Privacy Policy

Welcome to Pizza Luce. We are committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website pizzalucegrill.digital, place orders, or interact with our services. Please read this policy carefully. If you disagree with its terms, please discontinue use of our site.

This Privacy Policy applies to all information collected through our website, mobile features, and any related services, sales, marketing, or events (collectively referred to as the "Services").

1. Who We Are

Pizza Luce is a food service business operating in the United States. We operate the website located at pizzalucegrill.digital. For all privacy-related matters, you may contact us using the details below:

As a business operating within the United States, we comply with applicable federal and state privacy laws, including but not limited to the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA), and the Federal Trade Commission Act (FTC Act) governing consumer protection and unfair or deceptive practices.

2. Information We Collect

We collect information about you in a variety of ways when you interact with our website and Services. The categories of information we collect include the following:

2.1 Personal Information You Provide Directly

When you register an account, place an order, sign up for our newsletter, contact us, or otherwise engage with our Services, you may voluntarily provide us with personal information, including:

• Identification Data: First name, last name, username, or similar identifier.
• Contact Information: Email address, telephone number, mailing address, and delivery address.
• Account Credentials: Passwords and security questions (stored in encrypted form).
• Order Information: Food preferences, dietary restrictions, order history, and special instructions.
• Payment Information: Credit or debit card numbers, billing address, and other financial details. Note that full payment card data is processed by our third-party payment processors and is not stored on our servers.
• Communications: Any messages, feedback, reviews, or correspondence you send to us.
• Marketing Preferences: Your preferences for receiving promotions and communications from us.

2.2 Information Collected Automatically

When you access or use our website, certain information is collected automatically through cookies, web beacons, pixel tags, and similar tracking technologies. This includes:

• Device Information: IP address, browser type and version, operating system, device identifiers, and hardware model.
• Usage Data: Pages visited, links clicked, time and date of your visit, time spent on pages, referring URL, and other diagnostic data.
• Location Data: General geographic location derived from your IP address. With your explicit consent, we may also collect precise geolocation data to facilitate delivery services.
• Cookie and Tracking Data: Information collected through first-party and third-party cookies, session cookies, and persistent cookies. Please see our Cookie section below for more details.
• Log Data: Server logs that record requests made to our servers, including error reports, crash data, and activity records.

2.3 Information Collected from Third Parties

We may receive information about you from third-party sources, including:

• Social Media Platforms: If you connect your social media accounts (such as Facebook, Instagram, or Google) to our Services or log in using social sign-on features, we may receive certain profile information as permitted by those platforms.
• Analytics Providers: Third-party analytics services such as Google Analytics may provide us with aggregated information about website usage patterns.
• Delivery Partners: If you place an order through a third-party delivery platform (such as DoorDash, Uber Eats, or Grubhub), we may receive order-related information from those platforms.
• Payment Processors: Our payment processors may share transaction confirmation details and fraud detection signals with us.
• Marketing Partners: We may receive information from advertising partners to help us display relevant advertisements and measure campaign effectiveness.

2.4 Information We Do Not Collect

We do not intentionally collect sensitive personal information such as Social Security numbers, government-issued identification numbers (beyond what is strictly necessary for age verification), biometric data, medical or health information, or financial account numbers beyond what is necessary to process payments through secure processors.

3. How We Use Your Information

We use the personal information we collect for a range of legitimate purposes related to operating our food service business. Specifically, we use your information to:

3.1 Provide and Manage Our Services

• Process and fulfill your food orders, including coordinating delivery or pickup.
• Create, manage, and maintain your account.
• Send you order confirmations, receipts, and delivery status updates.
• Process payments and handle billing inquiries.
• Provide customer support and respond to your inquiries, complaints, and feedback.
• Facilitate loyalty programs or rewards where applicable.

3.2 Analytics and Service Improvement

• Monitor and analyze usage patterns, trends, and activity on our website to improve user experience.
• Conduct internal research and development to enhance our menu offerings and digital Services.
• Diagnose technical problems and maintain security of our platform.
• Perform data analysis, auditing, and fraud prevention activities.
• Develop aggregate statistical information and anonymous data sets for business reporting.

3.3 Marketing and Communications

• Send you promotional emails, newsletters, special offers, and updates about Pizza Luce — but only where you have given your consent or where we have a legitimate interest to do so.
• Personalize the content, advertisements, and recommendations you see based on your preferences and order history.
• Conduct surveys, contests, or promotional events.
• Retarget you with relevant advertisements on third-party platforms based on your interactions with our website.

You may opt out of marketing communications at any time by clicking the "unsubscribe" link in any email we send, or by contacting us at [email protected].

3.4 Legal Compliance and Safety

• Comply with applicable laws, regulations, court orders, and governmental requests.
• Enforce our Terms of Service and other applicable agreements.
• Detect, prevent, and address fraudulent, harmful, unauthorized, or illegal activity.
• Protect the rights, property, and safety of Pizza Luce, our customers, and the public.

4. Legal Basis for Processing (Applicable Law)

As a business operating in the United States, our data processing activities are governed primarily by federal and state consumer protection laws. We process your personal information under the following legal grounds:

• Contractual Necessity: Processing required to fulfill your orders and provide the services you request.
• Legitimate Interests: Processing necessary for our legitimate business interests, such as fraud prevention, network security, analytics, and improving our Services, provided these interests are not overridden by your rights.
• Consent: Where you have given us explicit permission, such as for marketing communications or the use of non-essential cookies.
• Legal Obligation: Processing required to comply with applicable laws and regulations.

For California residents specifically, your rights are governed by the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA). Please see Section 9 below for your specific rights under California law.

5. Sharing Your Information with Third Parties

We respect your privacy and do not sell your personal information to third parties. However, we may share your information in the following circumstances:

5.1 Service Providers

We engage trusted third-party companies and individuals to perform services on our behalf. These service providers are given access to your personal information only as necessary to perform their functions and are contractually obligated not to disclose or use it for other purposes. Categories of service providers include:

• Payment Processors: Companies such as Stripe or Square that handle payment transactions securely.
• Delivery Partners: Third-party delivery platforms or logistics companies that fulfill delivery orders.
• Email and Communication Services: Providers that power our email marketing, transactional emails, and customer support systems.
• Analytics Providers: Services such as Google Analytics that help us understand website usage.
• Cloud Hosting and IT Services: Providers that store and manage our data infrastructure.
• Marketing and Advertising Platforms: Companies that assist with digital advertising, retargeting, and campaign measurement.

5.2 Business Transfers

In the event of a merger, acquisition, reorganization, sale of assets, or bankruptcy, your personal information may be transferred as part of that transaction. We will notify you of any such change in ownership or use of your personal information, as well as any choices you may have regarding your information.

5.3 Legal Requirements

We may disclose your personal information if required to do so by law or in response to valid requests from public authorities, including courts and government agencies. This may include disclosures necessary to:

• Comply with a legal obligation or court order.
• Respond to lawful requests by government and law enforcement authorities.
• Protect and defend our legal rights or property.
• Prevent or investigate possible wrongdoing in connection with our Services.
• Protect the personal safety of users of our Services or the public.

5.4 With Your Consent

We may share your information with other parties when you have provided your explicit consent to do so. You may withdraw such consent at any time by contacting us at [email protected].

5.5 Aggregated and Anonymized Data

We may share aggregated or de-identified information — which cannot reasonably be used to identify you — with third parties for research, marketing, analytics, and other legitimate business purposes.

6. Cookies and Tracking Technologies

Our website uses cookies and similar tracking technologies to enhance your browsing experience and gather information about how our site is used. Cookies are small text files placed on your device when you visit a website.

6.1 Types of Cookies We Use

• Essential Cookies: These are strictly necessary for the website to function correctly, such as enabling you to log in, maintain your shopping cart, and complete orders. These cannot be disabled without impacting site functionality.
• Performance and Analytics Cookies: These cookies collect information about how visitors use our website, such as which pages are visited most often and whether any error messages are received. We use this data to improve our website.
• Functional Cookies: These cookies allow the website to remember choices you make (such as your preferred language or delivery location) and provide enhanced, personalized features.
• Targeting and Advertising Cookies: These cookies are used to deliver advertisements more relevant to you. They also help us limit the number of times you see an ad and measure the effectiveness of advertising campaigns.

6.2 Managing Your Cookie Preferences

You can control and manage cookies in several ways. Most web browsers allow you to refuse or accept cookies and to delete cookies you have already received. Please note that blocking all cookies may affect your ability to use certain features of our website. You may also opt out of interest-based advertising through the Digital Advertising Alliance (DAA) at www.aboutads.info or the Network Advertising Initiative (NAI) at www.networkadvertising.org.

For a full description of the cookies we use and how to manage them, please refer to our detailed Cookie Policy, available on our website at pizzalucegrill.digital.

7. Data Security

We take the security of your personal information seriously and implement a variety of technical, administrative, and physical security measures designed to protect your personal information from unauthorized access, disclosure, alteration, and destruction. Our security measures include:

• Encryption: We use Secure Socket Layer (SSL) / Transport Layer Security (TLS) encryption to protect data transmitted between your browser and our servers.
• Access Controls: Access to personal information is restricted to authorized personnel who need it to perform their job functions.
• Password Protection: User account passwords are stored using one-way cryptographic hashing algorithms and are never stored in plain text.
• Regular Security Audits: We conduct regular reviews of our information collection, storage, and processing practices and security measures.
• Payment Security: All payment transactions are processed through PCI-DSS compliant third-party payment processors. We do not store full credit or debit card numbers on our systems.
• Incident Response: We maintain procedures to detect, report, and investigate data security incidents.

8. Data Retention

We retain your personal information only for as long as is necessary to fulfill the purposes for which it was collected, including to satisfy legal, regulatory, accounting, or reporting requirements. The criteria we use to determine retention periods include:

When your data is no longer required, we will securely delete or anonymize it. In some circumstances, we may anonymize your personal information so that it can no longer be associated with you, in which case we may use such information indefinitely without further notice to you.

9. Your Privacy Rights

Depending on your location, you may have certain rights regarding your personal information. We respect and honor these rights as described below.

9.1 General Rights for All Users

• Right to Access: You have the right to request a copy of the personal information we hold about you.
• Right to Correction: You have the right to request that we correct any inaccurate or incomplete personal information we hold about you.
• Right to Deletion: You have the right to request that we delete your personal information, subject to certain legal exceptions.
• Right to Data Portability: You have the right to receive a copy of your personal information in a structured, commonly used, machine-readable format.
• Right to Opt-Out of Marketing: You may opt out of receiving marketing communications from us at any time.
• Right to Lodge a Complaint: You have the right to file a complaint with the relevant data protection authority. See Section 12 for details.

9.2 Rights for California Residents (CCPA / CPRA)

If you are a California resident, you have the following specific rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA):

• Right to Know: You have the right to know what personal information we collect, use, disclose, and sell about you.
• Right to Delete: You have the right to request deletion of personal information we have collected from you, subject to certain exceptions.
• Right to Correct: You have the right to request correction of inaccurate personal information we maintain about you.
• Right to Opt-Out of Sale or Sharing: We do not sell personal information. However, if we engage in sharing of personal information for cross-context behavioral advertising, you have the right to opt out.
• Right to Limit Use of Sensitive Personal Information: You have the right to limit our use of sensitive personal information to only what is necessary to perform the requested service.
• Right to Non-Discrimination: We will not discriminate against you for exercising any of your CCPA/CPRA rights. We will not deny you goods or services, charge you different prices, or provide a different level of service because you exercised your privacy rights.

To exercise your California privacy rights, you may submit a verifiable consumer request by contacting us at [email protected]. We will verify your identity before processing your request. You may also designate an authorized agent to make a request on your behalf.

We will respond to verifiable consumer requests within 45 days of receipt. If we require more time (up to 90 days), we will inform you of the reason and extension period in writing.

9.3 How to Exercise Your Rights

To exercise any of your privacy rights described in this section, please contact us by:

• Email: [email protected] — Subject line: "Privacy Rights Request"
• Website: pizzalucegrill.digital

Please include your full name, email address associated with your account, and a description of your request. We may need to verify your identity before processing your request, which may involve asking you to confirm information we already have on file.

10. Children's Privacy

Pizza Luce does not knowingly collect, solicit, or process personal information from children under the age of 18. By using our website and Services, you represent and warrant that you are at least 18 years of age. If we become aware that we have inadvertently collected personal information from a child under 18 without verifiable parental consent, we will take immediate steps to delete that information from our records.

If you are a parent or guardian and believe that your child has provided us with personal information without your consent, please contact us immediately at [email protected]. We comply with the Children's Online Privacy Protection Act (COPPA) and will promptly remove any such information upon verified notification.

11. International Data Transfers

Pizza Luce is a business based in the United States, and your personal information is primarily collected, stored, and processed within the United States. However, some of our third-party service providers, partners, or subprocessors may be located in other countries, and your information may be transferred to, stored, or processed in countries outside of the United States.

When your personal information is transferred internationally, we take steps to ensure that appropriate safeguards are in place to protect your information and to ensure that such transfers comply with applicable data protection laws. These safeguards may include:

• Ensuring the receiving country has been deemed to provide an adequate level of data protection.
• Entering into Standard Contractual Clauses or similar data transfer mechanisms approved by relevant authorities.
• Requiring our service providers to maintain appropriate data protection and security standards.

By using our Services and providing us with your personal information, you acknowledge and consent to the transfer of your information to the United States and potentially to other countries in accordance with this Privacy Policy. We will always handle your data in accordance with this Privacy Policy regardless of where it is processed.

12. Filing a Complaint with a Data Protection Authority

If you are a California resident and believe that we have not addressed your privacy concerns adequately, you have the right to file a complaint with the California Privacy Protection Agency (CPPA), which is the state authority responsible for enforcing the CCPA/CPRA.

For all other users in the United States, you may also file a complaint with the Federal Trade Commission (FTC), which enforces consumer protection laws including those related to privacy and data security under the FTC Act (15 U.S.C. §§ 41–58).

We encourage you to first contact us directly at [email protected] so that we have the opportunity to resolve your concern before you escalate your complaint to a regulatory authority.

13. Third-Party Links and Services

Our website may contain links to third-party websites, applications, or services that are not owned or controlled by Pizza Luce. This Privacy Policy does not apply to any third-party sites or services. We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party websites. We strongly advise you to review the privacy policy of every website you visit. Examples of third-party services linked from our site may include:

• Social media platforms (Facebook, Instagram, Twitter/X)
• Third-party food delivery platforms (DoorDash, Uber Eats, Grubhub)
• Payment gateways (Stripe, Square, PayPal)
• Review platforms (Yelp, Google Reviews)

Clicking on third-party links or enabling connections to third-party services may allow them to collect or share data about you. We are not responsible for their privacy statements or data practices.

14. "Do Not Track" Signals

Some web browsers transmit "Do Not Track" (DNT) signals to websites. Because there is not yet a common understanding of how to interpret DNT signals, our website does not currently respond to browser DNT signals. However, you can use the range of other tools we provide to control data collection and use, including the ability to opt out of marketing emails and manage cookie preferences as described in Section 6.

California residents who are registered users of our Services and have provided us with personal information may request information about our disclosures of personal information to third parties for direct marketing purposes under California's "Shine the Light" law (California Civil Code Section 1798.83). To make such a request, please contact us at [email protected].

15. Changes to This Privacy Policy

We reserve the right to update and revise this Privacy Policy at any time to reflect changes in our practices, technology, legal requirements, and other factors. When we make material changes, we will:

• Update the "Last Updated" date at the top of this Privacy Policy.
• Post a prominent notice on our website homepage and/or send you a notification via email if you have provided us with an email address.
• Where required by applicable law, obtain your renewed consent.

We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information. Your continued use of our website and Services after any changes to this Privacy Policy constitutes your acceptance of those changes.

16. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please do not hesitate to contact our privacy team. We are committed to resolving your concerns and will respond to all inquiries promptly.

When contacting us about a privacy matter, please include your full name, the email address associated with your account (if applicable), and a detailed description of your inquiry or request so that we can assist you as efficiently as possible. We aim to acknowledge all privacy-related inquiries within 5 business days and to resolve them within 30 to 45 days, depending on the complexity of the request.

This Privacy Policy was last reviewed and updated on June 27, 2026. © 2026 Pizza Luce. All rights reserved.