their respective privacy and cookie policies.
7. External websites and platforms
The website contains links to third-party services such as:
- Tableo;
- Google Maps;
- Instagram;
- Tripadvisor.
When you follow an external link, the third party may receive technical information such as your IP address, browser details, referring page and information about your interaction with its service.
Those organisations process personal data under their own privacy policies. We do not control their independent processing activities.
A link to a third-party service does not mean that the third party may use information held by us for its own purposes unless a lawful data-sharing arrangement applies.
8. Recipients of personal data
Depending on how you use our services, personal data may be made available to:
- Tableo Ltd;
- payment-service providers where a deposit or payment is required;
- email, SMS and telecommunications providers;
- website hosting, maintenance and information-security providers;
- accountants, auditors, insurers and legal advisers;
- public authorities, courts and law-enforcement bodies where disclosure is legally required;
- parties involved in establishing, exercising or defending a legal claim;
- a purchaser or successor if the restaurant or relevant business is lawfully transferred.
Providers acting as processors may use personal data only for the agreed services, in accordance with our instructions and applicable data-protection requirements.
We do not sell personal data.
9. International transfers
We seek to use providers that process personal data within the European Union or European Economic Area.
Some service providers or independent external platforms may process personal data outside the European Economic Area.
Where we are responsible for such a transfer, it will take place only where an appropriate legal mechanism is available, such as:
- a European Commission adequacy decision;
- approved Standard Contractual Clauses;
- another safeguard or derogation permitted by applicable data-protection law.
Independent third-party platforms are responsible for explaining their own international data transfers in their privacy policies.
10. Retention periods
We retain personal data only for as long as necessary for the purpose for which it was collected.
The following general periods or criteria apply:
- Reservation information: ordinarily for up to two years after the reservation or last relevant interaction.
- Waiting-list information: until the requested reservation period has ended, followed by a limited period required for customer service or dispute handling.
- Email and telephone enquiries: until the matter has been resolved and for a reasonable follow-up period, ordinarily no longer than two years.
- Marketing information: until consent is withdrawn or the information is no longer required, subject to retaining a limited suppression record so that an unsubscribe request can be respected.
- Technical and security logs: for the limited period required for security, troubleshooting and abuse prevention, according to the website’s hosting and security configuration.
- Deposit, invoice and accounting information: for the period required by applicable accounting and tax legislation.
- Complaint or dispute information: until the matter and any applicable legal limitation period have ended.
Information may be retained for longer where required by law, a public authority, an ongoing investigation or a legal proceeding.
11. Your data-protection rights
Subject to the conditions and limitations established by applicable law, you may have the right to:
- obtain confirmation of whether we process your personal data;
- request access to your personal data;
- request correction of inaccurate or incomplete information;
- request deletion of personal data;
- request restriction of processing;
- object to processing based on legitimate interests;
- receive eligible information in a structured, commonly used and machine-readable format;
- request transmission of eligible information to another controller;
- withdraw consent at any time;
- lodge a complaint with a data-protection supervisory authority.
You also have the right to object at any time to processing for direct-marketing purposes.
To exercise your rights, contact:
Email: info@akariga.lv
Postal address: SIA BALTIAKA, Raunas iela 35–25, Riga, LV-1084, Latvia
We may request information reasonably necessary to verify your identity and protect personal data from unauthorised disclosure.
We will normally respond without undue delay and within one month. That period may be extended where permitted by law because of the complexity or number of requests.
12. Complaints
Please contact us first if you have a concern about how we process personal data.
You also have the right to submit a complaint to the Latvian supervisory authority:
Data State Inspectorate of Latvia
Elijas iela 17
Riga, LV-1050
Latvia
Email: pasts@dvi.gov.lv
Telephone: +371 67 223 131
Website: dvi.gov.lv
You may also contact the competent supervisory authority in the European Union or European Economic Area country where you live or work.
13. Automated decision-making
We do not use personal data collected through the website or restaurant reservation process to make decisions based solely on automated processing that produce legal or similarly significant effects concerning you.
Automated technical measures may be used to detect spam, fraud, malicious activity or misuse of the website and reservation platform.
14. Children
The reservation platform is intended for persons who are at least 16 years old.
Where a reservation involves a deposit, payment-card capture, pre-authorisation or another financial commitment, the person making the booking must be at least 18 years old. Otherwise, a parent or legal guardian must make the reservation using their own details.
Parents and guardians should not allow children to provide unnecessary personal or payment information through reservation free-text fields.
15. Data security
We and our service providers use organisational and technical measures intended to protect personal data against accidental or unlawful:
- destruction;
- loss;
- alteration;
- unauthorised disclosure;
- unauthorised access.
Measures may include encrypted transmission, access controls, authentication, backups, logging, software updates and restrictions on staff or provider access.
No internet transmission or electronic-storage system can be guaranteed to be completely secure.
16. Changes to this policy
We may update this Privacy Policy when the website, reservation process, service providers, restaurant services or legal requirements change.
The latest version will be published on akariga.lv with an updated revision date.
