Privacy Policy for Buma’s Pizza
1. Introduction
At Buma’s Pizza, accessible via bumaspizza.com, we prioritize the privacy and data protection of all users. We are committed to maintaining the highest standards of data security and transparency, in accordance with applicable data protection laws including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). This Privacy Policy outlines how we collect, use, disclose, and protect personal data, and informs you of your rights regarding your information.
2. Scope of Policy and Role as Data Controller
This Privacy Policy applies to all users who interact with our website (bumaspizza.com), products, and services. For the purposes of applicable data protection laws, Buma’s Pizza acts as the “data controller” for the personal information we collect, meaning we determine the purpose and means of processing your personal data.
3. Categories of Data Processed
We may collect and process the following categories of personal data:
a. Usage Data
Includes information about how you use bumaspizza.com, such as your IP address, browser type, date/time of visits, pages viewed, and referring URLs.
b. Account Data
Includes your name, mailing/billing address, email address, phone number, and other information provided during registration or account creation.
c. Profile Data
Includes your order history, saved preferences, loyalty memberships (if applicable), and behavioral patterns displayed on bumaspizza.com.
d. Communication Data
Includes your interactions with us through email, online support chats, contact form submissions, or any queries sent to [email protected].
e. Technical Data
Includes device identifiers, operating system, browser platform, screen resolution, and configuration data associated with system performance and security.
f. Transaction Data
Includes billing data, order details, payment method (excluding full card details unless required by law), delivery instructions, and purchase confirmations.
g. Preference Data
Includes your expressed preferences for receiving promotional communications or participating in marketing initiatives, as well as product interests and service usage patterns.
4. Legal Bases for Processing Personal Data
We process your personal data only when we have a lawful basis to do so, including:
– Contractual necessity – to fulfill a contract or provide a service you’ve requested.
– Legitimate interests – to operate and improve our business operations, ensure site security, and analyze performance, provided those interests do not override your fundamental rights.
– Consent – when you have explicitly provided consent, such as opting into newsletters or marketing correspondence.
– Legal obligation – to comply with a legal or regulatory requirement.
5. Your Data Protection Rights
You have the following rights under applicable data protection laws:
– Right of Access – You have the right to request access to the personal data we hold about you.
– Right to Rectification – You have the right to request correction of inaccurate or incomplete data.
– Right to Erasure – You may request deletion of your data, subject to legal retention obligations.
– Right to Restriction – You may request us to limit processing of your personal data in certain circumstances.
– Right to Data Portability – You are entitled to request a copy of your personal data in a portable, structured format.
– Right to Object – You may object to processing when it is based on our legitimate interests or for direct marketing purposes.
To exercise your rights, please contact us at [email protected].
6. Security Measures
We employ stringent security practices designed to protect your personal data against unauthorized access, alteration, disclosure, or loss. These measures include:
– SSL encryption for data transmitted via bumaspizza.com
– Restricted access protocols for internal personnel
– Regular security audits and system monitoring
– Staff training in data privacy principles
– Secure storage and routine data backups
7. International Data Transfers
If your personal data is processed outside your region (e.g., the European Economic Area), we ensure that appropriate safeguards are in place to protect your data, including the use of standard contractual clauses and adherence to regional compliance frameworks.
8. Data Retention
We retain personal data only for as long as is necessary for the purposes for which it was collected, or as required by law. Typical retention periods include:
– Account Data: Retained while your account remains active, and for up to 2 years thereafter.
– Transaction Data: Retained for up to 7 years to comply with financial and tax regulations.
– Communication Data: Retained for up to 2 years to respond to inquiries and improve service.
– Cookie and Usage Data: Retained for up to 26 months unless you delete it earlier or opt out.
9. Cookie Policy
We use cookies and similar technologies to enhance your browsing experience on bumaspizza.com. Cookies fall into the following categories:
– Essential Cookies: Necessary for the basic operation of our website (e.g., keeping you logged in or processing orders).
– Functional Cookies: Enable personalized settings such as saved preferences.
– Performance Cookies: Help us understand usage statistics and site performance metrics.
– Analytics Cookies: Used to assess website traffic patterns and user behavior through tools like Google Analytics.
10. Cookie Management and Compliance
You can manage consent preferences through the cookie banner displayed upon your first visit to bumaspizza.com or adjust browser settings to refuse some or all cookies. Where required by GDPR or CCPA, we will obtain your express consent prior to deploying non-essential cookies. You may withdraw consent at any time via your browser or our cookie settings panel.
11. Children’s Privacy
We do not knowingly collect personal data from children under the age of 13. If we become aware that a child has provided personal information without verifiable parental consent, we will delete the information promptly. If you believe we may have unintentionally collected data from a child, please contact us at [email protected].
12. Policy Updates
This Privacy Policy may be updated from time to time to remain compliant with changing legal requirements or operational changes. If material changes are made, we will notify users through a prominent notice on bumaspizza.com or through direct communication, where appropriate.
13. Contact Information
If you have any concerns, questions, or requests regarding this Privacy Policy or your personal data, you may contact us at:
Email: [email protected]
Website: bumaspizza.com
We are committed to safeguarding your information and upholding your rights under applicable privacy regulations.