Privacy Policy

This Privacy Policy describes how Pizza Factory ("we," "us," "our," or the "Company") collects, uses, discloses, retains, and protects your personal information when you visit our website at pizzafactory-eat.rest, place orders, use our services, or otherwise interact with us. We are committed to safeguarding your privacy and handling your personal data with transparency, integrity, and respect.

By accessing or using our website, mobile ordering platforms, in-store services, or any other services we offer (collectively, the "Services"), you acknowledge that you have read, understood, and agree to the practices described in this Privacy Policy. If you do not agree with this policy, please discontinue use of our Services.

This Privacy Policy is intended to comply with applicable United States federal and state privacy laws, including but not limited to the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA), the Federal Trade Commission Act (FTC Act), the Children's Online Privacy Protection Act (COPPA), and other applicable state consumer protection and data privacy laws.

1. Who We Are

Pizza Factory is a food service business operating in the United States. We serve customers through our website, online ordering platform, and physical location(s). For all privacy-related matters, you may contact us using the following information:

2. Information We Collect

We collect various types of information in connection with your use of our Services. This information may be collected directly from you, automatically through your use of our website or platform, or from third-party sources.

2.1 Personal Information You Provide Directly

When you interact with our Services — such as creating an account, placing an order, signing up for promotions, or contacting us — we may collect the following categories of personal information:

• Identity Information: Full name, username, or similar identifier.
• Contact Information: Email address, phone number, delivery address, and billing address.
• Account Credentials: Username and password (stored in encrypted form).
• Order and Transaction Data: Details about the food and beverages you order, special instructions, order history, and payment confirmations.
• Payment Information: Credit or debit card details, billing information, or other financial data processed through our secure payment processor. Note: We do not store full payment card numbers on our servers.
• Communications Data: Information you provide when you contact our customer support team, submit feedback, leave reviews, or participate in surveys or promotions.
• Marketing Preferences: Your preferences regarding receiving promotional emails, SMS notifications, or special offers from us.

2.2 Information Collected Automatically

When you visit our website or use our digital ordering platform, we and our third-party service providers automatically collect certain technical and usage data, including:

• Device Information: Type of device, operating system, browser type and version, device identifiers, and screen resolution.
• Log Data: IP address, date and time of your visit, pages viewed, links clicked, referring URLs, and time spent on each page.
• Usage Data: Information about how you interact with our website, including menu items viewed, items added to cart, and abandoned cart data.
• Location Data: General geographic location derived from your IP address, or precise location if you grant permission through your device for delivery services.
• Cookie and Tracking Data: Data collected through cookies, pixel tags, web beacons, and similar tracking technologies. See Section 7 for more information about our cookie practices.

2.3 Information from Third-Party Sources

We may receive information about you from third parties, including:

• Online ordering and delivery platforms (such as third-party food delivery apps) that facilitate your orders.
• Payment processors and financial institutions that verify transaction details.
• Analytics providers that help us understand how users engage with our website.
• Social media platforms, if you choose to interact with us or log in through social media accounts.
• Marketing and advertising partners who may share aggregated or demographic data to help us reach relevant audiences.

2.4 Sensitive Personal Information

We do not intentionally collect sensitive categories of personal information such as health data, racial or ethnic origin, political opinions, religious beliefs, or biometric data. However, if you voluntarily provide us with dietary restrictions or food allergies as part of your order, we will use this information solely to fulfill your order safely and will handle it with the highest level of care.

3. How We Use Your Information

We use the personal information we collect for a variety of lawful purposes related to operating our food service business and improving our Services:

3.1 Service Provision and Order Fulfillment

• Processing and fulfilling your food orders, whether for delivery, pickup, or dine-in.
• Managing your account and providing customer support.
• Processing payments and sending order confirmations, receipts, and delivery updates.
• Communicating with you about the status of your order or any issues related to it.
• Maintaining accurate records of your order history for your reference and our operational purposes.

3.2 Website and Service Improvement

• Analyzing usage patterns and customer behavior to improve website functionality and user experience.
• Conducting internal research and analytics to understand customer preferences.
• Testing new features and product offerings before broader deployment.
• Monitoring and improving the performance, security, and reliability of our website and digital systems.

3.3 Marketing and Communications

• Sending promotional emails, SMS messages, or push notifications about special deals, new menu items, loyalty rewards, and events, subject to your marketing preferences and applicable opt-out rights.
• Personalizing content and offers based on your order history and preferences.
• Serving targeted advertising on third-party platforms, such as social media, based on your interactions with our Services (subject to your consent and applicable law).
• Administering contests, sweepstakes, referral programs, and loyalty rewards programs.

3.4 Legal and Compliance Purposes

• Complying with applicable federal, state, and local laws and regulations.
• Enforcing our Terms of Service and other policies.
• Responding to legal requests, subpoenas, court orders, or governmental authority inquiries.
• Detecting, preventing, and addressing fraudulent activity, security incidents, or violations of our policies.
• Protecting the rights, property, and safety of Pizza Factory, our customers, and the public.

4. How We Share Your Information

We do not sell your personal information to third parties. However, we may share your information in the following circumstances:

4.1 Service Providers and Business Partners

We share personal information with trusted third-party vendors and service providers who assist us in operating our business. These may include:

• Payment Processors: To securely process credit and debit card transactions.
• Delivery Partners: To coordinate food delivery to your address.
• Cloud Hosting and IT Providers: To host our website and store data securely.
• Email and SMS Service Providers: To send order confirmations, receipts, and marketing communications.
• Analytics Providers: Such as Google Analytics, to understand website traffic and user behavior.
• Customer Support Tools: To manage customer service tickets and inquiries.
• Marketing Platforms: To manage advertising campaigns and promotional programs.

All service providers are contractually obligated to use your personal information only as necessary to provide services to us and to maintain appropriate data security standards.

4.2 Legal Requirements and Law Enforcement

We may disclose your information when we believe in good faith that such disclosure is required or permitted by law, including:

• In response to a valid subpoena, court order, or other legal process.
• To comply with applicable federal, state, or local laws and regulations.
• To cooperate with law enforcement agencies investigating illegal activity.
• To protect the vital interests of individuals where there is an imminent threat of harm.

4.3 Business Transfers

In the event that Pizza Factory undergoes a merger, acquisition, reorganization, bankruptcy, or sale of all or a portion of its assets, your personal information may be transferred to the successor entity. We will provide notice through our website or via email if such a transfer occurs, and the successor will be required to honor the commitments made in this Privacy Policy.

4.4 With Your Consent

We may share your information with third parties when you have given us explicit consent to do so, such as when you participate in a co-branded promotion or opt into a third-party loyalty program.

4.5 Aggregated and De-Identified Data

We may share aggregated or de-identified data that cannot reasonably be used to identify you with third parties for research, analytics, or marketing purposes. This data is not subject to the restrictions of this Privacy Policy.

5. Data Security

We take the security of your personal information seriously and have implemented a range of technical, administrative, and physical safeguards designed to protect your data from unauthorized access, disclosure, alteration, or destruction.

5.1 Security Measures We Employ

• Encryption: Our website uses Secure Socket Layer (SSL) / Transport Layer Security (TLS) encryption to protect data transmitted between your browser and our servers. Payment transactions are processed through PCI-DSS compliant payment gateways.
• Access Controls: Access to personal data is restricted to authorized employees and contractors who need it to perform their job functions. All access is logged and audited.
• Password Security: User account passwords are stored in hashed and salted format; we never store passwords in plain text.
• Regular Security Assessments: We conduct periodic reviews of our information security practices, infrastructure, and vendor relationships.
• Employee Training: Our team members receive regular training on data privacy, security best practices, and how to handle personal information responsibly.
• Incident Response: We maintain a data breach response plan and will notify affected users and relevant authorities as required by applicable law in the event of a security incident.

5.2 Your Responsibility

While we work hard to protect your information, no method of transmission over the Internet or method of electronic storage is 100% secure. You are responsible for maintaining the confidentiality of your account credentials and for any activity that occurs under your account. Please notify us immediately at [email protected] if you suspect any unauthorized use of your account.

6. Your Privacy Rights

Depending on your state of residence in the United States, you may have certain rights with respect to your personal information. We are committed to honoring these rights in accordance with applicable law.

6.1 Rights Available to All U.S. Residents

• Right to Know / Access: You have the right to request information about the categories and specific pieces of personal information we have collected about you, the sources from which we collected it, and the purposes for which we use it.
• Right to Correction: You have the right to request that we correct inaccurate or incomplete personal information we hold about you.
• Right to Deletion: You have the right to request that we delete your personal information, subject to certain legal exceptions (such as when we need to retain data to comply with legal obligations or to complete a transaction).
• Right to Opt-Out of Marketing: You may unsubscribe from our marketing emails at any time by clicking the "unsubscribe" link in any email, or by contacting us directly. You may also opt out of SMS marketing by replying "STOP" to any message.
• Right to Non-Discrimination: We will not discriminate against you for exercising any of your privacy rights. We will not deny you services, charge you different prices, or provide a different quality of service based on your exercise of privacy rights.

6.2 Additional Rights Under California Law (CCPA/CPRA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA), including:

• Right to Know Categories of Personal Information Sold or Shared: You have the right to know whether we sell or share personal information and to which categories of third parties.
• Right to Opt-Out of Sale or Sharing: Although we do not sell your personal information for monetary consideration, to the extent that our use of advertising technologies constitutes a "sale" or "sharing" under CPRA, you have the right to opt out by contacting us or using applicable browser-based opt-out mechanisms.
• Right to Limit Use of Sensitive Personal Information: You have the right to limit the use and disclosure of sensitive personal information beyond what is necessary to provide our Services.
• Right to Data Portability: You may request a copy of your personal information in a portable, commonly used format.
• Shine the Light Law: California residents may also request information about personal information shared with third parties for direct marketing purposes under California Civil Code Section 1798.83.

6.3 How to Exercise Your Rights

To exercise any of the privacy rights described above, you may contact us by:

• Email: [email protected]
• Website: pizzafactory-eat.rest

We will respond to verifiable requests within 45 days of receipt. If we need more time, we will inform you of the reason and extension period (up to 90 days total) in writing. We will need to verify your identity before processing your request. We may ask you to provide certain information to confirm your identity, such as your name, email address, and order history.

You may designate an authorized agent to make requests on your behalf. Authorized agents must provide written authorization signed by you, and we may verify your identity directly before processing the request.

7. Cookies and Tracking Technologies

Our website uses cookies and similar tracking technologies to enhance your experience, analyze website traffic, and support our marketing efforts.

7.1 Types of Cookies We Use

• Essential/Strictly Necessary Cookies: These cookies are required for the website to function properly. They enable core features such as security, network management, and order processing. These cookies cannot be disabled without significantly impacting your experience.
• Performance and Analytics Cookies: These cookies collect information about how visitors use our website, such as which pages are most visited and how users navigate between pages. We use this data to improve our website performance and user experience.
• Functional Cookies: These cookies remember your preferences and settings, such as your location, saved cart items, and language preferences, to provide a more personalized experience.
• Marketing and Advertising Cookies: These cookies track your activity across websites and help us deliver relevant advertising. They may be set by our advertising partners and are used to build a profile of your interests.

7.2 Managing Cookies

You can manage your cookie preferences through your browser settings. Most browsers allow you to refuse cookies, delete existing cookies, or be notified when cookies are set. Please note that disabling certain cookies may affect the functionality of our website and your ability to place orders. For more detailed information about our cookie practices, please refer to our Cookie Policy available on our website.

For opt-out tools related to interest-based advertising, you may also visit:

• www.aboutads.info/choices (Digital Advertising Alliance)
• www.networkadvertising.org/choices (Network Advertising Initiative)

8. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes for which it was collected, to comply with our legal obligations, resolve disputes, and enforce our agreements. The specific retention periods depend on the type of information and the purpose for which it was collected:

After the applicable retention period, we will securely delete or anonymize your personal information in accordance with our data disposal procedures.

9. Children's Privacy

Pizza Factory's website and online ordering Services are directed to adults and are not intended for use by children. We do not knowingly solicit or collect personal information from children under the age of 13 in accordance with the Children's Online Privacy Protection Act (COPPA). We also recommend that persons under the age of 18 use our Services only with the supervision and consent of a parent or legal guardian.

If we become aware that we have inadvertently collected personal information from a child under the age of 13 without verifiable parental consent, we will take immediate steps to delete such information from our records. If you believe that we may have collected information from a child without appropriate consent, please contact us immediately at [email protected].

Parents and guardians who wish to review, correct, or request deletion of their child's information (if applicable) may do so by contacting us directly using the contact information provided in this policy.

10. International Data Transfers

Pizza Factory is based in the United States and primarily processes personal information within the United States. Our servers, systems, and primary service providers are located in the United States, and your information is generally processed and stored in the United States.

If you are accessing our Services from outside the United States, please be aware that your personal information will be transferred to, stored, and processed in the United States, where data protection laws may differ from those in your country or jurisdiction. By using our Services, you consent to the transfer of your information to the United States and acknowledge that it will be subject to U.S. federal and state laws.

We take appropriate measures to ensure that any international transfers of personal data are handled responsibly and in accordance with applicable legal requirements. If you have questions about international data transfers, please contact us at [email protected].

11. Third-Party Websites and Links

Our website may contain links to third-party websites, social media platforms, online ordering apps, or other external services. These third-party sites are governed by their own privacy policies, which we encourage you to review. Pizza Factory is not responsible for the privacy practices or content of any third-party websites, and this Privacy Policy does not apply to such sites.

When you interact with us through third-party platforms (such as social media pages or third-party delivery apps), your use of those platforms is also subject to their respective terms and privacy policies. We recommend reviewing the privacy settings and policies of any third-party service you use in connection with ordering from or engaging with Pizza Factory.

12. Do Not Track Signals

Some web browsers offer a "Do Not Track" (DNT) feature that sends a signal to websites indicating that you do not wish to be tracked across different websites. At this time, there is no universally accepted standard for how websites should respond to DNT signals, and our website does not currently respond to DNT browser signals or mechanisms.

However, we provide you with choices about data collection and use through our cookie management tools and marketing opt-out options described in this policy. We continue to monitor industry developments related to DNT and will update our practices accordingly if a recognized standard emerges.

13. FTC Act Compliance and Consumer Protection

Pizza Factory is committed to complying with the Federal Trade Commission Act (FTC Act) and all FTC guidelines related to privacy, data security, and unfair or deceptive trade practices. We do not engage in deceptive practices related to your personal information, and we strive to maintain transparency about our data collection and use practices at all times.

We follow the FTC's recommendations for reasonable data security, including maintaining appropriate safeguards, limiting data collection to what is necessary, and properly disposing of personal information when it is no longer needed. If you believe that our practices violate your rights as a consumer, you may contact the FTC at www.ftc.gov or by calling 1-877-FTC-HELP (1-877-382-4357).

14. How to File a Complaint

If you have concerns about our privacy practices or believe that we have handled your personal information in a manner inconsistent with this Privacy Policy or applicable law, we encourage you to first contact us directly so that we can address your concerns:

• Email: [email protected]
• Website: pizzafactory-eat.rest

We will acknowledge your complaint within 10 business days and endeavor to resolve it within 30 days. If we are unable to resolve your complaint to your satisfaction, you may escalate your concern to the appropriate regulatory authority.

14.1 U.S. Federal Regulatory Authorities

• Federal Trade Commission (FTC): reportfraud.ftc.gov or 1-877-382-4357

14.2 California Residents

California residents may also file a complaint with the California Privacy Protection Agency (CPPA) or the California Attorney General's Office:

• California Privacy Protection Agency (CPPA): cppa.ca.gov
• California Attorney General: oag.ca.gov/privacy

14.3 Other State Residents

Residents of other U.S. states with applicable privacy laws (including Virginia, Colorado, Connecticut, Utah, Texas, and others) may have the right to appeal our decisions or file complaints with their respective state attorney general's office or data protection authority. We encourage you to consult your state's consumer protection resources for further information.

15. California "Shine the Light" Disclosure

Under California Civil Code Section 1798.83 (the "Shine the Light" law), California residents may request information about personal information we share with third parties for direct marketing purposes. If you are a California resident and wish to make such a request, please contact us at [email protected] with the subject line "Shine the Light Request." We will respond to your request within 30 days.

16. Changes to This Privacy Policy

We reserve the right to update or modify this Privacy Policy at any time to reflect changes in our data practices, legal requirements, or business operations. When we make material changes to this policy, we will:

• Update the "Last Updated" date at the top of this page.
• Post a prominent notice on our website or send you an email notification if the changes are significant.
• Where required by law, seek your consent before implementing changes that affect your rights.

We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information. Your continued use of our Services after the effective date of any updated Privacy Policy constitutes your acceptance of the changes.

17. Contact Us

If you have any questions, concerns, or requests related to this Privacy Policy or your personal information, please do not hesitate to reach out to us. We are here to help and are committed to addressing your privacy concerns promptly and transparently.