Privacy Policy

1. Introduction

Welcome to Imos Pizza ("we," "our," or "us"). We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website pizza-imos.digital, use our mobile applications, visit our restaurant locations, or engage with our services in any capacity.

This Privacy Policy applies to all information collected through our website, mobile applications, in-store transactions, delivery services, catering operations, loyalty programs, and any other services we offer (collectively, the "Services"). By accessing or using our Services, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy.

At Imos Pizza, we believe that transparency is the foundation of trust. We want you to understand exactly what information we collect, why we collect it, and how we use it to provide you with the best possible dining and ordering experience. We are committed to never selling your personal data to third parties for their marketing purposes.

2. Information We Collect

2.1 Information You Provide to Us

We collect information that you voluntarily provide to us when you register for an account, place an order, sign up for our loyalty program, contact us with inquiries, participate in promotions, or otherwise interact with our Services. This information may include:

• Personal Identification Information: Your name, email address, phone number, mailing address, delivery address, and date of birth (for age verification and birthday promotions)
• Account Information: Username, password, account preferences, order history, favorite items, saved addresses, and communication preferences
• Payment Information: Credit or debit card numbers, billing address, and other payment details (note: all payment information is encrypted and processed through secure third-party payment processors)
• Dietary Information: Food allergies, dietary restrictions (vegan, vegetarian, gluten-free, halal, kosher, etc.), and special dietary preferences you choose to share with us
• Order Preferences: Favorite menu items, customization preferences, special instructions, and delivery or pickup preferences
• Reservation Information: Table reservation details, party size, special occasion information, and seating preferences
• Catering Details: Event date and time, location, guest count, menu selections, budget requirements, and special event requirements
• Loyalty Program Data: Rewards points balance, redemption history, tier status, and promotional preferences
• Communications: Contact form submissions, customer service inquiries, feedback, reviews, survey responses, and any other communications you send to us
• Marketing Preferences: Your preferences regarding receiving promotional emails, SMS messages, push notifications, and other marketing communications

2.2 Information Collected Automatically

When you access or use our Services, we automatically collect certain information about your device, browsing activity, and interaction with our Services. This includes:

• Device Information: IP address, device type, operating system, browser type and version, unique device identifiers, and mobile network information
• Usage Data: Pages viewed, links clicked, time spent on pages, search queries, browsing history within our site, navigation paths, and features used
• Cookie Data: Session identifiers, authentication tokens, user preferences, shopping cart contents, and analytics data (see Section 6 for more details)
• Location Information: Approximate geographic location derived from your IP address, and precise location data if you enable location services on your device for features like nearby store locator or delivery tracking
• Interaction Data: How you interact with our emails (open rates, click-through rates), push notifications, and advertisements

2.3 Information from Third Parties

We may receive information about you from third-party sources and combine it with other information we collect about you. This includes:

• Social Media Platforms: If you choose to connect your social media accounts (Facebook, Google, Apple) to create an account or log in, we may receive your name, email address, profile picture, and other information you have made public
• Payment Processors: Transaction confirmation, payment verification status, and fraud prevention data from secure payment processing partners
• Delivery Partners: Delivery status updates, delivery confirmation, and driver feedback from third-party delivery services
• Marketing Partners: Demographic information, advertising identifiers, and marketing preferences from advertising networks and analytics providers
• Public Sources: Information from publicly available sources such as business directories and social media profiles

3. How We Use Your Information

3.1 Service Provision

We use your information to provide, maintain, and improve our Services, including:

• Processing and fulfilling your food orders, including preparation, packaging, and delivery coordination
• Managing your account, including authentication, account recovery, and preference settings
• Processing payments and preventing fraudulent transactions
• Coordinating deliveries and providing real-time order tracking
• Managing table reservations and seating arrangements
• Planning and executing catering orders for your events
• Administering our loyalty rewards program and tracking your points
• Providing customer support and responding to your inquiries
• Ensuring food safety by noting and accommodating your allergen information and dietary requirements
• Improving our menu, service quality, and overall customer experience

3.2 Communication

We use your contact information to communicate with you about:

• Order confirmations, preparation status, and delivery notifications
• Reservation confirmations and reminders
• Customer service responses and support ticket updates
• Important notices about changes to our Services, terms, or policies
• Security alerts and account notifications
• Marketing communications, promotions, and special offers (only with your consent)
• Loyalty program updates, point balances, and reward opportunities
• Surveys and feedback requests to improve our Services

3.3 Marketing and Analytics

With your consent where required, we use your information for marketing and analytical purposes:

• Sending personalized promotional emails, SMS messages, and push notifications about new menu items, special offers, and events
• Displaying targeted advertisements based on your interests and browsing behavior
• Analyzing website traffic, user behavior, and engagement patterns to improve our Services
• Measuring the effectiveness of our marketing campaigns and promotions
• Conducting market research to develop new products, services, and features
• Creating aggregated, anonymized data for business analytics and reporting

3.4 Legal Compliance and Protection

We may use your information to:

• Comply with applicable laws, regulations, legal processes, and government requests
• Enforce our Terms of Service and other agreements
• Protect the rights, privacy, safety, and property of Imos Pizza, our customers, employees, and others
• Detect, prevent, and address fraud, security breaches, and other illegal activities
• Resolve disputes and troubleshoot problems

4. Information Sharing and Disclosure

4.1 Service Providers

We share your information with trusted third-party service providers who assist us in operating our business and providing our Services. These providers are contractually obligated to protect your information and use it only for the purposes we specify:

• Payment Processors: Secure processing of credit card and digital payment transactions (e.g., Stripe, PayPal, Square)
• Delivery Services: Third-party delivery partners who fulfill your orders (e.g., DoorDash, Uber Eats, Grubhub)
• Cloud Infrastructure: Secure data storage and hosting services (e.g., Amazon Web Services, Google Cloud)
• Communication Services: Email delivery, SMS messaging, and push notification services
• Analytics Providers: Website analytics and business intelligence tools
• Marketing Platforms: Email marketing, advertising, and customer relationship management services
• Customer Support: Help desk and customer service platforms

4.2 Legal Requirements

We may disclose your information when required by law or in response to valid legal requests:

• In response to court orders, subpoenas, or other legal processes
• To comply with applicable laws, regulations, and government requests
• To protect our legal rights and defend against legal claims
• To protect the safety of any person or to prevent death or serious injury
• To investigate and prevent fraud, security incidents, or illegal activities

4.3 Business Transfers

In the event of a merger, acquisition, reorganization, bankruptcy, or sale of all or a portion of our assets, your information may be transferred as part of that transaction. We will notify you via email and/or prominent notice on our website before your information is transferred and becomes subject to a different privacy policy. The acquiring entity will be required to honor the commitments made in this Privacy Policy.

4.4 With Your Consent

We may share your information with third parties when you explicitly consent to such sharing. For example, if you choose to participate in a co-branded promotion with a partner company, we may share your information with that partner as described at the time of the promotion.

5. Data Security

5.1 Technical Security Measures

We implement industry-standard technical safeguards to protect your personal information:

• SSL/TLS Encryption: All data transmitted between your device and our servers is encrypted using secure socket layer (SSL) and transport layer security (TLS) protocols
• Advanced Firewall Systems: Multi-layered firewall protection to prevent unauthorized access to our systems
• Access Controls: Strict role-based access controls ensuring only authorized personnel can access personal data on a need-to-know basis
• 24/7 Security Monitoring: Continuous monitoring of our systems for suspicious activity and potential security threats
• Regular Backups: Encrypted data backups stored in secure, geographically distributed locations
• Intrusion Detection: Advanced intrusion detection and prevention systems to identify and block potential attacks
• Secure Payment Processing: PCI DSS compliant payment processing through certified third-party providers

5.2 Organizational Security Measures

We maintain comprehensive organizational policies and procedures to protect your data:

• Employee Training: Regular security awareness training for all employees who handle personal data
• Data Handling Procedures: Documented procedures for collecting, processing, storing, and disposing of personal information
• Vendor Agreements: Confidentiality and data protection agreements with all third-party service providers
• Incident Response Plan: Comprehensive plan for detecting, responding to, and recovering from security incidents
• Regular Security Audits: Periodic internal and external security assessments and penetration testing
• Privacy by Design: Incorporating privacy and security considerations into all new systems and processes

5.3 Your Security Responsibilities

While we take extensive measures to protect your information, security is a shared responsibility. We encourage you to:

• Use strong, unique passwords for your Imos Pizza account and change them periodically
• Never share your password or account credentials with others
• Log out of your account when using shared or public computers
• Be cautious of phishing emails or suspicious links claiming to be from Imos Pizza
• Keep your devices and browsers updated with the latest security patches
• Report any suspicious activity or unauthorized access to your account immediately

6. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to collect and store information when you visit our website or use our Services. This helps us provide a better, more personalized experience.

Cookie Type	Purpose	Duration
Essential Cookies	Required for basic website functionality, including page navigation, secure login, shopping cart, and checkout process. These cannot be disabled.	Session to 1 year
Functional Cookies	Remember your preferences such as language, location, saved addresses, and display settings to provide enhanced functionality.	Up to 1 year
Analytics Cookies	Help us understand how visitors interact with our website by collecting anonymous usage data to improve our Services.	Up to 2 years
Marketing Cookies	Track your browsing activity to deliver personalized advertisements and measure advertising campaign effectiveness.	Up to 1 year

Tracking Technologies We Use

• Google Analytics: Analyzes website traffic patterns, user demographics, and behavior to help us improve our Services
• Facebook Pixel: Measures the effectiveness of our Facebook advertising and enables retargeting campaigns
• Web Beacons: Small graphics embedded in emails to track open rates and click-through rates
• Local Storage: Stores data locally in your browser for faster page loading and improved user experience
• Session Storage: Temporarily stores data during your browsing session for features like shopping cart

Managing Your Cookie Preferences

You can manage your cookie preferences in several ways:

• Use our cookie consent banner to customize your preferences when you first visit our website
• Adjust your browser settings to accept, reject, or delete cookies
• Use browser extensions or plugins that block tracking technologies
• Opt out of Google Analytics by installing the Google Analytics Opt-out Browser Add-on

Please note that disabling certain cookies may affect the functionality of our website and limit your ability to use some features.

7. Your Privacy Rights

Depending on your location, you may have certain rights regarding your personal information under applicable data protection laws, including GDPR (European Union), CCPA (California), and other privacy regulations.

• 7.1 Right of Access You have the right to request a copy of the personal information we hold about you. We will provide this information in a commonly used, machine-readable format within 30 days of your request.
• 7.2 Right to Rectification You have the right to request correction of any inaccurate or incomplete personal information we hold about you. You can update most information directly through your account settings.
• 7.3 Right to Erasure (Right to be Forgotten) You have the right to request deletion of your personal information in certain circumstances, such as when it is no longer necessary for the purposes for which it was collected, or when you withdraw consent.
• 7.4 Right to Restrict Processing You have the right to request that we limit the processing of your personal information in certain circumstances, such as when you contest the accuracy of the data or object to processing.
• 7.5 Right to Data Portability You have the right to receive your personal information in a structured, commonly used, machine-readable format and to transmit that data to another controller without hindrance.
• 7.6 Right to Object You have the right to object to the processing of your personal information for direct marketing purposes, and in certain other circumstances based on your particular situation.
• 7.7 Right Against Automated Decision-Making You have the right not to be subject to decisions based solely on automated processing, including profiling, that produce legal or similarly significant effects concerning you.

How to Exercise Your Rights

To exercise any of these rights, please contact us using the information provided in Section 13. We will respond to your request within 30 days. In some cases, we may need to verify your identity before processing your request. If we cannot fulfill your request due to legal obligations or other valid reasons, we will explain why.

8. Children's Privacy

Our Services are not directed to children under the age of 16, and we do not knowingly collect personal information from children under 16. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately at the information provided below.

If we become aware that we have collected personal information from a child under 16 without verification of parental consent, we will take immediate steps to delete that information from our servers.

If we make changes to this policy that affect children's information, we will take additional steps in accordance with applicable laws, including notifying parents and obtaining verifiable parental consent where required.

9. International Data Transfers

9.1 Data Transfer Protections

As a global business, we may transfer your personal information to countries other than your country of residence. When we do so, we ensure appropriate safeguards are in place to protect your information:

• Adequacy Decisions: We may transfer data to countries that have been deemed to provide adequate protection by relevant authorities
• Standard Contractual Clauses (SCCs): We use EU-approved standard contractual clauses with our international service providers
• Data Processing Agreements: We maintain comprehensive agreements with all third parties that process your data on our behalf
• Security Measures: We implement appropriate technical and organizational security measures for all data transfers
• Compliance Audits: We conduct regular audits of our data transfer practices to ensure ongoing compliance

9.2 Transfer Destinations

Your personal information may be transferred to and processed in:

• United States: Cloud storage, analytics services, and customer support infrastructure
• European Union: Data analytics, marketing services, and backup systems
• Other Countries: As needed for service delivery, with appropriate protection measures in place

10. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes for which it was collected, including to satisfy legal, accounting, or reporting requirements.

Information Type	Retention Period	Reason
Account Information	6 months after account deletion	Legal obligations, dispute resolution, fraud prevention
Order History	7 years	Tax and accounting requirements, warranty claims
Payment Records	7 years	Financial regulations, audit requirements
Marketing Consent Records	3 months after withdrawal	Consent documentation, compliance proof
Website Usage Logs	Up to 2 years	Security analysis, service improvement
Customer Support Records	3 years	Service quality improvement, dispute resolution
Loyalty Program Data	Duration of membership + 2 years	Points redemption, program administration
Allergen Information	Duration of account + 1 year	Food safety, liability protection

Safe Data Disposal

When personal information is no longer needed, we ensure its secure disposal through:

• Electronic Data: Secure deletion using industry-standard methods that prevent recovery
• Physical Records: Secure shredding and destruction of paper documents
• Backup Systems: Scheduled deletion from all backup storage systems
• Disposal Records: Documentation of data disposal for compliance purposes

11. Third-Party Links

Our website and Services may contain links to third-party websites, applications, or services that are not operated by us. These may include social media platforms, payment processors, delivery service partners, and other external sites.

We are not responsible for the privacy practices or content of these third-party sites. We strongly encourage you to review the privacy policy of every website you visit before providing any personal information.

The presence of a link on our website does not imply endorsement of the linked site or its privacy practices. Your use of any third-party website is at your own risk, and we recommend reviewing their terms of service and privacy policies before engaging with them.

12. Changes to This Privacy Policy

12.1 Notification of Changes

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will notify you through one or more of the following methods:

• Prominent notice on our website homepage and within our mobile applications
• Email notification to registered users at the email address associated with your account
• Pop-up notification when you log into your account
• Push notification through our mobile applications (if enabled)

For significant changes that affect how we use or share your personal information, we will seek your explicit consent before the changes take effect.

12.2 Reviewing Changes

We encourage you to periodically review this Privacy Policy to stay informed about how we protect your information:

• The latest version is always available on our website at pizza-imos.digital/privacy.html
• Check the "Last Updated" date at the top of this page to see when the policy was last revised
• Your continued use of our Services after any changes indicates your acceptance of the updated policy
• If you do not agree with any changes, you have the option to stop using our Services and request deletion of your account

13. Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us using any of the following methods:

Response Commitment: We are committed to responding to all privacy-related inquiries within 3 business days. For formal data subject access requests, we will provide a complete response within 30 days as required by law.

13.1 Filing a Complaint

If you believe your privacy rights have been violated, we encourage you to contact us first so we can try to resolve your concerns directly. However, you also have the right to file a complaint with the appropriate supervisory authority:

• United States: Federal Trade Commission (FTC) - ftc.gov/complaint
• California Residents: California Attorney General's Office - oag.ca.gov
• European Union: Your local Data Protection Authority (DPA)

14. Withdrawal of Consent

14.1 Marketing Consent Withdrawal

If you have previously opted in to receive marketing communications from us, you can withdraw your consent at any time through the following methods:

• Email: Click the "Unsubscribe" link at the bottom of any promotional email
• Account Settings: Log into your account and update your communication preferences
• SMS: Reply "STOP" to any promotional text message
• Push Notifications: Disable notifications through your device settings or our app settings
• Contact Us: Email or call our customer support team to request removal from marketing lists

Please note that even after withdrawing marketing consent, you will still receive transactional communications related to your orders, account, and important service announcements.

14.2 Account Deletion

You can request complete deletion of your account and associated personal data by following these steps:

1. Log into your account and navigate to Account Settings
2. Select "Delete Account" or "Close My Account"
3. Confirm your request by entering your password
4. You will receive a confirmation email within 24 hours

Alternatively, you can contact our customer support team to request account deletion. Please note that certain information may be retained for legal, tax, or audit purposes as described in Section 10, even after account deletion.

15. Conclusion

At Imos Pizza, protecting your privacy is not just a legal obligation—it is a fundamental part of our commitment to you, our valued customer. We understand that you trust us with your personal information, and we take that responsibility seriously.

We believe that a strong relationship between our company and our customers is built on transparency, trust, and mutual respect. This Privacy Policy is designed to give you a clear understanding of how we handle your data, what choices you have, and how you can exercise your rights.

We are continuously working to improve our privacy practices and stay ahead of evolving data protection standards. If you have any questions, suggestions, or concerns about this policy or our data handling practices, please do not hesitate to contact us. Your feedback helps us serve you better.

This Privacy Policy was last updated on January 15, 2025. Please check back periodically to stay informed of any changes.