Privacy Policy
Welcome to Pizza Factory. We are committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website pizzafactory-meal.click, place orders, interact with our services, or otherwise engage with us. Please read this policy carefully. If you disagree with its terms, please discontinue use of our site immediately.
This Privacy Policy applies to all information collected through our website, mobile experiences, online ordering platforms, and any related services, sales, marketing, or events (collectively referred to as the "Services").
1. Who We Are
Pizza Factory is a food service business operating in the United States. We serve customers through our online ordering platform and physical locations. For the purposes of applicable data protection law, the data controller responsible for your personal information is:
2. Information We Collect
We collect information about you in a variety of ways. Below is a detailed description of the categories of personal information we may collect from or about you.
2.1 Personal Identification Information
When you create an account, place an order, or contact us, we may collect:
- Full name
- Email address
- Phone number
- Billing and delivery address
- Date of birth (to verify age for applicable promotions)
- Username and password (stored in encrypted form)
2.2 Payment and Transaction Information
When you make a purchase, we collect payment-related information. We do not store full credit card numbers on our servers. Payment processing is handled by trusted third-party payment processors. We may collect:
- Partial payment card details (last four digits, card type)
- Billing name and address
- Transaction identifiers and timestamps
- Order history and purchase amounts
2.3 Usage Data and Behavioral Information
We automatically collect certain information when you visit, use, or navigate our website. This information may include:
- IP address and approximate geographic location
- Browser type and version
- Operating system
- Pages visited, time spent on pages, and navigation paths
- Referring URLs (the page you came from before visiting our site)
- Click patterns and search queries entered on our website
- Date and time of access
2.4 Device Information
We may collect information about the device you use to access our Services, including:
- Device type (mobile, tablet, desktop)
- Device identifiers and hardware models
- Mobile network information
- Screen resolution and display settings
- Language preferences
2.5 Cookie and Tracking Technology Data
We use cookies, web beacons, pixel tags, and similar tracking technologies to collect information about your browsing behavior. This includes session data, preferences, and analytics data. Please refer to Section 8 of this policy for full details on our use of cookies.
2.6 Communications Data
If you contact us directly via email, phone, or our contact form, we may retain:
- The content of your message or inquiry
- Your contact details used to reach us
- Records of our correspondence with you
- Customer feedback and reviews you submit
2.7 Information from Third Parties
We may receive information about you from third-party sources, including:
- Social media platforms (if you connect your social account or interact with our social media pages)
- Third-party food delivery platforms that facilitate your order
- Marketing and analytics partners
- Publicly available sources
3. How We Use Your Information
We use the information we collect for various legitimate business purposes, including:
3.1 To Provide and Manage Our Services
- Processing and fulfilling your food orders
- Managing your account and maintaining your order history
- Communicating with you about your orders, including confirmations and updates
- Providing customer support and responding to your inquiries
- Processing refunds, returns, and complaints
3.2 To Improve and Personalize Your Experience
- Analyzing how our website is used to improve its functionality and design
- Personalizing content, recommendations, and promotions based on your preferences and order history
- Developing new menu items, services, and features based on customer behavior
- Conducting research, surveys, and testing
3.3 For Marketing and Promotional Purposes
- Sending you promotional emails, newsletters, and special offers (with your consent where required)
- Delivering targeted advertisements on our website and third-party platforms
- Running loyalty programs and reward campaigns
- Communicating about upcoming events, new menu items, or seasonal promotions
You may opt out of marketing communications at any time by clicking the "unsubscribe" link in any marketing email or by contacting us at [email protected].
3.4 For Legal and Security Purposes
- Complying with applicable laws and regulatory requirements
- Detecting, preventing, and addressing fraud, security breaches, and other illegal activities
- Enforcing our Terms of Service and other agreements
- Responding to legal requests, court orders, and government inquiries
- Protecting the rights, property, and safety of Pizza Factory, our customers, and the public
3.5 For Business Operations
- Maintaining internal records and accounting
- Conducting audits and quality assurance
- Managing business relationships with vendors and partners
- Planning and strategy based on aggregated analytics data
4. Legal Basis for Processing
Under applicable United States law, including the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA), and consistent with the Federal Trade Commission Act (FTC Act) principles of fair and transparent data practices, we process your personal information based on the following grounds:
- Contractual necessity: Processing required to fulfill your order and deliver services you have requested.
- Legitimate interests: Processing necessary for our legitimate business interests, such as fraud prevention, analytics, and improving our services, provided these interests are not overridden by your rights.
- Legal obligation: Processing necessary for compliance with applicable laws and regulations.
- Consent: Where you have given us explicit consent, such as for marketing communications or certain cookies.
5. Sharing Your Information with Third Parties
We do not sell your personal information to third parties. However, we may share your information in the following circumstances:
5.1 Service Providers and Business Partners
We engage trusted third-party companies and individuals to perform services on our behalf, such as:
- Payment processors (e.g., Stripe, PayPal, or similar providers)
- Food delivery and logistics platforms
- Email marketing service providers
- Website hosting and cloud service providers
- Analytics providers (e.g., Google Analytics)
- Customer support tools and platforms
- Advertising and retargeting platforms
These service providers are contractually obligated to use your information only as directed by us and to protect it in accordance with applicable privacy laws.
5.2 Business Transfers
If Pizza Factory is involved in a merger, acquisition, asset sale, financing, or reorganization, your personal information may be transferred to the acquiring or successor entity. We will notify you via email or prominent notice on our website if such a transfer occurs and your information becomes subject to a different privacy policy.
5.3 Legal Requirements and Law Enforcement
We may disclose your information if required to do so by law or in good-faith belief that such disclosure is necessary to:
- Comply with a legal obligation, court order, or subpoena
- Respond to government or regulatory authority requests
- Protect the safety of any person or prevent illegal activity
- Investigate or defend against legal claims
5.4 Aggregated and De-Identified Data
We may share aggregated or de-identified information, which cannot reasonably be used to identify you, with partners, advertisers, or the public for analytical or promotional purposes.
6. Data Security
We take the security of your personal information seriously and implement a range of technical and organizational measures to protect it from unauthorized access, use, disclosure, alteration, or destruction.
6.1 Security Measures We Employ
- Encryption: We use Secure Socket Layer (SSL) / Transport Layer Security (TLS) encryption for data transmitted between your browser and our servers.
- Password hashing: User account passwords are stored using industry-standard cryptographic hashing algorithms.
- Access controls: Access to personal data is restricted to authorized personnel on a need-to-know basis.
- Firewalls and intrusion detection: We maintain network security systems to protect against unauthorized access.
- Regular security assessments: We periodically review and test our security practices and infrastructure.
- Vendor security requirements: We require our third-party service providers to maintain appropriate security standards.
6.2 Data Breach Response
In the event of a data breach that poses a risk to your rights and freedoms, we will notify affected individuals and relevant authorities as required by applicable law, including applicable US state breach notification laws. Notification will be made without undue delay and will include information about the nature of the breach, the data affected, and the steps we are taking to address it.
7. Your Privacy Rights
Depending on your location, you may have certain rights regarding your personal information. We honor all applicable rights under US federal and state law, including rights afforded to California residents under the CCPA/CPRA.
7.1 Right to Know and Access
You have the right to request that we disclose information about the personal data we have collected about you over the past 12 months, including:
- The categories of personal information collected
- The categories of sources from which it was collected
- The business or commercial purpose for collecting or sharing the information
- The categories of third parties with whom we share your information
- The specific pieces of personal information we hold about you
7.2 Right to Correction
You have the right to request that we correct any inaccurate personal information we maintain about you. Upon receiving a verifiable request, we will use commercially reasonable efforts to correct your information.
7.3 Right to Deletion
You have the right to request the deletion of personal information we have collected from you, subject to certain exceptions. We may retain your information where necessary to:
- Complete a transaction or fulfill a contract
- Detect and prevent security incidents or fraud
- Exercise or defend legal claims
- Comply with a legal obligation
7.4 Right to Data Portability
Where technically feasible and legally required, you have the right to receive your personal information in a structured, commonly used, and machine-readable format, and to transmit that data to another service provider.
7.5 Right to Opt Out of Sale or Sharing
Under the CCPA/CPRA, California residents have the right to opt out of the "sale" or "sharing" of their personal information for cross-context behavioral advertising. As stated above, we do not sell your personal information. However, if you believe any of our advertising practices constitute sharing under the CCPA/CPRA, you may opt out by contacting us.
7.6 Right to Limit Use of Sensitive Personal Information
California residents have the right to limit the use and disclosure of sensitive personal information to only that which is necessary to perform the services requested.
7.7 Right to Non-Discrimination
We will not discriminate against you for exercising any of your privacy rights. This means we will not deny you goods or services, charge different prices, or provide a different level of quality because you exercised a privacy right.
7.8 How to Submit a Privacy Rights Request
To exercise any of the rights described above, please submit a verifiable request to us by:
- Email: [email protected]
We will respond to your request within 45 days of receipt. If we require more time, we will inform you of the reason and extension period in writing. We may need to verify your identity before processing your request. We will not require you to create an account to submit a request, but we may ask you to provide sufficient information to verify your identity.
You may also designate an authorized agent to make a request on your behalf. We may require written proof of the agent's authority and verification of your identity.
8. Cookie Policy
Our website uses cookies and similar tracking technologies to enhance your browsing experience, analyze site traffic, and assist with our marketing efforts.
8.1 What Are Cookies?
Cookies are small text files stored on your device when you visit a website. They allow the website to recognize your device, remember your preferences, and collect information about your browsing behavior.
8.2 Types of Cookies We Use
| Cookie Type | Purpose | Duration |
|---|---|---|
| Essential Cookies | Necessary for the website to function. They enable core features such as login, shopping cart, and security. | Session / Up to 1 year |
| Performance Cookies | Collect anonymous information about how visitors use the website, such as which pages are most visited. | Up to 2 years |
| Functional Cookies | Remember your preferences and settings (e.g., language, location, delivery address). | Up to 1 year |
| Marketing / Targeting Cookies | Track your browsing activity to deliver personalized advertisements relevant to your interests. | Up to 2 years |
8.3 Managing Your Cookie Preferences
You can control and manage cookies through your browser settings. Most browsers allow you to refuse or delete cookies. However, disabling certain cookies may impact the functionality of our website. You can also opt out of advertising cookies through platforms such as the Digital Advertising Alliance (DAA) opt-out tool at optout.aboutads.info.
For more detailed information about our use of cookies, including a full list of the cookies we use, please contact us at [email protected].
9. Data Retention
We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.
| Data Category | Retention Period |
|---|---|
| Account and profile information | Duration of account + 3 years after closure |
| Order and transaction records | 7 years (for tax and legal compliance) |
| Marketing preferences | Until you opt out or withdraw consent |
| Customer support communications | 3 years from date of last interaction |
| Usage and analytics data | Up to 26 months (anonymized thereafter) |
| Cookie data | As specified in Section 8 above |
| Legal claim-related data | Duration of proceedings + applicable statute of limitations |
When your personal information is no longer required, we will securely delete or anonymize it in accordance with our data retention and destruction policies.
10. Children's Privacy
Pizza Factory's website and online ordering services are not directed to individuals under the age of 18. We do not knowingly collect, solicit, or process personal information from anyone under 13 years of age. Our Services are not designed for use by minors, and we do not intentionally market to children.
If we learn that we have inadvertently collected personal information from a child under the age of 13 without verifiable parental consent, we will take immediate steps to delete that information from our records. If you are a parent or guardian and believe that your child has provided us with personal information, please contact us immediately at [email protected].
In compliance with the Children's Online Privacy Protection Act (COPPA), we do not knowingly collect personal information from children under 13. Individuals between the ages of 13 and 17 should only use our Services with the involvement and consent of a parent or legal guardian.
11. International Data Transfers
Pizza Factory is based in the United States, and your information is primarily stored and processed in the United States. If you are accessing our Services from outside the United States, please be aware that your information may be transferred to, stored, and processed in a country with different data protection laws than your country of residence.
By using our Services, you consent to the transfer of your information to the United States and its processing in accordance with this Privacy Policy. We take steps to ensure that any international transfers of personal data are subject to appropriate safeguards, consistent with applicable privacy laws.
For users located in states with specific data transfer requirements, we maintain appropriate contractual protections with our service providers operating internationally, including through data processing agreements that incorporate applicable data protection standards.
12. Third-Party Links and Services
Our website may contain links to third-party websites, applications, or services that are not operated by us. If you click on a third-party link, you will be directed to that third party's site. We strongly advise you to review the Privacy Policy of every site you visit.
We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services. This Privacy Policy does not apply to information collected by third parties, including information collected through any website, application, or service that links to our Services.
13. California Residents – Additional Rights
If you are a California resident, the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA) grants you specific rights with respect to your personal information. These include the rights described in Section 7 of this policy, as well as the following additional disclosures:
13.1 Categories of Personal Information Collected
In the preceding 12 months, we have collected the following categories of personal information as defined by the CCPA:
| Category | Collected |
|---|---|
| Identifiers (name, email, IP address) | Yes |
| Personal information (financial/payment data) | Yes |
| Internet or electronic network activity | Yes |
| Geolocation data | Yes (approximate location only) |
| Commercial information (purchase history) | Yes |
| Inferences drawn from personal information | Yes |
| Sensitive personal information | Limited (only as necessary for services) |
13.2 Shine the Light Law
California Civil Code Section 1798.83 permits California residents to request certain information about our disclosure of personal information to third parties for their direct marketing purposes. To make such a request, please contact us at [email protected].
14. Do Not Track Signals
Some browsers offer a "Do Not Track" (DNT) feature that signals to websites that you do not wish to be tracked. Because there is currently no industry-wide standard for recognizing DNT signals, our website does not currently respond to DNT browser signals. We will update this practice if and when a standard is established.
15. How to File a Complaint
If you believe your privacy rights have been violated or that we have not handled your personal information in compliance with applicable law, we encourage you to contact us first so we can attempt to resolve the issue.
You may contact us at:
- Email: [email protected]
If you are a California resident and believe we have violated your rights under the CCPA/CPRA, you may also file a complaint with the California Privacy Protection Agency (CPPA):
California Privacy Protection Agency (CPPA)
2101 Arena Boulevard
Sacramento, CA 95834
Website: cppa.ca.gov
For concerns related to deceptive or unfair trade practices, you may also file a complaint with the Federal Trade Commission (FTC):
Federal Trade Commission (FTC)
600 Pennsylvania Avenue NW
Washington, D.C. 20580
Website: ftc.gov
Complaint Portal: reportfraud.ftc.gov
16. Changes to This Privacy Policy
We reserve the right to update or modify this Privacy Policy at any time to reflect changes in our practices, legal requirements, or business operations. When we make material changes to this policy, we will:
- Update the "Last Updated" date at the top of this page
- Post a prominent notice on our website homepage
- Send an email notification to registered users (where we have your email address and the changes are material)
We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information. Your continued use of our Services after the effective date of any changes constitutes your acceptance of the updated policy.
17. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please do not hesitate to contact us. We are committed to addressing your privacy concerns promptly and transparently.
We aim to respond to all privacy-related inquiries within 10 business days. For verifiable consumer requests under CCPA/CPRA, we will respond within 45 days, with the possibility of a 45-day extension where necessary.