Privacy Policy

Effective Date: June 21, 2026 | Last Updated: June 21, 2026

Welcome to Punch Pizza. We are committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website punchpizza-eat.digital, place an order with us, or otherwise interact with our services. Please read this policy carefully. If you disagree with its terms, please discontinue use of our site and services.

This Privacy Policy has been prepared in compliance with applicable United States federal and state privacy laws, including the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA), the Federal Trade Commission Act (FTC Act), and other relevant consumer protection regulations. Because our services are food-based and directed to adults, we also comply with the Children's Online Privacy Protection Act (COPPA).

1. About Us

Punch Pizza is a food service business operating in the United States. We operate the website punchpizza-eat.digital through which customers can browse our menu, place orders, and interact with our brand. For any privacy-related inquiries, you may reach us using the contact details below:

Business Name: Punch Pizza
Email: [email protected]
Website: punchpizza-eat.digital

2. Information We Collect

We collect various types of information in connection with your use of our website and services. The categories of personal information we may collect are outlined below.

2.1 Personal Information You Provide Directly

When you interact with our website, create an account, place an order, sign up for our newsletter, or contact us, you may provide us with personal information that directly identifies you. This may include:

Contact Details: Full name, email address, phone number, and delivery address.
Account Information: Username, password, and account preferences when you register with us.
Order Information: Details of the food items you have ordered, special instructions, dietary preferences, and order history.
Payment Information: Credit card numbers, debit card numbers, billing addresses, and other payment details. Note that payment card data is processed through secure, PCI-DSS-compliant third-party payment processors and is not stored directly on our servers.
Communications: Messages, feedback, reviews, complaints, or any other content you submit to us through contact forms, email, or other communication channels.
Promotional Preferences: Whether you wish to receive marketing communications from us, and your preferences regarding such communications.

2.2 Usage Data Collected Automatically

When you visit our website, certain information is collected automatically through your browser and device. This usage data helps us understand how our website is being used and enables us to improve your experience. This may include:

Your Internet Protocol (IP) address
Browser type, version, and language settings
Operating system and device type
Pages you visit on our website and the time spent on each page
Links and buttons you click
Referring URLs (the website that directed you to ours)
Date and time of your visit
Crash reports and error logs

2.3 Cookies and Tracking Technologies

We use cookies, web beacons, pixel tags, and similar tracking technologies to enhance your experience on our website. Cookies are small text files stored on your device that help us recognize you and remember your preferences. For detailed information about the types of cookies we use and how to manage your cookie preferences, please refer to our Cookie Policy available on our website.

Categories of cookies we use include:

Strictly Necessary Cookies: Required for the website to function properly, including maintaining your session and processing orders.
Performance and Analytics Cookies: Help us understand visitor behavior and improve our website performance.
Functional Cookies: Remember your preferences, such as saved items in your cart or your location for delivery purposes.
Marketing and Advertising Cookies: Used to deliver targeted advertisements relevant to your interests.

2.4 Device Information

We may collect information about the device you use to access our website or mobile application, including hardware model, unique device identifiers, mobile network information, and, with your permission, location data such as GPS coordinates or approximate location derived from your IP address.

2.5 Information from Third Parties

We may also receive information about you from third-party sources such as:

Social media platforms, if you connect your account or interact with our social media pages
Third-party food delivery partners and platforms
Analytics providers
Advertising and marketing partners
Fraud detection and prevention services

3. How We Use Your Information

We use the personal information we collect for various legitimate business purposes. The primary uses of your information are described below.

3.1 Service Provision and Order Fulfillment

To process and fulfill your food orders, including arranging delivery or pickup
To communicate with you about your orders, including confirmation emails, order status updates, and delivery notifications
To manage your account and provide you with customer support
To process payments and prevent fraudulent transactions
To handle refunds, returns, and complaints

3.2 Website Operation and Improvement

To maintain, operate, and improve our website and mobile applications
To monitor and analyze usage patterns, traffic, and trends
To diagnose technical problems and ensure security
To develop new features, products, and services
To conduct research and analysis to better understand our customers' needs

3.3 Marketing and Promotions

To send you promotional emails, newsletters, and special offers, subject to your preferences and applicable law
To personalize your experience and deliver content and product recommendations tailored to your interests
To display targeted advertisements on our website and on third-party platforms
To conduct surveys, promotions, sweepstakes, and loyalty programs

You may opt out of receiving marketing communications from us at any time by clicking the "unsubscribe" link in any email we send, or by contacting us at [email protected]. Please note that even if you opt out of marketing emails, we may still send you transactional or service-related communications.

3.4 Legal Compliance and Safety

To comply with applicable laws, regulations, and legal processes
To enforce our Terms of Service and other agreements
To detect, investigate, and prevent fraudulent, harmful, unauthorized, or illegal activity
To protect the rights, safety, and property of Punch Pizza, our customers, and the public
To respond to lawful requests from courts, law enforcement, and regulatory authorities

4. Sharing Your Information with Third Parties

We do not sell your personal information to third parties. However, we may share your information with certain trusted third parties as described in this section.

4.1 Service Providers

We engage third-party companies and individuals to perform services on our behalf. These service providers have access to your personal information only to the extent necessary to perform their functions and are contractually obligated to protect your data. Our service providers include:

Payment Processors: Companies that securely handle payment card transactions on our behalf
Delivery Partners: Third-party logistics and delivery services that fulfill your food orders
Cloud Hosting Providers: Companies that host our website and store our data securely
Email and Communications Providers: Services used to send transactional and marketing emails
Analytics Providers: Services such as Google Analytics that help us understand website usage
Customer Support Tools: Platforms that help us manage customer inquiries and complaints
Fraud Prevention Services: Companies that help us detect and prevent fraudulent activity

4.2 Business Transfers

In the event that Punch Pizza undergoes a merger, acquisition, reorganization, sale of assets, or bankruptcy proceeding, your personal information may be transferred to the acquiring entity or successor as part of such transaction. We will notify you via email or a prominent notice on our website of any such change in ownership and the choices you may have regarding your personal information.

4.3 Legal Requirements

We may disclose your personal information if we believe in good faith that such disclosure is necessary to:

Comply with a legal obligation, court order, subpoena, or other legal process
Respond to a lawful request by governmental authorities, including law enforcement
Enforce our Terms of Service or other contractual agreements
Protect the rights, property, or safety of Punch Pizza, our users, or the public
Detect, prevent, or address fraud, security breaches, or technical issues

4.4 With Your Consent

We may share your information with additional third parties when we have your explicit consent to do so. You will be notified clearly at the time of consent what information is being shared and with whom.

4.5 Aggregated or De-Identified Data

We may share aggregated or de-identified information that cannot reasonably be used to identify you with third parties for industry analysis, research, advertising, or other lawful business purposes.

5. Data Security

We take the security of your personal information seriously and implement a range of technical, administrative, and physical safeguards designed to protect your data against unauthorized access, loss, destruction, alteration, or disclosure.

5.1 Security Measures We Implement

Encryption: We use Secure Socket Layer (SSL) / Transport Layer Security (TLS) encryption to protect data transmitted between your browser and our website.
Access Controls: Access to personal data is restricted to authorized personnel on a need-to-know basis. All employees with access to personal data are subject to confidentiality obligations.
Secure Payment Processing: Payment transactions are processed through PCI-DSS-compliant third-party payment processors. We do not store full credit card numbers on our systems.
Regular Security Audits: We conduct periodic reviews and assessments of our security practices and systems to identify and address vulnerabilities.
Data Minimization: We collect only the personal information that is necessary for the purposes described in this policy.
Incident Response: We have procedures in place to detect, report, and investigate data security incidents.

5.2 Limitations

While we strive to use commercially acceptable means to protect your personal information, no method of transmission over the Internet or method of electronic storage is 100% secure. Therefore, we cannot guarantee the absolute security of your information. In the event of a data breach that is likely to result in a risk to your rights and freedoms, we will notify you and the appropriate regulatory authorities as required by applicable law.

6. Your Privacy Rights

Depending on your location within the United States, you may have specific legal rights regarding your personal information. We honor all applicable rights and have put in place processes to help you exercise them.

6.1 Rights Under the California Consumer Privacy Act (CCPA) / California Privacy Rights Act (CPRA)

If you are a California resident, you have the following rights under the CCPA/CPRA:

Right	Description
Right to Know	You have the right to request that we disclose what personal information we have collected, used, disclosed, and sold about you.
Right to Delete	You have the right to request deletion of personal information we have collected from you, subject to certain exceptions.
Right to Correct	You have the right to request that we correct inaccurate personal information we maintain about you.
Right to Opt-Out of Sale or Sharing	You have the right to opt out of the sale or sharing of your personal information for cross-context behavioral advertising.
Right to Limit Use of Sensitive Personal Information	You have the right to limit our use and disclosure of your sensitive personal information to what is necessary for providing our services.
Right to Non-Discrimination	We will not discriminate against you for exercising any of your CCPA/CPRA rights.
Right to Data Portability	You may request a copy of your personal information in a portable, machine-readable format.

To exercise your California privacy rights, please submit a verifiable consumer request to us by emailing [email protected]. We will respond to your request within 45 days of receipt, and may extend this period by an additional 45 days where necessary, with prior notice.

6.2 General Privacy Rights for All US Residents

Regardless of your state of residence, we commit to providing the following rights to all our customers:

Right to Access: You may request a copy of the personal information we hold about you.
Right to Correction: You may ask us to correct any inaccurate or incomplete personal information.
Right to Deletion: You may request that we delete your personal information, subject to our legal obligations to retain certain data.
Right to Opt-Out of Marketing: You may opt out of marketing communications at any time.
Right to Data Portability: You may request your data in a structured, commonly used, and machine-readable format.

6.3 How to Submit a Privacy Request

To exercise any of the rights described above, please contact us using the following methods:

Email: [email protected]
Website: punchpizza-eat.digital

When submitting a request, please include sufficient information to allow us to verify your identity and locate your records. We may ask you to provide additional verification information to protect your privacy and ensure we are responding to the correct individual.

7. Cookie Policy Summary

Our website uses cookies and similar tracking technologies to provide and improve our services, personalize your experience, and analyze how our website is used. This section provides a brief overview of our cookie practices. For full details, please refer to our dedicated Cookie Policy page on punchpizza-eat.digital.

What are cookies? Cookies are small data files that are placed on your computer or mobile device when you visit a website. They are widely used to make websites work more efficiently and to provide reporting information.

Your cookie choices: Most web browsers are set to accept cookies by default. You can usually modify your browser settings to decline cookies, block third-party cookies, or alert you when a cookie is being sent. Please note that disabling cookies may affect the functionality of our website and your ability to place orders.

We also honor browser-based "Do Not Track" (DNT) signals and Global Privacy Control (GPC) signals where technically feasible, consistent with applicable law, including requirements under the CPRA.

8. Data Retention

We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

Type of Data	Retention Period
Account and Registration Information	For the duration of your account, plus up to 3 years after account closure
Order History and Transaction Records	7 years, for tax and accounting compliance purposes
Payment Information	As required by PCI-DSS standards and applicable financial regulations
Marketing Preferences and Communications	Until you opt out, then retained for recordkeeping for up to 3 years
Website Usage and Analytics Data	Up to 26 months from collection
Customer Support Records	Up to 3 years from the date of resolution
Legal and Compliance Records	As required by applicable law, typically 5-7 years

When personal information is no longer needed for the purposes for which it was collected, we will securely delete, destroy, or anonymize it in accordance with our data retention procedures and applicable legal requirements.

9. Children's Privacy

Our website and services are intended for use by individuals who are 18 years of age or older. We do not knowingly collect personal information from children under the age of 13. If you are under 18, please do not use our website or provide any personal information to us.

In compliance with the Children's Online Privacy Protection Act (COPPA), if we become aware that we have inadvertently collected personal information from a child under the age of 13 without verifiable parental consent, we will take immediate steps to delete such information from our records.

If you are a parent or guardian and you believe that your child has provided us with personal information, please contact us immediately at [email protected] so that we can take appropriate action.

10. International Data Transfers

Punch Pizza is based in the United States, and our website and services are primarily directed at users located in the United States. Your personal information is collected, processed, and stored on servers located within the United States.

If you are accessing our website from outside the United States, please be aware that your information may be transferred to, stored, and processed in the United States, where data protection laws may differ from those in your country of residence. By using our services, you acknowledge and consent to the transfer of your personal information to the United States.

We take appropriate steps to ensure that any international transfers of personal data are conducted in accordance with applicable law and that your information remains protected to the standards described in this Privacy Policy. When we engage third-party service providers located outside the United States, we ensure that appropriate contractual safeguards are in place to protect your data.

11. Third-Party Links and Services

Our website may contain links to third-party websites, applications, or services, including social media platforms, delivery partners, and payment processors. These third-party services operate independently and have their own privacy policies, which we encourage you to review.

We are not responsible for the privacy practices or content of any third-party websites or services. The inclusion of any link on our website does not imply our endorsement of the linked site. Your interactions with third-party sites are governed solely by their own privacy policies and terms of service.

12. Your California Privacy Rights — "Shine the Light" Law

California Civil Code Section 1798.83 (the "Shine the Light" law) permits California residents to request information about the categories of personal information that we have shared with third parties for direct marketing purposes during the preceding calendar year. If you are a California resident and wish to make such a request, please contact us at [email protected] with the subject line "California Shine the Light Request."

13. How to File a Privacy Complaint

If you have a concern about how we are handling your personal information and are not satisfied with our response, you have the right to file a complaint with the relevant data protection authority. In the United States, the following bodies may be relevant to your complaint:

13.1 Federal Trade Commission (FTC)

The FTC is the primary federal agency responsible for consumer protection in the United States, including enforcement of the FTC Act regarding unfair or deceptive privacy practices. You may file a complaint with the FTC at:

Website: www.ftc.gov/complaint
Phone: 1-877-FTC-HELP (1-877-382-4357)
Address: Federal Trade Commission, 600 Pennsylvania Avenue, NW, Washington, DC 20580

13.2 California Privacy Protection Agency (CPPA)

California residents may also file privacy-related complaints with the California Privacy Protection Agency, which is responsible for enforcing the CCPA/CPRA. You may contact the CPPA at:

Website: cppa.ca.gov
Email: [email protected]

13.3 State Attorney General Offices

In addition to the above, you may contact your state's Attorney General office if you believe your privacy rights have been violated under state law. Most states have a consumer protection division that handles privacy-related complaints.

13.4 Contact Us First

Before filing a formal complaint with a regulatory authority, we encourage you to contact us directly to give us an opportunity to resolve your concern. We are committed to addressing all privacy inquiries promptly and fairly.

14. Do Not Sell or Share My Personal Information

Under the CCPA/CPRA, California residents have the right to opt out of the sale or sharing of their personal information. While we do not sell personal information in the traditional sense, we may share certain information with advertising and analytics partners in ways that may be considered "sharing" under the CPRA for cross-context behavioral advertising purposes.

To opt out of the sharing of your personal information for cross-context behavioral advertising, please contact us at [email protected] or use any opt-out mechanism available in our cookie preference settings.

We also honor Global Privacy Control (GPC) signals, which communicate your preference to opt out of the sale and sharing of your personal information automatically when you browse our website.

15. Automated Decision-Making

We may use automated processes to personalize your experience on our website, such as recommending menu items based on your order history or location. Where required by applicable law, we will inform you about the use of automated decision-making that produces legal or similarly significant effects about you, and provide you with the ability to request human review of such decisions.

Currently, we do not use fully automated decision-making processes that would produce legally binding or otherwise significantly affecting decisions about you without human involvement.

16. Changes to This Privacy Policy

We reserve the right to update or modify this Privacy Policy at any time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes to this policy, we will:

Update the "Effective Date" and "Last Updated" date at the top of this page
Post the updated Privacy Policy on our website at punchpizza-eat.digital
Notify you via email (if you have provided your email address) or through a prominent notice on our website for significant changes

Your continued use of our website or services after the effective date of any changes constitutes your acceptance of the updated Privacy Policy. We encourage you to review this policy periodically to stay informed about how we protect your information.

17. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please do not hesitate to contact us. We take all privacy inquiries seriously and will respond as promptly as possible.

Privacy Inquiries — Punch Pizza

Business Name: Punch Pizza
Email: [email protected]
Website: punchpizza-eat.digital

Response Time: We aim to respond to all privacy-related inquiries within 10 business days. For formal CCPA/CPRA requests, we will respond within the legally required timeframe of 45 days, with a possible extension of up to an additional 45 days where required.

This Privacy Policy was last reviewed and updated on June 21, 2026. It is effective as of the same date and supersedes all previous versions of Punch Pizza's Privacy Policy.