Privacy Policy

Effective Date: April 2, 2026 | Last Updated: April 2, 2026

Welcome to Punch Pizza. This Privacy Policy explains how Punch Pizza ("we," "us," "our," or the "Company") collects, uses, discloses, and safeguards your personal information when you visit our website pizzpunch.top, place orders, interact with our services, or otherwise engage with us. Please read this policy carefully. By accessing or using our website and services, you acknowledge that you have read, understood, and agree to the practices described in this Privacy Policy.

We are committed to protecting your privacy and handling your personal information responsibly, transparently, and in accordance with applicable United States federal and state privacy laws, including the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA), the Federal Trade Commission Act (FTC Act), and all other relevant federal and state regulations governing consumer data protection.

1. About Us

Punch Pizza is a food service business operating in the United States. Our contact details are as follows:

Company Name	Punch Pizza
Website	pizzpunch.top
Email	[email protected]

For any questions, concerns, or requests related to this Privacy Policy or your personal data, please do not hesitate to contact us using the information provided above.

2. Scope of This Privacy Policy

This Privacy Policy applies to all personal information we collect through:

Our website located at pizzpunch.top
Online food ordering systems and platforms linked to or embedded in our website
Email communications, customer service interactions, and support channels
Promotional campaigns, loyalty programs, and marketing activities
Any other digital or physical touchpoint where we collect personal data in connection with our food services

This policy does not apply to third-party websites, applications, or services that may be linked from our website. We encourage you to review the privacy policies of any third-party platforms you visit.

3. Information We Collect

We collect various categories of personal information depending on how you interact with us. Below is a detailed breakdown of the types of data we may collect.

3.1 Personal Identification Information

When you create an account, place an order, or contact us, we may collect:

Full name
Email address
Phone number
Billing and delivery address
Date of birth (for age verification or promotional purposes)
Username and password (for registered accounts)
Profile photo (if provided voluntarily)

3.2 Order and Transaction Information

When you place an order through our website or affiliated platforms, we collect:

Items ordered, customizations, and special instructions
Order history and frequency
Payment method type (e.g., credit card, debit card, digital wallet — note: full payment card numbers are processed by our secure third-party payment processors and are not stored by us)
Transaction amounts and timestamps
Delivery preferences and addresses
Promotional codes and discounts applied

3.3 Usage and Technical Data

When you visit our website, we automatically collect certain technical and usage information, including:

IP address
Browser type and version
Operating system
Device type (desktop, mobile, tablet)
Referring URLs (the page you visited before arriving at our site)
Pages viewed, time spent on each page, and navigation paths
Search queries entered on our website
Clickstream data and interaction logs
Time and date of your visit

3.4 Cookies and Tracking Technologies

We use cookies, web beacons, pixel tags, local storage, and similar tracking technologies to collect information about your browsing activities on our website. This includes session cookies (which expire when you close your browser), persistent cookies (which remain on your device for a set period), and third-party cookies from our analytics and advertising partners. For more detailed information on our use of cookies, please refer to Section 9 of this Privacy Policy.

3.5 Communications and Feedback

If you contact us by email, through our website's contact form, or via social media, we may collect:

The content of your messages and attachments
Your contact details as provided in the communication
Records of correspondence and customer service interactions
Reviews, ratings, and feedback you submit about our food or service

3.6 Marketing and Preference Data

If you opt into our marketing programs, newsletters, or loyalty schemes, we collect:

Your communication preferences (e.g., email, SMS)
Subscription status and marketing consent records
Promotional engagement data (e.g., whether you opened an email or clicked a link)
Loyalty points balance and redemption history

3.7 Information from Third Parties

We may receive information about you from third-party sources, including:

Food delivery platforms and aggregators that process orders on our behalf
Social media platforms (if you log in using a social account or interact with our social media pages)
Payment processors that confirm transaction status
Analytics providers that supplement our usage data
Fraud prevention and identity verification services

4. How We Use Your Information

We use the personal information we collect for a variety of legitimate business purposes, as described below:

4.1 Providing and Managing Our Services

Processing and fulfilling your food orders, including coordinating delivery or pickup
Creating and managing your account
Sending order confirmations, receipts, and delivery updates
Handling returns, refunds, and complaints
Providing customer support and responding to your inquiries

4.2 Payment Processing and Fraud Prevention

Processing payments securely through trusted third-party payment processors
Verifying the legitimacy of transactions
Detecting, investigating, and preventing fraudulent or unauthorized activity
Complying with financial regulations and record-keeping requirements

4.3 Improving Our Website and Services

Analyzing usage patterns to improve website functionality, navigation, and content
Conducting internal research, testing, and quality assurance
Developing new menu items, features, and services based on customer preferences
Monitoring website performance and diagnosing technical issues

4.4 Marketing and Communications

Sending you promotional offers, new menu announcements, and special deals (where you have given consent or where permitted by law)
Personalizing marketing content based on your order history and preferences
Administering loyalty programs, contests, and surveys
Re-engaging users through targeted online advertising (including retargeting on social media and search platforms)

You may opt out of marketing communications at any time by following the unsubscribe link in any promotional email or by contacting us at [email protected].

4.5 Legal Compliance and Safety

Complying with applicable federal, state, and local laws and regulations
Responding to lawful requests from courts, law enforcement agencies, or government authorities
Enforcing our Terms of Service and other agreements
Protecting the rights, property, and safety of Punch Pizza, our customers, and the public

5. Legal Bases for Processing (Where Applicable)

While the United States does not have a single overarching federal privacy law equivalent to the European GDPR, we are committed to processing your data on legitimate grounds. These grounds include:

Contractual necessity: Processing required to fulfill your food orders and provide our services
Legal obligation: Processing required to comply with applicable laws and regulations
Legitimate interests: Processing for fraud prevention, security, analytics, and improving our services, where those interests do not override your rights
Consent: Processing based on your explicit consent, particularly for marketing communications and non-essential cookies

6. Sharing Your Information with Third Parties

We do not sell your personal information to third parties. However, we may share your data with trusted partners and service providers under the following circumstances:

6.1 Service Providers and Business Partners

We engage third-party companies to perform functions on our behalf, including:

Payment processors (e.g., Stripe, Square, PayPal) to securely process transactions
Delivery service providers to coordinate food delivery logistics
Cloud hosting and IT service providers to maintain and operate our website and systems
Email and SMS marketing platforms to send you communications
Analytics providers (e.g., Google Analytics) to help us understand website usage
Customer support tools to manage inquiries and feedback
Fraud prevention services to protect against unauthorized transactions

These service providers are contractually obligated to use your data only as necessary to perform services for us and to maintain appropriate data security measures.

6.2 Legal and Regulatory Disclosures

We may disclose your personal information if required to do so by law, including:

In response to a valid subpoena, court order, or government request
To comply with applicable federal, state, or local laws, including the FTC Act and other consumer protection regulations
To investigate or prevent fraud, security breaches, or violations of our Terms of Service
To protect the vital interests of individuals

6.3 Business Transfers

In the event of a merger, acquisition, reorganization, sale of assets, or bankruptcy, your personal information may be transferred to the acquiring entity as part of the transaction. We will notify you via email or a prominent notice on our website if such a transfer occurs and if your information will be subject to a different privacy policy.

6.4 Aggregated and Anonymized Data

We may share aggregated, anonymized, or de-identified data that cannot reasonably be used to identify you with third parties for research, marketing, analytics, and other business purposes.

7. Data Security

The security of your personal information is important to us. We implement a range of technical, administrative, and physical safeguards to protect your data against unauthorized access, disclosure, alteration, or destruction. These measures include:

SSL/TLS encryption: All data transmitted between your browser and our website is encrypted using industry-standard Secure Socket Layer (SSL) or Transport Layer Security (TLS) protocols
Secure payment processing: Payment card data is handled by PCI DSS-compliant third-party processors; we do not store full card numbers on our servers
Access controls: Access to personal data is restricted to authorized employees and contractors who need it to perform their job functions
Regular security audits: We periodically review and update our security practices to address emerging threats
Password hashing: Account passwords are stored in encrypted form using strong hashing algorithms
Data minimization: We collect only the data we need and retain it only for as long as necessary

Despite these measures, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security of your data, but we are committed to promptly notifying you and the relevant authorities in the event of a data breach, as required by applicable law.

8. Your Privacy Rights

Depending on your state of residence, you may have certain rights regarding your personal information. We respect and honor these rights as described below.

8.1 Rights Under the California Consumer Privacy Act (CCPA/CPRA)

If you are a California resident, you have the following rights under the CCPA as amended by the CPRA:

Right to Know: You have the right to request disclosure of the categories and specific pieces of personal information we have collected about you, the sources of that information, the purposes for which it is used, and the categories of third parties with whom it is shared.
Right to Delete: You have the right to request deletion of personal information we have collected from you, subject to certain exceptions (e.g., where the data is necessary to complete a transaction or comply with a legal obligation).
Right to Correct: You have the right to request correction of inaccurate personal information we maintain about you.
Right to Opt-Out of Sale or Sharing: You have the right to direct us not to sell or share your personal information with third parties. As stated above, we do not sell your personal data.
Right to Limit Use of Sensitive Personal Information: You have the right to limit our use of sensitive personal information (such as precise geolocation or financial data) to purposes directly related to providing our services.
Right to Non-Discrimination: We will not discriminate against you for exercising any of your CCPA rights. We will not deny you goods or services, charge you different prices, or provide a different level of service because you exercised your privacy rights.

8.2 General Privacy Rights (All U.S. Users)

Regardless of your state of residence, we extend the following rights to all users:

Right to Access: You may request a copy of the personal information we hold about you.
Right to Correction: You may request that we update or correct inaccurate or incomplete information about you.
Right to Deletion: You may request that we delete your personal information, subject to legal retention obligations.
Right to Data Portability: Where technically feasible, you may request your personal data in a structured, commonly used, machine-readable format.
Right to Withdraw Consent: Where processing is based on your consent, you may withdraw it at any time without affecting the lawfulness of prior processing.
Right to Opt Out of Marketing: You may opt out of receiving promotional communications at any time.

8.3 How to Exercise Your Rights

To submit a privacy rights request, please contact us using the following methods:

Email: [email protected] (subject line: "Privacy Rights Request")
Website: pizzpunch.top

We will verify your identity before processing your request. We aim to respond to all verified requests within 45 days. If we require additional time, we will notify you within the initial 45-day period. There is no charge for making a request unless requests are excessive, repetitive, or manifestly unfounded.

9. Cookie Policy

Our website uses cookies and similar tracking technologies to enhance your browsing experience, analyze website traffic, and deliver relevant advertising. This section provides a brief overview of our cookie practices.

9.1 Types of Cookies We Use

Cookie Type	Purpose	Duration
Strictly Necessary	Essential for the website to function (e.g., maintaining your shopping cart and login session)	Session / Short-term
Performance / Analytics	Collecting anonymized data on how visitors use our site to improve performance (e.g., Google Analytics)	Up to 2 years
Functional	Remembering your preferences, such as language settings, saved addresses, or favorite menu items	Up to 1 year
Marketing / Advertising	Delivering targeted advertisements and tracking the effectiveness of our promotional campaigns	Up to 2 years

9.2 Managing Cookies

You can control and manage cookies through your browser settings. Most browsers allow you to refuse new cookies, delete existing cookies, and be alerted when new cookies are set. Please note that disabling certain cookies may affect the functionality of our website and your ability to place orders. For detailed information on how to manage cookies, please consult your browser's help documentation.

To opt out of Google Analytics tracking, you may install the Google Analytics Opt-out Browser Add-on.

Note: By continuing to use our website without adjusting your cookie settings, you consent to our use of cookies as described in this section.

10. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. Our general data retention guidelines are as follows:

Data Category	Retention Period
Account and profile information	For the duration of your account, plus 3 years after closure
Order and transaction records	7 years (for tax, accounting, and legal compliance purposes)
Customer support communications	3 years from the date of the last interaction
Marketing consent and preferences	Until you withdraw consent, plus 3 years for compliance records
Website usage and analytics data	Up to 26 months (per Google Analytics default settings)
Fraud prevention and security logs	Up to 5 years

When personal data is no longer required, we securely delete or anonymize it in accordance with applicable data destruction standards. In some circumstances, we may retain anonymized data indefinitely for statistical and research purposes.

11. Children's Privacy

Important: Our website and services are intended for individuals who are 18 years of age or older. We do not knowingly collect personal information from children under the age of 18.

In compliance with the Children's Online Privacy Protection Act (COPPA) and our internal policies, we do not knowingly solicit or collect personal information from anyone under 18. If we become aware that we have inadvertently collected personal data from a minor under the age of 18, we will take immediate steps to delete such information from our records.

If you are a parent or guardian and believe that your child has provided us with personal information without your consent, please contact us immediately at [email protected] so we can take appropriate action.

12. International Data Transfers

Punch Pizza is a United States-based business and primarily processes data within the United States. Our servers, service providers, and business operations are located in the US. However, some of our third-party service providers (such as cloud hosting, analytics, and email marketing platforms) may operate in, or transfer data to, countries outside the United States.

When data is transferred internationally, we take steps to ensure that appropriate safeguards are in place to protect your personal information consistent with applicable US privacy laws and, where relevant, international standards. These safeguards may include:

Ensuring our service providers maintain adequate data protection standards
Reviewing the privacy practices of international vendors before engagement
Including data protection provisions in our contracts with third-party processors

If you have questions about how your data is handled during international transfers, please contact us at [email protected].

13. Third-Party Links

Our website may contain links to third-party websites, social media platforms, food delivery aggregators, and other external services. This Privacy Policy does not apply to those third-party sites, and we are not responsible for the privacy practices of external websites. We encourage you to review the privacy policies of any website you visit through links on our platform before providing any personal information.

14. Changes to This Privacy Policy

We reserve the right to update or modify this Privacy Policy at any time to reflect changes in our business practices, legal requirements, or data processing activities. When we make material changes, we will:

Update the "Last Updated" date at the top of this page
Post a prominent notice on our website homepage for at least 30 days
Where required or appropriate, send you an email notification to the address associated with your account

Your continued use of our website or services after the effective date of any revised Privacy Policy constitutes your acceptance of the updated terms. If you do not agree with any changes, you should stop using our services and may request deletion of your personal data by contacting us.

15. Filing a Privacy Complaint

If you believe that we have not complied with this Privacy Policy or applicable privacy laws, we encourage you to contact us first so we can attempt to resolve the issue directly.

15.1 Contact Us

Please submit your complaint or concern to:

Email: [email protected]
Website: pizzpunch.top

We will acknowledge your complaint within 5 business days and aim to provide a full response within 30 days.

15.2 Regulatory Authorities

If you are not satisfied with our response, or if you believe your privacy rights have been violated, you have the right to lodge a complaint with the relevant regulatory authorities:

Federal Trade Commission (FTC): The FTC oversees consumer protection and privacy enforcement at the federal level in the United States. You can file a complaint at reportfraud.ftc.gov or by calling 1-877-382-4357.
California Residents — California Privacy Protection Agency (CPPA): If you are a California resident and believe your rights under the CCPA/CPRA have been violated, you may contact the California Privacy Protection Agency at cppa.ca.gov.
State Attorneys General: Residents of other states may contact their state's Attorney General office to report privacy-related complaints. Most state AG offices maintain consumer protection divisions that handle data privacy matters.

Tip for California Residents: Under the CCPA/CPRA, you have the right to submit a verified consumer rights request to us without first filing a complaint with the CPPA. We encourage you to reach out to us directly at [email protected] as a first step.

16. Contact Information for Privacy Inquiries

For all privacy-related questions, requests, or concerns, please contact our designated privacy contact using the details below:

Company	Punch Pizza
Email	[email protected]
Website	pizzpunch.top

We are committed to addressing your privacy concerns in a timely, respectful, and transparent manner. Whether you have questions about what data we hold, how it is used, or how to exercise your rights, our team is ready to assist you.

Thank you for taking the time to read our Privacy Policy. At Punch Pizza, we value your trust and are dedicated to protecting your personal information while delivering a great food experience. This Privacy Policy was last updated on April 2, 2026.