Privacy Policy

Effective Date: April 7, 2026 | Last Updated: April 7, 2026

This Privacy Policy describes how chickenchurch.rest ("we," "us," "our," or "the Company") collects, uses, stores, shares, and protects information obtained from visitors and users of our website located at chickenchurch.rest (the "Site") and any related services, features, content, or applications offered in connection with our food service business (collectively, the "Services"). By accessing or using our Site or Services, you acknowledge that you have read, understood, and agree to the terms of this Privacy Policy.

We are committed to protecting your privacy and handling your personal information in a transparent, responsible, and lawful manner. This policy has been drafted in compliance with applicable United States federal and state privacy laws, including but not limited to the California Consumer Privacy Act (CCPA), the California Privacy Rights Act (CPRA), the Federal Trade Commission Act (FTC Act), and other applicable consumer protection regulations.

If you have any questions, concerns, or requests related to this Privacy Policy, please contact us using the contact details provided at the end of this document.

1. Information We Collect

We collect various types of information from and about users of our Site and Services. This includes information that identifies you personally, information about how you use our Site, and technical information about the devices you use to access our Services.

1.1 Personal Identification Information

When you interact with our Site or Services, we may collect personally identifiable information ("PII") that you voluntarily provide to us. This includes, but is not limited to:

Full name – used to personalize your experience and process orders or inquiries.
Email address – used for account creation, order confirmations, customer service communications, and marketing (with your consent).
Phone number – used for order updates, customer support, and promotional SMS messages (where opted in).
Mailing and delivery address – used to fulfill delivery orders and provide localized service information.
Billing information – including payment card details processed through secure third-party payment processors; we do not store full card numbers on our servers.
Date of birth or age verification data – used to confirm that users meet our minimum age requirement of 18 years.
Dietary preferences and food order history – used to personalize recommendations and improve our food offerings.
Account credentials – including username and encrypted passwords for registered accounts.
Communications you send us – including messages submitted via contact forms, emails to [email protected], or chat support tools.

1.2 Usage and Behavioral Data

When you visit our Site, we automatically collect certain information about your browsing behavior and interactions, including:

Pages visited, time spent on each page, and navigation paths.
Search queries entered on our Site.
Items added to or removed from a shopping cart or order queue.
Clicks, scrolls, and interaction patterns with Site content.
Referral sources (e.g., how you arrived at our Site).
Frequency and recency of visits.

1.3 Device and Technical Information

We collect technical data from the devices you use to access our Site, including:

IP address and approximate geographic location derived from it.
Browser type and version.
Operating system and device type (desktop, mobile, tablet).
Screen resolution and display settings.
Unique device identifiers and mobile advertising IDs.
Time zone settings and language preferences.
Referring URLs and exit pages.

1.4 Location Data

With your permission, we may collect precise geolocation data to provide location-based features such as finding the nearest restaurant location, estimating delivery times, or displaying region-specific promotions. You may disable location access through your device settings at any time.

1.5 Cookie and Tracking Technology Data

We use cookies, web beacons, pixel tags, local storage objects, and similar tracking technologies to collect information about your interaction with our Site. Please refer to Section 7 of this Privacy Policy for detailed information about our use of cookies and your options for managing them.

1.6 Information from Third Parties

We may receive information about you from third-party sources, including:

Social media platforms (if you choose to connect your account or log in via social authentication).
Advertising partners and analytics providers.
Delivery platform partners and third-party ordering applications.
Fraud prevention and identity verification services.

2. How We Use Your Information

We use the information we collect for legitimate business purposes consistent with your expectations when you use our Services. Specifically, we use your information for the following purposes:

2.1 Providing and Managing Our Services

Processing and fulfilling food orders, including online orders, delivery, and pickup.
Creating and maintaining your user account.
Sending order confirmations, receipts, and updates.
Responding to customer inquiries, complaints, and support requests.
Processing payments and preventing fraudulent transactions.
Verifying your identity and age eligibility.

2.2 Improving Our Services

Analyzing usage patterns to identify areas for improvement on our Site and menu offerings.
Conducting internal research and analytics to understand customer behavior and preferences.
Testing new features, layouts, and promotions before general launch.
Monitoring Site performance and resolving technical issues.

2.3 Marketing and Promotional Communications

Sending promotional emails, newsletters, and special offers (with your consent or where permitted by law).
Delivering personalized advertisements based on your browsing history and order preferences.
Sending SMS or push notifications about deals, new menu items, or loyalty rewards (where opted in).
Conducting surveys, sweepstakes, and promotional campaigns.

You may opt out of marketing communications at any time by clicking the "unsubscribe" link in any promotional email, texting STOP in response to an SMS, or contacting us at [email protected].

2.4 Legal and Compliance Purposes

Complying with applicable federal and state laws and regulations.
Enforcing our Terms of Service and other agreements.
Protecting our rights, property, and the safety of our users and employees.
Responding to lawful requests from government authorities or law enforcement.

2.5 Personalization

Remembering your preferences and settings for future visits.
Recommending menu items based on past orders and browsing behavior.
Displaying location-relevant promotions and store information.

3. Sharing Your Information with Third Parties

We respect your privacy and do not sell your personal information to third parties for monetary compensation. However, we may share your information with third parties under the following circumstances:

3.1 Service Providers and Business Partners

We work with trusted third-party companies and individuals who assist us in operating our Site and delivering our Services. These include:

Payment processors – to securely handle transactions.
Cloud hosting and IT infrastructure providers – to store and maintain our data systems.
Delivery and logistics partners – to fulfill food delivery orders.
Customer support platforms – to manage support tickets and communications.
Email and SMS marketing platforms – to deliver promotional communications.
Analytics providers (e.g., Google Analytics) – to analyze Site usage and performance.
Advertising networks – to deliver targeted advertisements.
Fraud prevention services – to detect and prevent unauthorized activity.

All service providers are contractually obligated to use your information only for the purposes of providing services to us and are prohibited from using your data for their own independent purposes. They are required to implement appropriate security measures to protect your information.

3.2 Legal Requirements and Law Enforcement

We may disclose your personal information if required to do so by law or in good faith belief that such disclosure is necessary to:

Comply with a legal obligation, court order, subpoena, or government request.
Protect and defend our legal rights or property.
Prevent or investigate possible wrongdoing in connection with our Services.
Protect the personal safety of users of the Site or the public.

3.3 Business Transfers

In the event of a merger, acquisition, restructuring, sale of assets, or bankruptcy, your personal information may be transferred to a successor entity as part of the transaction. We will notify you via prominent notice on our Site or by email prior to your information being transferred and becoming subject to a different privacy policy.

3.4 With Your Consent

We may share your information with third parties when you have given explicit consent to such sharing, such as when you participate in co-branded promotions or opt in to data sharing programs.

3.5 Aggregated or De-Identified Data

We may share aggregated, anonymized, or de-identified information that cannot reasonably be used to identify you with third parties for business, marketing, research, or analytical purposes.

4. Data Security

We take the security of your personal information seriously and implement a variety of technical, administrative, and physical safeguards designed to protect your data from unauthorized access, disclosure, alteration, or destruction.

4.1 Security Measures We Employ

SSL/TLS Encryption: All data transmitted between your browser and our Site is encrypted using industry-standard Secure Socket Layer (SSL) / Transport Layer Security (TLS) technology.
Access Controls: We restrict access to personal information to authorized employees and contractors who need it to perform their job functions, and require them to maintain confidentiality.
Data Minimization: We collect only the data necessary for the stated purposes and regularly review our data holdings to delete unnecessary information.
Firewalls and Intrusion Detection: Our systems are protected by firewalls and monitored for suspicious activity.
Secure Payment Processing: Payment transactions are processed through PCI-DSS compliant third-party payment processors. We do not store complete payment card information on our servers.
Regular Security Audits: We conduct periodic security assessments and vulnerability testing of our systems and infrastructure.
Employee Training: Our personnel receive regular training on data privacy and security best practices.

4.2 Limitations

While we strive to protect your personal information, no method of transmission over the Internet or electronic storage is completely secure. We cannot guarantee absolute security. In the event of a data breach that affects your rights and freedoms, we will notify affected users and applicable regulatory authorities as required by law.

5. Your Privacy Rights

Depending on your state of residence within the United States, you may have specific rights regarding your personal information. We are committed to honoring these rights in accordance with applicable law.

5.1 Rights Under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA)

If you are a California resident, you have the following rights:

Right	Description
Right to Know	You have the right to request disclosure of the categories and specific pieces of personal information we have collected about you, the sources of collection, the business purposes, and the third parties with whom it has been shared.
Right to Delete	You have the right to request deletion of personal information we have collected about you, subject to certain exceptions.
Right to Correct	You have the right to request correction of inaccurate personal information we hold about you.
Right to Opt-Out of Sale/Sharing	You have the right to opt out of the sale or sharing of your personal information for cross-context behavioral advertising. We do not sell personal information for monetary value, but we may share data for targeted advertising purposes.
Right to Limit Sensitive Data Use	You have the right to limit the use and disclosure of sensitive personal information to specific permitted purposes under the CPRA.
Right to Non-Discrimination	We will not discriminate against you for exercising any of your CCPA/CPRA rights. We will not deny services, charge different prices, or provide a different quality of service based on your exercise of these rights.
Right to Data Portability	You have the right to receive your personal information in a portable and readily usable format.

5.2 Rights for Residents of Other States

Residents of other states, including Virginia (VCDPA), Colorado (CPA), Connecticut (CTDPA), Texas (TDPSA), and other states with enacted privacy legislation, may have similar rights including access, correction, deletion, portability, and opt-out rights. We honor these rights to the extent required by applicable state law.

5.3 How to Exercise Your Rights

To exercise any of your privacy rights, you may submit a verifiable consumer request by:

Email: [email protected]
Website: chickenchurch.rest

We will acknowledge your request within 10 business days and respond substantively within 45 calendar days. If we need additional time, we will inform you of the extension and the reason. We may require verification of your identity before processing your request to protect your information from unauthorized disclosure or deletion.

You may also designate an authorized agent to submit requests on your behalf. Authorized agents must provide written authorization or a power of attorney, and we may require direct verification from you as the consumer.

6. Data Retention

We retain personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. The criteria we use to determine retention periods include:

6.1 Retention Guidelines by Data Type

Data Type	Retention Period
Account registration data	Duration of account plus 3 years after account closure
Order and transaction records	7 years (for tax and legal compliance purposes)
Customer support communications	3 years from last interaction
Marketing opt-in records	Until opt-out, plus 3 years
Analytics and usage data	26 months (standard analytics retention)
Cookie and tracking data	Session cookies: until browser is closed; Persistent cookies: up to 24 months
Legal and compliance records	As required by applicable law (typically 5–7 years)

Upon expiration of the applicable retention period, we securely delete or anonymize personal information in accordance with our data disposal procedures.

7. Cookies and Tracking Technologies

Our Site uses cookies and similar tracking technologies to enhance your browsing experience, analyze Site traffic, and deliver relevant advertising. This section provides a summary of our cookie practices.

7.1 Types of Cookies We Use

Strictly Necessary Cookies: Essential for the Site to function properly. They enable core features such as session management, shopping cart functionality, and account authentication. These cannot be disabled.
Performance and Analytics Cookies: Help us understand how visitors interact with our Site by collecting information about pages visited, time spent, and errors encountered. We use tools such as Google Analytics for this purpose.
Functionality Cookies: Remember your preferences and settings (such as language, location, and recently viewed items) to provide a more personalized experience.
Targeting and Advertising Cookies: Used to deliver advertisements relevant to your interests, based on your browsing behavior on our Site and across other websites. These may be placed by our advertising partners.
Social Media Cookies: Set by social media platforms when you interact with social sharing buttons or embedded social content on our Site.

7.2 Managing Your Cookie Preferences

You can manage or disable cookies through your browser settings. Most browsers allow you to refuse cookies or delete existing cookies. Please note that disabling certain cookies may affect the functionality of our Site. You may also opt out of interest-based advertising by visiting:

www.aboutads.info/choices/ (Digital Advertising Alliance)
optout.networkadvertising.org (Network Advertising Initiative)

For more detailed information about our use of cookies, please refer to our full Cookie Policy available at chickenchurch.rest.

8. Children's Privacy

Our Site and Services are intended exclusively for users who are 18 years of age or older. We do not knowingly collect, solicit, or use personal information from individuals under the age of 18. Our Services are not directed at children, and we do not market our Services to minors.

In compliance with the Children's Online Privacy Protection Act (COPPA) and other applicable laws, if we become aware that we have inadvertently collected personal information from a child under the age of 13, we will take immediate steps to delete that information from our records. If you are a parent or guardian and believe that your child has provided us with personal information, please contact us immediately at [email protected] so we can take appropriate action.

Additionally, users between the ages of 13 and 17 are not permitted to use our Services without verified parental consent. We reserve the right to take any necessary measures, including account termination, if we discover that a user has misrepresented their age.

9. International Data Transfers

Our Site is operated from within the United States, and our Services are primarily intended for users located in the United States. If you are accessing our Site from outside the United States, please be aware that your personal information will be transferred to, stored, and processed in the United States, where data protection laws may differ from those in your country of residence.

By using our Site and providing us with your information, you consent to the transfer of your data to the United States and its processing in accordance with this Privacy Policy and applicable U.S. law.

To the extent we transfer personal data from the European Economic Area (EEA), United Kingdom, or Switzerland to the United States, we will implement appropriate safeguards as required by applicable data protection laws, such as standard contractual clauses or other approved transfer mechanisms. For more information about our international transfer practices, please contact us at [email protected].

10. Third-Party Links and Services

Our Site may contain links to third-party websites, applications, or services that are not operated or controlled by us. These may include social media platforms, delivery partner sites, and payment gateways. This Privacy Policy does not apply to third-party sites, and we are not responsible for the privacy practices of those sites.

We encourage you to review the privacy policies of any third-party sites you visit. The inclusion of a link on our Site does not imply endorsement of the third party's privacy practices or their policies.

11. Do Not Track Signals

Some browsers include a "Do Not Track" (DNT) feature that signals to websites that you do not want your online activities tracked. Currently, there is no uniform standard for how websites should respond to DNT signals, and our Site does not currently alter its data collection or use practices based on DNT signals received from browsers.

However, you may use the cookie management options described in Section 7 to control tracking on our Site. We will continue to monitor developments in DNT standards and update our practices accordingly.

12. California-Specific Disclosures

This section provides additional disclosures required under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA) for California residents.

12.1 Categories of Personal Information Collected

In the preceding 12 months, we have collected the following categories of personal information:

Identifiers (name, email, IP address, device identifiers)
Commercial information (purchase history, food order data)
Internet and electronic network activity information (browsing history, click data)
Geolocation data
Inferences drawn from personal information to create consumer profiles
Sensitive personal information (account login credentials, payment card data processed by third parties)

12.2 Shine the Light

California Civil Code Section 1798.83 permits California residents to request certain information about our disclosure of personal information to third parties for their direct marketing purposes. To make such a request, please contact us at [email protected].

12.3 "Do Not Sell or Share My Personal Information"

Under the CCPA/CPRA, California residents have the right to opt out of the sale or sharing of their personal information for cross-context behavioral advertising. To exercise this right, please visit our website at chickenchurch.rest or email us at [email protected] with the subject line "Do Not Sell or Share My Personal Information."

13. Changes to This Privacy Policy

We reserve the right to update or modify this Privacy Policy at any time to reflect changes in our practices, legal requirements, or operational needs. When we make material changes to this policy, we will:

Update the "Last Updated" date at the top of this page.
Post a prominent notice on our Site homepage or at the time of login.
Send an email notification to registered users where required by law or where we determine it is appropriate given the nature of the change.

We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information. Your continued use of our Site and Services after any modifications to this Privacy Policy constitutes your acknowledgment of the changes and your agreement to be bound by the updated policy.

14. Filing a Complaint with a Data Protection Authority

If you believe that our processing of your personal information violates applicable privacy law, you have the right to file a complaint with the appropriate regulatory authority. In the United States, relevant authorities include:

Federal Trade Commission (FTC)

The FTC enforces consumer protection laws, including privacy and data security rules.

Website: www.ftc.gov
Complaint Portal: reportfraud.ftc.gov
Phone: 1-877-382-4357

California Privacy Protection Agency (CPPA) — for California Residents

The California Privacy Protection Agency enforces the CCPA/CPRA.

Website: cppa.ca.gov
Email: [email protected]

State Attorneys General

Residents of any U.S. state may file complaints with their state Attorney General's office regarding potential violations of state consumer protection or privacy laws.

We strongly encourage you to contact us first at [email protected] before filing a complaint, so we have the opportunity to address your concern directly and promptly.

15. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please do not hesitate to contact our privacy team using the information below. We are committed to responding to all privacy inquiries in a timely and thorough manner.

Privacy Contact Information

Company	chickenchurch.rest
Email	[email protected]
Website	chickenchurch.rest

When contacting us about a privacy matter, please include your full name, email address, state of residence, and a clear description of your request or concern so we can respond as efficiently as possible. If you are exercising a rights request under the CCPA/CPRA or another applicable privacy law, please indicate this in your communication so we can route your request to the appropriate team.

Response Time: We will acknowledge all privacy inquiries within 10 business days and provide a full response within 45 calendar days of receipt. If an extension is needed, we will notify you before the 45-day period expires.

This Privacy Policy was last reviewed and updated on April 7, 2026. All rights reserved. chickenchurch.rest is committed to upholding the highest standards of privacy and data protection for our customers and Site visitors.