Privacy Policy

Effective Date: July 5, 2026  |  Last Updated: July 5, 2026

At Punch Pizza, we are deeply committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website cafepunch.click, place orders, participate in loyalty programs, or otherwise interact with our services. Please read this policy carefully. If you do not agree with the terms of this Privacy Policy, please discontinue use of our website and services immediately.

This Privacy Policy applies to all personal information we collect through our website, mobile applications, in-store interactions, loyalty programs, and any related services, sales, marketing, or events (collectively referred to as the "Services").


1. Who We Are

Punch Pizza operates the website cafepunch.click and provides food and dining services to customers throughout the United States. For the purposes of this Privacy Policy, "Punch Pizza," "we," "us," or "our" refers to the company and its affiliated operations.

Company Name Punch Pizza
Website cafepunch.click
Email Address [email protected]
Business Type Food & Restaurant Services
Location United States

2. Information We Collect

We collect various types of information in connection with your use of our Services. The categories of personal information we may collect include:

2.1 Personal Identification Information

When you create an account, place an order, sign up for our loyalty program, or contact us directly, we may collect the following personal identification details:

  • Full name
  • Email address
  • Phone number
  • Mailing or delivery address
  • Date of birth (for age verification and birthday rewards)
  • Username and password for your account
  • Profile picture or avatar (if voluntarily provided)

2.2 Payment and Financial Information

When you make a purchase through our website or app, we collect payment-related information. Please note that we do not store complete payment card data on our servers. Payment processing is handled by PCI-DSS compliant third-party processors. We may collect:

  • Partial payment card information (last four digits)
  • Billing address
  • Transaction history and order records
  • Gift card numbers and balances

2.3 Order and Food Preference Information

As a food services company, we collect data related to your orders and preferences to personalize your experience:

  • Order history and frequency
  • Dietary preferences and restrictions you voluntarily share
  • Favorite menu items
  • Delivery instructions and notes
  • Customer reviews and feedback you submit

2.4 Usage and Technical Data

When you access our website or digital platforms, we automatically collect certain technical and usage data, including:

  • IP address
  • Browser type and version
  • Operating system
  • Referring URLs
  • Pages visited and time spent on each page
  • Links clicked and features used
  • Search queries made on our website
  • Date and time of access
  • Error logs and crash reports

2.5 Device Information

We collect information about the devices you use to access our Services:

  • Device type (smartphone, tablet, desktop)
  • Device identifiers (such as advertising IDs, where applicable)
  • Mobile network information
  • Screen resolution and display settings
  • Hardware model and firmware version

2.6 Location Data

With your permission, we may collect precise or approximate location data to provide delivery services, show nearby store locations, or personalize your experience. You may disable location tracking at any time through your device settings.

2.7 Communications Data

If you contact our customer support, leave reviews, or participate in surveys or promotions, we collect:

  • The content of your messages and emails
  • Customer support ticket records
  • Survey responses and feedback
  • Social media interactions where you tag or mention us

2.8 Cookies and Tracking Technologies

We use cookies, web beacons, pixels, and similar tracking technologies to collect information about your online activity. Please refer to Section 9 of this policy for full details on our Cookie practices.


3. How We Use Your Information

We use the information we collect for a variety of legitimate business purposes, including:

3.1 Providing and Improving Our Services

  • Processing and fulfilling your food orders
  • Managing your account and loyalty program membership
  • Delivering customer support and responding to inquiries
  • Processing payments and managing billing
  • Sending order confirmations, receipts, and delivery updates
  • Improving the functionality and user experience of our website and app
  • Developing new menu items, features, and services based on customer preferences

3.2 Marketing and Communications

  • Sending promotional emails, special offers, and newsletters (with your consent)
  • Displaying personalized advertisements based on your preferences and behavior
  • Sending push notifications about deals, loyalty rewards, and new menu items (where you have opted in)
  • Conducting marketing campaigns and promotional events
  • Sending birthday rewards and personalized offers

You may opt out of marketing communications at any time by clicking the "unsubscribe" link in any email we send, or by contacting us at [email protected].

3.3 Analytics and Research

  • Analyzing website and app traffic patterns and user behavior
  • Conducting market research and customer satisfaction surveys
  • Understanding customer demographics and preferences
  • Measuring the effectiveness of our marketing campaigns
  • Generating internal reports and business intelligence

3.4 Legal and Compliance Purposes

  • Complying with applicable laws and regulations
  • Responding to legal requests, subpoenas, or government inquiries
  • Enforcing our Terms of Service and other agreements
  • Preventing fraud, unauthorized access, and other illegal activities
  • Protecting the rights, property, and safety of Punch Pizza, our customers, and others

3.5 Personalization

  • Customizing your experience on our website and app
  • Recommending menu items based on your order history
  • Tailoring loyalty rewards and promotions to your preferences
  • Remembering your preferences for future visits

4. Legal Basis for Processing Your Information

As a business operating in the United States, we process your personal information based on the following legal grounds, in accordance with applicable federal and state laws including the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA), and the Federal Trade Commission (FTC) Act:

  • Contractual Necessity: Processing is necessary to fulfill your orders and provide the services you requested.
  • Legitimate Business Interests: We process data for purposes such as fraud prevention, security, analytics, and service improvement.
  • Consent: For marketing communications and optional features such as personalized advertising, we rely on your explicit consent.
  • Legal Obligation: We process data where required to comply with applicable laws and regulatory requirements.

5. Sharing Your Information with Third Parties

We do not sell your personal information to third parties for their own independent marketing purposes. However, we may share your information in the following circumstances:

5.1 Service Providers and Business Partners

We engage trusted third-party vendors and service providers to help us operate our business. These providers have access to your personal information only to the extent necessary to perform their functions and are contractually obligated to maintain confidentiality. Our service providers include:

  • Payment Processors: Companies that handle payment card transactions securely
  • Delivery Partners: Third-party delivery services used to fulfill your food orders
  • Cloud Hosting Providers: Platforms that host our website, databases, and applications
  • Email Marketing Platforms: Services used to send promotional and transactional emails
  • Analytics Providers: Tools such as Google Analytics that help us understand website usage
  • Customer Support Tools: Helpdesk software used to manage support inquiries
  • Loyalty Program Administrators: Platforms that manage our rewards and loyalty points system

5.2 Legal Requirements and Law Enforcement

We may disclose your information to law enforcement agencies, courts, regulators, government authorities, or other third parties when we believe in good faith that such disclosure is necessary to:

  • Comply with a legal obligation, court order, or government request
  • Protect and defend our legal rights or property
  • Prevent or investigate fraud, security breaches, or illegal activity
  • Protect the personal safety of our customers, employees, or the public

5.3 Business Transfers

If Punch Pizza undergoes a merger, acquisition, sale of assets, bankruptcy, or other business transition, your personal information may be transferred as part of that transaction. We will notify you via email and/or a prominent notice on our website before your information becomes subject to a different privacy policy.

5.4 Advertising Partners

With your consent, we may share certain data (such as device identifiers and browsing behavior) with advertising partners to deliver targeted advertisements on third-party platforms. You can opt out of this type of sharing through our cookie consent manager or by contacting us.

5.5 Aggregate and Anonymized Data

We may share aggregated, anonymized, or de-identified data that cannot reasonably be used to identify you with partners, researchers, and the public for business analysis and industry reporting purposes.


6. Data Security

We take the security of your personal information seriously and implement a range of technical and organizational measures to protect your data from unauthorized access, disclosure, alteration, or destruction. Our security measures include:

6.1 Technical Safeguards

  • SSL/TLS encryption for all data transmitted between your browser and our servers
  • Encryption of sensitive data at rest, including payment information
  • Secure, access-controlled server environments hosted by reputable cloud providers
  • Firewalls, intrusion detection systems, and regular security audits
  • PCI-DSS compliant payment processing infrastructure
  • Multi-factor authentication for administrative access to our systems

6.2 Organizational Safeguards

  • Role-based access controls limiting employee access to personal data on a need-to-know basis
  • Regular employee training on data privacy and security best practices
  • Confidentiality agreements with all staff members who handle personal data
  • Documented incident response procedures for data breaches
  • Regular review and updating of our privacy and security policies
Important Notice: While we implement robust security measures, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security of your personal information. In the event of a data breach affecting your rights, we will notify affected individuals and relevant authorities as required by applicable law.

7. Your Privacy Rights

Depending on your state of residence, you may have certain rights regarding your personal information. We respect and honor these rights as required under applicable United States privacy laws, including the California Consumer Privacy Act (CCPA/CPRA) and other applicable state privacy statutes.

7.1 Right to Know and Access

You have the right to request that we disclose what personal information we have collected about you, the categories of sources from which it was collected, the purposes for which it is used, and the categories of third parties with whom it is shared. You may also request a copy of the specific pieces of personal information we hold about you.

7.2 Right to Correction

If any of the personal information we hold about you is inaccurate or incomplete, you have the right to request that we correct or update it. You can also update certain information directly through your account settings on our website.

7.3 Right to Deletion

You have the right to request that we delete the personal information we have collected about you, subject to certain exceptions. We may retain information where necessary to complete a transaction, comply with a legal obligation, detect security incidents, or for other legitimate business purposes permitted by law.

7.4 Right to Opt Out of Sale or Sharing

Under the CCPA/CPRA, California residents have the right to opt out of the "sale" or "sharing" of their personal information for cross-context behavioral advertising. While we do not sell personal information in the traditional sense, certain data sharing with advertising partners may constitute a "sale" or "sharing" under California law. To exercise this right, you may contact us at [email protected] or use our cookie preference center.

7.5 Right to Data Portability

You have the right to receive a copy of your personal information in a structured, commonly used, and machine-readable format, where technically feasible, so that you can transfer it to another service provider.

7.6 Right to Non-Discrimination

We will not discriminate against you for exercising any of your privacy rights. This means we will not deny you goods or services, charge you different prices, provide a different level of service, or suggest that you will receive a different quality of service as a result of exercising your rights.

7.7 Right to Limit Use of Sensitive Personal Information

Under the CPRA, California residents have the right to limit our use of sensitive personal information (such as precise geolocation data, health information, or financial data) to only what is necessary to provide the requested services.

7.8 How to Exercise Your Rights

To exercise any of your privacy rights, please submit a verifiable consumer request by:

We will respond to your request within 45 days of receipt. If we require more time (up to an additional 45 days), we will inform you in writing. We may need to verify your identity before processing your request to protect your privacy and security.

You may designate an authorized agent to make a request on your behalf. The authorized agent must provide written proof of authorization, and we may contact you directly to verify the request.


8. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. Our general data retention guidelines are as follows:

Category of Data Retention Period
Account and profile information Duration of account plus 3 years after closure
Order history and transaction records 7 years (for accounting and tax compliance)
Payment information As required by payment processors (typically 5–7 years)
Marketing preferences and consent records Until opt-out, plus 3 years thereafter
Customer support communications 3 years from the date of the interaction
Website usage and analytics data 26 months from collection
Cookie and tracking data As specified in our Cookie Policy (typically 13 months)
Legal and compliance records As required by applicable law

When your personal data is no longer needed, we will securely delete or anonymize it in accordance with our data destruction procedures.


9. Cookie Policy

Our website cafepunch.click uses cookies and similar tracking technologies to enhance your browsing experience, analyze site traffic, personalize content, and deliver targeted advertisements.

9.1 Types of Cookies We Use

  • Strictly Necessary Cookies: Essential for the basic functioning of our website, such as maintaining your session and enabling checkout functionality. These cannot be disabled.
  • Performance and Analytics Cookies: Help us understand how visitors interact with our website by collecting anonymous usage data (e.g., Google Analytics).
  • Functional Cookies: Remember your preferences, such as your location, language, and order settings, to provide a more personalized experience.
  • Marketing and Advertising Cookies: Used to deliver relevant advertisements and track the effectiveness of our marketing campaigns on third-party platforms.

9.2 Managing Cookie Preferences

You can manage your cookie preferences at any time through our cookie consent manager, accessible via the cookie banner displayed when you first visit our website. You may also control cookies through your browser settings. Please note that disabling certain cookies may affect the functionality of our website.

For more detailed information about the specific cookies we use, their purposes, and how to manage them, please refer to our full Cookie Policy, available on our website at cafepunch.click.


10. Children's Privacy

Age Restriction Notice: Our Services are intended for individuals who are 18 years of age or older. We do not knowingly collect personal information from children under the age of 13.

Punch Pizza's website, ordering platform, and loyalty program are directed exclusively to adults aged 18 and over. We do not knowingly collect, use, or disclose personal information from children under the age of 13, in compliance with the Children's Online Privacy Protection Act (COPPA).

If you are under 18 years of age, you may not use our Services without the supervision and consent of a parent or legal guardian. If we become aware that we have inadvertently collected personal information from a child under 13 without verifiable parental consent, we will take immediate steps to delete such information from our records.

If you are a parent or guardian and believe that your child under 13 has provided us with personal information without your consent, please contact us immediately at [email protected].


11. International Data Transfers

Punch Pizza is based in the United States, and the information we collect is processed and stored on servers located within the United States. However, some of our third-party service providers (such as cloud hosting platforms, analytics tools, and marketing software) may process data in other countries.

If personal information is transferred outside of the United States, we take appropriate steps to ensure that your data receives an adequate level of protection in accordance with applicable privacy laws. These safeguards may include:

  • Entering into data processing agreements with international service providers that include standard contractual clauses or equivalent protections
  • Ensuring that recipient countries provide an adequate level of data protection
  • Obtaining your explicit consent for specific international transfers where required

By using our Services and providing us with your personal information, you acknowledge that your data may be transferred to, stored, and processed in countries outside of your country of residence, including the United States and other countries where our service providers operate.


12. Third-Party Websites and Links

Our website may contain links to third-party websites, applications, or services that are not owned or controlled by Punch Pizza. We have no control over, and assume no responsibility for, the content, privacy policies, or practices of any third-party websites. We encourage you to review the privacy policies of any third-party sites you visit.

This Privacy Policy applies solely to information collected by Punch Pizza through our own website and Services. It does not apply to information collected by third parties, even if accessed through links on our website.


13. California Privacy Rights (CCPA/CPRA)

If you are a California resident, you have specific rights under the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA). In addition to the rights described in Section 7 of this policy, California residents also have the following rights:

13.1 Categories of Personal Information Collected

In the preceding 12 months, we have collected the following categories of personal information from California consumers:

  • Identifiers (name, email, IP address, device IDs)
  • Commercial information (order history, purchasing records)
  • Internet or other electronic network activity (browsing history, search queries on our site)
  • Geolocation data (with your consent)
  • Inferences drawn from the above to create a profile about your preferences

13.2 Right to Know About Automated Decision-Making

California residents have the right to request information about any automated decision-making processes we use that may significantly affect them, including profiling related to their consumer preferences or behaviors.

13.3 Shine the Light Law

California's "Shine the Light" law (Civil Code Section 1798.83) permits California residents to request a list of third parties to whom we have disclosed their personal information for direct marketing purposes in the preceding calendar year, along with the categories of personal information disclosed. To make such a request, please contact us at [email protected].


14. Filing a Complaint

If you believe that we have not handled your personal information in accordance with this Privacy Policy or applicable privacy laws, we encourage you to contact us first so that we can attempt to resolve the issue directly.

14.1 Contact Us First

Please send your complaint or concern to:

We will acknowledge your complaint within 10 business days and aim to resolve all privacy-related complaints within 30 days.

14.2 Regulatory Complaints

If you are not satisfied with our response, or if you believe we are not processing your information in accordance with applicable law, you have the right to file a complaint with the relevant regulatory authority:

  • California residents may file a complaint with the California Privacy Protection Agency (CPPA) at cppa.ca.gov.
  • Consumers may also file complaints with the Federal Trade Commission (FTC) regarding unfair or deceptive privacy practices at reportfraud.ftc.gov.
  • Residents of other states with applicable privacy laws may contact their respective state attorney general's office.

15. Changes to This Privacy Policy

We reserve the right to update or modify this Privacy Policy at any time to reflect changes in our practices, technologies, legal requirements, or other factors. When we make significant changes, we will:

  • Update the "Last Updated" date at the top of this Privacy Policy
  • Post a prominent notice on our website homepage
  • Send an email notification to registered users if the changes are material

Your continued use of our Services after the effective date of any changes constitutes your acceptance of the revised Privacy Policy. We encourage you to review this page periodically to stay informed about how we are protecting your information.


16. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please do not hesitate to reach out to us. We are committed to addressing your concerns promptly and transparently.

Privacy Inquiries — Punch Pizza
Company Punch Pizza
Email [email protected]
Website cafepunch.click
Response Time Within 10 business days

This Privacy Policy was last reviewed and updated on July 5, 2026. Punch Pizza is committed to maintaining the highest standards of privacy and data protection for all of our valued customers.