Privacy Policy

This Privacy Policy describes how churchchicks.world ("we," "us," "our," or the "Company") collects, uses, discloses, and protects your personal information when you visit our website at churchchicks.world, use our online ordering services, participate in our loyalty programs, or otherwise interact with us. Please read this Privacy Policy carefully before using our services.

By accessing or using our website, placing an order, subscribing to our communications, or otherwise providing us with your personal information, you acknowledge that you have read, understood, and agree to the terms of this Privacy Policy. If you do not agree with any part of this policy, please discontinue your use of our services immediately.

We are committed to protecting your privacy and handling your personal data in an open and transparent manner in compliance with all applicable United States federal and state privacy laws, including the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA), and the Federal Trade Commission Act (FTC Act).

1. About Us and How to Contact Us

churchchicks.world operates as a food services business in the United States. For any questions, concerns, or requests related to this Privacy Policy or the handling of your personal information, you may contact us using the following details:

Our dedicated privacy team is available to respond to all privacy-related inquiries. We aim to respond to all requests within 30 days of receipt, and in all cases within the timeframes required by applicable law.

2. Information We Collect

We collect several categories of personal information when you interact with our website, services, and communications. The types of information we collect depend on how you use our services and what information you voluntarily provide.

2.1 Personal Identification Information

When you create an account, place an order, participate in a loyalty program, or contact our customer support, we may collect the following personal identification information:

• Full name (first and last name)
• Email address
• Phone number or mobile number
• Billing and shipping address (including street address, city, state, ZIP code)
• Date of birth (where required for age verification or birthday rewards)
• Username and password for account access
• Profile photo (if voluntarily uploaded)

2.2 Payment and Financial Information

When you make a purchase through our website or mobile application, we collect payment-related information to process your transactions. This may include:

• Credit or debit card information (card type, last four digits, expiration date)
• Billing address associated with your payment method
• Transaction history and order details
• Gift card numbers or promotional code details

Please note that full payment card details are processed by our secure, PCI-DSS compliant third-party payment processors and are not stored on our servers in full.

2.3 Order and Transaction Information

We collect information about the orders you place, including:

• Items ordered and customizations requested
• Order date, time, and location (restaurant or delivery address)
• Order value and payment method used
• Delivery preferences and special instructions
• Loyalty points earned and redeemed

2.4 Usage and Behavioral Data

When you visit our website at churchchicks.world, we automatically collect certain technical and behavioral information through standard web technologies, including:

• IP address and approximate geographic location derived from it
• Browser type, version, and language settings
• Operating system and device type (desktop, tablet, mobile)
• Pages visited, time spent on each page, and the order in which pages were viewed
• Links clicked and features used
• Referring website or search engine
• Date and time of your visit
• Search queries entered on our website

2.5 Device Information

We collect information about the devices you use to access our services, which may include:

• Device identifiers (such as mobile device ID or advertising ID)
• Hardware model and firmware version
• Mobile network information and carrier
• Time zone settings
• Screen resolution and display settings

2.6 Location Data

With your express permission, we may collect precise geolocation data from your device to help you find the nearest restaurant location, enable delivery services, and provide location-based offers. You may disable location sharing through your device settings at any time without affecting your ability to use other features of our service.

2.7 Communications and Customer Support Data

When you communicate with us via email, phone, live chat, or social media, we collect:

• The content of your messages and communications
• Contact details you provide
• Records of complaints and resolution history
• Survey responses and feedback submissions

2.8 Cookie and Tracking Technology Data

We use cookies, web beacons, pixel tags, and similar tracking technologies to collect information about your interactions with our website. For detailed information about our use of cookies, please refer to Section 8 of this Privacy Policy.

2.9 Information from Third Parties

We may receive information about you from third-party sources, including:

• Social media platforms when you connect your account or log in using social credentials (e.g., Facebook, Google)
• Third-party delivery partners (e.g., DoorDash, Uber Eats, Grubhub) when you place orders through those platforms
• Marketing partners and data enrichment providers
• Publicly available sources

3. How We Use Your Information

We use the personal information we collect for specific, legitimate business purposes. We will only use your information in ways that are compatible with the purposes described below.

3.1 Service Provision and Order Fulfillment

• Processing and fulfilling your food orders and deliveries
• Creating and managing your customer account
• Processing payments and issuing receipts or refunds
• Administering our loyalty rewards program
• Communicating with you about your orders, including order confirmations, status updates, and delivery notifications

3.2 Customer Support

• Responding to your questions, complaints, and feedback
• Resolving disputes and troubleshooting issues
• Improving our customer service processes

3.3 Marketing and Promotional Communications

• Sending you promotional emails, SMS messages, and push notifications about our products, offers, and promotions (subject to your communication preferences)
• Personalizing marketing messages based on your order history and preferences
• Administering contests, sweepstakes, and promotional campaigns
• Providing birthday and anniversary rewards

You may opt out of marketing communications at any time by clicking the "unsubscribe" link in any email we send, replying "STOP" to SMS messages, or adjusting your notification preferences in your account settings. Please note that even if you opt out of marketing communications, we will still send you transactional messages necessary to fulfill your orders and provide our services.

3.4 Analytics and Service Improvement

• Analyzing usage patterns to understand how customers interact with our website and services
• Conducting market research and developing new products or menu items
• Measuring the effectiveness of our marketing campaigns
• Testing and optimizing our website design, features, and user experience
• Generating anonymized, aggregate statistics about our customer base

3.5 Security and Fraud Prevention

• Detecting, investigating, and preventing fraudulent transactions, unauthorized access, and other illegal activities
• Verifying your identity when you contact us or access your account
• Monitoring for suspicious activity and security threats
• Enforcing our Terms of Service and other policies

3.6 Legal Compliance

• Complying with applicable federal and state laws and regulations
• Responding to lawful requests from law enforcement and government authorities
• Establishing, exercising, or defending legal claims
• Maintaining records required by applicable law

3.7 Personalization

• Personalizing your experience on our website, including recommending menu items based on your past orders
• Displaying relevant advertisements and content based on your interests and preferences
• Remembering your preferences (such as your favorite order or preferred restaurant location)

4. Sharing Your Information with Third Parties

We do not sell your personal information for monetary consideration. However, we may share your information with certain third parties as described below.

4.1 Service Providers and Business Partners

We share personal information with trusted third-party companies that perform services on our behalf, including:

• Payment Processors: To securely process your payments (e.g., Stripe, Square, Braintree)
• Delivery Partners: Third-party delivery services that fulfill your delivery orders
• Cloud Hosting Providers: Companies that host and maintain our website and databases
• Email and SMS Service Providers: Platforms that help us send transactional and marketing communications
• Analytics Providers: Services such as Google Analytics that help us understand website usage
• Customer Support Platforms: Tools that help us manage and respond to customer inquiries
• Marketing Technology Providers: Platforms that help us manage and deliver our marketing campaigns

All service providers are contractually required to protect your personal information and may only use it for the specific purposes for which we have engaged them.

4.2 Advertising and Marketing Partners

We may share certain information (such as email addresses in hashed form or device identifiers) with social media platforms and advertising networks to serve you targeted advertisements. This may constitute "sharing" of personal information under the CPRA for purposes of cross-context behavioral advertising.

4.3 Legal Requirements and Law Enforcement

We may disclose your personal information if we believe in good faith that such disclosure is necessary to:

• Comply with a legal obligation, court order, or lawful request from government authorities
• Protect and defend the rights or property of churchchicks.world
• Prevent or investigate possible wrongdoing in connection with our services
• Protect the personal safety of users of our services or the public
• Protect against legal liability

4.4 Business Transfers

In the event of a merger, acquisition, reorganization, bankruptcy, or sale of all or a portion of our assets, your personal information may be transferred as part of that transaction. We will notify you via email and/or a prominent notice on our website before your personal information is transferred and becomes subject to a different privacy policy.

4.5 With Your Consent

We may share your information with other third parties with your explicit consent or at your direction, such as when you choose to share information on social media platforms or participate in co-branded promotions.

5. Your Privacy Rights

Depending on your state of residence, you may have certain rights regarding your personal information. We are committed to honoring these rights in accordance with applicable law.

5.1 Rights Under the California Consumer Privacy Act (CCPA/CPRA)

If you are a California resident, you have the following rights under the CCPA as amended by the CPRA:

• Right to Know: You have the right to request information about the categories and specific pieces of personal information we have collected about you, the sources of that information, the business or commercial purposes for which it was collected, and the categories of third parties with whom it was shared.
• Right to Delete: You have the right to request that we delete personal information we have collected about you, subject to certain exceptions provided by law.
• Right to Correct: You have the right to request that we correct inaccurate personal information we maintain about you.
• Right to Opt Out of Sale or Sharing: You have the right to opt out of the sale of your personal information and the sharing of your personal information for cross-context behavioral advertising purposes. To exercise this right, visit our website or contact us at [email protected].
• Right to Limit Use of Sensitive Personal Information: You have the right to limit our use of your sensitive personal information to purposes that are necessary to provide our services.
• Right to Non-Discrimination: We will not discriminate against you for exercising any of your CCPA/CPRA rights. We will not deny you goods or services, charge you different prices, provide you a different level or quality of goods or services, or suggest that you may receive a different price or rate for goods or services because you exercised your rights.
• Right to Data Portability: You have the right to receive a copy of your personal information in a portable, readily usable format.

5.2 Rights Available to All Users

Regardless of your location within the United States, you may have the following rights:

• Access: You may request a copy of the personal information we hold about you by logging into your account or contacting us directly.
• Correction: You may update or correct your personal information through your account settings or by contacting us.
• Deletion: You may request that we delete your account and associated personal information, subject to certain legal obligations that may require us to retain certain data.
• Opt-Out of Marketing: You may opt out of receiving marketing communications at any time.
• Withdraw Consent: Where we process your data based on your consent, you may withdraw that consent at any time.

5.3 How to Submit a Privacy Request

To exercise any of your privacy rights, please contact us using one of the following methods:

• Email: [email protected] (Subject line: "Privacy Rights Request")
• Online: Visit churchchicks.world and use our Privacy Request form

We will verify your identity before processing your request to protect the security of your information. We may ask you to provide certain identifying information such as your name, email address, and account details. We will respond to verified requests within 45 days, with the possibility of a 45-day extension when reasonably necessary, as permitted by law.

5.4 Authorized Agents

California residents may designate an authorized agent to submit privacy rights requests on their behalf. To use an authorized agent, please provide written authorization signed by you or a power of attorney, and we may also require you to verify your identity directly with us. We will not discriminate against you for authorizing an agent to submit requests on your behalf.

6. Data Security

We take the security of your personal information seriously and implement a range of technical, administrative, and physical safeguards to protect your data against unauthorized access, disclosure, alteration, and destruction.

6.1 Technical Security Measures

• Secure Socket Layer (SSL) / Transport Layer Security (TLS) encryption for all data transmitted between your browser and our servers
• Encryption of stored sensitive data, including payment information
• Multi-factor authentication options for account access
• Regular security vulnerability assessments and penetration testing
• Firewalls, intrusion detection systems, and security monitoring tools
• PCI-DSS compliant payment processing infrastructure

6.2 Administrative Security Measures

• Role-based access controls limiting employee access to personal data on a need-to-know basis
• Regular employee training on data privacy and security best practices
• Confidentiality agreements and data processing agreements with service providers
• Documented incident response procedures
• Regular review and updating of our security policies

6.3 Data Breach Notification

In the event of a data security breach that is likely to result in a risk to your rights and freedoms, we will notify you and the appropriate regulatory authorities in accordance with applicable law, including state data breach notification laws. Notification will be provided within the timeframes required by law, and we will provide information about what happened, what data was affected, and what steps you can take to protect yourself.

7. Data Retention

We retain your personal information for as long as necessary to fulfill the purposes for which it was collected, to provide our services, to comply with legal obligations, resolve disputes, and enforce our agreements. The specific retention periods depend on the type of information and the purpose for which it is used.

When your personal information is no longer required, we will securely delete or anonymize it in accordance with our data retention procedures. Anonymized data may be retained indefinitely for analytical and business intelligence purposes.

8. Cookies and Tracking Technologies

Our website at churchchicks.world uses cookies, web beacons, pixel tags, and similar tracking technologies to enhance your experience, analyze website performance, and deliver relevant advertising.

8.1 Types of Cookies We Use

• Strictly Necessary Cookies: Essential for the website to function properly, including maintaining your session and enabling you to place orders. These cannot be disabled.
• Performance and Analytics Cookies: Help us understand how visitors interact with our website by collecting and reporting information anonymously (e.g., Google Analytics).
• Functionality Cookies: Enable us to remember your preferences, such as your preferred restaurant location or saved order.
• Marketing and Advertising Cookies: Used to track visitors across websites and display relevant advertisements. These may be set by us or third-party advertising partners.

8.2 Managing Cookie Preferences

You can manage your cookie preferences through your browser settings or through our cookie consent tool. Please note that disabling certain cookies may affect the functionality of our website. Most web browsers allow you to control cookies through their settings preferences. For more information about managing cookies, visit www.aboutcookies.org.

For detailed information about the specific cookies we use and how to manage them, please refer to our Cookie Policy.

9. Children's Privacy

Our website and services are intended for individuals who are 18 years of age or older. We do not knowingly collect personal information from children under the age of 13, and we do not target our services to minors.

We comply with the Children's Online Privacy Protection Act (COPPA), which restricts the collection, use, and disclosure of personal information from children under 13 without verifiable parental consent. If you are under 13 years of age, please do not use our website or provide any personal information to us.

If we become aware that we have inadvertently collected personal information from a child under 13 without appropriate parental consent, we will take immediate steps to delete that information from our records. If you believe we may have collected information from a child under 13, please contact us immediately at [email protected].

We also strongly encourage parents and guardians to monitor their children's online activities and to help enforce this Privacy Policy by instructing their children never to provide personal information on our website without parental permission.

10. International Data Transfers

churchchicks.world operates primarily within the United States, and your personal information is primarily stored and processed on servers located in the United States. However, some of our third-party service providers may be located in other countries and may process or store your personal information outside of the United States.

If personal information is transferred outside of the United States, we take appropriate measures to ensure that your information receives an adequate level of protection, including:

• Entering into data processing agreements with service providers that include appropriate data protection clauses
• Using standard contractual clauses or other approved transfer mechanisms where required
• Ensuring service providers are certified under recognized privacy frameworks

By using our website and services, you acknowledge and consent to the transfer of your personal information to countries outside of your country of residence, including the United States, which may have different data protection laws than your home country.

11. Third-Party Websites and Links

Our website may contain links to third-party websites, applications, or services that are not operated or controlled by us, including third-party delivery platforms and social media platforms. This Privacy Policy does not apply to those third-party services, and we are not responsible for the privacy practices of such third parties.

We encourage you to review the privacy policies of any third-party websites or services you visit. The inclusion of a link to a third-party website on our website does not imply our endorsement of that website or its privacy practices.

12. Do Not Track Signals

Some web browsers offer a "Do Not Track" (DNT) feature that sends a signal to websites requesting that your browsing not be tracked. Currently, there is no universally accepted standard for how companies should respond to DNT signals. As a result, we do not currently alter our data collection and use practices in response to DNT signals from web browsers. However, you may use the cookie management tools described in Section 8 of this Privacy Policy to limit certain types of tracking.

13. Legal Basis for Processing (FTC Act Compliance)

As a business operating in the United States, we collect and process personal information in accordance with the Federal Trade Commission Act, which prohibits unfair or deceptive acts or practices in commerce. Our data collection and processing practices are:

• Transparent: We clearly disclose what information we collect and how we use it through this Privacy Policy.
• Fair: We collect only the information necessary for the purposes described in this Privacy Policy and do not use it in ways that are harmful or contrary to your reasonable expectations.
• Secure: We implement reasonable safeguards to protect your personal information from unauthorized access and misuse.

Where we rely on your consent as the basis for processing (such as for marketing communications or optional analytics cookies), you have the right to withdraw that consent at any time without affecting the lawfulness of processing carried out before the withdrawal.

14. Filing a Complaint

If you have concerns about how we handle your personal information and are not satisfied with our response to your privacy inquiry or request, you may have the right to file a complaint with a relevant regulatory authority.

14.1 Federal Trade Commission (FTC)

The Federal Trade Commission is the primary consumer protection authority in the United States. You may file a complaint with the FTC if you believe we have engaged in unfair or deceptive practices:

• FTC Website: reportfraud.ftc.gov
• FTC Phone: 1-877-382-4357
• FTC Address: Federal Trade Commission, 600 Pennsylvania Avenue NW, Washington, DC 20580

14.2 California Attorney General (for California Residents)

If you are a California resident and believe that we have violated your rights under the CCPA/CPRA, you may file a complaint with the California Attorney General's Office or the California Privacy Protection Agency (CPPA):

• California Privacy Protection Agency: cppa.ca.gov
• California Attorney General: oag.ca.gov/privacy

14.3 State Attorneys General

Residents of other states may contact their respective state Attorney General's office to report privacy-related concerns. We encourage you to contact your state's consumer protection office for guidance on exercising your rights under applicable state privacy laws.

14.4 Contact Us First

Before filing a complaint with a regulatory authority, we encourage you to contact us directly at [email protected] so that we have the opportunity to address your concerns. We take all privacy complaints seriously and will work to resolve them promptly and fairly.

15. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. When we make material changes to this Privacy Policy, we will notify you by:

• Posting the updated Privacy Policy on our website at churchchicks.world with a new "Last Updated" date
• Sending an email notification to the email address associated with your account (for material changes)
• Displaying a prominent notice on our website

We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information. Your continued use of our website and services after any changes to this Privacy Policy constitutes your acceptance of the updated policy.

If you disagree with any changes to this Privacy Policy, you should discontinue your use of our services and may request deletion of your account and personal information as described in Section 5 of this Privacy Policy.

16. Contact Information for Privacy Inquiries

If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please do not hesitate to contact our privacy team. We are committed to addressing your concerns promptly and transparently.