Privacy Policy

This Privacy Policy describes how Church's Chicken ("we," "us," "our," or the "Company") collects, uses, discloses, and safeguards your personal information when you visit our website chickenchurch.click, place orders, use our digital services, or otherwise interact with us. Please read this policy carefully. By accessing or using our website and services, you acknowledge that you have read, understood, and agree to be bound by the terms of this Privacy Policy.

We are committed to protecting your privacy and handling your personal data in an open and transparent manner. This Privacy Policy complies with applicable United States federal and state privacy laws, including the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA), the Federal Trade Commission Act (FTC Act), the Children's Online Privacy Protection Act (COPPA), and other applicable federal and state regulations.

1. About Us

Church's Chicken operates the website chickenchurch.click and provides food ordering, delivery coordination, and related digital services to consumers across the United States. For all privacy-related matters, you may contact us using the following information:

2. Scope of This Privacy Policy

This Privacy Policy applies to:

• All visitors to our website at chickenchurch.click
• Customers who place orders online or through our digital platforms
• Users who register for an account or loyalty program
• Individuals who sign up for our email newsletters or promotional communications
• Anyone who contacts us via email, telephone, or online forms
• Users who interact with our social media pages or digital advertisements

This policy does not apply to the data practices of third-party websites, applications, or services that may be linked from our website. We encourage you to review the privacy policies of any third-party platforms you visit.

3. Information We Collect

We collect several categories of personal information in connection with our food ordering and digital services. The types of information we collect depend on how you interact with us.

3.1 Information You Provide Directly

When you use our website, create an account, place an order, or communicate with us, you may voluntarily provide us with the following personal information:

• Identity Information: First name, last name, username, or similar identifiers
• Contact Information: Email address, telephone number, mailing address, and delivery address
• Account Credentials: Password and security questions (stored in encrypted form)
• Payment Information: Credit card or debit card numbers, billing address, and payment method details (processed securely through third-party payment processors; we do not store full card numbers)
• Order Information: Food preferences, dietary restrictions or preferences you choose to disclose, order history, and transaction records
• Communications: Content of messages, feedback, complaints, or inquiries you send us
• Loyalty Program Data: Points balance, redemption history, promotional preferences
• Survey Responses: Opinions and feedback submitted through voluntary surveys or reviews

3.2 Information Collected Automatically

When you visit our website or use our digital services, we automatically collect certain technical and usage information, including:

• Device Information: IP address, device type, operating system, browser type and version, device identifiers
• Usage Data: Pages viewed, links clicked, time spent on pages, navigation paths, search queries on our website, referring URLs
• Location Data: General geographic location derived from your IP address; precise geolocation if you grant permission through your device settings
• Log Data: Server logs, access times, error logs, and other diagnostic data
• Cookie and Tracking Data: Data collected through cookies, web beacons, pixels, and similar tracking technologies (see Section 9 for details)

3.3 Information from Third Parties

We may receive information about you from third-party sources, including:

• Third-party food delivery platforms and ordering aggregators
• Social media platforms when you choose to connect your account or interact with our social media pages
• Analytics providers who supplement our usage data
• Advertising partners who share data about your interactions with our advertisements
• Fraud prevention and identity verification services
• Publicly available sources

3.4 Sensitive Personal Information

We generally do not seek to collect sensitive personal information such as government identification numbers, financial account credentials beyond payment processing, health data, racial or ethnic origin, religious beliefs, or biometric data. If you choose to disclose dietary restrictions or food allergy information for the purpose of safe order fulfillment, we treat this information with heightened care and use it solely for that purpose.

4. How We Use Your Information

We use the personal information we collect for the following purposes:

4.1 Providing and Managing Our Services

• Processing and fulfilling your food orders
• Creating and managing your account
• Processing payments and preventing fraudulent transactions
• Coordinating delivery or pickup logistics
• Communicating order confirmations, receipts, and status updates
• Administering loyalty and rewards programs
• Responding to your customer service inquiries and requests

4.2 Improving Our Services

• Analyzing usage patterns to improve website functionality and user experience
• Conducting internal research and development
• Monitoring the performance and security of our website and systems
• Personalizing menu recommendations and content based on your preferences and order history
• Testing new features and service enhancements

4.3 Marketing and Promotions

• Sending you promotional emails, newsletters, and special offers (with your consent where required)
• Serving targeted advertisements on our website and on third-party platforms
• Notifying you about new menu items, limited-time offers, and events
• Conducting customer satisfaction surveys
• Administering contests, sweepstakes, and promotions

You may opt out of marketing communications at any time by clicking the "unsubscribe" link in any email we send, by contacting us at [email protected], or by adjusting your account preferences on our website.

4.4 Legal and Compliance Purposes

• Complying with applicable federal and state laws and regulations
• Responding to lawful requests from law enforcement, regulators, and courts
• Enforcing our Terms of Service and other agreements
• Protecting the rights, property, and safety of our company, customers, and others
• Preventing, detecting, and investigating fraud, abuse, and security incidents

5. Legal Basis for Processing

As a United States-based company, we process your personal information based on the following grounds:

• Contract Performance: Processing necessary to fulfill your orders and provide the services you have requested
• Legitimate Interests: Processing that serves our legitimate business interests, such as improving our services, preventing fraud, and marketing our products, provided these interests are not overridden by your rights
• Legal Obligation: Processing required by applicable law, regulation, or court order
• Consent: Where we rely on your consent (e.g., for certain marketing communications or precise geolocation), you have the right to withdraw that consent at any time

6. Sharing Your Information with Third Parties

We do not sell your personal information to third parties for monetary compensation. However, we may share your information with certain categories of third parties in the following circumstances:

6.1 Service Providers

We engage trusted third-party service providers who assist us in operating our website and delivering our services. These service providers are contractually obligated to use your information only to perform services on our behalf and in accordance with our instructions. Categories of service providers include:

• Payment processors and fraud prevention services
• Cloud hosting and data storage providers
• Food delivery logistics and courier companies
• Customer relationship management (CRM) software providers
• Email marketing and communications platforms
• Analytics and data intelligence providers
• Advertising technology platforms
• Customer support software providers
• IT security and cybersecurity firms

6.2 Business Partners

We may share limited personal information with trusted business partners, such as co-branded promotions or integrated third-party ordering platforms, where you have initiated an interaction with that partner through our services.

6.3 Legal Requirements

We may disclose your personal information if required to do so by law or in response to valid legal process, including:

• Subpoenas, court orders, or other legal demands
• Requests from law enforcement agencies or government authorities
• Regulatory investigations or audits
• Protection of legal rights and defense of legal claims

6.4 Business Transfers

In the event of a merger, acquisition, asset sale, reorganization, bankruptcy, or other corporate transaction involving Church's Chicken, your personal information may be transferred to the acquiring or successor entity. We will notify you via email or prominent notice on our website before your personal information becomes subject to a different privacy policy.

6.5 With Your Consent

We may share your information with other third parties when you have given us explicit consent to do so.

7. Data Security

We take the security of your personal information seriously and implement a range of technical, administrative, and physical safeguards designed to protect your data from unauthorized access, disclosure, alteration, and destruction. Our security measures include:

7.1 Technical Safeguards

• Secure Socket Layer (SSL) and Transport Layer Security (TLS) encryption for data transmitted between your browser and our servers
• Encryption of sensitive data at rest, including payment information and account credentials
• Firewalls, intrusion detection systems, and network monitoring
• Regular vulnerability scanning and penetration testing
• Multi-factor authentication for access to sensitive systems
• Secure coding practices and regular security code reviews

7.2 Administrative Safeguards

• Access controls limiting employee access to personal data on a need-to-know basis
• Employee training on data privacy and security practices
• Confidentiality agreements with employees and contractors who handle personal data
• Data breach response procedures and incident management protocols
• Regular review and updating of security policies and procedures

7.3 Physical Safeguards

• Secured physical access to data processing facilities
• Secure disposal of physical records containing personal information

Despite our best efforts, no security system is impenetrable. We cannot guarantee the absolute security of your information. In the event of a data breach that affects your rights and freedoms, we will notify affected users and relevant authorities as required by applicable law.

8. Your Privacy Rights

Depending on your state of residence and applicable law, you may have the following rights with respect to your personal information:

8.1 Rights for All United States Residents

• Right to Know: You have the right to request information about what personal data we hold about you
• Right to Correct: You have the right to request correction of inaccurate personal information we hold about you
• Right to Opt Out of Marketing: You have the right to opt out of receiving marketing communications from us at any time

8.2 Additional Rights for California Residents (CCPA/CPRA)

If you are a California resident, you have the following additional rights under the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA):

• Right to Know: The right to request disclosure of the categories and specific pieces of personal information we have collected about you in the preceding 12 months
• Right to Delete: The right to request deletion of personal information we have collected about you, subject to certain exceptions
• Right to Correct: The right to request correction of inaccurate personal information
• Right to Opt Out of Sale or Sharing: The right to opt out of the sale or sharing of your personal information for cross-context behavioral advertising
• Right to Limit Use of Sensitive Personal Information: The right to limit our use of sensitive personal information to purposes necessary for providing services
• Right to Non-Discrimination: The right not to receive discriminatory treatment for exercising your privacy rights
• Right to Data Portability: The right to receive your personal information in a portable and readily usable format

8.3 How to Exercise Your Rights

To exercise any of your privacy rights, you may submit a request by:

• Email: [email protected] with the subject line "Privacy Rights Request"
• Website: chickenchurch.click

We will verify your identity before processing your request. Verification may require you to provide additional information such as your name, email address, and order history. We will respond to verifiable consumer requests within 45 days of receipt. If we require more time (up to 90 days total), we will inform you of the extension and the reason for it within the initial 45-day period.

You may designate an authorized agent to submit a request on your behalf. The authorized agent must provide written authorization signed by you, and we may verify your identity directly with you.

9. Cookies and Tracking Technologies

We use cookies, web beacons, pixels, and similar tracking technologies on our website to enhance your browsing experience, analyze website traffic, and deliver personalized content and advertising.

9.1 Types of Cookies We Use

9.2 Managing Your Cookie Preferences

You can control and manage cookies through your browser settings. Most browsers allow you to refuse some or all cookies or to alert you when a cookie is being sent. Please note that disabling certain cookies may affect the functionality of our website and your ability to place orders.

For more detailed information about our use of cookies and how to manage your preferences, please refer to our Cookie Policy available at chickenchurch.click.

10. Data Retention

We retain your personal information for as long as necessary to fulfill the purposes described in this Privacy Policy, unless a longer retention period is required or permitted by applicable law. Our data retention practices are as follows:

When your personal information is no longer required, we will securely delete or anonymize it in accordance with our data retention and disposal procedures.

11. Children's Privacy

We do not knowingly collect, use, or disclose personal information from individuals under the age of 13. Our website and digital services are not directed to children under the age of 13, and we do not knowingly allow persons under 13 to create accounts or use our online ordering services.

If you are between the ages of 13 and 17, you should only use our website with the involvement and consent of a parent or legal guardian. We recommend that parents and guardians monitor their children's online activities and use parental control tools where appropriate.

If we become aware that we have inadvertently collected personal information from a child under the age of 13 without verifiable parental consent, we will take prompt steps to delete that information from our records. If you believe we may have collected information from a child under 13, please contact us immediately at [email protected].

Our practices comply with the Children's Online Privacy Protection Act (COPPA) and applicable FTC regulations regarding children's online privacy.

12. International Data Transfers

Our website and services are operated in the United States, and our servers are located in the United States. If you are accessing our website from outside the United States, please be aware that your personal information will be transferred to, stored, and processed in the United States, where data protection laws may differ from those in your country of residence.

By using our website and services, you consent to the transfer of your personal information to the United States. We take appropriate measures to ensure that any international transfers of personal data comply with applicable legal requirements and that your information remains protected.

If you are located in a jurisdiction with specific data transfer requirements, such as the European Economic Area (EEA), please contact us at [email protected] to learn about the safeguards we have implemented for your data.

13. Third-Party Links and Services

Our website may contain links to third-party websites, applications, and services, including food delivery platforms, social media sites, and payment processors. These third-party services have their own privacy policies and practices, which we do not control. We are not responsible for the privacy practices of any third-party websites or services.

We encourage you to review the privacy policies of any third-party sites or services you access through links on our website before providing any personal information. The inclusion of a link on our website does not imply our endorsement of that third party's privacy practices.

14. Do Not Track Signals

Some web browsers offer a "Do Not Track" (DNT) feature that signals to websites that you do not want your online activity tracked. Currently, there is no universally accepted standard for how companies should respond to DNT signals. At this time, our website does not respond to DNT browser signals. However, you can control certain types of data collection through your cookie settings and browser preferences, as described in Section 9 of this Privacy Policy.

15. State-Specific Privacy Rights

In addition to the rights described in Section 8, residents of certain states may have additional privacy rights under their respective state laws:

15.1 California Residents

California residents are entitled to the rights described under the CCPA/CPRA, including the "Shine the Light" law (California Civil Code Section 1798.83), which allows California residents to request information once per year about personal information disclosed to third parties for their direct marketing purposes during the prior calendar year.

15.2 Virginia Residents

Residents of Virginia have rights under the Virginia Consumer Data Protection Act (VCDPA), including rights to access, correct, delete, and obtain a portable copy of their personal data, and to opt out of the processing of personal data for targeted advertising or profiling purposes.

15.3 Colorado, Connecticut, Texas, and Other State Residents

Residents of Colorado, Connecticut, Texas, and other states with comprehensive privacy legislation may have similar rights to those described above. Please contact us at [email protected] to learn about your specific rights based on your state of residence.

16. How to File a Complaint

If you have concerns about how we handle your personal information, we encourage you to contact us first so we can try to resolve your concern directly:

• Email: [email protected]
• Subject Line: Privacy Complaint

We will acknowledge your complaint within 5 business days and aim to provide a substantive response within 30 days.

16.1 Filing a Complaint with Regulatory Authorities

If you are not satisfied with our response to your privacy complaint, or if you believe we are processing your personal information in violation of applicable law, you may file a complaint with the relevant regulatory authority:

17. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or for other operational reasons. When we make material changes to this policy, we will:

• Update the "Last Updated" date at the top of this page
• Post a prominent notice on our website
• Send an email notification to registered users (where we have your email address and the change materially affects your rights)

We encourage you to review this Privacy Policy periodically to stay informed about how we collect, use, and protect your information. Your continued use of our website and services after any changes to this Privacy Policy will constitute your acceptance of those changes.

18. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please do not hesitate to contact us:

When contacting us about a privacy matter, please include your full name, email address, a description of your request or concern, and, if applicable, the specific right you wish to exercise. This will help us process your request efficiently.