Privacy Policy

Introduction

Welcome to Pizzaiolo's Privacy Policy. At Pizzaiolo, we are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website, use our mobile application, or place an order for pizza delivery services in Canada.

By accessing or using our services, you agree to the terms outlined in this Privacy Policy. If you do not agree with our policies and practices, please do not use our services. We may update this policy from time to time, and we encourage you to review it periodically.

This policy applies to information we collect through our website at pizzalola.com, our mobile applications, in-store interactions, telephone orders, and through email, text, and other electronic communications between you and Pizzaiolo.

Information We Collect

We collect several types of information from and about users of our services, including information by which you may be personally identified. The information we collect helps us provide better service, process your orders efficiently, and improve your overall experience with Pizzaiolo.

Personal Information

When you place an order, create an account, or interact with our services, we may collect the following personal information:

• Contact Information: Your name, email address, telephone number, and delivery address
• Account Credentials: Username, password, and security questions for your online account
• Payment Information: Credit card numbers, debit card information, billing address, and payment preferences
• Order History: Details of pizzas ordered, delivery preferences, special instructions, and favorite items
• Demographic Information: Age, date of birth (for age verification), and preferences
• Communication Records: Records of your communications with our customer service team, feedback, and reviews

Automatically Collected Information

When you access our website or mobile application, we automatically collect certain information about your device and usage patterns:

• Device Information: IP address, browser type, operating system, device identifiers, and mobile network information
• Usage Data: Pages visited, time spent on pages, links clicked, and navigation paths
• Location Data: GPS coordinates, Wi-Fi access points, and cell tower information to facilitate delivery services
• Cookies and Tracking Technologies: Information collected through cookies, web beacons, and similar technologies
• Performance Data: Application crashes, system activity, and hardware settings

Information from Third Parties

We may receive information about you from third-party sources, including:

• Social media platforms when you connect your account or share content
• Payment processors and financial institutions for transaction verification
• Marketing partners and analytics providers
• Delivery service partners and logistics providers
• Public databases and data aggregators for address verification

How We Use Your Information

Pizzaiolo uses the collected information for various purposes to provide, maintain, and improve our pizza delivery services. We are committed to using your information responsibly and only for legitimate business purposes.

Order Processing and Fulfillment

We use your personal information primarily to process and deliver your pizza orders:

• Processing payment transactions and preventing fraudulent activities
• Preparing your pizza order according to your specifications and dietary preferences
• Coordinating delivery to your specified address within our service area in Canada
• Communicating order status, estimated delivery times, and any delays
• Handling special requests, dietary restrictions, and customization preferences
• Managing your account, order history, and saved preferences

Customer Service and Support

Your information helps us provide excellent customer service:

• Responding to your inquiries, questions, and feedback
• Resolving complaints, disputes, and service issues
• Providing technical support for our website and mobile application
• Conducting customer satisfaction surveys and quality assessments
• Training our staff to better serve your needs

Marketing and Communications

With your consent, we use your information for marketing purposes:

• Sending promotional emails about new menu items, special offers, and discounts
• Providing personalized recommendations based on your order history
• Notifying you about loyalty program rewards and exclusive deals
• Conducting market research and analyzing customer preferences
• Sending SMS notifications about order status and promotional offers (with your consent)

Service Improvement and Analytics

We analyze collected data to enhance our services:

• Monitoring and analyzing usage trends and customer behavior patterns
• Improving our menu offerings based on popular items and customer feedback
• Optimizing delivery routes and reducing delivery times
• Enhancing website and mobile app functionality and user experience
• Developing new features, products, and services
• Testing new technologies and operational processes

Legal and Security Purposes

We may use your information to comply with legal obligations and protect our business:

• Complying with applicable laws, regulations, and legal processes
• Protecting against fraud, unauthorized transactions, and security threats
• Enforcing our terms of service and other agreements
• Protecting the rights, property, and safety of Pizzaiolo, our customers, and others
• Responding to law enforcement requests and legal proceedings

Information Sharing and Disclosure

Pizzaiolo does not sell your personal information to third parties. However, we may share your information with trusted partners and service providers who assist us in operating our business and delivering our services.

Service Providers and Business Partners

We share information with third-party service providers who perform services on our behalf:

• Payment Processors: To process credit card and debit card transactions securely
• Delivery Partners: To coordinate and execute pizza deliveries to your location
• Cloud Service Providers: To host our website, store data, and maintain our IT infrastructure
• Marketing Platforms: To send promotional emails and manage marketing campaigns
• Analytics Providers: To analyze website traffic, user behavior, and service performance
• Customer Service Tools: To manage customer inquiries and support tickets

These service providers are contractually obligated to protect your information and use it only for the purposes we specify.

Business Transfers

In the event of a merger, acquisition, reorganization, or sale of assets, your personal information may be transferred to the acquiring entity. We will notify you via email and/or prominent notice on our website of any change in ownership or use of your personal information.

Legal Requirements

We may disclose your information when required by law or in response to valid legal processes:

• To comply with court orders, subpoenas, or other legal processes
• To respond to lawful requests from public authorities, including law enforcement
• To protect our rights, property, and safety, or that of our customers and the public
• To investigate and prevent fraud, security breaches, or illegal activities
• To enforce our terms of service and other agreements

With Your Consent

We may share your information with third parties when you have given us explicit consent to do so, such as when you choose to share your order on social media or participate in promotional campaigns.

Data Security

Pizzaiolo takes the security of your personal information seriously. We implement a variety of technical, administrative, and physical security measures designed to protect your information from unauthorized access, disclosure, alteration, and destruction.

Technical Security Measures

We employ industry-standard security technologies and procedures:

• Encryption: All sensitive data, including payment information, is encrypted using SSL/TLS protocols during transmission
• Secure Servers: Our servers are protected by firewalls and intrusion detection systems
• Access Controls: We implement strict access controls and authentication mechanisms to limit access to personal information
• Regular Security Audits: We conduct regular security assessments and vulnerability testing
• Data Backup: Regular backups are performed to prevent data loss
• Secure Payment Processing: We use PCI DSS compliant payment processors to handle credit card transactions

Administrative Security Measures

Our organizational practices support data security:

• Employee training on data protection and privacy best practices
• Confidentiality agreements with employees and contractors
• Limited access to personal information on a need-to-know basis
• Regular review and update of security policies and procedures
• Incident response plans for potential data breaches

Physical Security Measures

We protect physical access to our facilities and equipment:

• Secure facilities with controlled access and surveillance systems
• Locked storage for physical records containing personal information
• Secure disposal procedures for documents and electronic media
• Environmental controls to protect against natural disasters and equipment failure

Your Privacy Rights

As a customer of Pizzaiolo, you have certain rights regarding your personal information. We respect these rights and provide mechanisms for you to exercise them in accordance with applicable Canadian privacy laws.

Access and Correction

You have the right to access and update your personal information:

• View and edit your account information, including contact details and delivery addresses
• Review your order history and saved payment methods
• Update your communication preferences and marketing subscriptions
• Request a copy of the personal information we hold about you
• Correct inaccurate or incomplete information in your account

You can access and update most of your information by logging into your account on our website or mobile app. For additional assistance, contact us at info@pizzalola.com.

Data Deletion

You have the right to request deletion of your personal information:

• Request deletion of your account and associated personal information
• Remove saved payment methods and delivery addresses
• Delete your order history (subject to legal retention requirements)
• Withdraw consent for data processing where consent is the legal basis

Please note that we may need to retain certain information for legal, accounting, or security purposes, such as transaction records for tax compliance or fraud prevention.

Marketing Communications

You have control over marketing communications:

• Unsubscribe from promotional emails by clicking the unsubscribe link in any marketing email
• Opt out of SMS marketing by replying "STOP" to any promotional text message
• Adjust your communication preferences in your account settings
• Contact us to update your marketing preferences at any time

Even if you opt out of marketing communications, we will still send you transactional messages related to your orders, such as order confirmations and delivery notifications.

Cookie Management

You can control cookies and tracking technologies:

• Adjust your browser settings to refuse cookies or alert you when cookies are being sent
• Use browser plugins or extensions to manage tracking technologies
• Opt out of interest-based advertising through industry opt-out tools
• Clear cookies and browsing data from your browser settings

Please note that disabling cookies may affect the functionality of our website and your ability to use certain features.

Canadian Privacy Rights

Under Canadian privacy laws, including the Personal Information Protection and Electronic Documents Act (PIPEDA), you have additional rights:

• Right to know what personal information we collect and how it is used
• Right to access your personal information and receive a copy
• Right to challenge the accuracy and completeness of your information
• Right to withdraw consent for certain data processing activities
• Right to file a complaint with the Privacy Commissioner of Canada

Cookies and Tracking Technologies

Pizzaiolo uses cookies and similar tracking technologies to enhance your experience on our website and mobile application. These technologies help us understand how you use our services, remember your preferences, and provide personalized content.

Types of Cookies We Use

Essential Cookies

These cookies are necessary for the website to function properly:

• Session cookies that maintain your login status and shopping cart
• Security cookies that authenticate users and prevent fraud
• Load balancing cookies that distribute traffic across our servers
• Cookies that remember your language and location preferences

Performance and Analytics Cookies

These cookies help us understand how visitors interact with our website:

• Google Analytics cookies that track page views, bounce rates, and user flows
• Cookies that measure website performance and loading times
• Heat mapping tools that show where users click and scroll
• A/B testing cookies that help us optimize website design and content

Functionality Cookies

These cookies enable enhanced functionality and personalization:

• Cookies that remember your delivery address and payment preferences
• Cookies that save your favorite pizza orders and customizations
• Cookies that remember your dietary restrictions and allergen preferences
• Cookies that personalize content based on your browsing history

Advertising and Marketing Cookies

These cookies are used to deliver relevant advertisements:

• Cookies that track your interests and show targeted ads on other websites
• Social media cookies that enable sharing and social features
• Retargeting cookies that show you ads for products you viewed
• Cookies that measure the effectiveness of our advertising campaigns

Other Tracking Technologies

In addition to cookies, we use other tracking technologies:

• Web Beacons: Small graphic images embedded in emails and web pages to track opens and clicks
• Pixel Tags: Invisible tags that collect information about your visit and interactions
• Local Storage: Browser storage that saves data locally on your device
• Mobile SDKs: Software development kits in our mobile app that collect usage data
• Fingerprinting: Techniques that identify your device based on its configuration

Managing Cookies

You have several options for managing cookies:

• Use our cookie consent banner to accept or reject non-essential cookies
• Configure your browser settings to block or delete cookies
• Use browser extensions like Privacy Badger or Ghostery
• Opt out of interest-based advertising through the Digital Advertising Alliance of Canada
• Enable "Do Not Track" signals in your browser (though we may not respond to all such signals)

Children's Privacy

Pizzaiolo is committed to protecting the privacy of children. Our services are not directed to individuals under the age of 13, and we do not knowingly collect personal information from children under 13 without parental consent.

Age Restrictions

Our policy regarding children's information:

• We do not knowingly collect, use, or disclose personal information from children under 13
• Users must be at least 13 years old to create an account on our website or mobile app
• We may collect age information to verify that users meet our age requirements
• Parents or guardians may place orders on behalf of children

Parental Rights

If you are a parent or guardian and believe your child has provided us with personal information:

• Contact us immediately at info@pizzalola.com to request deletion of the information
• We will verify your identity as the parent or guardian before taking action
• We will promptly delete any personal information we have collected from children under 13
• We will take reasonable steps to prevent future collection of such information

School and Group Orders

For school events, fundraisers, or group orders involving children:

• We require authorization from a parent, guardian, or school administrator
• We collect only the minimum information necessary to fulfill the order
• We do not use children's information for marketing purposes
• We delete children's information after the order is completed and any legal retention period expires

Data Retention

Pizzaiolo retains your personal information only for as long as necessary to fulfill the purposes for which it was collected and to comply with legal, accounting, and regulatory requirements.

Retention Periods

We retain different types of information for varying periods:

• Account Information: Retained for the duration of your account plus 2 years after account closure
• Order History: Retained for 7 years to comply with tax and accounting regulations
• Payment Information: Tokenized payment data retained for recurring orders; full card details not stored
• Marketing Communications: Retained until you unsubscribe or for 3 years of inactivity
• Customer Service Records: Retained for 3 years for quality assurance and dispute resolution
• Website Analytics: Aggregated and anonymized data retained indefinitely for business analysis
• Security Logs: Retained for 1 year for security monitoring and incident investigation

Deletion Procedures

When retention periods expire or you request deletion:

• We securely delete or anonymize your personal information
• We remove your information from active databases and backup systems
• We may retain anonymized or aggregated data that cannot identify you
• We maintain records of deletion requests for compliance purposes

Legal Holds

We may retain information beyond normal retention periods when:

• Required by law, regulation, or legal process
• Necessary for pending or potential litigation
• Needed to investigate fraud, security incidents, or policy violations
• Essential to protect our rights, property, or safety

International Data Transfers

Pizzaiolo operates primarily in Canada, but we may transfer your personal information to service providers and partners located in other countries, including the United States. When we transfer data internationally, we take steps to ensure your information receives adequate protection.

Cross-Border Transfers

Your information may be transferred to and processed in countries outside Canada:

• Cloud service providers with data centers in the United States and Europe
• Payment processors that operate globally
• Marketing platforms and analytics services based in various countries
• Customer service tools hosted on international servers

Safeguards for International Transfers

We implement appropriate safeguards for cross-border data transfers:

• Contractual agreements with service providers requiring adequate data protection
• Standard contractual clauses approved by privacy regulators
• Verification that recipient countries provide adequate privacy protections
• Encryption of data during transmission and storage
• Regular audits of service providers' security and privacy practices

Your Rights Regarding International Transfers

You have the right to:

• Know which countries your data may be transferred to
• Understand the safeguards in place for international transfers
• Object to transfers to countries without adequate protections
• Request information about our data transfer practices

Third-Party Links and Services

Our website and mobile application may contain links to third-party websites, services, and social media platforms. This Privacy Policy does not apply to those third-party sites, and we are not responsible for their privacy practices.

Third-Party Websites

When you click on links to external websites:

• You will be directed to websites operated by third parties with their own privacy policies
• We do not control the content or privacy practices of these websites
• We encourage you to review the privacy policies of any third-party sites you visit
• We are not responsible for the privacy practices or content of third-party websites

Social Media Integration

Our services may include social media features and widgets:

• Facebook, Instagram, and Twitter sharing buttons
• Social login options that allow you to sign in using social media accounts
• Embedded social media content and feeds
• Social media advertising and retargeting pixels

These features may collect your IP address, track which pages you visit, and set cookies. Your interactions with social media features are governed by the privacy policies of the respective social media companies.

Third-Party Service Providers

We work with various third-party service providers:

• Payment Processors: Stripe, PayPal, and other payment gateways
• Analytics Services: Google Analytics, Mixpanel, and similar tools
• Marketing Platforms: Mailchimp, SendGrid, and email service providers
• Customer Support: Zendesk, Intercom, and helpdesk software
• Delivery Services: Third-party delivery partners and logistics providers

These service providers have their own privacy policies and may collect information about you when you use our services.

Changes to This Privacy Policy

Pizzaiolo reserves the right to update or modify this Privacy Policy at any time to reflect changes in our practices, technology, legal requirements, or business operations. We encourage you to review this policy periodically to stay informed about how we protect your information.

Notification of Changes

When we make changes to this Privacy Policy:

• We will update the "Last Updated" date at the top of this policy
• For material changes, we will provide prominent notice on our website or mobile app
• We may send you an email notification if you have an account with us
• We may require you to acknowledge the updated policy before continuing to use our services
• We will maintain an archive of previous versions of this policy for your reference

Material Changes

We consider the following to be material changes that warrant special notification:

• Changes to the types of personal information we collect
• New purposes for which we use your information
• Changes to how we share your information with third parties
• Modifications to your privacy rights or how to exercise them
• Changes to our data retention practices
• Updates to our security measures that may affect your information

Your Continued Use

By continuing to use our services after we post changes to this Privacy Policy:

• You acknowledge that you have read and understood the updated policy
• You agree to be bound by the terms of the updated policy
• You consent to our collection, use, and disclosure of your information as described in the updated policy

If you do not agree with the updated policy, you should discontinue using our services and contact us to delete your account and personal information.