Privacy Policy

This Privacy Policy describes how Via 313 ("we," "us," "our," or "the Company") collects, uses, discloses, retains, and protects your personal information when you visit our website at via313-pizzas.click, place an order, interact with our online services, or otherwise engage with us. Please read this policy carefully before using our website or providing us with any personal information.

By accessing or using our website, placing an order, subscribing to our communications, or otherwise engaging with Via 313's digital and physical services, you acknowledge that you have read, understood, and agree to the practices described in this Privacy Policy. If you do not agree with this policy, please discontinue use of our website and services immediately.

We are committed to protecting your privacy and handling your personal data in an open, transparent, and lawful manner. This policy has been drafted in compliance with applicable United States federal and state privacy laws, including the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA), and the Federal Trade Commission Act (FTC Act), among other applicable regulations.

1. About Us and How to Contact Us

Via 313 is a food business operating in the United States. For all privacy-related inquiries, requests, or concerns, you may contact us using the details below:

We designate our operations team as the primary point of contact for all privacy-related matters. When contacting us regarding privacy, please include "Privacy Request" in the subject line of your email to ensure prompt handling.

2. Scope of This Privacy Policy

This Privacy Policy applies to all personal information we collect through the following channels:

• Our website located at via313-pizzas.click
• Online ordering platforms, third-party delivery apps, and integrated services we use
• Email communications, newsletters, and promotional messages
• Loyalty programs, promotions, contests, and surveys
• In-store interactions where digital data is collected (e.g., Wi-Fi sign-ins, kiosk orders)
• Social media pages and interactions with our brand profiles
• Any other means by which you interact with Via 313 digitally or electronically

This policy does not apply to third-party websites, services, or applications that may be linked from our website. We encourage you to review the privacy policies of any third-party sites you visit.

3. Information We Collect

We collect various categories of personal information depending on how you interact with us. Below is a detailed breakdown of the types of data we may collect:

3.1 Information You Provide Directly

When you interact with Via 313 voluntarily, we may collect the following personal information:

• Identity Information: Full name, username or display name, date of birth (where required for age verification)
• Contact Information: Email address, phone number, mailing address, delivery address
• Account Information: Username, password (stored in encrypted format), account preferences
• Order and Transaction Information: Items ordered, order history, special instructions, dietary preferences, payment method type (note: we do not store full payment card details)
• Payment Billing Information: Billing address, last four digits of a card, transaction identifiers (full payment data is processed by our PCI-DSS compliant payment processors)
• Communications: Messages, feedback, complaints, reviews, or survey responses you submit to us
• Marketing Preferences: Opt-in or opt-out preferences for promotional communications

3.2 Information Collected Automatically

When you visit our website or use our digital services, we automatically collect certain technical and usage data, including:

• Device Information: IP address, browser type and version, operating system, device type (desktop, mobile, tablet), device identifiers
• Usage Data: Pages viewed, time spent on each page, links clicked, referring URLs, exit pages, search queries entered on our website
• Location Data: General geographic location inferred from your IP address; precise location data only if you explicitly grant permission through your browser or device
• Log Data: Server logs, access timestamps, error reports, and other diagnostic data
• Cookie and Tracking Data: Data collected through cookies, pixel tags, web beacons, and similar tracking technologies (see Section 9 for more details)

3.3 Information Received from Third Parties

We may receive personal information about you from the following third-party sources:

• Delivery Platforms: Services such as DoorDash, Uber Eats, Grubhub, or similar platforms may share order information with us to fulfill your delivery
• Payment Processors: Confirmation and transaction status data from our authorized payment processing partners
• Social Media Platforms: If you log in using a social media account (e.g., Facebook, Google), we receive your public profile information as authorized by you during the login process
• Analytics Providers: Aggregated demographic or behavioral data from analytics partners to help us understand our audience
• Marketing Partners: Lead generation partners or advertising networks may share contact information with us where you have provided consent to receive communications from food-related businesses

3.4 Sensitive Personal Information

We generally do not seek to collect sensitive personal information. However, in limited circumstances, we may collect dietary restriction information (such as allergies) you provide for the purpose of fulfilling your food order safely. We do not use sensitive personal information for purposes beyond those strictly necessary for service delivery and your safety.

4. How We Use Your Personal Information

We use the personal information we collect for the following specific purposes:

4.1 Service Provision and Order Fulfillment

• Processing, confirming, and fulfilling your food orders
• Managing your customer account and saved preferences
• Coordinating delivery logistics with third-party delivery partners
• Communicating with you about your orders, including confirmations, updates, and estimated delivery times
• Processing refunds, exchanges, or resolving order disputes

4.2 Customer Support and Communications

• Responding to your inquiries, complaints, and customer service requests
• Sending you transactional communications including receipts, invoices, and account notifications
• Notifying you of changes to our menu, services, pricing, or policies

4.3 Marketing and Promotional Activities

• Sending promotional emails, newsletters, and special offer notifications where you have opted in or where permitted by law
• Personalizing promotional content based on your order history and preferences
• Administering loyalty programs, contests, sweepstakes, and other promotional activities
• Conducting market research and customer satisfaction surveys

4.4 Analytics and Service Improvement

• Analyzing website traffic patterns, user behavior, and performance metrics
• Improving our website functionality, menu offerings, and user experience
• Understanding our customer base and developing new products or services
• Monitoring and troubleshooting technical issues on our website

4.5 Legal Compliance and Safety

• Complying with applicable federal, state, and local laws and regulations
• Responding to lawful requests from law enforcement or government authorities
• Enforcing our Terms of Service and other agreements
• Preventing fraud, unauthorized transactions, and other illegal activities
• Protecting the rights, property, and safety of Via 313, our customers, and the public

4.6 Business Operations

• Maintaining accurate business records and financial accounting
• Conducting internal audits and operational reviews
• Facilitating potential business transactions such as mergers, acquisitions, or asset sales

5. Legal Basis for Processing (U.S. Consumers)

Under U.S. law, including applicable state privacy statutes, our legal grounds for processing your personal information include:

• Contractual Necessity: Processing required to fulfill your orders or manage your account
• Legitimate Business Interests: Analytics, fraud prevention, service improvement, and marketing to existing customers
• Legal Obligation: Compliance with applicable laws, court orders, and regulatory requirements
• Consent: Where you have specifically opted in to receive marketing communications or allowed certain cookies and tracking technologies

6. Sharing Your Personal Information with Third Parties

We do not sell your personal information for monetary compensation. However, we may share your data with trusted third parties under the following circumstances:

6.1 Service Providers and Business Partners

We share personal information with third-party vendors who assist us in operating our business and delivering services. These providers are contractually obligated to protect your data and use it only for the purposes we specify. These include:

• Payment processing companies (e.g., Stripe, Square, or similar)
• Food delivery platform partners (e.g., DoorDash, Uber Eats, Grubhub)
• Email marketing and communication platforms
• Website hosting and cloud infrastructure providers
• Analytics and data intelligence services (e.g., Google Analytics)
• Customer relationship management (CRM) software providers
• IT support and cybersecurity service providers

6.2 Legal Requirements and Law Enforcement

We may disclose personal information when we believe in good faith that disclosure is necessary to:

• Comply with a legal obligation, court order, subpoena, or government request
• Enforce our legal rights or defend against legal claims
• Prevent or investigate fraud, security breaches, or illegal activity
• Protect the safety of any person or the public

6.3 Business Transfers

In the event of a merger, acquisition, reorganization, bankruptcy, or sale of all or a portion of our assets, your personal information may be transferred to the acquiring or successor entity. We will notify you of any such transfer and any choices you may have via a prominent notice on our website or by direct communication.

6.4 With Your Consent

We may share your information with additional third parties when we have obtained your explicit consent to do so.

6.5 Aggregated and Anonymized Data

We may share aggregated, anonymized, or de-identified data that cannot reasonably be used to identify you with third parties for business, research, or marketing analysis purposes.

7. Data Security Measures

Via 313 takes the security of your personal information seriously. We implement a range of technical, administrative, and physical safeguards designed to protect your data from unauthorized access, disclosure, alteration, or destruction. These measures include:

• Encryption: All data transmitted between your browser and our website is encrypted using industry-standard SSL/TLS protocols (HTTPS)
• Access Controls: Personal data is accessible only to authorized personnel on a need-to-know basis, protected by role-based access controls and strong authentication requirements
• Password Security: User account passwords are stored using strong one-way hashing algorithms; we never store plaintext passwords
• Payment Security: We rely on PCI-DSS compliant payment processors; full payment card details are never stored on our servers
• Regular Security Audits: We conduct periodic assessments of our systems, software, and data handling practices
• Incident Response: We maintain documented procedures for responding to data breaches and security incidents
• Employee Training: Our staff receives privacy and data security training to handle customer information responsibly

In the event of a data breach that affects your rights or interests, we will notify affected individuals in accordance with applicable federal and state breach notification laws, including the notification requirements under state consumer protection statutes.

8. Your Privacy Rights

Depending on your state of residence, you may have certain rights with respect to your personal information. We honor these rights as described below:

8.1 Rights Under the California Consumer Privacy Act (CCPA/CPRA)

If you are a California resident, you have the following rights under the CCPA, as amended by the CPRA:

8.2 Rights for Residents of Other States

Residents of states with comprehensive privacy laws (including but not limited to Virginia, Colorado, Connecticut, Texas, and other states with applicable consumer privacy statutes) may have similar rights, including the right to access, correct, delete, and opt out of certain data processing activities. We extend these rights to all consumers to the extent required by applicable law.

8.3 How to Exercise Your Rights

To exercise any of your privacy rights, you may contact us by:

• Email: [email protected] with the subject line "Privacy Rights Request"

We will acknowledge your request within 10 business days and respond substantively within 45 calendar days from the date we receive a verifiable request. If we need additional time, we will inform you of the reason and extension period in writing.

To protect your privacy, we will verify your identity before processing your request. Verification may involve confirming details associated with your account or prior transactions. You may designate an authorized agent to submit requests on your behalf; such agents must provide written authorization.

9. Cookies and Tracking Technologies

Our website uses cookies, web beacons, pixel tags, and similar tracking technologies to enhance your experience, analyze site performance, and deliver relevant content. Below is a brief overview of the types of cookies we use:

• Strictly Necessary Cookies: Essential for the website to function properly; these cannot be disabled
• Performance and Analytics Cookies: Help us understand how visitors interact with our website (e.g., Google Analytics)
• Functional Cookies: Remember your preferences such as saved address, language settings, and login status
• Marketing and Targeting Cookies: Used to deliver personalized advertisements and track campaign effectiveness

You may control cookie settings through your browser preferences. Most browsers allow you to block or delete cookies. Please note that disabling certain cookies may affect the functionality of our website.

For detailed information about the cookies we use, how we use them, and your choices regarding cookies, please refer to our full Cookie Policy, which is available on our website at via313-pizzas.click.

We also honor browser-based Global Privacy Control (GPC) signals where required by applicable law, including under the CPRA for California residents.

10. Data Retention Periods

We retain personal information only for as long as necessary to fulfill the purposes for which it was collected, to comply with legal obligations, resolve disputes, and enforce our agreements. The following general retention guidelines apply:

Upon expiration of the applicable retention period, we will securely delete or anonymize your personal information in a manner that prevents recovery or reconstruction.

11. Children's Privacy

Via 313's food ordering services are not directed to children under the age of 18. We do not knowingly collect personal information from minors. If we become aware that we have inadvertently collected personal data from a person under 18 years of age, we will take prompt steps to delete that information from our records.

In compliance with the Children's Online Privacy Protection Act (COPPA), we do not knowingly collect personal information from children under the age of 13. If you are a parent or guardian and believe your child has provided us with personal information without your consent, please contact us immediately at [email protected], and we will take steps to delete the information as quickly as possible.

12. International Data Transfers

Via 313 is a United States-based business and our primary data processing activities occur within the United States. If you are accessing our website from outside the United States, please be aware that your personal information will be transferred to, stored, and processed in the United States.

The data protection laws of the United States may differ from those in your home country. By using our website and services from outside the United States, you consent to the transfer of your personal information to the United States and acknowledge that such transfer is subject to U.S. privacy laws as described in this policy.

Where we transfer personal data internationally to third-party service providers, we take reasonable steps to ensure that appropriate safeguards are in place to protect your data, including contractual data protection clauses with our service providers.

13. Third-Party Links and Services

Our website may contain links to third-party websites, delivery platforms, social media pages, or other external services that are not operated by Via 313. These links are provided for your convenience only. We have no control over the content, privacy practices, or policies of any third-party site or service.

We strongly encourage you to review the privacy policy of every third-party website you visit. We are not responsible for the privacy practices of third-party sites and disclaim all liability arising from your use of such websites.

14. Do Not Track Signals

Some browsers offer a "Do Not Track" (DNT) feature that sends a signal to websites requesting that your browsing not be tracked. Currently, there is no universally accepted standard for how websites should respond to DNT signals. At this time, our website does not respond to browser DNT signals.

However, as noted in Section 9, we do honor Global Privacy Control (GPC) signals where required by applicable law.

15. California-Specific Disclosures

In addition to the rights described in Section 8, California residents are entitled to the following specific disclosures under the CCPA/CPRA:

15.1 Categories of Personal Information Collected

In the preceding 12 months, we have collected the following categories of personal information:

• Identifiers (name, email, IP address, device ID)
• Customer records information (billing address, payment type)
• Commercial information (order history, purchasing records)
• Internet and network activity (browsing history on our site, cookies)
• Geolocation data (general location via IP address)
• Inferences drawn from the above to understand preferences

15.2 "Shine the Light" Law

Under California Civil Code Section 1798.83, California residents may request information about whether we have shared their personal data with third parties for direct marketing purposes during the preceding calendar year. To make such a request, please contact us at [email protected].

16. How to File a Privacy Complaint

If you believe that we have not handled your personal information in accordance with this Privacy Policy or applicable law, we encourage you to contact us first so we may address your concern directly.

Contact Us:
Email: [email protected]
Subject Line: "Privacy Complaint"

If you are not satisfied with our response or believe our data practices violate applicable law, you may file a complaint with the relevant data protection or consumer protection authority:

16.1 Federal Trade Commission (FTC)

The FTC enforces privacy and data security laws at the federal level. You may file a complaint with the FTC online at:

reportfraud.ftc.gov or www.ftc.gov/about-ftc/contact

16.2 California Residents – California Privacy Protection Agency (CPPA)

California residents may file complaints with the California Privacy Protection Agency (CPPA), the agency responsible for enforcing the CCPA/CPRA:

California Privacy Protection Agency
Email: [email protected]
Website: cppa.ca.gov

16.3 California Attorney General

You may also file a complaint with the California Attorney General's office regarding potential CCPA violations at:

oag.ca.gov/privacy/ccpa

16.4 State Attorneys General

Residents of other states may also have the right to file complaints with their respective state attorney general offices regarding consumer privacy matters. We encourage you to consult your state's attorney general website for information on filing a complaint.

17. Changes to This Privacy Policy

We reserve the right to update or modify this Privacy Policy at any time to reflect changes in our data practices, applicable laws, or our services. When we make material changes, we will:

• Update the "Last Updated" date at the top of this page
• Post the revised policy prominently on our website at via313-pizzas.click
• For significant changes, provide additional notice via email (if you have an account with us) or a prominent banner on our website

Your continued use of our website or services after the effective date of any changes constitutes your acceptance of the updated Privacy Policy. We encourage you to review this policy periodically to stay informed about how we protect your personal information.

18. Automated Decision-Making and Profiling

We may use automated systems to personalize your experience on our website, such as recommending menu items based on your order history or showing you targeted promotions. These automated processes do not result in decisions that produce significant legal effects on you. If you have concerns about automated processing of your data, please contact us at [email protected].

19. Your Choices and Opt-Out Options

We provide you with meaningful choices about how your data is used:

• Marketing Emails: You may unsubscribe from our marketing emails at any time by clicking the "Unsubscribe" link in any promotional email or by contacting us at [email protected]. Please note that transactional emails related to your orders cannot be opted out of while your account is active.
• SMS Marketing: If you have opted in to receive text messages from us, you may opt out at any time by replying "STOP" to any SMS message from us.
• Cookies: You may manage cookie preferences through your browser settings or via our cookie consent tool on the website.
• Account Deletion: You may request deletion of your account and associated data by emailing us at [email protected].

20. Contact Information for Privacy Inquiries

For all questions, requests, concerns, or complaints relating to this Privacy Policy or our data practices, please contact Via 313 directly:

We are committed to working with you to resolve any privacy concerns in a fair, timely, and transparent manner. We aim to acknowledge all privacy-related inquiries within 10 business days and provide a substantive response within 45 days of receiving your verifiable request.