privacy policy
Privacy Policy – Esca Group
Last updated: 11/07/2025
This site is owned and operated by Jorleo Pty Ltd (ACN 105 332 652) trading as “ESCA” (referred to as “ESCA”, “we”, “us” and “our”). Your privacy is of the utmost importance to us. At ESCA we want to make your experience satisfying and safe. Our Privacy Policy sets out the ways in which we collect, use, disclose and protect any personal information that you provide to us. It serves as an expression of our commitment to protecting your personal information, but is not a contract between you and us.
Our Commitment We respect your right to privacy and we aim to ensure you have a trustworthy experience with us, including when using our websites, visiting our venues and booking with us. We understand that you care about how your personal information is used by us, and we want to share with you the policies and practices we’ve adopted. This way you can feel confident about how we handle your personal information that you entrust to us.
Your Consent By using this site, you consent to the collection and use of your personal information by ESCA in the manner set out in our Privacy Policy. By using our websites and our social media channels, posting comments about us in any forum, providing any personal information to us, making enquiries with us, visiting our venues, or booking with us, you confirm that you agree to and consent to the terms of this Privacy Policy and our collection and use of your personal information, to the extent that your consent is required by any applicable law. If we decide to change our Privacy Policy, we will post those changes on this page so that you are always aware of our current practices in respect of the information we collect, how we use it, and under what circumstances we disclose it.
What Is Personal Information? “Personal information” is information or an opinion that is capable of reasonably identifying you, whether that information or opinion is true or not and whether the information or opinion is recorded in a material form or not.
How We Collect or Generate Your Personal Information By visiting and using our websites, you or your device may provide personal information and other information including data provided automatically by your browser, interaction records with our site, geolocation data (if enabled), cookie-based or similar tracking information, and any information entered into forms or fields. This includes details given in person, over the phone, via email, on forms, or through social media interactions — such as name, contact details, reservation requests, comments, and participation in loyalty programs or surveys. Some of our venues are under video surveillance for security. Footage is typically retained for 28 days unless required for investigations. By entering our venues, you agree to the use of such monitoring systems. We may also obtain personal information through our partners (e.g., booking platforms like Me&U), social media channels, event partners, or customer analytics tools.
Cookies Cookies collect data such as server, browser type, referral paths, and pages visited. This is used for analytics and site functionality. Cookies do not extract personal information directly from your device. You may disable cookies via browser settings; however, this may limit functionality on our website. When you visit our websites, we may present a cookie banner or pop-up that explains our use of cookies and tracking tools. Where legally required, we will seek your consent before using non-essential cookies. You can manage your cookie preferences anytime through browser settings or our cookie manager. Disabling cookies may impact your experience.
What Types of Personal Information Do We Process? We collect identity and contact info (name, email, address, phone, etc.), business-related data (e.g., work contact details), registration, loyalty and membership info, survey responses and competition entries, feedback and user-generated content, booking history and communications, website usage, device data, and geolocation, and social media content referencing our venues.
What Do We Use Your Personal Information For? We use your personal information to operate and manage websites and online services; respond to enquiries and provide customer service; manage bookings, events, and payments; record keeping and reporting; improve our services and analyse customer behaviour; conduct market research, promotions and competitions; ensure venue and systems security; support staff training and development; perform direct marketing (with your consent); comply with legal obligations under the Liquor Act and other laws; and for any other specific purpose you have consented to.
Direct Marketing We do not use or disclose your personal information for direct marketing unless you have provided consent, such as through opt-in fields. Where consent is given, we may send you promotional materials relating to our hospitality venues, events, offers, and services. We may use hashed versions of your email address or phone number to create anonymised custom audiences on third-party platforms such as LinkedIn, Meta (Facebook and Instagram), or Google. This allows us to show relevant ads to people who have previously interacted with us or shown interest in our venues or services. This process does not reveal your personal information to third parties and is conducted in accordance with applicable privacy laws and your selected marketing preferences. You may opt out of this type of advertising at any time by contacting us at [email protected] or adjusting your marketing settings on the respective third-party platform. To opt out of any marketing, follow the “unsubscribe” link in our emails or contact us directly.
Disclosure of Personal Information We may share your data with our staff and related entities, booking platforms and service providers (e.g., Me&U), event and entertainment partners, legal or professional advisers, analytics, tech and marketing agencies, payment processors and ticketing platforms, law enforcement or regulators as required by law, and other third parties with your explicit consent. Most third parties are based in Australia. We take reasonable steps to ensure they meet legal privacy obligations.
Security We maintain security protocols to protect your data, including encryption, firewall protection, password controls and physical safeguards. Only authorised personnel have access to sensitive personal information. The personal information we collect from you is stored on secure databases with a combination of physical and electronic access controls.
Third Party Links Our websites may link to other websites not controlled by us. These are governed by their own privacy policies, and we are not responsible for their content or practices.
Data Retention We retain personal data only as long as reasonably necessary for operational, legal or record-keeping purposes, or as required by law.
Applicable Laws We comply with the Australian Privacy Principles under the Privacy Act 1988 (Cth), overseen by the Office of the Australian Information Commissioner (OAIC) (www.oaic.gov.au (http://www.oaic.gov.au)).
Access and Correction Requests You can request access to or correction of your personal information by contacting us. We may charge reasonable fees to process such requests and will respond within a reasonable timeframe.
Complaints To lodge a privacy complaint, please contact us at [email protected]. If we are unable to resolve your concern, you may contact the OAIC at www.oaic.gov.au (http://www.oaic.gov.au).
Contact Us For all privacy-related queries, contact: Esca Group | Email: [email protected] | Address: 12/151 Foveaux Street, Surry Hills. New South Wales, Sydney 2010.
Changes to This Policy We may update this Privacy Policy from time to time. The latest version will be available on our websites. Please check this page periodically to stay informed.