Privacy Policy

1. Introduction

Welcome to Anthony's coal fired pizza ("we," "us," "our," or "Company"). We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website pizza-anthonys.digital, use our services, place orders, or interact with us in any way.

This policy applies to all information collected through our website, mobile applications, in-store interactions, phone orders, delivery services, catering services, loyalty programs, and any other services we provide. By using our services, you agree to the collection and use of information in accordance with this Privacy Policy.

If you have any questions about this Privacy Policy or our data practices, please contact us using the information provided in Section 13.

2. Information We Collect

2.1 Information You Provide to Us

We collect information that you voluntarily provide to us when you:

• Create an Account: Name, email address, phone number, username, password, date of birth, and profile preferences
• Place Orders: Delivery address, billing information, special instructions, dietary preferences, allergen information
• Payment Information: Credit/debit card details, billing address (securely encrypted and processed by certified payment processors)
• Order History: Past purchases, favorite items, order frequency, dietary restrictions
• Special Dietary Requirements: Vegan, vegetarian, gluten-free, halal, kosher, nut allergies, and other dietary preferences
• Loyalty Program: Rewards account information, points balance, tier status, participation history
• Table Reservations: Party size, preferred seating, special occasions, accessibility requirements
• Catering Services: Event details, guest count, menu preferences, delivery/setup requirements
• Contact Forms: Inquiries, feedback, customer support requests, reviews and ratings
• Marketing Preferences: Email subscription choices, communication preferences, promotional interests

2.2 Information Automatically Collected

When you use our services, we automatically collect certain information:

• Device Information: IP address, browser type and version, operating system, device identifiers
• Usage Data: Pages visited, time spent on site, clicks, scrolling behavior, search terms
• Location Data: Approximate location based on IP address, precise location (with permission) for delivery services
• Cookie Data: Session IDs, user preferences, shopping cart contents, analytics data
• Performance Data: Page load times, error reports, feature usage statistics

2.3 Information from Third Parties

We may receive information about you from:

• Social Media Platforms: If you connect your account with Facebook, Google, or other social platforms
• Payment Processors: Transaction verification, fraud prevention data
• Delivery Partners: Delivery status, location updates, delivery feedback
• Marketing Partners: Campaign performance data, audience insights (aggregated and anonymized)
• Data Analytics Providers: Website usage patterns, demographic information

3. How We Use Your Information

3.1 Service Provision

• Order Processing: Fulfilling your food orders, managing delivery logistics, processing payments
• Account Management: Creating and maintaining your user account, authentication, password resets
• Customer Support: Responding to inquiries, resolving issues, providing technical assistance
• Quality Improvement: Analyzing service performance, optimizing delivery routes, enhancing user experience
• Inventory Management: Tracking popular items, managing stock levels, seasonal planning
• Allergen Safety: Ensuring proper handling of dietary restrictions and allergen information

3.2 Communication

• Order Updates: Confirmation emails, preparation status, delivery notifications, pickup reminders
• Customer Support: Responding to questions, feedback, and service requests
• Important Notices: Policy changes, service updates, security alerts, account notifications
• Marketing Communications: Promotional offers, menu updates, special events (only with your explicit consent)
• Loyalty Program: Points updates, tier changes, exclusive offers, birthday rewards

3.3 Marketing and Analytics

• Personalization: Customized menu recommendations based on order history and preferences
• Targeted Advertising: Relevant promotional content, retargeting campaigns, social media ads
• Usage Analysis: Website traffic patterns, popular menu items, peak ordering times
• Campaign Measurement: Email open rates, click-through rates, conversion tracking
• Market Research: Customer satisfaction surveys, new product development, market trends

3.4 Legal and Security

• Legal Compliance: Meeting regulatory requirements, tax obligations, health and safety standards
• Fraud Prevention: Detecting suspicious activities, preventing unauthorized access
• Dispute Resolution: Handling complaints, refund processing, legal claims
• Protection of Rights: Safeguarding our intellectual property, enforcing terms of service
• Public Safety: Cooperating with law enforcement when legally required

4. Information Sharing and Disclosure

4.1 Service Providers

We share information with trusted third-party service providers who assist us in operating our business:

• Payment Processors: Secure transaction processing, fraud detection, payment verification
• Delivery Services: Order fulfillment, route optimization, delivery tracking, driver coordination
• Cloud Storage Providers: Secure data storage, backup services, data recovery solutions
• Email Service Providers: Marketing campaigns, transactional emails, customer communications
• Analytics Tools: Website performance analysis, user behavior insights, conversion tracking
• Customer Support Tools: Help desk systems, live chat services, ticketing systems

4.2 Legal Requirements

We may disclose your information when required by law or to protect rights and safety:

• Legal Processes: Court orders, subpoenas, search warrants, regulatory investigations
• Compliance Obligations: Tax reporting, health department inquiries, licensing requirements
• Rights Protection: Enforcing our terms of service, protecting intellectual property
• Safety Concerns: Preventing harm to customers, employees, or the public
• Emergency Situations: Responding to medical emergencies, natural disasters, security threats

4.3 Business Transfers

In the event of a merger, acquisition, or sale of assets:

• Customer information may be transferred to the new owner
• We will notify you before your information is transferred
• The new owner must comply with this Privacy Policy
• You will have the option to delete your account if you disagree with the transfer

4.4 With Your Consent

We may share your information for other purposes with your explicit consent, such as:

• Participating in third-party loyalty programs
• Sharing feedback with food bloggers or reviewers (anonymized)
• Including you in case studies or testimonials
• Partnering with other local businesses for joint promotions

5. Data Security

We implement comprehensive security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction.

5.1 Technical Security Measures

• Encryption: SSL/TLS encryption for all data transmission, AES-256 encryption for stored data
• Firewall Protection: Advanced firewall systems with intrusion detection and prevention
• Access Controls: Multi-factor authentication, role-based access restrictions, regular access reviews
• Network Security: Secure servers, VPN access for remote employees, network segmentation
• Monitoring Systems: 24/7 security monitoring, real-time threat detection, automated alerts
• Data Backups: Regular encrypted backups, disaster recovery procedures, data redundancy
• Vulnerability Management: Regular security audits, penetration testing, patch management

5.2 Organizational Security Measures

• Employee Training: Regular cybersecurity awareness training, phishing simulation tests
• Data Handling Procedures: Clear protocols for data access, processing, and storage
• Confidentiality Agreements: All employees and contractors sign confidentiality agreements
• Incident Response Plan: Documented procedures for security breaches, recovery protocols
• Third-Party Audits: Annual security assessments by independent cybersecurity firms
• Compliance Certifications: SOC 2 Type II, PCI DSS compliance for payment processing

5.3 Your Security Responsibilities

You can help protect your account by:

• Strong Passwords: Use complex passwords with letters, numbers, and special characters
• Password Protection: Never share your login credentials with others
• Secure Logout: Always log out when using public computers
• Phishing Awareness: Be cautious of suspicious emails requesting personal information
• Account Monitoring: Regularly review your account activity and order history
• Immediate Reporting: Contact us immediately if you suspect unauthorized account access

6. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience, analyze website usage, and provide personalized content. Here's a detailed breakdown of our cookie usage:

Specific Tracking Technologies We Use

• Google Analytics: Website traffic analysis, user behavior insights, conversion tracking
• Facebook Pixel: Social media advertising measurement, custom audience creation
• Email Tracking: Open rates, click-through rates, engagement metrics
• Web Beacons: Email delivery confirmation, webpage interaction tracking
• Local Storage: Browser-based storage for user preferences and temporary data
• Session Storage: Temporary data storage for single browsing sessions

Managing Your Cookie Preferences

You have several options to manage cookies:

• Browser Settings: Configure your browser to accept, reject, or delete cookies
• Cookie Banner: Use our cookie consent tool when you first visit our site
• Opt-out Links: Direct links to opt out of specific tracking services
• Privacy Settings: Adjust preferences in your account settings

Note: Disabling essential cookies may prevent you from using certain features of our website, such as placing orders or accessing your account.

7. Your Privacy Rights (GDPR/CCPA Compliance)

You have specific rights regarding your personal information, depending on your location and applicable laws:

7.1 Right of Access

You can request a copy of all personal data we hold about you, including:

• Account information and order history
• Preference settings and loyalty program data
• Communication history and support interactions
• Marketing consent status and engagement data

7.2 Right to Rectification

You can request correction of inaccurate or incomplete personal data:

• Update contact information and delivery addresses
• Correct dietary preferences and allergen information
• Modify account details and profile settings
• Fix billing information and payment methods

7.3 Right to Erasure (Right to be Forgotten)

You can request deletion of your personal data when:

• The data is no longer necessary for our services
• You withdraw consent for processing
• You object to processing and no overriding interests exist
• The data has been unlawfully processed

7.4 Right to Restrict Processing

You can limit how we use your data while maintaining your account:

• Suspend marketing communications
• Limit data sharing with partners
• Restrict analytics and tracking
• Pause loyalty program participation

7.5 Right to Data Portability

You can receive your data in a machine-readable format:

• Account information in JSON or CSV format
• Order history and preference data
• Ability to transfer data to another service

7.6 Right to Object

You can object to specific types of data processing:

• Direct marketing and promotional communications
• Profiling for marketing purposes
• Analytics and tracking (where not essential)
• Automated decision-making processes

7.7 Right Against Automated Decision-Making

You have the right not to be subject to decisions based solely on automated processing, including profiling, that significantly affects you.

8. Children's Privacy

Protecting children's privacy is especially important to us. Our services are not intended for children under 16 years of age.

Our Commitment to Children's Privacy

• No Intentional Collection: We do not knowingly collect personal information from children under 16
• Age Verification: Our registration process requires users to confirm they are 16 or older
• Parental Controls: Parents can contact us to review, modify, or delete their child's information
• Educational Purpose: Any information about children is used solely for legitimate business purposes

If We Discover Child Data

If we learn that we have collected personal information from a child under 16:

• We will delete the information immediately
• We will notify the parents if contact information is available
• We will review our collection practices to prevent future occurrences
• We will implement additional safeguards if necessary

9. International Data Transfers

As a global business, we may transfer your personal information to countries outside your residence. We ensure appropriate protection for all international transfers.

9.1 Protection Measures

• Adequacy Decisions: We rely on EU-Japan adequacy decisions where applicable
• Standard Contractual Clauses (SCCs): We use EU-approved SCCs for transfers to third countries
• Data Processing Agreements: All vendors sign comprehensive data protection agreements
• Security Assessments: Regular evaluation of international partners' security measures
• Compliance Monitoring: Ongoing audits to ensure continued protection

9.2 Primary Transfer Destinations

• United States: Cloud storage services, analytics platforms, customer support tools
• European Union: Marketing automation, email services, data analytics
• Canada: Payment processing, fraud prevention services
• Other Countries: Only with appropriate safeguards in place

For specific information about where your data is processed or stored, please contact us using the details in Section 13.

10. Data Retention Periods

We retain your personal information only as long as necessary for the purposes outlined in this policy and as required by applicable laws.

Safe Data Disposal Procedures

When data reaches the end of its retention period, we ensure secure disposal:

• Electronic Data: Complete deletion using industry-standard data wiping techniques
• Physical Records: Secure shredding by certified disposal companies
• Backup Systems: Systematic removal from all backup and archive systems
• Third-Party Data: Coordinated deletion with service providers and partners
• Disposal Documentation: Maintenance of disposal records for compliance purposes

11. Third-Party Links and Services

Our website and services may contain links to third-party websites, applications, or services. This Privacy Policy does not apply to these external sites.

Common Third-Party Integrations

• Social Media Platforms: Facebook, Instagram, Twitter sharing buttons and feeds
• Review Sites: Google Reviews, Yelp, TripAdvisor integration
• Payment Services: PayPal, Apple Pay, Google Pay checkout options
• Delivery Partners: Third-party delivery service websites and apps
• Supplier Websites: Links to ingredient sources and farm partners

Your Responsibility

When using third-party services:

• Read their privacy policies and terms of service
• Understand how they collect and use your data
• Make informed decisions about sharing information
• Contact them directly with privacy concerns
• Be aware that their practices may differ from ours

12. Policy Changes and Updates

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or business operations.

12.1 How We Notify You of Changes

• Website Notice: Prominent banner on our homepage announcing policy updates
• Email Notification: Direct email to all registered users about significant changes
• Account Dashboard: Pop-up notification when you log into your account
• Mobile App: Push notifications for mobile app users
• Social Media: Announcements on our official social media channels

12.2 Types of Changes and Notice Periods

• Minor Updates: 7 days advance notice for clarifications and non-material changes
• Significant Changes: 30 days advance notice for material changes affecting your rights
• Legal Compliance: Immediate updates when required by law with prompt notification
• New Services: 14 days notice when adding new data collection practices

12.3 Your Options When Changes Occur

When we update this policy, you have several options:

• Continue Using Services: Continued use indicates acceptance of the new terms
• Modify Preferences: Adjust your privacy settings to reflect your comfort level
• Contact Us: Reach out with questions or concerns about changes
• Withdraw Consent: Opt out of specific data uses if you disagree
• Close Account: Delete your account if you no longer agree with our practices

12.4 Staying Informed

To stay updated on privacy policy changes:

• Check the "Last Updated" date at the top of this policy regularly
• Subscribe to our newsletter for important updates
• Follow our social media accounts for announcements
• Enable email notifications in your account settings
• Bookmark this privacy policy page for easy access

13. Contact Information

Response Commitment

We are committed to addressing your privacy concerns promptly:

• Initial Response: Within 3 business days for all inquiries
• Data Access Requests: Complete response within 30 days
• Account Deletion: Processing within 5-10 business days
• Urgent Security Matters: Immediate response during business hours
• General Questions: Detailed response within 1 week

13.1 Filing Complaints

If you have concerns about our privacy practices:

• Contact Us First: We encourage you to reach out to us directly for resolution
• Supervisory Authority: If unsatisfied, you may contact your local privacy regulator
• US Residents: Federal Trade Commission (FTC) - consumer.ftc.gov
• EU Residents: Your national data protection authority
• California Residents: California Attorney General's Office

What to Include in Your Contact

To help us assist you efficiently, please provide:

• Your full name and email address associated with your account
• Specific details about your privacy concern or request
• Any relevant order numbers or account information
• Your preferred method of response (email, phone, mail)
• Any supporting documentation if applicable

14. Withdrawal of Consent

You have the right to withdraw your consent for specific types of data processing at any time. Withdrawal of consent does not affect the lawfulness of processing before withdrawal.

14.1 Marketing Consent Withdrawal

To stop receiving marketing communications:

• Unsubscribe Links: Click the unsubscribe link in any marketing email
• Account Settings: Update your email preferences in your account dashboard
• Customer Service: Call or email us to remove your details from marketing lists
• SMS Opt-out: Reply "STOP" to any promotional text messages
• Mail Preferences: Contact us to opt out of postal marketing materials

14.2 Cookie Consent Withdrawal

To modify your cookie preferences:

• Browser Settings: Clear existing cookies and modify future cookie acceptance
• Cookie Banner: Re-access our cookie consent tool to change preferences
• Privacy Settings: Update tracking preferences in your account
• Third-party Opt-outs: Use industry opt-out tools for advertising cookies

14.3 Account Deletion Process

To permanently delete your account:

1. Login: Access your account on our website
2. Account Settings: Navigate to privacy and account management
3. Delete Account: Select the permanent account deletion option
4. Confirmation: Confirm your choice via email verification
5. Processing: Allow 5-10 business days for complete deletion
6. Retention: Some data may be retained for legal compliance (see Section 10)

15. Conclusion

At Anthony's coal fired pizza, protecting your privacy is fundamental to our business values and commitment to our customers. We understand that trust is earned through consistent action and transparency, which is why we have implemented comprehensive privacy protections and maintain this detailed policy.

Our Ongoing Commitment

We pledge to:

• Continuous Improvement: Regularly review and enhance our privacy practices
• Transparency: Provide clear, understandable information about our data practices
• Respect Your Rights: Honor all privacy rights and respond promptly to your requests
• Secure Protection: Maintain industry-leading security measures for your data
• Legal Compliance: Exceed minimum requirements and follow privacy best practices
• Open Communication: Welcome your questions, feedback, and privacy concerns

Building Trust Together

Your trust enables us to provide better services and create meaningful relationships with our customers. We believe that privacy protection and business success go hand in hand, and we're committed to proving that every day through our actions.

Stay Connected

We invite you to:

• Contact us with any privacy questions or concerns
• Provide feedback on how we can improve our privacy practices
• Stay informed about updates to this policy
• Exercise your privacy rights whenever you choose
• Share your experience with our privacy commitments