Privacy Policy

At Via 313, we are deeply committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website via313-food.rest, place an order, interact with our services, or otherwise engage with us. Please read this policy carefully. If you disagree with its terms, please discontinue use of our site and services.

This Privacy Policy applies to all information collected through our website, mobile applications, social media pages, and any related services, sales, marketing, or events (collectively referred to as our "Services"). By using our Services, you acknowledge that you have read, understood, and agree to be bound by the terms of this Privacy Policy.

1. About Us

Via 313 is a food business operating in the United States. We are committed to transparency about our data practices and to complying with all applicable federal and state privacy laws, including the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA), and the Federal Trade Commission (FTC) Act.

• Company Name: Via 313
• Website: via313-food.rest
• Email: [email protected]

For any questions, concerns, or requests related to this Privacy Policy, please contact us at the email address listed above. We will respond to all legitimate privacy inquiries promptly.

2. Information We Collect

We collect information about you in a variety of ways depending on how you interact with us. The categories of information we may collect include:

2.1 Personal Identification Information

When you create an account, place an order, sign up for our newsletter, participate in promotions, or otherwise contact us, we may collect personally identifiable information such as:

• First and last name
• Email address
• Phone number
• Billing and delivery addresses
• Payment information (credit/debit card numbers, billing details — processed securely through third-party payment processors)
• Date of birth (where required for age verification)
• Username and password for account creation
• Profile photo or avatar (if you choose to upload one)

2.2 Order and Transaction Information

When you place an order with Via 313, we collect details related to your purchases and transactions, including:

• Items ordered, customizations, and special instructions
• Order history and frequency
• Payment method type and last four digits of card number
• Transaction amounts and dates
• Delivery details and preferences
• Loyalty points and rewards information

2.3 Usage and Behavioral Data

We automatically collect certain information about how you interact with our website and services, including:

• Pages viewed, links clicked, and time spent on pages
• Search queries entered on our website
• Browsing behavior and session activity
• Referral source (how you arrived at our website)
• Frequency and duration of visits
• Features used and actions taken within our platforms

2.4 Device and Technical Information

When you access our Services, we may automatically collect technical information about your device and connection, including:

• IP address
• Browser type and version
• Operating system and platform
• Device identifiers and hardware model
• Screen resolution and display settings
• Language preferences
• Time zone settings
• Mobile network information

2.5 Location Data

With your consent, we may collect precise or approximate geographic location data from your device. This information helps us provide accurate delivery estimates, identify nearby restaurant locations, and offer location-relevant promotions. You may disable location tracking in your device settings at any time.

2.6 Communications and Feedback

If you contact us by email, phone, or through contact forms, we collect the content of your communications, including:

• Customer service inquiries and responses
• Reviews, ratings, and feedback you submit
• Complaints and dispute information
• Survey responses

2.7 Cookies and Tracking Technologies

We use cookies, pixel tags, web beacons, and similar tracking technologies to collect and store information about your interactions with our website. For more detailed information on our use of cookies and how to manage your preferences, please refer to Section 9 (Cookie Usage) of this Privacy Policy.

2.8 Information from Third Parties

We may receive information about you from third-party sources, including:

• Social media platforms (if you log in using a social account or interact with our social media pages)
• Third-party delivery partners and platforms
• Advertising networks and marketing partners
• Analytics providers
• Payment processors and fraud prevention services

3. How We Use Your Information

We use the information we collect for a variety of business and operational purposes. Specifically, we may use your personal information to:

3.1 Service Provision and Order Fulfillment

• Process and fulfill your food orders and transactions
• Manage your account and preferences
• Facilitate payment processing and prevent fraud
• Arrange delivery or pickup of your orders
• Provide customer support and resolve disputes
• Send order confirmations, receipts, and status updates
• Notify you of changes to our menu, services, or policies

3.2 Analytics and Service Improvement

• Analyze usage patterns to improve our website and app functionality
• Monitor and analyze trends, usage, and activities in connection with our Services
• Conduct research and development to enhance our food offerings
• Identify and fix technical issues or bugs
• Test new features before full rollout
• Measure advertising effectiveness and campaign performance

3.3 Marketing and Communications

• Send you promotional materials, special offers, and newsletters (with your consent where required)
• Personalize content and advertisements based on your preferences and history
• Administer contests, sweepstakes, and promotions
• Recommend menu items or deals relevant to your order history
• Deliver targeted advertising through third-party advertising platforms

You may opt out of marketing communications at any time by clicking the "unsubscribe" link in any email we send, or by contacting us at [email protected]. Please note that even if you opt out of marketing emails, we may still send you non-promotional, transactional communications about your account or orders.

3.4 Legal and Compliance Purposes

• Comply with applicable federal, state, and local laws and regulations
• Respond to lawful requests from law enforcement or regulatory authorities
• Enforce our Terms of Service and other agreements
• Protect against fraudulent, unauthorized, or illegal activity
• Protect the rights, property, and safety of Via 313, our customers, and the public

4. Sharing Your Information with Third Parties

We do not sell your personal information for monetary compensation. However, we may share your information in the following circumstances:

4.1 Service Providers and Business Partners

We engage trusted third-party companies and individuals to perform functions and provide services on our behalf, such as:

• Payment processors (e.g., Stripe, Square, PayPal)
• Delivery logistics and courier services
• Email marketing and communication platforms
• Web hosting and cloud infrastructure providers
• Analytics and performance monitoring services (e.g., Google Analytics)
• Customer relationship management (CRM) software
• Fraud detection and identity verification services
• Advertising and remarketing platforms (e.g., Google Ads, Meta Ads)

These service providers have access to your personal information only to the extent necessary to perform their specific functions and are contractually obligated to maintain the confidentiality and security of your data and not to use it for any other purpose.

4.2 Legal Requirements and Law Enforcement

We may disclose your personal information if we are required to do so by law or in response to valid requests by public authorities, such as courts, law enforcement agencies, or government regulators. Such disclosures may include:

• Compliance with a subpoena, court order, or legal process
• Responding to requests from government or regulatory bodies
• Cooperating with fraud investigations
• Enforcing or protecting our legal rights and interests

4.3 Business Transfers

In the event of a merger, acquisition, reorganization, bankruptcy, or sale of all or a portion of our assets, your personal information may be transferred to the acquiring entity. We will provide notice of any such transfer and the choices you may have regarding your information before or after the transaction.

4.4 Consent-Based Sharing

We may share your information with third parties when you have provided explicit consent to do so, such as when you participate in joint promotions, contests, or co-branded offerings with our partners.

4.5 Aggregated and De-Identified Data

We may share aggregated or de-identified information — information that cannot reasonably be used to identify you — with third parties for research, marketing, analytics, and other purposes without restriction.

5. Data Security

We take the protection of your personal information seriously and implement a variety of technical, administrative, and physical security measures designed to protect your data from unauthorized access, disclosure, alteration, or destruction.

5.1 Technical Safeguards

• SSL/TLS encryption for all data transmitted between your browser and our servers
• Encryption of sensitive data at rest, including payment information
• Firewalls, intrusion detection systems, and network monitoring
• Secure, access-controlled server environments
• Regular software patches and security updates
• Multi-factor authentication for system access by employees

5.2 Administrative Safeguards

• Role-based access controls limiting employee access to personal data on a need-to-know basis
• Employee training on data privacy and security best practices
• Data processing agreements with all third-party service providers
• Regular security audits and vulnerability assessments
• Incident response and data breach notification procedures

5.3 Limitations

Despite our best efforts, no method of data transmission over the Internet or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal information, we cannot guarantee its absolute security. In the event of a data breach that affects your rights and freedoms, we will notify you and applicable regulatory authorities as required by applicable law.

6. Your Privacy Rights

Depending on your state of residence, you may have specific rights regarding your personal information. We are committed to honoring all applicable rights under federal and state law, including the CCPA/CPRA for California residents.

6.1 Rights Available to All Users

• Right to Know / Access: You have the right to request that we disclose the categories and specific pieces of personal information we have collected about you, the purposes for which we use it, and the third parties with whom we share it.
• Right to Correction: You have the right to request that we correct any inaccurate personal information we hold about you.
• Right to Deletion: You have the right to request that we delete personal information we have collected from you, subject to certain exceptions (e.g., completing transactions, legal obligations).
• Right to Opt-Out of Sale or Sharing: Although we do not sell personal information in the traditional sense, under CCPA/CPRA, you may have the right to opt out of the sharing of your information for cross-context behavioral advertising purposes.
• Right to Data Portability: You have the right to receive a copy of the personal data we hold about you in a structured, commonly used, and machine-readable format.
• Right to Non-Discrimination: We will not discriminate against you for exercising any of your privacy rights. We will not deny you goods or services, charge you different prices, or provide a different quality of service because you exercised a privacy right.

6.2 Additional Rights for California Residents (CCPA/CPRA)

California residents have additional rights under the CCPA as amended by the CPRA, including:

• The right to limit the use and disclosure of sensitive personal information
• The right to opt out of automated decision-making and profiling
• The right to know the retention period for each category of personal information
• Enhanced rights regarding the handling of sensitive personal information (such as financial data, health data, and precise geolocation)

6.3 How to Exercise Your Rights

To exercise any of your rights, please submit a verifiable request by:

• Email: [email protected]
• Website: via313-food.rest (via our contact form)

We will respond to verifiable consumer requests within 45 days of receipt. If additional time is needed, we will inform you of the reason and extension period (up to an additional 45 days) in writing. We will not charge a fee for processing your request unless it is excessive, repetitive, or manifestly unfounded.

To verify your identity, we may ask you to provide certain pieces of information that match what we have on file. We will only use this information to verify your identity and will not retain it for any other purpose.

You may also designate an authorized agent to submit requests on your behalf. The authorized agent must provide written proof of authorization and you must verify your identity directly with us.

7. Data Retention

We retain personal information for as long as necessary to fulfill the purposes described in this Privacy Policy, unless a longer retention period is required or permitted by law. The criteria we use to determine retention periods include:

After the applicable retention period expires, we securely delete or anonymize your personal information. In some cases, we may retain anonymized data indefinitely for statistical and analytical purposes, as it can no longer be used to identify you.

8. Children's Privacy

Our Services are intended for adults aged 18 years and older. We do not knowingly collect, solicit, or process personal information from children under the age of 13, and we do not market our services to children under the age of 18.

If we learn that we have inadvertently collected personal information from a child under the age of 13 without verified parental consent, we will take immediate steps to delete that information from our records. We comply with the Children's Online Privacy Protection Act (COPPA) to the extent applicable.

If you believe that we may have any information from or about a child under 13, please contact us immediately at [email protected].

Parents and legal guardians who wish to review, correct, or request deletion of information that may have been collected from a minor should contact us at the information provided above, and we will respond promptly.

9. Cookie Usage

We use cookies and similar tracking technologies (such as web beacons, pixel tags, and local storage) on our website via313-food.rest to enhance your browsing experience, understand how our site is used, and deliver personalized content and advertising.

9.1 Types of Cookies We Use

• Strictly Necessary Cookies: Essential for the website to function properly. These include session cookies that allow you to remain logged in and add items to your cart.
• Performance and Analytics Cookies: Help us understand how visitors interact with our website by collecting and reporting information anonymously (e.g., Google Analytics).
• Functional Cookies: Allow the website to remember your preferences, such as your language, location, and saved addresses, to provide a more personalized experience.
• Targeting and Advertising Cookies: Used to deliver relevant advertisements to you based on your browsing history and interests. These may be set by our advertising partners.

9.2 Managing Your Cookie Preferences

You can control and manage cookies in the following ways:

• Through the cookie consent banner displayed when you first visit our website
• By adjusting your browser settings to block or delete cookies
• By opting out of Google Analytics via the Google Analytics Opt-Out Browser Add-on
• By visiting www.aboutads.info/choices or www.networkadvertising.org to opt out of interest-based advertising

Please note that disabling certain cookies may affect the functionality and performance of our website. Strictly necessary cookies cannot be disabled as they are essential to service operation.

For full details on our use of cookies, please refer to our Cookie Policy available on via313-food.rest.

10. International Data Transfers

Via 313 operates primarily in the United States. Our servers, databases, and primary operations are located within the United States. However, some of our third-party service providers, partners, and vendors may process or store your information in countries outside of the United States.

When we transfer personal data internationally, we take appropriate steps to ensure that your information receives an adequate level of protection, including:

• Working only with service providers who maintain adequate data protection standards
• Implementing Standard Contractual Clauses (SCCs) where required
• Ensuring third-party processors are contractually bound to protect your data
• Verifying that any data processing agreements meet or exceed applicable US privacy standards

By using our Services, you acknowledge that your personal information may be transferred to and processed in countries with different privacy laws than your country of residence. We remain committed to ensuring that your data is treated securely and in accordance with this Privacy Policy regardless of where it is processed.

11. Third-Party Websites and Links

Our website may contain links to third-party websites, social media pages, partner platforms, or embedded content that are not operated by Via 313. This Privacy Policy applies solely to information collected through our own Services. We have no control over and assume no responsibility for the privacy practices, content, or security of third-party websites.

We encourage you to review the privacy policies of any third-party websites you visit. Clicking on a third-party link will take you away from our website, and we are not responsible for any data collected by those external sites.

12. Do Not Track Signals

Some browsers transmit "Do Not Track" (DNT) signals to websites. Currently, there is no universally accepted standard for how websites should respond to DNT signals. We do not currently alter our data collection or use practices in response to DNT browser signals. However, we support your right to privacy and encourage you to make use of our cookie management options described in Section 9.

California residents should also be aware that under the California "Shine the Light" law (Civil Code Section 1798.83), you may request information about disclosures of your personal information to third parties for their direct marketing purposes by contacting us at [email protected].

13. Legal Basis for Processing (Federal and State Compliance)

As a business operating in the United States, Via 313 processes personal information in accordance with applicable federal and state laws, including:

• FTC Act (Federal Trade Commission Act): We comply with the FTC's guidelines regarding unfair or deceptive trade practices, including our data privacy and security representations to consumers.
• CAN-SPAM Act: All commercial email communications comply with the CAN-SPAM Act, including providing clear unsubscribe options and accurate header information.
• CCPA/CPRA (California Consumer Privacy Act / California Privacy Rights Act): We honor all rights afforded to California residents under this legislation, as described in Section 6 of this policy.
• COPPA (Children's Online Privacy Protection Act): We do not knowingly collect personal information from children under 13 without parental consent.
• State-specific privacy laws: We monitor and comply with evolving state privacy laws across all jurisdictions where we operate, including laws enacted in Virginia (VCDPA), Colorado (CPA), Connecticut (CTDPA), and other states with comprehensive privacy legislation.

14. Changes to This Privacy Policy

We reserve the right to update, modify, or replace this Privacy Policy at any time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes to this policy, we will:

• Update the "Last Updated" date at the top of this page
• Post a prominent notice on our website
• Send an email notification to registered users where required by law

Your continued use of our Services after the effective date of any revised Privacy Policy constitutes your acceptance of the changes. We encourage you to review this page periodically to stay informed about how we protect your information. If we make changes that materially affect your rights, we will seek your explicit consent where required by applicable law.

15. Filing Complaints

If you believe that your privacy rights have been violated or that we have failed to handle your personal information in accordance with applicable law, you have the right to lodge a complaint with a competent authority.

15.1 Contact Us First

We encourage you to contact us first so we can address your concerns directly and promptly. Please reach out to our Privacy Team at:

• Email: [email protected]
• Website: via313-food.rest

We will investigate all legitimate complaints and do our best to resolve them within a reasonable timeframe.

15.2 Federal Trade Commission (FTC)

If you believe Via 313 has engaged in unfair or deceptive practices regarding your personal information, you may file a complaint with the Federal Trade Commission (FTC):

• Website: www.ftc.gov/complaint
• Phone: 1-877-FTC-HELP (1-877-382-4357)
• Address: Federal Trade Commission, 600 Pennsylvania Avenue, NW, Washington, DC 20580

15.3 California Residents — California Privacy Protection Agency (CPPA)

California residents who wish to exercise their CCPA/CPRA rights or file a privacy complaint may contact:

• California Privacy Protection Agency (CPPA): cppa.ca.gov
• California Attorney General's Office: oag.ca.gov/privacy

15.4 Other State Residents

Residents of other US states with applicable privacy laws may contact their respective state Attorney General's office or consumer protection agency. We will cooperate fully with any investigation conducted by a regulatory authority.

16. Contact Information for Privacy Inquiries

If you have any questions, concerns, or requests regarding this Privacy Policy or the handling of your personal information, please do not hesitate to contact our Privacy Team. We are dedicated to responding to all privacy-related inquiries in a timely and transparent manner.

When contacting us with a privacy inquiry, please provide as much detail as possible, including your name, contact information, and a description of your concern. This will help us address your request efficiently. We aim to respond to all inquiries within 10 business days and to resolve substantive requests within 45 days of verification.