Privacy Policy

Last Updated: December 28, 2024

Your privacy matters to us. Learn how we protect your personal information.

1. Introduction

At Church's Chicken, we are deeply committed to protecting your privacy and ensuring the security of your personal information. This comprehensive Privacy Policy explains how we collect, use, share, and protect your data when you visit our website at chicken-churchs.click, use our mobile applications, visit our restaurants, or interact with our services.

This policy applies to all information we collect through our digital platforms, in-store experiences, delivery services, catering operations, and loyalty programs. By using our services, creating an account, placing orders, or engaging with our brand, you agree to the terms outlined in this Privacy Policy.

Important: We never sell your personal data to third parties. Your trust is paramount to our business, and we are committed to maintaining the highest standards of data protection and transparency in all our operations.

2. Information We Collect

2.1 Information You Provide

We collect information you voluntarily provide to us, including:

  • Personal Identification: Name, email address, phone number, mailing address, date of birth
  • Account Information: Username, password, purchase history, order preferences
  • Order History: Past orders, favorite items, frequency of visits, preferred locations
  • Dietary Preferences: Food allergies, dietary restrictions, special needs (vegan, halal, kosher, gluten-free)
  • Payment Information: Credit/debit card details (encrypted and securely stored), billing addresses
  • Delivery Information: Delivery addresses, special delivery instructions, preferred delivery times
  • Contact Forms: Messages, feedback, complaints, suggestions, customer service interactions
  • Reviews and Ratings: Product reviews, restaurant ratings, feedback submissions
  • Marketing Preferences: Email subscription preferences, promotional opt-ins, communication choices
  • Loyalty Program Data: Rewards points, membership levels, redemption history
  • Reservation Information: Table bookings, party size, special occasion details
  • Catering Details: Event information, guest count, menu selections, special requirements

2.2 Automatically Collected Information

When you interact with our digital services, we automatically collect:

  • Device Information: IP address, browser type and version, operating system, device identifiers
  • Usage Data: Pages visited, time spent on site, click-through rates, search queries
  • Location Data: Approximate location based on IP address, GPS data (if permitted)
  • Cookie Data: Session IDs, user preferences, shopping cart contents, authentication tokens
  • Technical Data: Log files, crash reports, performance metrics, error messages
  • Interaction Data: Mouse movements, scroll behavior, form interactions, button clicks

2.3 Information from Third Parties

We may receive information about you from external sources:

  • Social Media Platforms: Profile information if you connect your social accounts
  • Payment Processors: Transaction data, payment verification, fraud detection information
  • Delivery Partners: Delivery status updates, driver information, delivery confirmations
  • Marketing Partners: Campaign performance data, audience insights, advertising metrics
  • Data Aggregators: Demographic information, market research data, consumer behavior insights

3. How We Use Your Information

3.1 Service Provision

We use your information to deliver exceptional food service experiences:

  • Order Processing: Taking orders, payment processing, order confirmation, preparation tracking
  • Delivery Services: Coordinating deliveries, tracking orders, managing delivery logistics
  • Account Management: Creating and maintaining user accounts, password resets, profile updates
  • Customer Support: Responding to inquiries, resolving issues, providing assistance
  • Quality Improvement: Analyzing feedback, improving recipes, enhancing service quality
  • Loyalty Programs: Managing rewards points, processing redemptions, offering personalized benefits
  • Reservations: Managing table bookings, sending confirmations, handling special requests
  • Catering Services: Planning events, coordinating deliveries, managing special dietary requirements

3.2 Communication

We communicate with you for various purposes:

  • Transactional Messages: Order confirmations, delivery updates, receipt notifications
  • Customer Support: Response to inquiries, issue resolution, service updates
  • Important Notices: Policy changes, service updates, security notifications
  • Marketing Communications: Promotional offers, new menu items, special deals (with consent)
  • Loyalty Communications: Rewards updates, points balances, exclusive member offers

3.3 Marketing and Analytics

To enhance your experience and improve our services:

  • Personalization: Customized menu recommendations, targeted offers, personalized content
  • Analytics: Website traffic analysis, user behavior studies, performance optimization
  • Advertising: Relevant ad targeting, campaign effectiveness measurement, audience development
  • Market Research: Understanding customer preferences, developing new products, improving services

3.4 Legal Compliance

We may use your information to:

  • Legal Obligations: Complying with applicable laws, regulations, court orders
  • Fraud Prevention: Detecting and preventing fraudulent activities, protecting against abuse
  • Safety Protection: Ensuring customer and employee safety, protecting property
  • Dispute Resolution: Resolving conflicts, handling legal claims, investigating complaints

4. Information Sharing and Disclosure

4.1 Service Providers

We share information with trusted partners who help us operate our business:

  • Payment Processors: Secure transaction processing, fraud detection, payment verification
  • Delivery Companies: Order fulfillment, delivery coordination, tracking services
  • Cloud Storage Providers: Secure data storage, backup services, infrastructure management
  • Marketing Services: Email campaigns, advertising platforms, customer engagement tools
  • Analytics Providers: Usage analysis, performance monitoring, insight generation
  • Customer Support Tools: Help desk software, communication platforms, ticketing systems

4.2 Legal Requirements

We may disclose information when required by law:

  • Legal Process: Court orders, subpoenas, government requests, regulatory investigations
  • Law Enforcement: Cooperation with police investigations, criminal proceedings
  • Safety Protection: Preventing harm, protecting rights and property, emergency situations
  • Compliance: Meeting regulatory requirements, tax obligations, industry standards

4.3 Business Transfers

In the event of corporate changes:

  • Mergers and Acquisitions: Transfer of data as part of business transactions
  • Asset Sales: Data transfer with business assets, franchise operations
  • Customer Notification: We will notify affected customers before any transfer
  • Policy Compliance: New owners must comply with privacy commitments

4.4 With Your Consent

We may share information for other purposes with your explicit consent, such as:

  • Sharing reviews on social media platforms
  • Participating in third-party loyalty programs
  • Promotional partnerships and collaborations

5. Data Security

5.1 Technical Measures

We implement robust technical safeguards:

  • Encryption: SSL/TLS encryption for all data transmission, AES-256 encryption for stored data
  • Firewall Systems: Advanced firewall protection, intrusion detection systems
  • Access Controls: Multi-factor authentication, role-based access, principle of least privilege
  • Monitoring: 24/7 security monitoring, automated threat detection, incident response
  • Backup Systems: Regular data backups, disaster recovery procedures, business continuity planning
  • Vulnerability Management: Regular security assessments, penetration testing, patch management

5.2 Organizational Measures

Our organizational security practices include:

  • Employee Training: Regular privacy and security training, awareness programs
  • Data Handling Procedures: Documented processes, standard operating procedures
  • Confidentiality Agreements: All employees and contractors sign confidentiality agreements
  • Incident Response: Comprehensive incident response plan, breach notification procedures
  • Third-Party Agreements: Contractual privacy and security requirements for all vendors
  • Regular Audits: Internal and external security audits, compliance assessments

5.3 Your Responsibilities

You can help protect your information by:

  • Strong Passwords: Use unique, complex passwords for your account
  • Account Security: Don't share login credentials, log out of public computers
  • Phishing Awareness: Be cautious of suspicious emails or links claiming to be from us
  • Software Updates: Keep your devices and browsers updated with security patches
  • Reporting: Immediately report any unauthorized access or suspicious activity

Security Breach Notification: In the unlikely event of a data breach that affects your personal information, we will promptly notify you and relevant authorities as required by law, typically within 72 hours of discovery.

6. Cookies and Tracking Technologies

Type Purpose Duration
Essential Cookies Basic site functions, login state, shopping cart Session
Functional Cookies User preferences, language settings, location Up to 1 year
Analytics Cookies Usage analysis, performance improvement Up to 2 years
Marketing Cookies Personalized advertising, campaign tracking Up to 1 year

Tracking Technologies We Use:

  • Google Analytics: Website traffic analysis, user behavior insights
  • Facebook Pixel: Advertising measurement, audience building
  • Web Beacons: Email open rates, content engagement tracking
  • Local Storage: Browser-based data storage, offline functionality
  • Session Storage: Temporary data storage during your visit

Cookie Management: You can control cookies through your browser settings. However, disabling certain cookies may affect website functionality and your user experience.

7. Your Rights (GDPR/CCPA Compliance)

You have the following rights regarding your personal information:

7.1 Right of Access

You have the right to request information about the personal data we hold about you, including how it's used and shared.

7.2 Right to Rectification

You can request corrections to inaccurate or incomplete personal information.

7.3 Right to Erasure (Right to be Forgotten)

You may request deletion of your personal data, subject to legal and business requirements.

7.4 Right to Restrict Processing

You can request limitations on how we process your personal information.

7.5 Right to Data Portability

You have the right to receive your personal data in a machine-readable format.

7.6 Right to Object

You may object to processing of your personal data, especially for marketing purposes.

7.7 Right Against Automated Decision-Making

You have rights regarding automated decision-making and profiling that affects you.

How to Exercise Your Rights: Contact us using the information in Section 13. We will respond to your request within 30 days.

8. Children's Privacy

Our services are not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately.

Upon discovering that we have collected personal information from a child under 16, we will promptly delete such information from our systems. We encourage parents to monitor their children's online activities and teach them about online privacy and security.

9. International Data Transfers

9.1 Protection Measures

When transferring data internationally, we ensure adequate protection through:

  • Adequacy Decisions: Transfers to countries with adequate privacy protection
  • Standard Contractual Clauses: EU-approved contractual safeguards
  • Data Processing Agreements: Binding agreements with international partners
  • Security Measures: Technical and organizational safeguards for data protection
  • Compliance Monitoring: Regular audits and assessments of international transfers

9.2 Transfer Destinations

We may transfer data to the following regions with appropriate safeguards:

  • United States: Cloud storage services, data processing centers
  • European Union: Analytics services, marketing platforms
  • Other Countries: As needed for business operations, always with adequate protection

10. Data Retention Periods

Information Type Retention Period Reason
Account Information 6 months after account deletion Legal obligations, dispute resolution
Order History 7 years Tax and accounting requirements
Payment Data As required by payment processors Fraud prevention, chargebacks
Marketing Consent 3 months after withdrawal Consent record keeping
Website Usage Logs Up to 2 years Security monitoring, analytics
Customer Support Records 3 years Service quality improvement
Loyalty Program Data Duration of membership + 2 years Program administration, benefits

Safe Data Disposal

When data reaches the end of its retention period, we ensure secure disposal through:

  • Electronic Deletion: Complete and unrecoverable deletion from all systems
  • Physical Destruction: Secure shredding of physical documents
  • Backup Removal: Deletion from all backup systems and archives
  • Documentation: Maintaining records of disposal activities

11. Third-Party Links

Our website and mobile applications may contain links to third-party websites, social media platforms, or other services. These external sites have their own privacy policies and data practices that are independent of ours.

We are not responsible for the privacy practices or content of these third-party sites. We encourage you to review the privacy policies of any external sites you visit before providing personal information.

When you click on third-party links or interact with social media features, you are subject to those platforms' terms and privacy policies, not ours.

12. Policy Changes

12.1 Change Notification

We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements. When we make changes, we will notify you through:

  • Website Notice: Prominent notification on our homepage
  • Email Notification: Direct communication to registered users
  • App Notification: Push notification through our mobile application
  • Account Alert: Notice when you log into your account

12.2 Checking for Changes

We recommend that you:

  • Regular Review: Check this page periodically for updates
  • Last Updated Date: Note the "Last Updated" date at the top of this policy
  • Continued Use: Your continued use constitutes acceptance of changes
  • Opt-Out Option: You may stop using our services if you disagree with changes

For significant changes that materially affect your rights, we will seek your explicit consent before implementing the changes.

13. Contact Information

For any questions, concerns, or requests regarding this Privacy Policy or your personal information, please contact us:

Church's Chicken
6939 E 1st Ave, Scottsdale, AZ 85251, USA
Phone: +1 480-970-7682
Email: [email protected]
Business Hours: Monday - Friday, 9:00 AM - 6:00 PM MST

Response Commitment: We will acknowledge your inquiry within 3 business days and provide a complete response within 30 days.

13.1 Privacy Complaints

If you have concerns about our privacy practices:

  • Contact Us First: We encourage you to contact us directly for resolution
  • Supervisory Authority: You may also contact your local data protection authority
  • Resolution Process: We will work diligently to address and resolve your concerns

14. Withdrawal of Consent

14.1 Marketing Consent Withdrawal

You can withdraw consent for marketing communications through:

  • Unsubscribe Links: Use the unsubscribe link in marketing emails
  • Account Settings: Update preferences in your online account
  • Customer Support: Contact our support team for assistance
  • Phone Request: Call us to update your preferences

14.2 Account Deletion

To delete your account and personal information:

  1. Log into your account and go to account settings
  2. Select "Delete Account" option
  3. Confirm your identity and deletion request
  4. We will process deletion within 30 days

Note: Some information may be retained for legal compliance, fraud prevention, or legitimate business purposes as outlined in our retention policy.

15. Conclusion

At Church's Chicken, we are committed to earning and maintaining your trust through responsible data handling practices. This Privacy Policy reflects our dedication to protecting your personal information while providing you with exceptional food experiences and services.

We believe that transparency, security, and respect for your privacy rights are fundamental to building lasting relationships with our customers. Our team continuously works to improve our privacy practices and stay current with evolving regulations and best practices.

If you have any questions about this Privacy Policy or our data practices, we encourage you to reach out to us. We value your feedback and are committed to addressing any concerns you may have.

Thank you for choosing Church's Chicken and for trusting us with your personal information. We look forward to serving you delicious food while protecting your privacy every step of the way.

Last Updated: December 28, 2024