Privacy Policy
This Privacy Policy describes how Dave's Hot Chicken ("we," "us," "our," or the "Company") collects, uses, discloses, retains, and protects information obtained from visitors and customers who use our website located at daveshotchicken-eat.digital (the "Site") and any related digital services, online ordering platforms, loyalty programs, or promotional activities (collectively, the "Services"). We are committed to protecting your personal information and your right to privacy in accordance with applicable United States federal and state privacy laws, including the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA), and the Federal Trade Commission Act (FTC Act).
Please read this Privacy Policy carefully before using our Site or Services. By accessing or using our Site, submitting an order, signing up for promotional communications, or otherwise interacting with us digitally, you acknowledge that you have read, understood, and agree to the practices described in this Privacy Policy. If you do not agree with this policy, please discontinue your use of our Site and Services immediately.
We encourage you to review this Privacy Policy periodically, as we may update it from time to time. Material changes will be communicated via a prominent notice on our website or by direct communication where required by law.
1. Company Information and Contact Details
The entity responsible for the processing of your personal information is Dave's Hot Chicken. You may contact us directly using the information below for any privacy-related inquiries, requests, or complaints:
| Company Name | Dave's Hot Chicken |
|---|---|
| Mailing Address | United States |
| Phone | Not provided |
| [email protected] | |
| Website | daveshotchicken-eat.digital |
Our designated Privacy Contact is available to respond to inquiries relating to this Privacy Policy. If you have questions, concerns, or wish to exercise any of your privacy rights, please contact us at the email address listed above. We aim to respond to all legitimate privacy requests within forty-five (45) calendar days, as required under applicable law.
2. Information We Collect
We collect various categories of information depending on how you interact with our Site and Services. The following describes the types of information we may collect from you, directly and automatically.
2.1 Personal Information You Provide Directly
When you voluntarily interact with our Services, you may provide us with personal information, including but not limited to:
- Identification Information: Your full name, username, or alias used when creating an account or placing an order.
- Contact Information: Email address, phone number, and physical mailing or delivery address.
- Account Credentials: Passwords, security questions, and other authentication data used to access your account.
- Payment and Transaction Information: Credit card numbers, debit card details, billing addresses, and transaction histories. Note: Full payment card details are processed by third-party payment processors and are not stored directly on our servers.
- Order Information: Details about the food items you order, special dietary preferences, delivery instructions, and order history.
- Communications Data: Messages, feedback, reviews, or customer support inquiries you submit to us via email, contact forms, or other digital channels.
- Loyalty Program Data: Membership details, points earned, rewards redeemed, and promotional participation records.
- Marketing Preferences: Your preferences regarding receiving promotional emails, text messages, or other marketing materials from us.
2.2 Information Collected Automatically
When you access or use our Site, we and our third-party service partners automatically collect certain technical and usage information through cookies, web beacons, pixel tags, log files, and similar tracking technologies, including:
- Device Information: Device type (desktop, mobile, tablet), operating system, browser type and version, screen resolution, and unique device identifiers.
- Log and Usage Data: IP address, referring/exit URL, pages visited, time and date of visits, time spent on pages, links clicked, and other interaction data.
- Location Data: Approximate geographic location based on your IP address or, if you grant permission, precise GPS location to facilitate delivery services.
- Cookie and Tracking Data: Information collected via cookies and similar technologies as described in Section 7 of this Privacy Policy.
- Session Data: Information about your session on our Site, including browsing activity, items added to cart, and abandonment behaviors.
2.3 Information Collected from Third Parties
We may receive information about you from third parties, including:
- Social Media Platforms: If you choose to connect your social media account (e.g., Facebook, Instagram, Google) or log in using a social media single sign-on feature, we may receive profile data such as your name, email address, and profile picture.
- Delivery Partners: Information about your orders and delivery status from our third-party food delivery partners.
- Analytics Providers: Aggregated behavioral and demographic data from analytics services.
- Advertising Networks: Data about your engagement with our digital advertising campaigns.
- Business Partners: Information shared by authorized promotional or franchise partners.
3. How We Use Your Information
We use the information we collect for specific, legitimate purposes related to the provision and improvement of our Services. We process your personal information only when we have a lawful basis to do so under applicable law. The primary purposes for which we use your data include:
3.1 Service Provision and Order Fulfillment
- Processing and fulfilling your food orders, including delivery coordination and order confirmation notifications.
- Managing your customer account, including authentication and account security.
- Processing payments and managing billing and refund transactions.
- Providing customer support and responding to your inquiries, complaints, or feedback.
- Administering our loyalty rewards program and calculating and distributing applicable rewards or promotions.
3.2 Analytics and Service Improvement
- Analyzing how users interact with our Site to understand usage patterns and improve the functionality, design, and content of our Services.
- Measuring the performance of our digital platforms, identifying technical issues, and conducting internal quality assurance.
- Conducting research and surveys to better understand customer preferences and satisfaction levels.
- Developing new menu items, features, promotions, and services based on aggregate behavioral insights.
3.3 Marketing and Communications
- Sending you promotional emails, newsletters, or push notifications about new menu items, special offers, discounts, and upcoming events — where you have opted in or where permitted under applicable law.
- Delivering targeted digital advertising through third-party advertising platforms based on your browsing and purchase history, subject to your preferences and applicable legal requirements.
- Personalizing the content and offers displayed to you on our Site based on your profile and past interactions.
- Conducting sweepstakes, contests, and promotional campaigns you voluntarily participate in.
3.4 Legal Compliance and Security
- Complying with applicable laws, regulations, legal processes, or enforceable governmental requests.
- Detecting, investigating, and preventing fraudulent transactions, unauthorized access, or other illegal activities.
- Enforcing our Terms of Service and other applicable agreements.
- Protecting the rights, property, and safety of Dave's Hot Chicken, our customers, and the public.
3.5 Business Operations
- Managing internal business operations including record-keeping, financial reporting, and auditing.
- Evaluating or conducting mergers, acquisitions, or other business transactions in which your data may be transferred as a business asset.
- Conducting employee training and quality control based on customer interaction data.
4. Sharing of Your Information with Third Parties
Dave's Hot Chicken does not sell, rent, or trade your personal information to unaffiliated third parties for their own marketing purposes without your explicit consent. However, we do share your information in certain circumstances as described below:
4.1 Service Providers and Vendors
We engage trusted third-party companies and individuals to perform functions and provide services on our behalf. These service providers only have access to personal information necessary to perform their specific functions and are contractually prohibited from using it for other purposes. Categories of service providers include:
- Payment processors and fraud prevention services
- Cloud hosting and data storage providers
- Email and SMS marketing platforms
- Customer relationship management (CRM) software providers
- Delivery logistics and mapping services
- Website analytics and performance monitoring tools
- Advertising technology platforms
- Customer support and helpdesk software
4.2 Business Partners and Franchise Operators
If you interact with a Dave's Hot Chicken franchise location or a co-branded promotional partner, relevant information about your transaction or participation may be shared with that operator for fulfillment purposes. Such sharing is governed by data sharing agreements consistent with this Privacy Policy.
4.3 Legal Requirements and Law Enforcement
We may disclose your personal information if we believe in good faith that such disclosure is necessary to: (i) comply with a legal obligation, court order, or government request; (ii) protect and defend the rights or property of Dave's Hot Chicken; (iii) prevent or investigate possible wrongdoing in connection with our Services; (iv) protect the personal safety of users or the public; or (v) comply with applicable requirements of the FTC Act or other regulatory mandates.
4.4 Business Transfers
In the event of a merger, acquisition, reorganization, sale of assets, or bankruptcy, your personal information may be transferred to the acquiring entity as part of the transaction. We will notify you via email or a prominent notice on our website before your personal information is transferred and becomes subject to a different privacy policy.
4.5 Aggregated or De-Identified Data
We may share aggregated, anonymized, or de-identified information that does not directly identify any individual with third parties for industry analysis, research, demographic profiling, marketing, and other legitimate business purposes.
4.6 With Your Consent
We may share your personal information with other parties when you have explicitly given us your consent to do so, including participation in third-party co-marketing programs or integration with third-party applications.
5. Data Security Measures
We take the security of your personal information seriously and implement a comprehensive set of technical, administrative, and physical safeguards designed to protect your data from unauthorized access, use, disclosure, alteration, or destruction. Our security measures include:
- Encryption: All data transmitted between your browser and our servers is encrypted using Secure Socket Layer (SSL) / Transport Layer Security (TLS) protocols. Sensitive stored data, including payment credentials, is encrypted at rest.
- Access Controls: Access to personal data is restricted to authorized personnel with a legitimate business need. We implement role-based access control (RBAC) and multi-factor authentication (MFA) for internal systems.
- Firewall and Intrusion Detection: Our systems are protected by firewalls and intrusion detection and prevention systems (IDPS) that monitor for suspicious activity.
- Data Minimization: We collect and retain only the minimum amount of personal information necessary for the identified purposes.
- Regular Security Assessments: We conduct periodic vulnerability assessments, penetration testing, and security audits to identify and remediate potential weaknesses in our systems.
- Employee Training: All employees with access to personal data receive regular privacy and security training.
- Incident Response: We maintain a documented data breach response plan. In the event of a confirmed data breach that poses a risk to your rights and freedoms, we will notify affected individuals and applicable regulatory authorities as required by law, including any applicable state breach notification laws.
6. Your Privacy Rights
Depending on your state of residence within the United States, you may have specific rights regarding your personal information. We honor the privacy rights of all customers and have implemented mechanisms to facilitate the exercise of these rights.
6.1 Rights Under the California Consumer Privacy Act (CCPA/CPRA)
If you are a California resident, you are entitled to the following rights under the CCPA as amended by the CPRA (effective January 1, 2023):
- Right to Know: You have the right to request that we disclose the categories and specific pieces of personal information we have collected about you, the sources of collection, the purposes of use, and the categories of third parties with whom we share your information.
- Right to Delete: You have the right to request deletion of personal information we have collected about you, subject to certain exceptions (e.g., completion of a transaction, compliance with legal obligations).
- Right to Correct: You have the right to request correction of inaccurate personal information we maintain about you.
- Right to Opt-Out of Sale/Sharing: You have the right to opt out of the sale or sharing of your personal information for cross-context behavioral advertising purposes. We do not sell personal information as that term is defined under CCPA/CPRA.
- Right to Limit Use of Sensitive Personal Information: You have the right to limit the use of sensitive personal information to that which is necessary to perform the requested services.
- Right to Non-Discrimination: We will not discriminate against you for exercising any of your CCPA/CPRA rights. We will not deny you goods or services, charge different prices, or provide a different quality of service based solely on your exercise of these rights.
- Right to Data Portability: You have the right to receive a copy of the personal information we hold about you in a portable, usable format.
6.2 General Privacy Rights for All US Residents
- Access: Request access to the personal information we hold about you.
- Correction: Request correction of incomplete or inaccurate information.
- Deletion: Request deletion of your personal information where we have no compelling reason to continue processing it.
- Opt-Out of Marketing: Unsubscribe from promotional communications at any time by clicking the "unsubscribe" link in any marketing email or contacting us directly.
6.3 How to Submit a Privacy Rights Request
To exercise any of the above rights, please contact us using one of the following methods:
- Email: [email protected] with the subject line "Privacy Rights Request"
- Website: daveshotchicken-eat.digital
We will acknowledge receipt of your request within ten (10) business days and provide a substantive response within forty-five (45) calendar days, which may be extended by an additional forty-five (45) days where reasonably necessary. We may need to verify your identity before processing your request to prevent unauthorized disclosure or deletion of personal data.
California residents may also designate an authorized agent to submit requests on their behalf. We may require written authorization or power of attorney documentation to process such requests.
7. Cookie Policy and Tracking Technologies
Our Site uses cookies, web beacons, pixel tags, local storage, and similar tracking technologies to enhance your browsing experience, analyze usage patterns, support marketing activities, and deliver personalized content.
7.1 Types of Cookies We Use
| Cookie Type | Purpose |
|---|---|
| Strictly Necessary Cookies | Required for core website functionality, such as maintaining your session, processing orders, and enabling security features. |
| Performance / Analytics Cookies | Collect anonymous data about how visitors use our Site (e.g., Google Analytics) to help us understand traffic patterns and improve user experience. |
| Functional Cookies | Remember your preferences (e.g., language, location, saved cart items) to provide a more personalized experience. |
| Targeting / Advertising Cookies | Track your browsing behavior across websites to deliver relevant advertisements and measure campaign effectiveness. |
| Social Media Cookies | Placed by social media platforms when you use embedded share buttons or social login features on our Site. |
7.2 Managing Cookie Preferences
You can manage your cookie preferences through your browser settings at any time. Most modern browsers allow you to block or delete cookies. However, please note that disabling certain cookies may affect the functionality of our Site and your ability to place orders or access certain features. To learn more about managing cookies, visit www.allaboutcookies.org.
California residents may also opt out of the use of certain tracking technologies through the Global Privacy Control (GPC) signal, which we honor as a valid opt-out request under CPRA. For more detailed information about our use of cookies and tracking technologies, please refer to our full Cookie Policy available on our website.
8. Data Retention Periods
We retain your personal information only for as long as is necessary to fulfill the purposes for which it was collected, including satisfying legal, accounting, or reporting requirements. Specific retention periods vary based on the category of data and the applicable legal requirements:
| Data Category | Retention Period |
|---|---|
| Customer Account Information | Duration of account + 3 years after account closure |
| Order and Transaction Records | 7 years (for financial and tax compliance) |
| Payment Processing Data | As required by PCI-DSS standards; typically not stored on our servers beyond transaction completion |
| Marketing Communication Preferences | Until you opt out, then 1 year for suppression list maintenance |
| Customer Support Records | 3 years from the date of last interaction |
| Website Usage and Analytics Data | 26 months (standard analytics retention) |
| Cookie and Tracking Data | Varies by cookie type; typically 30 days to 2 years |
| Legal Hold or Litigation Records | Duration of legal obligation or dispute |
Upon expiration of the applicable retention period, we will securely delete or anonymize personal information in accordance with our internal data destruction procedures. Where deletion is not technically feasible (e.g., due to backup storage), we will isolate the data and restrict its use until deletion is possible.
9. Children's Privacy
Dave's Hot Chicken does not knowingly collect personal information from children under the age of 13 as defined under the Children's Online Privacy Protection Act (COPPA), or from individuals under the age of 18. Our Site and Services are not directed toward, marketed to, or designed for use by minors.
If you are a parent or legal guardian and believe that your child has provided personal information to us without your consent, please contact us immediately at [email protected]. Upon verification of such a claim, we will take prompt steps to delete the child's personal information from our systems and terminate any associated account.
If we discover that we have inadvertently collected personal information from a minor, we will delete such information without undue delay. We reserve the right to restrict or deny access to our Services to any user we reasonably believe to be a minor.
10. International Data Transfers
Dave's Hot Chicken is headquartered and primarily operates within the United States. Your personal information is collected, stored, and processed on servers located within the United States. If you access our Services from outside the United States, please be aware that your information may be transferred to, stored in, and processed in a country whose data protection laws may differ from those of your country of residence.
By using our Services from outside the United States, you acknowledge and consent to the transfer and processing of your personal information in the United States. We take appropriate steps to ensure that any international transfer of personal information is subject to adequate safeguards, including contractual obligations, data processing agreements, or other mechanisms as required by applicable law.
For users located in jurisdictions with specific requirements for cross-border data transfers (such as the European Economic Area or the United Kingdom), we implement appropriate transfer mechanisms, which may include Standard Contractual Clauses (SCCs) approved by relevant regulatory authorities. If you have questions about the specific transfer mechanisms applicable to your data, please contact us at [email protected].
11. Third-Party Websites and Links
Our Site may contain links to third-party websites, applications, social media platforms, or services that are not owned or operated by Dave's Hot Chicken. This Privacy Policy applies solely to our Site and Services. We have no control over and assume no responsibility for the content, privacy practices, or data handling of any third-party sites or services. We strongly encourage you to review the privacy policies of any third-party sites you visit. Our inclusion of a link to a third-party site does not constitute an endorsement of that site or its privacy practices.
12. How to File a Privacy Complaint
12.1 Internal Complaint Resolution
If you have concerns or complaints about how we handle your personal information, we encourage you to contact us first so we can address your concerns directly:
- Email: [email protected]
- Subject Line: "Privacy Complaint"
We will acknowledge your complaint within five (5) business days and aim to resolve it within thirty (30) calendar days. If your complaint is complex or requires additional investigation, we will notify you of the anticipated timeline for resolution.
12.2 Regulatory Complaints
If you are not satisfied with our response or believe we have violated applicable privacy law, you have the right to file a complaint with the appropriate regulatory authority:
| Regulatory Authority | Jurisdiction | Contact |
|---|---|---|
| Federal Trade Commission (FTC) | Federal (United States) | www.ftc.gov/complaint |
| California Privacy Protection Agency (CPPA) | California, United States | www.cppa.ca.gov |
| California Attorney General | California, United States | oag.ca.gov/privacy |
| Your State Attorney General | All US States | Contact your state's official government website |
13. "Do Not Track" Signals
Some browsers support a "Do Not Track" (DNT) feature that sends a signal to websites requesting that your browsing activity not be tracked. Currently, our Site does not respond to DNT browser signals because no uniform technical standard for DNT has been adopted by the internet industry. However, California residents may exercise opt-out rights through the Global Privacy Control (GPC) signal, which we do honor as a valid opt-out request under the CPRA. You can also manage your tracking preferences through our cookie consent settings available on our website.
14. California-Specific Disclosures
In addition to the rights described in Section 6, California residents are entitled to the following specific disclosures under the CCPA/CPRA:
14.1 Categories of Personal Information Collected in the Last 12 Months
| Category | Collected |
|---|---|
| Identifiers (name, email, IP address) | Yes |
| Customer Records (payment info, purchase history) | Yes |
| Commercial Information (order history, loyalty data) | Yes |
| Internet/Electronic Activity (browsing history, cookie data) | Yes |
| Geolocation Data | Yes (approximate) |
| Inferences from Personal Information (preferences, behavior profiles) | Yes |
| Sensitive Personal Information (precise geolocation, if consented) | Limited |
| Biometric Information | No |
| Financial Account Numbers | No (handled by payment processors) |
14.2 Shine the Light Law
California Civil Code Section 1798.83 ("Shine the Light" law) permits California residents to request certain information about our disclosure of personal information to third parties for direct marketing purposes during the preceding calendar year. If you are a California resident and wish to make such a request, please contact us at [email protected].
15. Changes to This Privacy Policy
We reserve the right to update or modify this Privacy Policy at any time in response to changes in law, business practices, technology, or our data processing activities. All changes will be effective upon posting of the revised policy on our Site, with the "Last Updated" date reflecting the most recent revision.
For material changes that significantly affect your rights or our use of your personal information, we will provide prominent notice on our website at least thirty (30) days prior to the change taking effect, or we will send a direct notification to the email address associated with your account where required by applicable law. Your continued use of our Site and Services following the posting of any changes constitutes your acceptance of the updated Privacy Policy.
We recommend bookmarking this page and checking it periodically for updates. The current version of this Privacy Policy will always be available at daveshotchicken-eat.digital.
16. Contact Us About Privacy
We welcome any questions, concerns, or feedback you may have regarding this Privacy Policy or our data practices. Your privacy matters to us, and we are committed to addressing your concerns in a timely and transparent manner.
| Privacy Inquiries Email | [email protected] |
|---|---|
| Website | daveshotchicken-eat.digital |
| Company Name | Dave's Hot Chicken |
| Business Location | United States |
When contacting us regarding a privacy matter, please include your full name, the email address associated with your account (if applicable), a clear description of your request or concern, and any relevant details that will help us address your inquiry efficiently. We are dedicated to resolving all privacy-related matters with professionalism, fairness, and full compliance with applicable United States privacy law.
This Privacy Policy was last reviewed and updated on May 22, 2026. © 2026 Dave's Hot Chicken. All rights reserved.