Privacy Policy

Your privacy is important to us

Last Updated: January 15, 2026

1. Introduction

At Church's Chicken, we are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, share, and safeguard your information when you use our website, mobile applications, visit our restaurants, or interact with our food services.

Important: We never sell your personal data to third parties for their own marketing purposes.

This policy applies to all Church's Chicken locations, our website at churchs-chicken.digital, mobile applications, delivery services, catering services, loyalty programs, and any other services we provide. By using our services, you agree to the terms outlined in this Privacy Policy.

If you do not agree with any part of this policy, please do not use our services. Your continued use of our services after any changes to this policy constitutes acceptance of those changes.

2. Information We Collect

2.1 Information You Provide to Us

  • Personal Identification Information: Name, email address, phone number, mailing address, date of birth
  • Account Information: Username, password, profile information, order history, purchase preferences
  • Order and Dietary Information: Food orders, dietary preferences, allergen information, special dietary requirements (vegan, halal, kosher, gluten-free, etc.)
  • Delivery Information: Delivery addresses, GPS location data for accurate delivery, delivery instructions
  • Payment Information: Credit/debit card numbers (encrypted), billing address, payment history (stored securely with our payment processors)
  • Loyalty Program Data: Rewards points, membership level, favorite orders, visit frequency
  • Reservation Information: Table reservations, party size, special occasions, seating preferences
  • Catering Details: Event information, guest count, menu selections, delivery location and timing
  • Communication Data: Contact form submissions, customer service inquiries, reviews and feedback, survey responses
  • Marketing Preferences: Email subscription preferences, promotional opt-ins, communication frequency settings

2.2 Information We Collect Automatically

  • Device Information: IP address, browser type and version, operating system, device identifiers, mobile network information
  • Usage Data: Pages visited, time spent on site, click patterns, search queries, referral sources, app usage statistics
  • Location Information: Approximate location based on IP address, precise location (with permission) for delivery services and store locators
  • Cookie Data: Session IDs, user preferences, shopping cart contents, authentication tokens, analytics data
  • Technical Data: Browser settings, screen resolution, time zone, language preferences, accessibility settings

2.3 Information from Third Parties

  • Social Media Platforms: Profile information when you connect your social media accounts
  • Payment Processors: Transaction verification and fraud prevention data
  • Delivery Partners: Delivery status updates, driver location, delivery confirmation
  • Marketing Partners: Demographic information, marketing campaign effectiveness data
  • Data Analytics Providers: Website traffic analysis, user behavior insights, market research data

3. How We Use Your Information

3.1 Service Provision

  • Processing and fulfilling food orders, including preparation, delivery, and pickup services
  • Managing customer accounts, authentication, and providing personalized experiences
  • Handling table reservations and catering event planning
  • Processing payments securely and managing billing
  • Providing customer support and resolving service issues
  • Managing loyalty program benefits and rewards
  • Ensuring food safety by tracking allergen information and dietary restrictions
  • Improving service quality and optimizing restaurant operations

3.2 Communication

  • Sending order confirmations, preparation updates, and delivery notifications
  • Providing customer support responses and service updates
  • Communicating important notices about menu changes, store hours, and policy updates
  • Sending promotional emails and marketing communications (only with your consent)
  • Sharing loyalty program updates and exclusive offers
  • Requesting feedback through surveys and reviews

3.3 Marketing and Analytics

  • Creating personalized advertising and menu recommendations
  • Analyzing website traffic, user behavior, and dining patterns
  • Measuring marketing campaign effectiveness and ROI
  • Conducting market research for new menu items and services
  • Improving user experience through A/B testing and optimization
  • Developing targeted promotions based on dining preferences

3.4 Legal Compliance and Security

  • Complying with legal obligations and regulatory requirements
  • Responding to legal requests, court orders, and subpoenas
  • Preventing fraud, unauthorized access, and security breaches
  • Protecting our rights, property, and the safety of customers and employees
  • Resolving disputes and enforcing our terms of service
  • Maintaining business records as required by law

4. Information Sharing and Disclosure

4.1 Service Providers

We share information with trusted third-party service providers who help us operate our business:

  • Payment Processors: Secure handling of credit card transactions and payment verification
  • Delivery Companies: Sharing delivery addresses and contact information for order fulfillment
  • Cloud Storage Providers: Secure data storage and backup services with industry-standard encryption
  • Email Marketing Services: Managing promotional campaigns and customer communications
  • Analytics Tools: Website usage analysis, customer behavior insights, and performance metrics
  • Customer Support Platforms: Managing customer inquiries and support ticket resolution
  • Food Safety Partners: Sharing allergen and dietary information for safe food preparation

4.2 Legal Requirements

We may disclose your information when required by law or to protect our legitimate interests:

  • Compliance with court orders, subpoenas, and legal processes
  • Meeting regulatory requirements and food safety regulations
  • Protecting our rights, property, and intellectual property
  • Ensuring public safety and preventing harm
  • Cooperating with law enforcement investigations
  • Responding to emergency situations

4.3 Business Transfers

In the event of a merger, acquisition, or sale of assets:

  • Customer information may be transferred to the new owner
  • We will provide advance notice before any transfer
  • The new owner must comply with this Privacy Policy
  • You will have the option to opt-out if you disagree with the transfer

4.4 With Your Explicit Consent

We may share information for other purposes only with your explicit consent, such as:

  • Sharing reviews or testimonials (with your permission)
  • Participating in marketing campaigns or contests
  • Integrating with third-party apps or services you choose

5. Data Security

5.1 Technical Security Measures

  • Encryption: All data transmission uses SSL/TLS encryption (256-bit) to protect information in transit
  • Secure Storage: Personal data is encrypted at rest using industry-standard AES encryption
  • Firewall Protection: Advanced firewall systems protect against unauthorized access and cyber attacks
  • Access Control: Strict access controls ensure only authorized personnel can access customer data on a need-to-know basis
  • Monitoring: 24/7 security monitoring and intrusion detection systems
  • Data Backup: Regular automated backups stored in secure, geographically distributed locations
  • Vulnerability Testing: Regular security assessments and penetration testing

5.2 Organizational Security Measures

  • Employee Training: Regular security training for all staff handling customer data
  • Data Handling Procedures: Strict procedures for accessing, processing, and storing personal information
  • Confidentiality Agreements: All employees and contractors sign confidentiality agreements
  • Incident Response Plan: Comprehensive plan for responding to security incidents and data breaches
  • Regular Audits: Internal and external security audits to ensure compliance
  • Data Minimization: We collect and retain only the data necessary for business purposes

5.3 Your Security Responsibilities

  • Create strong, unique passwords for your account
  • Never share your login credentials with others
  • Log out of your account when using public or shared computers
  • Be cautious of phishing emails and suspicious links
  • Report any unauthorized account access immediately
  • Keep your contact information updated for security notifications
Security Breach Notification: In the unlikely event of a data breach that affects your personal information, we will notify you within 72 hours via email and provide details about the incident, affected data, and steps we're taking to resolve the issue.

6. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience on our website and mobile applications. Below is a detailed breakdown of the types of cookies we use:

Cookie Type Purpose Duration
Essential Cookies Basic site functionality, login state, shopping cart contents, security features Session (deleted when browser closes)
Functional Cookies User preferences, language settings, location preferences, accessibility settings Up to 1 year
Analytics Cookies Website usage analysis, performance metrics, user behavior insights Up to 2 years
Marketing Cookies Personalized advertising, campaign tracking, social media integration Up to 1 year

Tracking Technologies We Use

  • Google Analytics: Website traffic analysis, user behavior tracking, conversion measurement
  • Facebook Pixel: Advertising effectiveness measurement, custom audience creation
  • Web Beacons: Email open rates, click tracking in marketing communications
  • Local Storage: Storing user preferences and application data in your browser
  • Session Storage: Temporary data storage during your browsing session

Managing Your Cookie Preferences

You can control cookies through your browser settings:

  • Accept or reject cookies when visiting our website
  • Delete existing cookies stored on your device
  • Set preferences for future cookie acceptance
  • Receive notifications before cookies are stored
Note: Disabling essential cookies may affect website functionality, including the ability to place orders, access your account, or use certain features.

7. Your Privacy Rights (GDPR/CCPA Compliance)

Depending on your location, you may have the following rights regarding your personal information:

7.1 Right of Access

You can request access to the personal information we hold about you, including:

  • What personal data we collect and store
  • How we use your information
  • Who we share your data with
  • How long we retain your information

7.2 Right to Rectification

You can request correction of inaccurate or incomplete personal information, including:

  • Updating contact information
  • Correcting order history or preferences
  • Modifying dietary restrictions or allergen information

7.3 Right to Erasure (Right to be Forgotten)

You can request deletion of your personal data when:

  • The data is no longer necessary for the original purpose
  • You withdraw consent and there's no other legal basis for processing
  • You object to processing and there are no overriding legitimate grounds
  • Your data has been unlawfully processed

7.4 Right to Restrict Processing

You can request to limit how we use your data when:

  • You contest the accuracy of your personal data
  • Processing is unlawful but you prefer restriction over deletion
  • We no longer need the data but you need it for legal claims
  • You've objected to processing pending verification of overriding grounds

7.5 Right to Data Portability

You can request to receive your personal data in a structured, machine-readable format or have it transferred to another service provider.

7.6 Right to Object

You can object to processing of your personal data, particularly for:

  • Direct marketing communications
  • Automated decision-making and profiling
  • Processing based on legitimate interests

7.7 Right Against Automated Decision-Making

You have the right not to be subject to decisions based solely on automated processing that produces legal or significant effects.

How to Exercise Your Rights

Email: [email protected]

Phone: +1 604-423-4840

Response Time: Within 30 days of request

Identity verification may be required for security purposes

8. Children's Privacy

Church's Chicken is committed to protecting the privacy of children. Our services are not intended for children under the age of 16, and we do not knowingly collect personal information from children under 16.

Our Commitment

  • We do not intentionally collect personal information from children under 16
  • We do not knowingly allow children under 16 to create accounts
  • We do not send marketing communications to known minors
  • We implement age verification measures where appropriate

If We Learn We Have Collected Children's Information

If we become aware that we have collected personal information from a child under 16 without parental consent, we will:

  • Immediately delete the information from our systems
  • Not use the information for any purpose
  • Not share the information with third parties
  • Take steps to prevent future collection
Parents and Guardians: If you believe your child has provided personal information to us, please contact us immediately at [email protected] so we can remove the information.

9. International Data Transfers

As Church's Chicken operates internationally, your personal information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place for all international transfers.

9.1 Protection Measures

  • Adequacy Decisions: Transfers to countries with adequacy decisions from relevant authorities (e.g., EU-Japan adequacy decision)
  • Standard Contractual Clauses (SCCs): European Commission-approved contracts ensuring adequate protection
  • Data Processing Agreements: Binding agreements with all international partners
  • Security Measures: Technical and organizational measures equivalent to domestic standards
  • Regular Audits: Ongoing compliance monitoring and assessment

9.2 Transfer Destinations

  • United States: Cloud storage and data processing services
  • European Union: Customer data analytics and business intelligence
  • Other Countries: As necessary for service delivery, with appropriate safeguards

We regularly review and update our international transfer practices to ensure continued compliance with applicable privacy laws and regulations.

10. Data Retention Periods

We retain personal information only as long as necessary to fulfill the purposes outlined in this policy, comply with legal obligations, and resolve disputes.

Information Type Retention Period Reason for Retention
Account Information 6 months after account deletion Legal obligations, dispute resolution, fraud prevention
Order and Purchase History 7 years Tax and accounting requirements, warranty claims
Payment Information As required by payment processors Transaction verification, chargeback protection
Marketing Consent Records 3 years after consent withdrawal Proof of consent, regulatory compliance
Website Usage Logs Up to 2 years Security monitoring, analytics, service improvement
Customer Support Records 3 years Service quality improvement, dispute resolution
Delivery Information 1 year Order tracking, delivery optimization
Loyalty Program Data 2 years after program termination Reward fulfillment, program analysis
Dietary Preferences/Allergens Duration of account + 1 year Food safety, customer service

Safe Data Disposal

When personal information reaches the end of its retention period, we ensure secure disposal:

  • Electronic Data: Complete deletion using industry-standard methods that make data unrecoverable
  • Physical Records: Secure shredding and destruction of paper documents
  • Backup Systems: Automatic deletion from all backup and archival systems
  • Documentation: Maintaining records of disposal for audit purposes

11. Third-Party Links and Services

Our website and mobile applications may contain links to external websites, social media platforms, and third-party services. This Privacy Policy applies only to Church's Chicken services.

External Links

  • We are not responsible for the privacy practices of third-party websites
  • Third-party sites have their own privacy policies and terms of service
  • We encourage you to review privacy policies before providing personal information
  • Links do not constitute endorsement of third-party privacy practices

Social Media Integration

  • Social media features may collect your IP address and set cookies
  • Your interactions are governed by the social media company's privacy policy
  • We may receive limited information when you interact with our social media content

Your Responsibility

When using third-party services linked from our platforms:

  • Review their privacy policies and terms of service
  • Understand what information they collect and how they use it
  • Make informed decisions about sharing personal information
  • Contact the third-party directly for privacy-related questions

12. Privacy Policy Changes

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We are committed to transparency in how we communicate changes.

12.1 How We Notify You of Changes

  • Website Notice: Prominent notice on our homepage and privacy policy page
  • Email Notification: Direct email to registered users for significant changes
  • App Notifications: Push notifications through our mobile application
  • Account Login Notice: Pop-up notification when you log into your account
  • Explicit Consent: For material changes that expand data use, we'll seek your consent

12.2 Checking for Updates

  • The most current version is always available on our website
  • Check the "Last Updated" date at the top of this policy
  • Continued use of our services after changes constitutes acceptance
  • If you disagree with changes, you may stop using our services

Previous Versions

We maintain records of previous policy versions for reference and will provide access to previous versions upon request for legitimate purposes.

13. Contact Information

Church's Chicken Privacy Team

Address: 3593 Main St, Vancouver, BC V5V 3N4, Canada

Phone: +1 604-423-4840

Email: [email protected]

Business Hours: Monday-Friday, 9:00 AM - 6:00 PM PST

Response Time: We respond to all privacy inquiries within 3 business days

13.1 Privacy Complaints and Concerns

If you have concerns about how we handle your personal information:

  1. Contact Us First: Reach out to our privacy team for resolution
  2. Provide Details: Include specific information about your concern
  3. Investigation: We will investigate and respond within 30 days
  4. Escalation: If unsatisfied, you may contact supervisory authorities

Supervisory Authority

If you are not satisfied with our response, you have the right to lodge a complaint with the relevant privacy supervisory authority in your jurisdiction.

14. Withdrawal of Consent

You have the right to withdraw your consent for data processing activities that rely on consent as the legal basis. Withdrawing consent does not affect the lawfulness of processing before withdrawal.

14.1 Marketing Consent Withdrawal

You can withdraw marketing consent through multiple methods:

  • Unsubscribe Links: Click unsubscribe in any marketing email
  • Account Settings: Update preferences in your online account
  • Customer Support: Contact us directly to opt-out
  • Phone: Call our customer service line

14.2 Account Deletion Process

To completely delete your account and associated data:

  1. Log into your account and go to account settings
  2. Select "Delete Account" option
  3. Confirm your identity through security verification
  4. Review what data will be deleted and what may be retained
  5. Confirm deletion request
  6. Receive confirmation email within 24 hours
Important: Some information may be retained as required by law for tax, legal, or regulatory purposes even after account deletion.

15. Conclusion

At Church's Chicken, we take your privacy seriously and are committed to protecting your personal information. This Privacy Policy reflects our dedication to transparency, security, and your rights as our valued customer.

Our Privacy Commitment

  • We will never sell your personal data to third parties
  • We use your information only for legitimate business purposes
  • We implement strong security measures to protect your data
  • We respect your privacy rights and provide clear choices
  • We are transparent about our data practices

Building Trust

Your trust is essential to our relationship. We continuously review and improve our privacy practices to ensure we meet the highest standards of data protection while providing you with exceptional food service and customer experience.

We encourage you to:

  • Review this policy regularly for updates
  • Contact us with any privacy questions or concerns
  • Exercise your privacy rights when needed
  • Provide feedback on how we can improve our privacy practices

Thank you for choosing Church's Chicken. We appreciate your trust and look forward to serving you while protecting your privacy.

Remember: This Privacy Policy was last updated on January 15, 2026. Please check this page regularly for the most current version of our privacy practices.