Last Updated: December 15, 2024

Privacy Policy

1. Introduction

At toppers pizza, we are committed to protecting your privacy and ensuring the security of your personal information. This comprehensive Privacy Policy outlines how we collect, use, store, and protect your data when you interact with our website, mobile application, or services.

This policy applies to all personal information collected through our digital platforms, in-store visits, phone orders, delivery services, catering bookings, and any other touchpoints with our brand. By using our services, creating an account, placing orders, or providing us with your information, you agree to the terms outlined in this Privacy Policy.

Important Note: We never sell, rent, or lease your personal data to third parties for their marketing purposes. Your trust is paramount to us, and we are committed to maintaining the highest standards of data protection and privacy.

2. Information We Collect

We collect various types of information to provide you with exceptional food service and improve your dining experience with toppers pizza.

2.1 Information You Provide to Us

  • Personal Identification Information: Full name, email address, phone number, date of birth, delivery addresses, billing addresses
  • Account Information: Username, password (encrypted), profile preferences, communication preferences
  • Order and Purchase History: Food items ordered, quantities, special instructions, delivery preferences, payment history, favorite orders
  • Dietary Information: Allergen information, dietary restrictions (vegan, vegetarian, halal, kosher, gluten-free), nutritional preferences
  • Payment Information: Credit card details (securely encrypted), billing addresses, payment preferences
  • Loyalty Program Data: Reward points, tier status, redemption history, promotional preferences
  • Reservation Information: Table booking details, party size, special occasion notes, seating preferences
  • Catering Details: Event information, guest count, menu preferences, delivery logistics, special requirements
  • Communication Records: Customer service interactions, reviews, ratings, feedback, survey responses
  • Marketing Preferences: Email subscription status, SMS preferences, promotional interests

2.2 Information Automatically Collected

  • Device Information: IP address, browser type and version, operating system, device identifiers, screen resolution
  • Usage Data: Pages visited, time spent on site, click patterns, search queries, referral sources, exit pages
  • Location Information: Approximate location based on IP address, GPS coordinates (with permission), delivery zone information
  • Cookie and Tracking Data: Session cookies, persistent cookies, web beacons, pixel tags, analytics data
  • Performance Metrics: Website loading times, error logs, crash reports, feature usage statistics

2.3 Information from Third Parties

  • Social Media Platforms: Profile information when you connect your social accounts (Facebook, Instagram, Google)
  • Payment Processors: Transaction verification, fraud prevention data, payment method validation
  • Delivery Partners: Delivery status updates, driver location, completion confirmations
  • Marketing Partners: Campaign performance data, audience insights, referral information
  • Data Brokers: Publicly available information, demographic data, lifestyle preferences (with your consent)

3. How We Use Your Information

We use your personal information for various legitimate business purposes to enhance your experience with toppers pizza.

3.1 Service Provision

  • Order Processing: Managing your food orders from placement to delivery, including preparation, cooking, packaging, and delivery coordination
  • Account Management: Creating and maintaining your user account, password resets, profile updates, preference management
  • Customer Support: Responding to inquiries, resolving issues, processing refunds, handling complaints, providing assistance
  • Quality Improvement: Analyzing feedback, monitoring service quality, improving recipes, enhancing delivery processes
  • Loyalty Programs: Managing rewards points, tier benefits, personalized offers, redemption tracking
  • Reservation Services: Managing table bookings, confirming reservations, handling special requests
  • Catering Services: Event planning, menu customization, delivery logistics, post-event follow-up

3.2 Communication

  • Order Communications: Order confirmations, preparation updates, delivery notifications, completion confirmations
  • Customer Service: Responding to queries, providing order support, handling feedback, resolving issues
  • Important Notices: Policy changes, service updates, security alerts, account notifications
  • Marketing Communications: Promotional emails, special offers, new menu items, loyalty program updates (with your explicit consent)
  • SMS Notifications: Order status updates, delivery alerts, promotional messages (with opt-in consent)

3.3 Marketing and Analytics

  • Personalized Advertising: Customized product recommendations, targeted promotions, retargeting campaigns
  • Traffic Analysis: Website usage patterns, popular menu items, peak ordering times, user journey mapping
  • Campaign Effectiveness: Measuring marketing performance, ROI analysis, customer acquisition metrics
  • Market Research: Understanding customer preferences, testing new products, demographic analysis
  • Business Intelligence: Sales forecasting, inventory planning, operational optimization

3.4 Legal Compliance and Protection

  • Legal Requirements: Complying with applicable laws, regulations, and legal processes
  • Fraud Prevention: Detecting and preventing fraudulent activities, suspicious transactions, security threats
  • Safety Protection: Ensuring food safety standards, protecting customer and employee safety
  • Rights Protection: Protecting our intellectual property, enforcing terms of service, resolving disputes
  • Financial Compliance: Tax reporting, accounting requirements, financial audits

4. Information Sharing and Disclosure

We may share your personal information in specific circumstances, always with appropriate safeguards and only when necessary.

4.1 Service Providers and Business Partners

  • Payment Processors: Secure transaction processing, fraud detection, payment verification (e.g., Stripe, PayPal, Square)
  • Delivery Services: Order fulfillment, real-time tracking, delivery notifications (internal delivery team and third-party partners)
  • Cloud Storage Providers: Secure data storage, backup services, data processing (e.g., AWS, Google Cloud, Microsoft Azure)
  • Marketing Services: Email campaigns, SMS services, social media advertising, analytics platforms
  • Customer Support Tools: Help desk software, chat platforms, communication management systems
  • Analytics Providers: Website analytics, user behavior analysis, performance monitoring

4.2 Legal Requirements and Protection

  • Legal Process: Court orders, subpoenas, warrants, government requests, regulatory inquiries
  • Law Enforcement: Cooperation with investigations, crime prevention, public safety matters
  • Regulatory Compliance: Food safety inspections, health department requirements, tax authorities
  • Emergency Situations: Protecting life, health, or safety of individuals or the public
  • Legal Defense: Establishing, exercising, or defending legal claims and rights

4.3 Business Transfers

  • Mergers and Acquisitions: Transfer of data as part of business transactions, subject to continued privacy protection
  • Asset Sales: Sale of business units, assets, or subsidiaries with appropriate data protection measures
  • Customer Notification: Advance notice to customers before any business transfer affecting their data
  • Policy Compliance: Ensuring new owners maintain equivalent privacy protection standards

4.4 With Your Consent

  • Explicit Permission: Sharing data for purposes not covered in this policy, with your clear consent
  • Marketing Partnerships: Collaborative promotions with partner brands (only with opt-in consent)
  • Social Sharing: Sharing your reviews or content on social media (with permission)
  • Third-party Integrations: Connecting your account with external services you choose

5. Data Security

We implement comprehensive security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction.

5.1 Technical Security Measures

  • Encryption: SSL/TLS encryption for all data transmission, AES-256 encryption for data storage
  • Firewall Protection: Advanced firewall systems, intrusion detection and prevention systems
  • Access Controls: Multi-factor authentication, role-based access permissions, principle of least privilege
  • Monitoring: 24/7 security monitoring, real-time threat detection, automated incident response
  • Data Backup: Regular automated backups, secure off-site storage, disaster recovery procedures
  • Network Security: VPN connections, secure communication channels, network segmentation
  • Vulnerability Management: Regular security audits, penetration testing, patch management

5.2 Organizational Security Measures

  • Employee Training: Comprehensive privacy and security training for all staff members
  • Access Procedures: Strict protocols for accessing customer data, documented approval processes
  • Confidentiality Agreements: All employees and contractors sign confidentiality and data protection agreements
  • Incident Response: Detailed security incident response plan, breach notification procedures
  • Third-party Security: Due diligence assessments of all service providers, contractual security requirements
  • Regular Audits: Internal and external security audits, compliance assessments

5.3 Your Security Responsibilities

  • Strong Passwords: Use unique, complex passwords for your account, enable two-factor authentication when available
  • Account Protection: Keep your login credentials confidential, don't share your account with others
  • Secure Browsing: Log out of your account when using public computers, use secure internet connections
  • Vigilance: Be cautious of phishing emails, suspicious links, or requests for personal information
  • Reporting: Immediately report any unauthorized account access or suspicious activity

Security Breach Notification: In the unlikely event of a security breach that affects your personal information, we will promptly notify you and relevant authorities as required by law, typically within 72 hours of discovering the breach.

6. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your browsing experience, analyze website performance, and provide personalized content.

Cookie Type Purpose Duration
Essential Cookies Basic website functionality, login session management, shopping cart persistence, security features Session or until logout
Functional Cookies User preferences, language settings, location preferences, customized content delivery Up to 1 year
Analytics Cookies Website usage analysis, performance monitoring, user behavior insights, improvement planning Up to 2 years
Marketing Cookies Personalized advertising, campaign tracking, retargeting, social media integration Up to 1 year

Tracking Technologies We Use

  • Google Analytics: Website traffic analysis, user journey mapping, conversion tracking
  • Facebook Pixel: Social media advertising effectiveness, custom audience creation, conversion measurement
  • Web Beacons: Email open rate tracking, content engagement measurement
  • Local Storage: Browser-based data storage for enhanced user experience
  • Session Storage: Temporary data storage during your browsing session

Cookie Management

You can control cookies through your browser settings. Most browsers allow you to:

  • View and delete existing cookies
  • Block cookies from specific websites
  • Block third-party cookies
  • Clear all cookies when you close your browser
  • Set preferences for cookie acceptance

Please note: Disabling essential cookies may affect website functionality and your ability to place orders or access certain features.

7. Your Rights and Choices

We respect your privacy rights and provide you with comprehensive control over your personal information, in compliance with GDPR, CCPA, and other applicable privacy laws.

7.1 Right of Access

You have the right to request and receive a copy of the personal information we hold about you, including:

  • What personal data we collect
  • How we use your information
  • Who we share your data with
  • How long we retain your information
  • Your rights regarding your data

7.2 Right to Rectification

You can request correction of inaccurate or incomplete personal information, including:

  • Updating contact information
  • Correcting order history errors
  • Modifying dietary preferences or restrictions
  • Updating payment information

7.3 Right to Erasure (Right to be Forgotten)

You can request deletion of your personal information when:

  • The data is no longer necessary for the original purpose
  • You withdraw consent and there's no other legal basis
  • You object to processing and there are no overriding legitimate interests
  • The data has been unlawfully processed

7.4 Right to Restrict Processing

You can request limitation of how we process your data when:

  • You contest the accuracy of the data
  • Processing is unlawful but you don't want erasure
  • We no longer need the data but you need it for legal claims
  • You've objected to processing pending verification

7.5 Right to Data Portability

You can request to receive your personal data in a structured, commonly used, machine-readable format, including:

  • Account information and preferences
  • Order history and transaction records
  • Loyalty program data
  • Communication preferences

7.6 Right to Object

You can object to processing of your personal data for:

  • Direct marketing purposes (including profiling)
  • Processing based on legitimate interests
  • Scientific or historical research purposes
  • Statistical purposes

7.7 Right Against Automated Decision-Making

You have the right not to be subject to decisions based solely on automated processing, including profiling, that produce legal or significant effects. You can:

  • Request human intervention in the decision-making process
  • Express your point of view regarding automated decisions
  • Contest decisions made through automated processing

How to Exercise Your Rights

To exercise any of these rights, please contact us using the information in Section 13. We will respond to your request within 30 days (or as required by applicable law). We may need to verify your identity before processing certain requests.

8. Children's Privacy

toppers pizza is committed to protecting the privacy of children. Our services are not intended for individuals under the age of 16, and we do not knowingly collect personal information from children under 16 years of age.

If we become aware that we have collected personal information from a child under 16 without appropriate parental consent, we will take immediate steps to delete such information from our records. If you are a parent or guardian and believe that your child under 16 has provided us with personal information, please contact us immediately.

For users between 13-16 years old in certain jurisdictions, we may require verifiable parental consent before collecting any personal information. Parents and guardians have the right to:

  • Review their child's personal information
  • Request deletion of their child's information
  • Refuse to permit further collection or use of their child's information

9. International Data Transfers

As a global food service provider, we may transfer your personal information to countries outside your region for processing and storage. We ensure appropriate protection for these transfers.

9.1 Protection Measures for International Transfers

  • Adequacy Decisions: Transfers to countries recognized by relevant authorities as providing adequate data protection (e.g., EU-Japan adequacy decision)
  • Standard Contractual Clauses (SCCs): Use of EU-approved contractual terms for transfers to countries without adequacy decisions
  • Data Processing Agreements: Comprehensive contracts with all service providers requiring equivalent data protection
  • Security Measures: Technical and organizational measures to protect data during transfer and storage
  • Regular Audits: Ongoing compliance monitoring and assessment of international partners

9.2 Transfer Destinations

  • United States: Cloud storage services, payment processing, customer support systems
  • European Union: Data analytics, marketing services, customer relationship management
  • Other Countries: As necessary for business operations, always with appropriate safeguards

We regularly review and update our international transfer mechanisms to ensure compliance with evolving privacy laws and maintain the highest standards of data protection.

10. Data Retention Periods

We retain your personal information only as long as necessary to fulfill the purposes outlined in this Privacy Policy, comply with legal obligations, and protect our legitimate business interests.

Information Type Retention Period Reason for Retention
Account Information 6 months after account deletion Legal obligations, dispute resolution, fraud prevention
Order and Purchase History 7 years after transaction Tax and accounting requirements, warranty claims
Payment Information As required by payment processors Chargeback protection, refund processing
Marketing Consent Records 3 months after consent withdrawal Compliance evidence, consent management
Website Usage Logs Up to 2 years Security monitoring, performance analytics
Customer Support Records 3 years after last contact Service quality improvement, training purposes
Loyalty Program Data 3 years after program termination Reward redemption, program administration
Dietary Preferences Until account deletion or update Food safety, personalized service
Delivery Information 1 year after last order Delivery optimization, address verification
Catering Event Data 3 years after event completion Future event planning, service improvement

Safe Data Disposal

When we no longer need your personal information, we securely dispose of it using the following methods:

  • Electronic Data: Secure deletion using industry-standard methods ensuring data cannot be recovered
  • Physical Records: Professional shredding and incineration of paper documents
  • Backup Systems: Systematic removal from all backup and archival systems
  • Third-party Data: Notification to service providers to delete data in accordance with agreements
  • Disposal Records: Maintenance of disposal logs for compliance and audit purposes

11. Third-Party Links and Services

Our website and mobile application may contain links to third-party websites, social media platforms, payment processors, and other external services. This Privacy Policy applies only to toppers pizza services.

We are not responsible for the privacy practices, content, or security of third-party websites or services. These external sites have their own privacy policies and terms of service, which may differ significantly from ours.

Important Considerations

  • Review Third-Party Policies: Always review the privacy policy and terms of service of any third-party website before providing personal information
  • Data Protection: Third-party sites may have different data protection standards and practices
  • Information Sharing: Be aware of what information you share when using third-party services
  • Cookie Policies: Third-party sites may use different cookie and tracking practices
  • Security Standards: Third parties may have different security measures than toppers pizza

We encourage you to be cautious when sharing personal information on any website and to understand the privacy implications of using third-party services linked from our platforms.

12. Policy Changes and Updates

We may update this Privacy Policy periodically to reflect changes in our practices, services, legal requirements, or business operations. We are committed to keeping you informed about any changes that may affect your privacy rights.

12.1 Notification Methods for Changes

  • Website Notice: Prominent display of changes on our website homepage and privacy policy page
  • Email Notification: Direct email notification to registered users for significant changes
  • In-App Notifications: Push notifications through our mobile application
  • Account Dashboard: Notifications in your account dashboard when you log in
  • Social Media: Announcements on our official social media channels for major updates

12.2 Types of Changes

  • Minor Updates: Clarifications, formatting improvements, contact information updates - no separate notification required
  • Material Changes: Changes affecting your rights, new data collection practices, significant policy modifications - advance notification provided
  • Legal Updates: Changes required by new laws or regulations - immediate implementation with notification

12.3 Your Options Following Changes

  • Acceptance: Continued use of our services indicates acceptance of updated terms
  • Withdrawal: Right to withdraw consent or close your account if you disagree with changes
  • Data Portability: Request for data export before discontinuing service

We recommend regularly checking this Privacy Policy for updates. The "Last Updated" date at the top of this document indicates when the policy was last revised.

Need Help with Privacy Questions?

Our privacy team is here to help you understand how we protect your information.

Email: [email protected]

Phone: +1 212-219-0764

13. Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please don't hesitate to contact us. We're committed to addressing your privacy concerns promptly and thoroughly.

toppers pizza Privacy Team

  • Company Name: toppers pizza
  • Physical Address: 265 Elizabeth St, New York, NY 10012, USA
  • Phone: +1 212-219-0764
  • Email: [email protected]
  • Business Hours: Monday-Friday 9:00 AM - 6:00 PM EST, Saturday 10:00 AM - 4:00 PM EST
  • Response Time: We aim to respond to all privacy inquiries within 3 business days

13.1 Filing Complaints

We encourage you to contact us first with any privacy concerns so we can work together to resolve them. However, if you're not satisfied with our response, you have the right to file a complaint with the appropriate supervisory authority:

  • For EU Residents: Your local Data Protection Authority (DPA)
  • For UK Residents: Information Commissioner's Office (ICO)
  • For California Residents: California Attorney General's Office
  • For Canadian Residents: Office of the Privacy Commissioner of Canada

14. Withdrawal of Consent

You have the right to withdraw your consent for certain data processing activities at any time. Withdrawing consent will not affect the lawfulness of processing based on consent before its withdrawal.

14.1 Marketing Consent Withdrawal

You can easily withdraw consent for marketing communications through several methods:

  • Unsubscribe Links: Click the unsubscribe link at the bottom of any marketing email
  • Account Settings: Log into your account and update your communication preferences
  • Customer Support: Contact our support team to opt out of marketing communications
  • SMS Opt-out: Reply "STOP" to any marketing text message
  • Email Request: Send an email to [email protected] requesting removal from marketing lists

14.2 Account Deletion Process

To permanently delete your account and associated personal information:

  1. Log into your account and navigate to account settings
  2. Select "Delete Account" or "Close Account" option
  3. Confirm your identity through our verification process
  4. Review information about data that will be retained for legal compliance
  5. Submit your deletion request
  6. Receive confirmation email within 24 hours
  7. Account deletion completed within 30 days

Important Note: Some information may be retained as required by law for tax, accounting, or legal purposes, typically for 7 years after account closure.

15. Conclusion

At toppers pizza, your privacy is not just a legal obligation—it's a fundamental aspect of the trust you place in us when choosing our food services. We are committed to maintaining the highest standards of data protection while delivering exceptional culinary experiences.

This comprehensive Privacy Policy reflects our dedication to transparency, accountability, and respect for your personal information. We understand that privacy is essential to building lasting relationships with our customers, and we take this responsibility seriously.

We invite you to contact us with any questions, concerns, or feedback about our privacy practices. Your input helps us continuously improve our data protection measures and ensure we meet your expectations for privacy and security.

Thank you for trusting toppers pizza with your personal information and for being a valued member of our food community. We look forward to serving you delicious meals while keeping your privacy protected.

Remember to check this Privacy Policy regularly for updates. Last updated: December 15, 2024