Privacy Policy

This Privacy Policy describes how Anthony's Coal Fired Pizza ("we," "us," "our," or the "Company") collects, uses, discloses, and protects your personal information when you visit our website at cafe-acfp.click, place orders, interact with our services, or otherwise engage with us. We are committed to protecting your privacy and ensuring the responsible handling of all personal data entrusted to us.

Please read this Privacy Policy carefully. By accessing or using our website, placing an order, or otherwise interacting with Anthony's Coal Fired Pizza, you acknowledge that you have read, understood, and agree to the practices described in this policy. If you do not agree with any part of this Privacy Policy, please discontinue use of our website and services.

We operate in the United States and comply with applicable federal and state privacy laws, including the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA), the Federal Trade Commission Act (FTC Act), and other applicable state and federal data protection regulations.

1. About Us

Anthony's Coal Fired Pizza is a food service business dedicated to providing our customers with exceptional dining experiences and quality food products. We operate through our physical locations and our digital platforms, including our website at cafe-acfp.click.

For any privacy-related questions, concerns, or requests, please contact us using the contact information provided above or through the dedicated privacy inquiry process described in Section 13 of this policy.

2. Information We Collect

We collect various types of personal information in connection with our services. The categories of information we collect are outlined below:

2.1 Personal Identification Information

When you create an account, place an order, sign up for our loyalty program, make a reservation, or contact us directly, we may collect the following personal identification information:

• Full name (first and last name)
• Email address
• Phone number
• Mailing and billing address
• Date of birth (for age verification and loyalty rewards)
• Username and password credentials for your online account
• Profile photo (if voluntarily provided)
• Dietary preferences and food allergies (when voluntarily submitted)

2.2 Payment and Financial Information

When you place an order or make a purchase through our website or associated ordering platforms, we collect payment-related information necessary to process your transaction. This may include:

• Credit or debit card number (last four digits only, stored in our systems)
• Billing name and address
• Payment method type
• Transaction history and purchase records

Full payment card details are processed through secure, PCI-DSS-compliant third-party payment processors. We do not store complete card numbers on our servers.

2.3 Order and Transaction Information

We collect detailed records of your interactions with our ordering systems, including:

• Food and beverage items ordered
• Order date, time, and frequency
• Delivery or pickup preferences and addresses
• Special instructions and customizations
• Order values and promotional codes used
• Loyalty points earned and redeemed

2.4 Usage and Technical Data

When you visit our website at cafe-acfp.click, we automatically collect certain technical and behavioral data, including:

• IP address
• Browser type and version
• Operating system and device type
• Referring and exit URLs
• Pages viewed and time spent on each page
• Links clicked and features accessed
• Search terms entered on our website
• Date and time of your visit
• Session identifiers and unique device identifiers

2.5 Location Data

With your permission, we may collect precise or approximate location data to help you find the nearest Anthony's Coal Fired Pizza location, facilitate delivery services, or provide location-specific promotions. You may disable location tracking through your device settings at any time.

2.6 Communications Data

If you contact us through email, our website contact form, customer service channels, or social media, we collect and retain the content of those communications, including your name, contact details, and the substance of your inquiry or feedback.

2.7 Cookies and Tracking Technologies

We use cookies, web beacons, pixels, local storage, and similar tracking technologies to enhance your browsing experience, analyze website traffic, and deliver personalized content and advertisements. For more detailed information, please refer to Section 9 – Cookie Usage of this policy.

2.8 Information from Third Parties

We may receive information about you from third-party sources, such as:

• Third-party food delivery platforms (e.g., DoorDash, Uber Eats, Grubhub)
• Social media platforms (when you log in using a social media account or interact with our social media pages)
• Marketing and analytics partners
• Public databases and business intelligence providers

3. How We Use Your Information

We use the personal information we collect for a variety of legitimate business purposes. These include:

3.1 Providing and Managing Our Services

• Processing and fulfilling your food orders (online, in-store, or for delivery)
• Managing your customer account and loyalty program membership
• Processing payments and issuing refunds when applicable
• Facilitating reservations and catering inquiries
• Communicating order confirmations, updates, and receipts
• Providing customer support and responding to your inquiries

3.2 Personalization and Service Improvement

• Personalizing your website experience and recommending menu items based on your order history
• Remembering your preferences and making our services more convenient for you
• Analyzing customer behavior to improve our menu, services, and website functionality
• Conducting research and analytics to better understand customer needs

3.3 Marketing and Promotional Communications

• Sending you newsletters, promotional offers, special deals, and loyalty rewards information (with your consent or where permitted by law)
• Delivering targeted advertising on our website and third-party platforms
• Notifying you about new menu items, seasonal specials, and events
• Conducting surveys and collecting feedback to improve customer satisfaction

You may opt out of marketing communications at any time by following the unsubscribe instructions included in each email, or by contacting us directly at [email protected].

3.4 Legal and Compliance Purposes

• Complying with applicable federal and state laws and regulations
• Responding to lawful requests from law enforcement or government authorities
• Enforcing our Terms of Service and other agreements
• Protecting our legal rights and interests, and those of our customers and business partners
• Preventing and detecting fraud, abuse, and security incidents

3.5 Business Operations

• Managing and maintaining the security of our IT systems and website
• Conducting internal audits and business analytics
• Supporting corporate transactions such as mergers, acquisitions, or restructuring

4. Sharing Your Information with Third Parties

We do not sell your personal information to third parties. However, we may share your personal information in the following circumstances:

4.1 Service Providers and Business Partners

We engage trusted third-party service providers who perform functions on our behalf and have access to your personal information only to the extent necessary to perform those functions. These include:

• Payment processors: To securely handle financial transactions
• Delivery platforms: Third-party delivery services (DoorDash, Uber Eats, Grubhub) that facilitate order delivery
• Website hosting and cloud services: Providers that host our website and digital infrastructure
• Analytics providers: Services such as Google Analytics to analyze website usage and performance
• Email and marketing platforms: To send transactional and promotional communications
• Customer relationship management (CRM) tools: To manage customer interactions and loyalty programs
• IT and security providers: To maintain and protect our systems

All third-party service providers are contractually required to use your information solely for the purpose of providing services to us and to maintain appropriate security measures.

4.2 Legal Requirements and Law Enforcement

We may disclose your personal information if required to do so by law, legal process, or government request, or when we believe in good faith that disclosure is necessary to:

• Comply with a legal obligation under federal or state law
• Protect and defend the rights or property of Anthony's Coal Fired Pizza
• Prevent or investigate possible wrongdoing in connection with our services
• Protect the personal safety of users of our services or the public

4.3 Business Transfers

In the event of a merger, acquisition, reorganization, sale of assets, or similar corporate transaction, your personal information may be transferred as part of that transaction. We will notify you via email and/or a prominent notice on our website of any change in ownership or uses of your personal information.

4.4 Aggregate and De-identified Data

We may share aggregate, anonymized, or de-identified information that cannot reasonably be used to identify you with third parties for marketing research, analytics, or business development purposes.

4.5 With Your Consent

We may share your information with other third parties when you have given us your explicit consent to do so.

5. Data Security

We take the security of your personal information seriously and implement a comprehensive set of technical, administrative, and physical security measures designed to protect your data from unauthorized access, disclosure, alteration, and destruction.

5.1 Technical Security Measures

• SSL/TLS Encryption: All data transmitted between your browser and our website is encrypted using industry-standard Secure Socket Layer (SSL) or Transport Layer Security (TLS) protocols.
• Data Encryption at Rest: Sensitive stored data is encrypted using modern encryption standards.
• Firewalls and Intrusion Detection: We deploy firewalls and intrusion detection systems to monitor and protect our network.
• PCI-DSS Compliance: Payment information is handled in accordance with Payment Card Industry Data Security Standards (PCI-DSS).
• Secure Access Controls: Access to your personal information is restricted to authorized personnel who have a legitimate need to access it.

5.2 Administrative Security Measures

• Regular security training for employees who handle personal data
• Documented data handling and incident response policies
• Background screening for employees with access to sensitive data
• Regular internal and external security audits

5.3 Limitations

Despite our best efforts, no method of transmission over the Internet or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal information, we cannot guarantee its absolute security. In the event of a data breach that affects your rights and freedoms, we will notify you and relevant authorities as required by applicable law.

6. Your Privacy Rights

Depending on your state of residence, you may have specific rights regarding your personal information. We are committed to honoring these rights as required by applicable law.

6.1 Rights for California Residents (CCPA/CPRA)

If you are a California resident, the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA), grants you the following rights:

6.2 General Privacy Rights (All Users)

Regardless of your location within the United States, we extend the following rights to all of our customers where practicable:

• Right to Access: You may request a copy of the personal information we hold about you.
• Right to Correction: You may request that we correct any inaccurate or incomplete information.
• Right to Deletion: You may request that we delete your personal information, subject to legal exceptions.
• Right to Data Portability: Where technically feasible, you may request that your personal information be provided to you in a structured, commonly used, machine-readable format.
• Right to Withdraw Consent: Where processing is based on your consent, you may withdraw that consent at any time without affecting the lawfulness of prior processing.
• Right to Opt Out of Marketing: You may opt out of receiving marketing communications from us at any time.

6.3 How to Exercise Your Rights

To exercise any of your privacy rights, please submit your request by:

• Email: [email protected] with the subject line "Privacy Rights Request"
• Website: cafe-acfp.click

We will verify your identity before processing your request and respond within 45 days of receipt. In complex cases, we may extend this period by an additional 45 days with prior notice. We will not charge a fee for processing your request unless it is manifestly unfounded or excessive.

7. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes for which it was collected, comply with our legal obligations, resolve disputes, and enforce our agreements. The specific retention periods we apply are as follows:

When personal information is no longer required, we will securely delete or anonymize it in accordance with our internal data governance procedures.

8. Children's Privacy

Anthony's Coal Fired Pizza does not direct its services toward minors, and our website at cafe-acfp.click is not designed or intended for use by children under 18 years of age. We do not knowingly collect, use, or disclose personal information from individuals under the age of 18.

In compliance with the Children's Online Privacy Protection Act (COPPA) and other applicable federal and state laws, if we discover that we have inadvertently collected personal information from a child under the age of 13, we will promptly delete such information from our records.

If you are a parent or guardian and believe that your child has provided us with personal information without your consent, please contact us immediately at [email protected] so that we can take appropriate action.

9. Cookie Usage

Our website at cafe-acfp.click uses cookies and similar tracking technologies to enhance user experience, analyze website traffic, and deliver personalized content and advertising. This section provides a brief overview of our cookie practices.

9.1 What Are Cookies?

Cookies are small text files placed on your device when you visit a website. They allow the website to recognize your device, remember your preferences, and collect information about your browsing behavior.

9.2 Types of Cookies We Use

• Strictly Necessary Cookies: Essential for the operation of our website, including enabling you to log in, place orders, and navigate securely.
• Performance and Analytics Cookies: These cookies collect information about how visitors use our website, such as which pages are visited most often and error messages received. We use tools like Google Analytics for this purpose.
• Functionality Cookies: These enable the website to remember your preferences (such as language settings, saved cart items, and previous order history) to provide a more personalized experience.
• Targeting and Advertising Cookies: These are used to deliver advertisements relevant to you and your interests. They may also limit how often you see an advertisement and measure the effectiveness of advertising campaigns.

9.3 Managing Cookies

You have the right to accept or decline cookies. Most web browsers automatically accept cookies, but you can modify your browser settings to decline cookies if you prefer. Disabling certain cookies may affect the functionality of our website and your ability to use certain features, including online ordering.

For comprehensive information about the cookies we use, their specific purposes, duration, and instructions on how to manage your cookie preferences, please refer to our dedicated Cookie Policy, available on our website at cafe-acfp.click.

10. International Data Transfers

Anthony's Coal Fired Pizza is a United States-based company, and our primary data processing activities occur within the United States. Your personal information is stored and processed on servers located in the United States.

If you are accessing our website or services from outside the United States, please be aware that your information may be transferred to, stored, and processed in the United States, where data protection laws may differ from those in your country of residence. By using our services, you consent to the transfer of your information to the United States.

In the event that we transfer personal data internationally, we take appropriate measures to ensure that such transfers are conducted in compliance with applicable law and that adequate protections are in place to safeguard your personal information. These measures may include entering into data transfer agreements, standard contractual clauses, or relying on other lawful transfer mechanisms.

11. Third-Party Links and Integrations

Our website may contain links to third-party websites, applications, or services that are not operated or controlled by Anthony's Coal Fired Pizza. These may include food delivery platforms, social media platforms, review websites, and payment gateways. This Privacy Policy does not apply to those third-party services.

We strongly encourage you to review the privacy policies of any third-party websites you visit. We have no responsibility or liability for the content, privacy practices, or data handling activities of third-party websites or services, even if accessed through links on our website.

Common third-party integrations you may encounter include:

• Google Analytics (web analytics)
• Google Maps (location services for finding restaurant locations)
• Social media sharing buttons (Facebook, Instagram, X/Twitter)
• Third-party delivery platforms (DoorDash, Uber Eats, Grubhub)
• Payment processors (Stripe, PayPal, or similar services)

12. Your California Privacy Rights – "Shine the Light" Law

California Civil Code Section 1798.83, also known as the "Shine the Light" law, permits California residents to request and obtain from us once per year, free of charge, information about the personal information (if any) we disclosed to third parties for direct marketing purposes in the preceding calendar year.

If you are a California resident and would like to make such a request, please submit your request in writing to: [email protected] with the subject line "California Shine the Light Request." Please include your name, address, and email address in your request. We will respond within 30 days of receipt.

13. Contact Information for Privacy Inquiries

If you have any questions, concerns, or requests related to this Privacy Policy or our data practices, please do not hesitate to contact us. Our privacy team is dedicated to addressing your inquiries in a timely and transparent manner.

When submitting a privacy request via email, please include:

• Your full name and email address associated with your account (if applicable)
• A clear description of your request or concern
• Your state of residence (for state-specific rights requests)
• Any supporting information that may help us identify your records

We will acknowledge receipt of your request within 10 business days and provide a substantive response within 45 days, or as otherwise required by applicable law.

14. Filing a Complaint with a Data Protection Authority

If you believe that our handling of your personal information violates applicable privacy laws and we have not adequately resolved your concern, you have the right to file a complaint with the relevant data protection or consumer protection authority.

14.1 Federal Agencies

• Federal Trade Commission (FTC): The FTC is the primary federal consumer protection agency in the United States. You can file a complaint at www.ftc.gov or by calling 1-877-FTC-HELP (1-877-382-4357).

14.2 California Residents

• California Privacy Protection Agency (CPPA): California residents may file a complaint with the California Privacy Protection Agency, which enforces the CCPA/CPRA. More information is available at cppa.ca.gov.
• California Attorney General: You may also contact the California Attorney General's office at oag.ca.gov.

14.3 Other States

Residents of other states may contact their respective state attorney general's office or consumer protection agency for guidance on filing a privacy complaint. Many states have active consumer protection divisions that handle privacy-related complaints.

We encourage you to contact us first at [email protected] so that we have the opportunity to address your concern directly before you escalate to a regulatory authority.

15. Changes to This Privacy Policy

We reserve the right to update or modify this Privacy Policy at any time to reflect changes in our data practices, applicable law, or business operations. When we make material changes to this policy, we will:

• Post the updated Privacy Policy on our website at cafe-acfp.click with a revised "Last Updated" date
• Provide a prominent notice on our website homepage or through other appropriate communication channels
• Where required by law, send you a direct notification via email or within your account

We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information. Your continued use of our website and services after any modification to this policy constitutes your acceptance of the updated terms.

If you have any objections to any changes made to this Privacy Policy, please discontinue your use of our services and contact us at [email protected].

16. Legal Basis for Processing (Applicable Laws)

Our collection and use of your personal information is grounded in the following legal bases, consistent with applicable United States federal and state laws:

• Performance of a Contract: Processing your orders, managing your account, and providing our food services as agreed.
• Compliance with Legal Obligations: Retaining transaction records, responding to lawful requests from authorities, and maintaining required business records pursuant to federal and state law, including IRS recordkeeping requirements and applicable state tax laws.
• Legitimate Business Interests: Analyzing website performance, improving our products and services, preventing fraud, and ensuring the security of our systems.
• Consent: Sending marketing communications, deploying non-essential cookies, and processing sensitive information (such as dietary restrictions or allergen information), where you have provided explicit consent.
• Consumer Protection Compliance: Operating in compliance with the Federal Trade Commission Act (FTC Act), which prohibits unfair or deceptive acts or practices in or affecting commerce.