Privacy Policy
Welcome to Church's Chicken (referred to herein as "we," "us," "our," or the "Company"). We operate the website chicksschurch.digital (the "Website") and related digital services in connection with our food service business. We are deeply committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, disclose, retain, and safeguard your information when you visit our Website, place orders, participate in promotions, or otherwise interact with us.
Please read this Privacy Policy carefully. If you disagree with its terms, please discontinue use of our Website and services. This Privacy Policy applies to all users of our Website and digital services located in the United States and is governed by applicable United States federal and state privacy laws, including the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA), the Federal Trade Commission Act (FTC Act), and other applicable state consumer protection laws.
If you have questions or concerns about this policy, you may contact us at any time using the contact information provided at the end of this document.
1. About Us
Church's Chicken operates a food service business offering quick-service restaurant dining, online ordering, catering, and related food services. Our digital platform, chicksschurch.digital, serves as the primary online interface for customers seeking to browse our menu, place orders, access promotions, and engage with our brand.
| Company Name | Church's Chicken |
|---|---|
| Website | chicksschurch.digital |
| Email Address | [email protected] |
| Business Type | Food Service / Quick-Service Restaurant |
| Location | United States |
2. Information We Collect
We collect various types of information in connection with the services we provide. This includes information you provide directly to us, information we collect automatically when you use our Website, and information obtained from third-party sources. The categories of personal information we collect are described below.
2.1 Information You Provide Directly
When you interact with our Website or services, you may voluntarily provide us with the following categories of personal information:
- Identifiers: Full name, username or alias, email address, postal address, phone number, and similar contact details.
- Account Information: Login credentials (username and password) when you create an account on our platform.
- Order Information: Items ordered, delivery or pickup address, special instructions, and order history.
- Payment Information: Credit or debit card numbers, billing address, and other financial information necessary to process transactions. Note: payment card data is processed by third-party payment processors and we do not store full card numbers on our systems.
- Communications: Messages, feedback, reviews, survey responses, and any other content you submit to us through contact forms, customer service inquiries, or email correspondence.
- Promotional Participation: Information submitted when entering contests, sweepstakes, or promotional campaigns, including eligibility data.
- Loyalty Program Data: Information related to participation in rewards or loyalty programs, including points balances and redemption history.
2.2 Information Collected Automatically
When you visit our Website or use our digital services, we and our third-party service providers automatically collect certain technical and usage information, including:
- Device Information: Device type, operating system and version, browser type and version, device identifiers (such as IP address and device ID), screen resolution, and hardware configuration.
- Log Data: Access times and dates, pages viewed, links clicked, referring URLs, time spent on pages, and other interaction data.
- Location Data: General geographic location inferred from your IP address. With your explicit consent, we may collect more precise location data from your mobile device to enable location-based services such as finding the nearest restaurant.
- Cookie and Tracking Data: Information collected through cookies, web beacons, pixel tags, local storage, and similar tracking technologies as further described in Section 7 of this Privacy Policy.
- Usage Analytics: Information about how you navigate and interact with our Website, including session duration, navigation paths, and feature usage.
2.3 Information From Third-Party Sources
We may receive information about you from third parties in certain circumstances, including:
- Social Media Platforms: If you choose to connect your social media account (such as Facebook, Google, or Apple) to log in to our Website or share content, we may receive profile information such as your name, email address, and profile picture as permitted by your privacy settings on those platforms.
- Payment Processors: Confirmation of payment transactions and fraud screening results from our third-party payment processing partners.
- Marketing Partners: Demographic and interest-based information from advertising networks and marketing partners to enhance our targeted advertising efforts.
- Delivery Partners: Order fulfillment and delivery status updates from third-party delivery service providers.
- Publicly Available Sources: Information available in public databases that we may use to verify identities or supplement our records.
3. How We Use Your Information
We use the personal information we collect for the following purposes, each of which is grounded in a legitimate business need, a legal obligation, or your consent where required by applicable law.
3.1 Service Provision and Order Fulfillment
- To process and fulfill your food orders, including coordinating delivery or in-store pickup.
- To create and manage your account on our platform.
- To process payments and issue receipts or refunds.
- To operate and administer our loyalty and rewards programs.
- To communicate with you about your orders, reservations, or service requests.
- To provide customer support and respond to inquiries, complaints, or feedback.
3.2 Marketing and Promotions
- To send you promotional emails, text messages, or push notifications about new menu items, special offers, discounts, and events, where you have opted in to receive such communications.
- To administer contests, sweepstakes, and promotional campaigns.
- To personalize your experience on our Website, including displaying content and offers relevant to your preferences and past interactions.
- To serve you targeted advertising on our Website and on third-party platforms, based on your interests and browsing behavior.
3.3 Analytics and Service Improvement
- To analyze usage patterns, traffic trends, and user behavior on our Website to improve performance and user experience.
- To conduct market research and customer satisfaction surveys.
- To develop new products, services, features, and menu offerings based on aggregate customer insights.
- To test and evaluate the effectiveness of marketing campaigns and promotional strategies.
3.4 Legal and Security Purposes
- To comply with applicable laws, regulations, and legal processes, including responding to lawful requests from government authorities.
- To detect, investigate, and prevent fraudulent transactions, identity theft, and other illegal activities.
- To protect the rights, property, and safety of our Company, our customers, and the public.
- To enforce our Terms of Service and other applicable agreements.
- To resolve disputes and to establish, exercise, or defend legal claims.
3.5 Business Operations
- To maintain business records, perform internal audits, and carry out financial reporting.
- To facilitate corporate transactions such as mergers, acquisitions, or asset sales.
- To comply with food safety regulations, health standards, and other industry-specific legal obligations.
4. Sharing of Your Personal Information
We do not sell your personal information to third parties for their own direct marketing purposes. However, we may share your personal information with the following categories of recipients under the circumstances described below.
4.1 Service Providers and Business Partners
We engage trusted third-party companies and individuals to perform services on our behalf. These service providers are authorized to use your personal information only as necessary to provide services to us and are contractually obligated to protect your data. Examples include:
- Payment processors and financial institutions for transaction processing.
- Cloud hosting providers and IT infrastructure service providers.
- Delivery and logistics partners who fulfill food orders.
- Email marketing platforms and SMS service providers for communications.
- Analytics providers (such as Google Analytics) for website performance monitoring.
- Customer relationship management (CRM) software providers.
- Fraud prevention and identity verification services.
- Loyalty program technology providers.
4.2 Advertising and Marketing Partners
We may share limited information (such as hashed email addresses or device identifiers) with advertising networks and social media platforms to deliver targeted advertisements and measure the effectiveness of advertising campaigns. This sharing is conducted in compliance with applicable advertising standards and, where required, with your consent.
4.3 Legal and Regulatory Disclosures
We may disclose your personal information to government authorities, law enforcement agencies, courts, or other third parties when we are legally required to do so, including in response to:
- Valid subpoenas, court orders, or other legal processes.
- Requests from regulatory agencies with jurisdiction over our business.
- Situations where disclosure is necessary to prevent or investigate suspected illegal activity, fraud, or threats to public safety.
4.4 Business Transfers
In the event that Church's Chicken undergoes a merger, acquisition, reorganization, sale of assets, or bankruptcy proceeding, your personal information may be transferred as part of that transaction. We will notify you via email and/or prominent notice on our Website if your personal information becomes subject to a different privacy policy as a result of such a transaction.
4.5 With Your Consent
We may share your personal information with other third parties when you have given us your explicit consent to do so, such as when you choose to participate in a co-branded promotion or connect your account with a third-party service.
5. Data Security
We take the security of your personal information seriously and implement a range of technical, administrative, and physical safeguards designed to protect your data from unauthorized access, use, alteration, disclosure, or destruction. Our security measures include, but are not limited to:
5.1 Technical Safeguards
- Encryption: We use industry-standard Transport Layer Security (TLS) encryption to protect data transmitted between your browser and our servers. Sensitive data such as payment information is encrypted both in transit and at rest.
- Access Controls: Access to personal data is restricted to authorized personnel on a need-to-know basis. We implement role-based access controls and require multi-factor authentication for administrative access.
- Firewalls and Intrusion Detection: We deploy network firewalls, intrusion detection systems, and security monitoring tools to detect and respond to potential threats.
- Regular Security Audits: We conduct periodic vulnerability assessments and penetration testing to identify and remediate security weaknesses.
5.2 Administrative Safeguards
- Employee training on data protection, privacy practices, and information security policies.
- Written information security policies and procedures governing the handling of personal data.
- Data processing agreements with all third-party service providers that process personal data on our behalf.
- Incident response procedures to address data breaches promptly and in accordance with applicable legal notification requirements.
5.3 Limitations
Despite our best efforts, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security of your personal information. In the event of a data breach that is likely to result in a risk to your rights and freedoms, we will notify you and the appropriate regulatory authorities as required by applicable law, including state data breach notification laws applicable to our business.
6. Your Privacy Rights
Depending on your state of residence, you may have specific rights regarding your personal information. We are committed to honoring these rights in accordance with applicable law. The rights described below apply to residents of states with comprehensive privacy legislation, including California (under the CCPA/CPRA), and other states that have enacted consumer privacy laws.
6.1 Right to Know and Access
You have the right to request that we disclose to you the categories and specific pieces of personal information we have collected about you, the categories of sources from which we collected your information, the business or commercial purposes for collecting your information, and the categories of third parties with whom we have shared your information.
6.2 Right to Correction
You have the right to request that we correct inaccurate personal information that we maintain about you, taking into account the nature of the information and our purposes for processing it.
6.3 Right to Deletion
You have the right to request that we delete personal information we have collected about you, subject to certain exceptions. We may retain your information if it is necessary to complete your transaction, detect security incidents, comply with a legal obligation, or for other permissible purposes under applicable law.
6.4 Right to Data Portability
To the extent technically feasible, you have the right to receive a copy of the personal information you have provided to us in a structured, commonly used, machine-readable format, and to transmit that data to another service provider.
6.5 Right to Opt-Out of Sale or Sharing
Under the CCPA/CPRA, California residents have the right to opt out of the "sale" or "sharing" of their personal information for cross-context behavioral advertising. While we do not sell personal information in the traditional sense, we may share certain data with advertising partners in ways that may constitute "sharing" under California law. You may exercise this right by clicking the "Do Not Sell or Share My Personal Information" link available on our Website.
6.6 Right to Limit Use of Sensitive Personal Information
California residents have the right to limit our use of sensitive personal information (such as precise geolocation data, financial account information, and health data) to purposes necessary to provide the requested service, as defined under the CPRA.
6.7 Right to Non-Discrimination
We will not discriminate against you for exercising any of your privacy rights. We will not deny you goods or services, charge you different prices, provide a different level or quality of service, or suggest that you may receive a different price or quality of goods or services as a result of exercising your privacy rights.
6.8 How to Submit a Privacy Rights Request
To exercise any of the rights described above, you may submit a request by:
- Email: [email protected]
- Website: Using the privacy request form available at chicksschurch.digital
We will verify your identity before processing your request to protect your personal information. We may ask you to provide certain information to confirm your identity, such as your name, email address, and account details. We will respond to verifiable consumer requests within 45 days of receipt. If we require additional time (up to 90 days total), we will inform you of the extension in writing within the initial 45-day period.
You may designate an authorized agent to submit requests on your behalf. Authorized agents must provide written proof of authorization and we may require you to verify your identity directly with us.
7. Cookie Policy and Tracking Technologies
Our Website uses cookies and similar tracking technologies to enhance your browsing experience, analyze Website traffic, and deliver personalized content and advertising. This section provides a brief overview of our use of these technologies.
7.1 Types of Cookies We Use
- Strictly Necessary Cookies: These cookies are essential for the Website to function properly. They enable core features such as account login, shopping cart functionality, and secure checkout.
- Performance and Analytics Cookies: These cookies collect information about how visitors use our Website, such as which pages are visited most often and whether users encounter error messages. We use this data to improve Website performance.
- Functional Cookies: These cookies allow the Website to remember your preferences (such as your language selection or location) and provide enhanced, more personalized features.
- Targeting and Advertising Cookies: These cookies are used to deliver advertisements that are relevant to you and your interests. They may also be used to limit the number of times you see an advertisement and to measure the effectiveness of advertising campaigns.
7.2 Managing Cookies
You can control and manage cookies through your browser settings. Most browsers allow you to refuse certain cookies, delete cookies, or receive a notification when a cookie is set. Please note that disabling certain cookies may affect the functionality of our Website. For more detailed information about our use of cookies and your choices, please refer to our full Cookie Policy available on our Website at chicksschurch.digital.
7.3 Do Not Track Signals
Some web browsers include a "Do Not Track" (DNT) feature that signals websites you visit not to track your browsing activity. Our Website does not currently respond to DNT signals uniformly, as there is no industry-wide standard for DNT compliance. However, California residents may exercise their right to opt out of sharing for targeted advertising purposes as described in Section 6.5 above.
8. Data Retention
We retain your personal information only for as long as necessary to fulfill the purposes for which it was collected, to comply with our legal obligations, resolve disputes, and enforce our agreements. The specific retention periods we apply vary depending on the type of data and the purpose for which it is used.
| Category of Data | Retention Period |
|---|---|
| Account Information | Duration of account existence plus 3 years after account closure |
| Order History and Transaction Records | 7 years (for tax, accounting, and legal compliance purposes) |
| Payment Information | Processed by third-party payment processors; we retain tokenized payment data for up to 2 years |
| Marketing Communications Data | Until you opt out, plus 1 year for compliance recordkeeping |
| Customer Service Records | 3 years from the date of the interaction |
| Website Usage and Analytics Data | Up to 26 months (in line with standard analytics retention practices) |
| Cookie Data | Varies by cookie type; session cookies expire when you close your browser; persistent cookies may last up to 2 years |
| Legal and Compliance Records | As required by applicable law, typically 5–7 years |
When your personal information is no longer required for any of the purposes described above, we will securely delete or anonymize it in accordance with our data retention and destruction procedures.
9. Children's Privacy
Our Website and services are intended for use by individuals who are 18 years of age or older. We do not knowingly collect, solicit, or maintain personal information from children under the age of 13, and we do not direct any of our marketing activities to children under 13.
Our services are not directed to minors under the age of 18. We encourage parents and guardians to monitor their children's online activities and to instruct them not to provide personal information on our Website without parental supervision.
If we learn that we have inadvertently collected personal information from a child under 13 years of age, we will take prompt steps to delete that information from our records. If you believe that a child under 13 has provided us with personal information without parental consent, please contact us immediately at [email protected] so that we can take appropriate action.
In compliance with the Children's Online Privacy Protection Act (COPPA), we do not knowingly collect personal information from children under 13 without verifiable parental consent.
10. International Data Transfers
Our primary operations are based in the United States, and your personal information is processed and stored on servers located within the United States. However, as we engage with service providers and technology partners who may operate internationally, your personal information may, in some instances, be transferred to, processed in, or accessed from countries outside the United States.
When we transfer personal information internationally, we take steps to ensure that such transfers are conducted in accordance with applicable law and that appropriate safeguards are in place to protect your information. These safeguards may include:
- Standard contractual clauses or data processing agreements with international service providers.
- Ensuring that recipient countries provide an adequate level of data protection.
- Implementing technical and organizational security measures consistent with United States standards.
If you are located outside the United States and choose to use our services, please be aware that your information will be transferred to and processed in the United States, where data protection laws may differ from those in your jurisdiction. By using our services, you consent to such transfer and processing.
11. Third-Party Links and Services
Our Website may contain links to third-party websites, applications, or services that are not owned or controlled by Church's Chicken. This Privacy Policy applies only to our Website and services. We have no control over and assume no responsibility for the privacy practices of third-party sites. We encourage you to review the privacy policies of any third-party sites you visit.
Examples of third-party integrations that may be present on our Website include social media sharing buttons, embedded maps (such as Google Maps), payment gateways, and third-party review platforms. When you interact with these third-party features, the respective third party may collect data from you in accordance with their own privacy policies.
12. Marketing Communications and Opt-Out
With your consent, we may send you promotional communications by email, SMS text message, or push notification regarding new menu items, special offers, events, and other marketing content. You may opt out of receiving these communications at any time by:
- Clicking the "Unsubscribe" link included in any marketing email we send.
- Replying "STOP" to any marketing SMS message.
- Adjusting your notification preferences in your account settings on our Website.
- Contacting us directly at [email protected].
Please note that even if you opt out of marketing communications, we may still send you transactional or operational messages related to your account, orders, or legal disclosures. These communications are not subject to opt-out as they are necessary for the provision of our services.
13. California-Specific Privacy Rights
In addition to the rights described in Section 6 of this Privacy Policy, California residents have specific rights under the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA). These rights include all rights described in Section 6 above as well as the following additional protections:
- Right to Know About Automated Decision-Making: You have the right to request information about automated decision-making processes that use your personal information and to opt out of certain automated decisions that produce significant effects concerning you.
- Sensitive Personal Information: The CPRA establishes a specific category of "sensitive personal information" which includes precise geolocation, financial information, health data, biometric data, and information about racial or ethnic origin, among others. California residents may direct us to limit our use of sensitive personal information to the minimum necessary to provide the requested service.
- Annual Metrics Disclosure: We will make available information about the privacy requests we receive and how we respond as required under the CPRA.
To exercise your California privacy rights, please contact us using the information in Section 15 below. You may also designate an authorized agent to make a request on your behalf, provided that the agent provides written authorization and you verify your identity with us directly.
14. Filing Complaints With Data Protection Authorities
If you believe that we have not handled your personal information in accordance with applicable law, you have the right to file a complaint with the relevant data protection authority. Depending on your state of residence, the appropriate authority may be:
14.1 California Residents
California residents may file a complaint with the California Privacy Protection Agency (CPPA), the state agency responsible for enforcing the CPRA. Contact information:
- California Privacy Protection Agency
- Website: cppa.ca.gov
- Email: [email protected]
- Address: 2101 Arena Boulevard, Sacramento, CA 95834
14.2 Federal Level
Consumers across the United States may also file complaints related to unfair or deceptive business practices with the Federal Trade Commission (FTC) under the FTC Act:
- Federal Trade Commission
- Website: www.ftc.gov
- Online Complaint Assistant: reportfraud.ftc.gov
- Phone: 1-877-FTC-HELP (1-877-382-4357)
14.3 State Attorneys General
Residents of all U.S. states may also file complaints with their state's Attorney General office, which typically has jurisdiction over consumer protection matters and state privacy laws. We encourage you to contact us first to resolve any concerns before filing a regulatory complaint.
15. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our data processing practices, please do not hesitate to contact us using the information below. We are committed to addressing your inquiries promptly and transparently.
Privacy Inquiries Contact
- Company: Church's Chicken
- Email: [email protected]
- Website: chicksschurch.digital
When contacting us regarding a privacy matter, please include your name, email address, the nature of your inquiry or request, and, if applicable, the right you wish to exercise. This will help us process your request more efficiently and respond within the required timeframes under applicable law.
16. Changes to This Privacy Policy
We reserve the right to update or modify this Privacy Policy at any time to reflect changes in our business practices, legal requirements, or data processing activities. When we make material changes to this Privacy Policy, we will notify you by:
- Posting the updated Privacy Policy on our Website with a new "Last Updated" date.
- Sending you an email notification to the address associated with your account (where applicable).
- Displaying a prominent notice on our Website homepage for a reasonable period following the update.
Your continued use of our Website and services after the effective date of any changes to this Privacy Policy constitutes your acceptance of those changes. We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.