Privacy Policy

1. Introduction

At Church's Chicken, we are deeply committed to protecting your privacy and maintaining the highest standards of data protection. This Privacy Policy explains how we collect, use, share, and protect your personal information when you interact with our services, visit our website, place orders, or engage with our brand in any way.

This policy applies to all services offered by Church's Chicken, including our website (chick-churches.rest), mobile applications, online ordering systems, loyalty programs, catering services, and in-restaurant experiences. By using our services, you agree to the terms outlined in this Privacy Policy.

2. Information We Collect

2.1 Information You Provide to Us

• Personal Identification: Name, email address, phone number, mailing address, date of birth
• Account Information: Username, password (encrypted), purchase history, order preferences, favorite items
• Order and Delivery Information: Delivery addresses, special delivery instructions, dietary preferences and restrictions
• Allergen and Dietary Information: Food allergies, dietary requirements (vegan, halal, kosher, gluten-free), health-related dietary needs
• Payment Information: Credit/debit card details (encrypted and securely stored), billing addresses, payment method preferences
• Loyalty Program Data: Rewards points, membership level, program participation history, redemption preferences
• Reservation Information: Table reservation details, party size, special occasion notes, accessibility requirements
• Catering Details: Event information, guest count, menu preferences, special requests, delivery schedules
• Communication Data: Contact form submissions, customer service interactions, feedback and reviews, survey responses
• Marketing Preferences: Communication preferences, subscription choices, promotional interests

2.2 Information We Collect Automatically

• Device Information: IP address, device type, operating system, browser type and version, screen resolution
• Usage Analytics: Pages visited, time spent on site, click patterns, navigation paths, search queries
• Location Data: Approximate location based on IP address, GPS location (with permission) for delivery services
• Cookie Data: Session identifiers, user preferences, shopping cart contents, login status
• Performance Metrics: Page load times, error reports, feature usage statistics

2.3 Information from Third Parties

• Social Media Platforms: Profile information when you connect your social media accounts
• Payment Processors: Transaction verification and fraud prevention data
• Delivery Partners: Delivery status updates and location tracking information
• Marketing Partners: Campaign performance data and audience insights (aggregated and anonymized)
• Third-Party Reviews: Public reviews and ratings from review platforms

3. How We Use Your Information

3.1 Service Provision and Order Management

• Processing and fulfilling food orders, including preparation, delivery, and pickup coordination
• Managing your account, including authentication, profile updates, and security
• Facilitating table reservations and managing restaurant capacity
• Coordinating catering services and special event orders
• Processing payments and managing billing
• Providing customer support and resolving service issues
• Ensuring food safety and accommodating dietary restrictions and allergens

3.2 Communication and Customer Service

• Sending order confirmations, preparation updates, and delivery notifications
• Providing customer support through various channels
• Responding to inquiries, feedback, and complaints
• Sending important account and service announcements
• Notifying you about policy changes or service updates

3.3 Marketing and Personalization

• Sending promotional emails and newsletters (with your explicit consent)
• Personalizing menu recommendations based on order history
• Creating targeted advertising campaigns on social media and other platforms
• Managing loyalty program benefits and rewards
• Conducting market research to improve our offerings

3.4 Analytics and Business Intelligence

• Analyzing website and app usage patterns to improve user experience
• Measuring marketing campaign effectiveness
• Understanding customer preferences and trends
• Optimizing menu offerings and pricing strategies
• Improving operational efficiency and service quality

3.5 Legal Compliance and Security

• Responding to legal requests, court orders, and regulatory requirements
• Preventing fraud and protecting against security threats
• Protecting the rights, property, and safety of Church's Chicken, customers, and employees
• Resolving disputes and enforcing our terms of service
• Maintaining records for accounting, tax, and audit purposes

4. Information Sharing and Disclosure

4.1 Service Providers and Business Partners

• Payment Processors: Secure payment processing and fraud prevention (e.g., Stripe, PayPal)
• Delivery Partners: Third-party delivery services for order fulfillment
• Cloud Storage Providers: Secure data storage and backup services (e.g., AWS, Google Cloud)
• Email Service Providers: Marketing email campaigns and transactional communications
• Analytics Providers: Website and app usage analysis (e.g., Google Analytics)
• Customer Support Tools: Live chat, helpdesk, and support ticket management
• Marketing Platforms: Social media advertising and campaign management

4.2 Legal Requirements and Safety

• Compliance with court orders, subpoenas, and legal process
• Meeting regulatory requirements from food safety and health authorities
• Cooperation with law enforcement investigations
• Protection of public safety and emergency response
• Defense of legal claims and enforcement of our rights

4.3 Business Transfers

In the event of a merger, acquisition, reorganization, or sale of assets, your personal information may be transferred to the acquiring entity. We will provide notice and ensure that the new owner maintains the same level of privacy protection outlined in this policy.

4.4 With Your Explicit Consent

We may share your information for other purposes with your explicit, informed consent. You have the right to withdraw this consent at any time.

5. Data Security

5.1 Technical Security Measures

• Encryption: All data transmission protected by SSL/TLS encryption (minimum 256-bit)
• Secure Storage: Personal data encrypted at rest using industry-standard algorithms
• Access Controls: Multi-factor authentication and role-based access for all systems
• Network Security: Advanced firewall systems and intrusion detection
• Monitoring: 24/7 security monitoring and automated threat detection
• Backup Systems: Regular encrypted backups with disaster recovery procedures
• Vulnerability Management: Regular security assessments and penetration testing

5.2 Organizational Security Measures

• Employee Training: Comprehensive privacy and security training for all staff
• Access Policies: Strict need-to-know access policies and regular access reviews
• Confidentiality Agreements: All employees and contractors sign confidentiality agreements
• Incident Response: Established procedures for security breach detection and response
• Third-Party Security: Due diligence and security requirements for all vendors
• Compliance Audits: Regular internal and external security audits

5.3 Your Security Responsibilities

• Create strong, unique passwords for your account
• Never share your account credentials with others
• Log out of your account when using public or shared computers
• Be cautious of phishing emails and suspicious links
• Report any unauthorized access to your account immediately
• Keep your contact information up to date for security notifications

6. Cookies and Tracking Technologies

Additional Tracking Technologies

• Google Analytics: Website traffic analysis and user behavior insights
• Facebook Pixel: Social media advertising effectiveness measurement
• Web Beacons: Email open rates and click tracking
• Local Storage: Browser-based data storage for improved performance
• Session Replay Tools: User experience analysis and troubleshooting

Cookie Management

You can control cookie settings through your browser preferences. Most browsers allow you to accept, reject, or delete cookies. However, disabling certain cookies may affect website functionality and your user experience. You can also use our cookie preference center to customize your settings.

7. Your Rights (GDPR/CCPA Compliance)

7.1 Right of Access

You have the right to access and receive a copy of the personal data we hold about you, including order history, account information, and communication records.

7.2 Right to Rectification

You can request correction of any inaccurate or incomplete personal data. This includes updating your contact information, dietary preferences, and account details.

7.3 Right to Erasure (Right to be Forgotten)

You may request deletion of your personal data, subject to legal retention requirements. We will delete your data unless we have legitimate grounds to retain it.

7.4 Right to Restrict Processing

You can request limitation of how we process your personal data in certain circumstances, such as while disputing data accuracy.

7.5 Right to Data Portability

You have the right to receive your personal data in a structured, machine-readable format and transfer it to another service provider.

7.6 Right to Object

You can object to processing of your personal data for marketing purposes, profiling, or other legitimate interests.

7.7 Right Against Automated Decision-Making

You have the right not to be subject to decisions based solely on automated processing, including profiling, that produce legal effects.

8. Children's Privacy

Our services are not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately.

If we discover that we have collected personal information from a child under 16 without parental consent, we will take immediate steps to delete such information from our systems. Parents are encouraged to monitor their children's online activities and help enforce this privacy policy.

For children between 16-18 years old, we recommend parental guidance when creating accounts or making orders. We may implement additional verification steps for users in this age group.

9. International Data Transfers

9.1 Protection Measures for Cross-Border Transfers

• Adequacy Decisions: Transfers to countries with adequate protection as determined by relevant authorities
• Standard Contractual Clauses: EU-approved contract terms for data protection
• Data Processing Agreements: Binding agreements with international partners
• Security Safeguards: Enhanced technical and organizational measures
• Regular Compliance Audits: Ongoing verification of international partner compliance

9.2 Transfer Destinations

• United States: Cloud storage and analytics services
• European Union: Customer service and data processing
• Other Countries: As needed for service provision with appropriate protections

10. Data Retention Periods

Safe Data Disposal Practices

• Electronic Deletion: Complete, unrecoverable deletion using industry standards
• Physical Records: Secure shredding of any physical documents
• Backup Systems: Systematic deletion from all backup and archive systems
• Third-Party Data: Coordination with partners to ensure complete deletion
• Disposal Records: Maintenance of deletion certificates and disposal logs

11. Third-Party Links and Services

Our website and mobile applications may contain links to external websites, social media platforms, partner services, or third-party payment processors. We are not responsible for the privacy practices or content of these external sites.

These third-party services have their own privacy policies and terms of use. We strongly encourage you to review their policies before providing any personal information or engaging with their services.

When you click on external links or use third-party services through our platform, you are subject to their terms and conditions. Church's Chicken does not endorse or control the content, products, or services offered by third parties.

12. Privacy Policy Changes

12.1 Change Notification Process

• Website Notice: Prominent announcement on our homepage and privacy policy page
• Email Notification: Direct email to all registered users with account contact information
• Mobile App Notifications: Push notifications and in-app announcements
• Account Dashboard: Notification within your account management area
• Social Media: Announcements on our official social media channels

12.2 Types of Changes

• Minor Updates: Clarifications, contact information updates, or formatting changes
• Material Changes: Significant modifications to how we collect, use, or share your data
• Legal Updates: Changes required by new laws or regulations

For material changes, we will provide at least 30 days' notice and may require your explicit consent to continue using our services. You always have the option to discontinue using our services if you disagree with policy changes.

We encourage you to review this privacy policy periodically. The "Last Updated" date at the top of this page indicates when the policy was last revised.

13. Contact Information

Response Commitment: We will respond to all privacy-related inquiries within 3 business days. For urgent matters, please call our customer service line during business hours.

13.1 Filing Complaints

If you are not satisfied with our response to your privacy concerns, you have the right to file a complaint with the appropriate supervisory authority:

• European Union: Your local Data Protection Authority
• United Kingdom: Information Commissioner's Office (ICO)
• California: California Privacy Protection Agency
• Other Jurisdictions: Contact your local privacy regulatory authority

14. Withdrawal of Consent

14.1 Marketing Consent Withdrawal

• Email Unsubscribe: Click the unsubscribe link in any marketing email
• Account Settings: Update your communication preferences in your account dashboard
• Customer Support: Contact our support team to remove you from marketing lists
• Phone Opt-out: Call +7 913 916-10-22 to opt out of promotional communications

14.2 Complete Account Deletion

To delete your account and withdraw all consent:

1. Log into your account dashboard
2. Navigate to "Privacy Settings" or "Account Management"
3. Select "Delete Account" and follow the verification steps
4. Confirm deletion via email verification

Important: Some information may be retained for legal compliance, even after account deletion. We will inform you of any data that must be retained and the duration of retention.

15. Conclusion

At Church's Chicken, protecting your privacy is not just a legal obligation—it's a fundamental part of our commitment to building lasting relationships with our customers. We recognize that trust is earned through consistent, transparent actions and respect for your personal information.

This privacy policy represents our promise to handle your data with the utmost care and respect. We are dedicated to maintaining the highest standards of data protection and will continue to evolve our practices as technology and regulations advance.

We value the trust you place in us when you choose Church's Chicken for your dining needs. Whether you're placing an online order, dining in our restaurants, or engaging with our loyalty program, we are committed to providing you with exceptional service while protecting your privacy.

If you have any questions, concerns, or suggestions regarding this privacy policy or our privacy practices, we encourage you to contact us. Your feedback helps us improve our services and maintain the trust you've placed in us.

Thank you for choosing Church's Chicken. We look forward to serving you while keeping your personal information safe and secure.