Privacy Policy

This Privacy Policy describes how Punch Pizza ("we," "us," "our," or "the Company") collects, uses, discloses, and protects your personal information when you visit our website at punchpizza-meal.click, place orders, or otherwise interact with our services. Please read this policy carefully. By using our website or services, you agree to the practices described in this Privacy Policy.

We are committed to protecting your privacy and handling your personal data in a transparent, lawful, and responsible manner. This policy is designed to comply with applicable United States privacy laws, including the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA), the Federal Trade Commission Act (FTC Act), and other applicable federal and state consumer protection regulations.

1. About Us

Punch Pizza is a food service business operating through the website punchpizza-meal.click. We offer online food ordering, delivery coordination, and related services. For any questions or concerns regarding this Privacy Policy or our data practices, please contact us using the information provided below:

2. Information We Collect

We collect various types of information in connection with your use of our website and services. The categories of personal information we collect include, but are not limited to, the following:

2.1 Personal Identification Information

When you create an account, place an order, sign up for our newsletter, or contact us, we may collect:

• Full name
• Email address
• Phone number
• Delivery address and billing address
• Date of birth (when required for age verification)
• Username and password (stored in encrypted form)
• Payment information (credit/debit card numbers, billing details — processed through secure third-party payment processors)

2.2 Order and Transaction Information

When you place orders through our website, we collect information related to those transactions, including:

• Items ordered, quantities, and special instructions
• Order history and frequency
• Payment amounts and transaction IDs
• Delivery preferences and timing
• Customer feedback, ratings, and reviews

2.3 Usage Data and Technical Information

When you visit our website, we automatically collect certain technical information about your device and browsing activity, including:

• IP address
• Browser type and version
• Operating system and device type
• Pages visited and time spent on each page
• Referring URLs and exit pages
• Clickstream data and navigation paths
• Date and time of visits
• Search queries entered on our website

2.4 Cookie and Tracking Data

We use cookies, web beacons, pixel tags, and similar tracking technologies to collect information about your online activity on our website and across other websites. For detailed information about our use of cookies, please refer to Section 8 of this policy.

2.5 Location Data

With your permission, we may collect your precise or approximate geographic location to provide delivery services, suggest nearby menu options, or improve our service offerings. You may disable location services through your device settings at any time.

2.6 Communications Data

If you contact us by email, phone, or through contact forms on our website, we may retain records of those communications, including the content of your messages, attachments, and metadata associated with those communications.

2.7 Information from Third Parties

We may receive information about you from third-party sources, such as:

• Social media platforms (if you log in or share content using social media credentials)
• Payment processors and financial institutions
• Delivery service partners
• Marketing and analytics service providers
• Publicly available sources

2.8 Sensitive Personal Information

We do not intentionally collect sensitive personal information such as Social Security numbers, government-issued identification numbers, racial or ethnic origin, religious beliefs, health data, or biometric data. If you voluntarily provide any such information, we will handle it with the highest level of care and protection as required by applicable law.

3. How We Use Your Information

We use the personal information we collect for the following purposes:

3.1 Providing and Managing Our Services

• Processing and fulfilling your food orders
• Managing your account and profile
• Coordinating delivery logistics with third-party delivery partners
• Processing payments and issuing refunds or credits
• Sending order confirmations, receipts, and delivery updates
• Responding to your inquiries, complaints, and support requests

3.2 Improving Our Services

• Analyzing usage patterns and website traffic to improve our website design and functionality
• Conducting research and development to create new menu items or service features
• Performing quality assurance and testing
• Understanding customer preferences and purchasing trends

3.3 Marketing and Promotional Communications

• Sending you promotional emails, newsletters, and special offers about Punch Pizza products and services
• Displaying targeted advertisements on our website and third-party platforms
• Conducting surveys, contests, sweepstakes, and other marketing campaigns
• Personalizing your experience and showing you content relevant to your interests

You may opt out of marketing communications at any time by clicking the "unsubscribe" link in our emails or by contacting us at [email protected]. Please note that even after opting out of marketing messages, we will still send you transactional communications related to your orders and account.

3.4 Legal and Compliance Purposes

• Complying with applicable laws, regulations, and legal obligations
• Enforcing our Terms of Service and other agreements
• Detecting, investigating, and preventing fraud, unauthorized access, and other illegal activities
• Protecting the rights, property, and safety of Punch Pizza, our customers, and the public
• Responding to lawful requests from government authorities and law enforcement agencies

3.5 Business Operations

• Maintaining records for accounting, auditing, and financial reporting purposes
• Managing relationships with vendors, partners, and service providers
• Planning and executing business development and expansion activities

4. Legal Basis for Processing

Where applicable under U.S. law, we process your personal information based on the following legal grounds:

5. Sharing Your Information with Third Parties

We do not sell your personal information to third parties. However, we may share your information with the following categories of recipients under specific circumstances:

5.1 Service Providers and Business Partners

We work with trusted third-party service providers who assist us in operating our business. These may include:

• Payment processors: To securely handle payment card transactions and financial processing
• Delivery partners: To coordinate and fulfill food delivery orders
• Cloud hosting providers: To store and manage our website data and infrastructure
• Email and marketing platforms: To send promotional and transactional communications
• Analytics providers: To analyze website traffic and user behavior (e.g., Google Analytics)
• Customer support tools: To manage support tickets and communications
• Fraud detection services: To identify and prevent fraudulent transactions

All service providers are contractually required to protect your personal information and use it only for the specific purposes we authorize. They are not permitted to use your data for their own independent marketing or business purposes.

5.2 Legal Requirements and Law Enforcement

We may disclose your personal information if we are required to do so by law, court order, or governmental authority, or if we believe in good faith that such disclosure is necessary to:

• Comply with a legal obligation, subpoena, or lawful government request
• Protect and defend the rights or property of Punch Pizza
• Prevent or investigate possible wrongdoing in connection with our services
• Protect the personal safety of our customers, employees, or the public
• Protect against legal liability

5.3 Business Transfers

In the event of a merger, acquisition, sale of assets, bankruptcy, or other business transaction, your personal information may be transferred to a successor entity. We will notify you via email or a prominent notice on our website if such a transfer occurs and inform you of any choices you may have regarding your data.

5.4 With Your Consent

We may share your personal information with other third parties when you have given us your explicit consent to do so, such as participating in co-branded promotions or integrated third-party services.

5.5 Aggregated and De-Identified Data

We may share aggregated, anonymized, or de-identified information that cannot reasonably be used to identify you with third parties for research, analytics, industry reporting, or marketing purposes.

6. Data Security

We take the security of your personal information seriously and implement a range of technical, organizational, and administrative safeguards designed to protect your data against unauthorized access, disclosure, alteration, and destruction.

6.1 Security Measures We Employ

• Encryption: We use industry-standard SSL/TLS encryption to protect data transmitted between your browser and our servers
• Secure payment processing: Payment card information is processed through PCI-DSS compliant third-party payment processors; we do not store full card numbers on our servers
• Access controls: Access to personal data is restricted to authorized personnel on a need-to-know basis
• Password hashing: User passwords are stored using strong cryptographic hashing algorithms
• Regular security audits: We conduct periodic security assessments and vulnerability testing
• Data minimization: We collect only the minimum amount of data necessary for the stated purposes
• Employee training: Our staff receives regular training on data privacy and security best practices

6.2 Limitations of Security

Despite our best efforts, no method of electronic transmission or storage is completely secure. We cannot guarantee absolute security of your information. If you have reason to believe that your interaction with us is no longer secure, please contact us immediately at [email protected].

6.3 Data Breach Response

In the event of a data breach that poses a risk to your rights and freedoms, we will notify affected individuals and relevant authorities as required by applicable law, including notifying the Federal Trade Commission (FTC) and relevant state authorities where legally required.

7. Your Privacy Rights

Depending on your location and applicable law, you may have certain rights regarding your personal information. We respect and honor these rights as described below.

7.1 Rights Under the California Consumer Privacy Act (CCPA/CPRA)

If you are a California resident, you have the following rights under the CCPA as amended by the CPRA:

• Right to Know: You have the right to request that we disclose what personal information we have collected, used, disclosed, and sold about you over the past 12 months
• Right to Delete: You have the right to request that we delete your personal information, subject to certain exceptions
• Right to Correct: You have the right to request that we correct inaccurate personal information we hold about you
• Right to Opt-Out of Sale or Sharing: You have the right to opt out of the sale or sharing of your personal information. We do not currently sell personal information, but you may contact us to exercise this right
• Right to Limit Use of Sensitive Personal Information: You have the right to limit our use of sensitive personal information to necessary business purposes
• Right to Non-Discrimination: We will not discriminate against you for exercising any of your CCPA/CPRA rights. You will not receive different prices, inferior service, or any other penalties for exercising your privacy rights

7.2 General Privacy Rights for All Users

Regardless of your location, we offer the following rights to all users of our services:

• Right to Access: You may request a copy of the personal information we hold about you
• Right to Correction: You may request that we update or correct inaccurate or incomplete information in your account
• Right to Deletion: You may request that we delete your personal information, subject to legal and contractual retention obligations
• Right to Portability: You may request that we provide your personal information in a structured, commonly used, and machine-readable format
• Right to Withdraw Consent: Where we rely on your consent to process your data, you may withdraw that consent at any time without affecting the lawfulness of processing carried out prior to withdrawal
• Right to Object: You may object to certain types of data processing, including direct marketing

7.3 How to Exercise Your Rights

To exercise any of your privacy rights, please submit a verifiable request to us by:

• Email: [email protected]

We will respond to your request within 45 days of receipt. If we require additional time, we will notify you of the extension and the reason for the delay. We may need to verify your identity before processing your request by asking you to confirm information associated with your account.

8. Cookie Policy

We use cookies and similar tracking technologies on our website to enhance your user experience, analyze website traffic, and deliver targeted advertising. This section provides a brief overview of our cookie practices.

8.1 Types of Cookies We Use

8.2 Managing Your Cookie Preferences

You can manage or disable cookies through your browser settings at any time. Please note that disabling certain cookies may impact the functionality of our website and your ability to place orders or access certain features. Most browsers allow you to:

• View what cookies are stored and delete them individually
• Block third-party cookies
• Block all cookies from specific websites
• Block all cookies from being set

For more information about managing cookies, visit www.allaboutcookies.org.

9. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes described in this Privacy Policy, unless a longer retention period is required or permitted by law.

When personal data is no longer required, we will securely delete or anonymize it in accordance with our data destruction procedures.

10. Children's Privacy

Our website and services are not directed to, designed for, or intended to attract children under the age of 18. We do not knowingly collect, solicit, or process personal information from minors. If you are under 18 years of age, please do not use our website, create an account, or submit any personal information to us.

If we become aware that we have inadvertently collected personal information from a child under the age of 18, we will take immediate steps to delete such information from our records. If you are a parent or guardian and believe that your child has provided personal information to us without your consent, please contact us immediately at [email protected].

We comply with the Children's Online Privacy Protection Act (COPPA), which prohibits the collection of personal information from children under 13 years of age without verifiable parental consent. Because our services are intended for adults only, we do not direct our services to or collect data from anyone under 18.

11. International Data Transfers

Punch Pizza operates primarily within the United States. However, some of our third-party service providers may be located in other countries, and your information may be transferred to, stored, and processed in countries outside of the United States, including countries that may have different data protection laws than those in your jurisdiction.

When we transfer your personal data internationally, we take steps to ensure that appropriate safeguards are in place to protect your information, including:

• Ensuring that third-party recipients are located in countries recognized as providing adequate data protection
• Implementing standard contractual clauses or data processing agreements with international service providers
• Relying on your explicit consent where required by applicable law
• Applying Privacy Shield principles or equivalent protections where applicable

By using our services, you acknowledge and consent to the transfer of your personal information to the United States and potentially to other countries as described in this policy.

12. Third-Party Links and Websites

Our website may contain links to third-party websites, social media platforms, or services that are not owned or controlled by Punch Pizza. This Privacy Policy applies only to our website and services. We have no control over and assume no responsibility for the privacy practices, content, or policies of any third-party websites or services.

We encourage you to review the privacy policies of any third-party websites you visit through links on our site, as their practices may differ significantly from ours. Your interactions with third-party platforms are governed exclusively by their respective privacy policies and terms of use.

13. Do Not Track Signals

Some browsers offer a "Do Not Track" (DNT) feature that signals to websites that you do not want your online activity tracked. Currently, our website does not respond to DNT signals, as there is no universally accepted standard for how websites should respond to such signals. We will continue to monitor developments in this area and update our practices accordingly.

You may also opt out of certain types of tracking and interest-based advertising through the Digital Advertising Alliance's opt-out tool at optout.aboutads.info or the Network Advertising Initiative at optout.networkadvertising.org.

14. California-Specific Privacy Rights

In addition to the rights described in Section 7, California residents have specific rights under the CCPA/CPRA and other California laws:

14.1 Shine the Light Law

Under California Civil Code Section 1798.83, California residents may request information once per calendar year about personal information disclosed to third parties for direct marketing purposes during the preceding calendar year. To make such a request, please contact us at [email protected].

14.2 Categories of Personal Information Collected (CCPA)

In the preceding 12 months, we have collected personal information in the following CCPA categories:

• Identifiers (name, email address, IP address)
• Commercial information (purchase history, transaction data)
• Internet or electronic network activity (browsing history on our site)
• Geolocation data (approximate location for delivery)
• Inferences drawn from the above to create a profile

14.3 Authorized Agent Requests

California residents may designate an authorized agent to submit privacy rights requests on their behalf. If you use an authorized agent, we may require written proof of the agent's authorization and may verify your identity directly before processing the request.

15. Filing a Complaint

If you believe that we have violated your privacy rights or have not handled your personal information in accordance with applicable law, we encourage you to first contact us directly so we can address your concerns:

We will investigate your complaint and respond within a reasonable time. If you are not satisfied with our response, you have the right to lodge a complaint with the appropriate regulatory authority:

15.1 Federal Trade Commission (FTC)

The FTC handles complaints relating to deceptive or unfair business practices, including privacy violations. You may file a complaint with the FTC at:

• Website: www.ftc.gov
• Phone: 1-877-FTC-HELP (1-877-382-4357)

15.2 California Privacy Protection Agency (CPPA)

California residents may file complaints with the California Privacy Protection Agency (CPPA) regarding violations of the CCPA/CPRA:

• Website: cppa.ca.gov

15.3 State Attorney General Offices

You may also contact your state's Attorney General's office regarding consumer privacy complaints. Most states maintain consumer protection divisions that handle privacy-related matters.

16. Changes to This Privacy Policy

We reserve the right to update or modify this Privacy Policy at any time to reflect changes in our practices, legal requirements, or business operations. When we make material changes, we will:

• Post the updated Privacy Policy on our website with a new "Last Updated" date
• Send you an email notification if you have an account with us
• Display a prominent notice on our website for a reasonable period

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information. Your continued use of our website or services after any changes to this policy constitutes your acceptance of the updated terms.

17. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please do not hesitate to reach out to us:

We are committed to working with you to resolve any privacy concerns you may have. Our team will respond to all privacy-related inquiries within 45 business days of receipt. For urgent concerns, please indicate "URGENT PRIVACY REQUEST" in the subject line of your email to expedite processing.