Privacy Policy
This Privacy Policy describes how Via 313 ("we," "us," or "our") collects, uses, discloses, and protects your personal information when you visit our website at via313.digital, place orders, use our services, or otherwise interact with us. Please read this policy carefully. By using our website or services, you agree to the practices described herein.
We are committed to protecting your privacy and handling your personal data with transparency and care. This policy is intended to comply with applicable United States federal and state privacy laws, including the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA), the Federal Trade Commission (FTC) Act, and other applicable consumer protection regulations.
1. Who We Are
Via 313 is a food business operating in the United States. We offer food products and related services through our website and physical locations. Our contact details for all privacy-related inquiries are as follows:
| Company Name | Via 313 |
|---|---|
| Website | via313.digital |
| [email protected] |
2. Information We Collect
We collect various types of information in connection with your interactions with Via 313. The categories of personal information we may collect include, but are not limited to, the following:
2.1 Personal Identification Information
When you create an account, place an order, sign up for our newsletter, or contact us, we may collect:
- Full name
- Email address
- Phone number
- Billing and shipping address
- Date of birth (where required for age verification)
- Username and password (for registered accounts)
2.2 Payment and Financial Information
When you complete a purchase, we collect payment-related data necessary to process your transaction. This may include:
- Credit or debit card details (processed securely through third-party payment processors)
- Billing address
- Transaction history and order details
Please note that we do not store full credit card numbers on our servers. All payment processing is handled by PCI-DSS-compliant third-party payment processors.
2.3 Usage and Behavioral Data
As you navigate our website, we automatically collect certain information about your browsing activity, including:
- Pages visited and time spent on each page
- Links clicked and interactions with website features
- Search queries entered on our site
- Products viewed, added to cart, and purchased
- Referral URLs (how you arrived at our site)
- Timestamps of visits and session duration
2.4 Device and Technical Information
We collect technical information about the device and browser you use to access our website, including:
- IP address
- Browser type and version
- Operating system and device type
- Screen resolution
- Mobile device identifiers (where applicable)
- Language settings
- Time zone
2.5 Location Data
We may collect general location information derived from your IP address to provide localized content, delivery options, and relevant menu information. If you use our mobile application or grant location permissions, we may collect more precise geolocation data.
2.6 Communications and User-Generated Content
When you contact our customer service team, leave a review, participate in a survey, or interact with us on social media, we may collect:
- Content of your messages and correspondence
- Reviews, ratings, and feedback
- Survey responses
- Social media handles and profile information (when you interact with us on those platforms)
2.7 Cookies and Tracking Technologies
We use cookies, web beacons, pixel tags, and similar tracking technologies to collect information about your interactions with our website. For a detailed explanation of our use of cookies and how to manage your preferences, please refer to Section 8 of this Privacy Policy.
2.8 Information from Third Parties
We may receive information about you from third parties, including:
- Social media platforms (if you connect your account or use social login)
- Analytics and advertising partners
- Fraud detection and identity verification services
- Delivery and logistics partners
3. How We Use Your Information
We use the personal information we collect for the following purposes:
3.1 Providing and Managing Our Services
- Processing and fulfilling your orders for food products
- Managing your customer account and preferences
- Coordinating delivery and pickup services
- Sending order confirmations, receipts, and shipping updates
- Handling returns, refunds, and customer service inquiries
3.2 Improving Our Products and Website
- Analyzing how customers use our website and services
- Identifying and fixing technical issues and bugs
- Testing new features and user experience improvements
- Conducting internal research and development
3.3 Marketing and Promotional Communications
- Sending promotional emails, newsletters, and special offers (with your consent where required)
- Personalizing marketing messages based on your preferences and purchase history
- Delivering targeted advertisements through third-party platforms
- Running loyalty programs and promotional campaigns
You may opt out of marketing communications at any time by clicking the "unsubscribe" link in any marketing email or by contacting us at [email protected].
3.4 Analytics and Performance Monitoring
- Measuring website traffic, conversion rates, and user engagement
- Understanding customer demographics and behavior patterns
- Evaluating the effectiveness of our marketing campaigns
3.5 Legal Compliance and Safety
- Complying with applicable laws, regulations, and legal obligations
- Responding to lawful requests from government and law enforcement authorities
- Detecting and preventing fraud, unauthorized access, and other illegal activities
- Enforcing our Terms of Service and other agreements
- Protecting the rights, property, and safety of Via 313, our customers, and others
3.6 Business Operations
- Processing payments and managing billing
- Maintaining accurate business records
- Conducting audits and internal reviews
- Facilitating corporate transactions such as mergers or acquisitions
4. Legal Bases for Processing
While U.S. federal law does not currently mandate a single uniform legal basis for data processing, we rely on the following justifications depending on the context:
- Contractual necessity: Processing required to fulfill your orders and manage your account.
- Consent: For marketing communications and certain cookie deployments, where required by law.
- Legitimate interests: For fraud prevention, website analytics, and service improvement.
- Legal obligation: Where we are required to process your data to comply with applicable law.
5. Sharing Your Information with Third Parties
We do not sell, rent, or trade your personal information to third parties for their own marketing purposes. However, we may share your information with third parties in the following circumstances:
5.1 Service Providers and Business Partners
We engage trusted third-party service providers who assist us in operating our business. These providers only access your personal information to the extent necessary to perform their services and are contractually obligated to protect your information. Categories of service providers include:
- Payment processors and financial institutions
- Delivery and logistics companies
- Email marketing and communications platforms
- Website hosting and cloud infrastructure providers
- Customer relationship management (CRM) software providers
- Analytics and data intelligence platforms
- Fraud detection and security services
5.2 Legal Requirements and Law Enforcement
We may disclose your personal information if we believe, in good faith, that such disclosure is necessary to:
- Comply with a legal obligation, court order, or subpoena
- Cooperate with law enforcement or regulatory authorities
- Protect and defend the rights or property of Via 313
- Prevent or investigate possible wrongdoing in connection with our services
- Protect the personal safety of our users, employees, or the public
5.3 Business Transfers
In the event that Via 313 is involved in a merger, acquisition, sale of assets, bankruptcy, or similar corporate transaction, your personal information may be transferred to the relevant successor entity. We will notify you via email and/or a prominent notice on our website before your information is transferred or becomes subject to a different privacy policy.
5.4 With Your Consent
We may share your information with additional third parties when you have provided your explicit consent to do so.
5.5 Aggregated and De-Identified Data
We may share aggregated or anonymized data that cannot reasonably be used to identify you with third parties for research, marketing, analytics, and other purposes.
6. Data Security
We take the security of your personal information seriously and implement a range of technical, administrative, and physical safeguards designed to protect your data against unauthorized access, disclosure, alteration, and destruction. Our security measures include:
- Encryption: We use SSL/TLS encryption to protect data transmitted between your browser and our servers.
- Secure servers: Our website and databases are hosted on secure, access-controlled servers.
- Payment security: Payment card data is handled exclusively by PCI-DSS-compliant payment processors.
- Access controls: We limit access to personal information to authorized personnel who require it for their job functions.
- Employee training: Our team members receive training on data privacy and security best practices.
- Regular audits: We conduct periodic security assessments and vulnerability reviews.
- Incident response: We maintain a data breach response plan and will notify affected individuals as required by applicable law.
7. Your Privacy Rights
Depending on your state of residence within the United States, you may have certain rights regarding your personal information. We honor applicable rights regardless of your location to the fullest extent practicable.
7.1 Rights Under California Law (CCPA/CPRA)
If you are a California resident, you have the following rights under the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA):
- Right to Know: You have the right to request that we disclose the categories and specific pieces of personal information we have collected about you, the sources of that information, the purposes for which it was collected or sold, and the categories of third parties with whom it was shared.
- Right to Delete: You have the right to request that we delete personal information we have collected from you, subject to certain exceptions.
- Right to Correct: You have the right to request correction of inaccurate personal information we hold about you.
- Right to Opt-Out of Sale/Sharing: You have the right to opt out of the sale or sharing of your personal information for cross-context behavioral advertising. We do not sell your personal information for monetary consideration, but we may share it with advertising partners in ways that may qualify as "sharing" under CPRA.
- Right to Limit Use of Sensitive Personal Information: You have the right to limit our use and disclosure of sensitive personal information to that which is necessary to provide requested services.
- Right to Non-Discrimination: We will not discriminate against you for exercising your privacy rights. We will not deny you goods or services, charge you different prices, or provide a different level of service because you exercised your rights.
7.2 General U.S. Privacy Rights
Regardless of your state of residence, we provide the following rights to all users:
- Right of Access: You may request a copy of the personal information we hold about you.
- Right to Correction: You may request that we correct inaccurate or incomplete information about you.
- Right to Deletion: You may request that we delete your personal information, subject to our legal obligations to retain certain data.
- Right to Data Portability: Where technically feasible, you may request that we provide your personal information in a structured, machine-readable format.
- Right to Withdraw Consent: Where processing is based on consent, you may withdraw your consent at any time without affecting the lawfulness of processing that occurred prior to withdrawal.
- Right to Opt-Out of Marketing: You may opt out of receiving marketing communications from us at any time.
7.3 How to Exercise Your Rights
To exercise any of the rights described above, please contact us using the following methods:
- Email: [email protected]
- Website: via313.digital
We will respond to verifiable consumer requests within 45 days of receipt, as required under CCPA/CPRA. We may extend this period by an additional 45 days when reasonably necessary, provided we give you advance notice. We may need to verify your identity before processing your request. We will not charge a fee for responding to your request unless it is excessive, repetitive, or manifestly unfounded.
8. Cookies and Tracking Technologies
We use cookies and similar tracking technologies to enhance your experience on our website, analyze site traffic, and support our marketing activities.
8.1 What Are Cookies?
Cookies are small text files placed on your device when you visit a website. They help websites remember your preferences, keep you logged in, and gather information about how you use the site.
8.2 Types of Cookies We Use
| Cookie Type | Purpose | Duration |
|---|---|---|
| Strictly Necessary | Essential for the website to function properly (e.g., shopping cart, authentication) | Session / Persistent |
| Performance / Analytics | Collect information on how visitors use our site (e.g., Google Analytics) | Up to 2 years |
| Functional | Remember your preferences such as language, location, and saved items | Up to 1 year |
| Marketing / Advertising | Track your browsing to deliver targeted advertisements | Up to 2 years |
8.3 Managing Your Cookie Preferences
You can control and manage cookies in several ways:
- Browser settings: Most web browsers allow you to refuse or delete cookies through their settings menu.
- Opt-out tools: You may opt out of interest-based advertising through the Digital Advertising Alliance (DAA) or the Network Advertising Initiative (NAI).
- Google Analytics opt-out: You can install the Google Analytics Opt-out Browser Add-on.
Please note that disabling certain cookies may affect the functionality of our website and your ability to use certain features.
9. Data Retention
We retain your personal information only for as long as is necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.
| Data Category | Retention Period |
|---|---|
| Account information | Duration of account + 3 years after closure |
| Order and transaction records | 7 years (for tax and accounting compliance) |
| Marketing preferences and communications | 3 years from last interaction or until opt-out |
| Customer service records | 3 years from the date of resolution |
| Website usage and analytics data | Up to 26 months |
| Payment records | 7 years (as required by financial regulations) |
| Legal and compliance records | As required by applicable law |
Upon expiration of the applicable retention period, we will securely delete or anonymize your personal information in accordance with our internal data management procedures.
10. Children's Privacy
Via 313 does not direct its services to minors under the age of 18. We do not knowingly collect, use, or disclose personal information from children under 18. If you are under 18 years of age, please do not use our website or provide any personal information to us.
If we learn that we have inadvertently collected personal information from a child under the age of 18 without verifiable parental consent, we will take prompt steps to delete such information from our systems. If you believe we may have collected information from or about a child under 18, please contact us immediately at [email protected].
We comply with the Children's Online Privacy Protection Act (COPPA) and will not knowingly collect personal information from children under 13 years of age.
11. International Data Transfers
Via 313 operates primarily within the United States. However, some of our third-party service providers — including cloud hosting providers, analytics platforms, and payment processors — may be located in or operate from other countries. As a result, your personal information may be transferred to, stored in, or processed in countries outside the United States.
When we transfer personal information internationally, we take steps to ensure that it receives appropriate protection, including through:
- Entering into data processing agreements with service providers that include appropriate data protection clauses
- Ensuring service providers adhere to recognized data protection standards
- Evaluating the data protection laws of the destination country
By using our website and services, you acknowledge and agree that your personal information may be transferred to and processed in countries outside your country of residence, which may have different data protection laws than your home country.
12. Third-Party Websites and Links
Our website may contain links to third-party websites, social media platforms, and other external services. This Privacy Policy applies only to our website and services. We are not responsible for the privacy practices of third-party websites, and we encourage you to review the privacy policies of any external sites you visit.
Our website may integrate with third-party services such as:
- Social media platforms (Facebook, Instagram, Twitter/X)
- Online ordering and delivery platforms
- Review platforms (Yelp, Google Reviews)
- Map services (Google Maps)
Your interactions with these platforms are governed by their respective privacy policies, not ours.
13. Do Not Track Signals
Some web browsers may transmit "Do Not Track" (DNT) signals to websites. Because there is currently no industry standard for how websites should respond to these signals, our website does not alter its data collection and usage practices in response to DNT signals. If a final standard is established and we are required to comply, we will update this policy accordingly.
California residents may also exercise their rights under the "Shine the Light" law (California Civil Code Section 1798.83), which permits customers to request information regarding the disclosure of their personal information to third parties for direct marketing purposes.
14. Sensitive Personal Information
We do not intentionally collect sensitive categories of personal information such as racial or ethnic origin, political opinions, religious beliefs, genetic data, biometric data for identification purposes, or health information, unless you voluntarily provide such information in connection with a specific request (such as dietary restrictions for food orders). Any such information you provide voluntarily will be handled with the highest level of care and used solely for the purpose for which it was provided.
15. Changes to This Privacy Policy
We reserve the right to update or modify this Privacy Policy at any time to reflect changes in our practices, legal requirements, or business operations. When we make material changes, we will:
- Update the "Last Updated" date at the top of this page
- Post the revised policy on our website at via313.digital
- Send you an email notification if the changes are significant (where we have your email address)
Your continued use of our website or services after the posting of any changes constitutes your acceptance of the revised Privacy Policy. We encourage you to review this policy periodically to stay informed about how we are protecting your information.
16. How to File a Complaint
If you believe that we have not handled your personal information in accordance with applicable law or this Privacy Policy, you have the right to file a complaint. We encourage you to contact us first so that we can address your concerns directly.
16.1 Contact Us Directly
Please send your privacy-related complaints or concerns to:
- Email: [email protected]
- Website: via313.digital
We will acknowledge your complaint within 10 business days and endeavor to resolve it within 45 days.
16.2 File a Complaint with Regulatory Authorities
If you are not satisfied with our response, or if you wish to file a complaint directly with a regulatory authority, you may contact the following:
| Authority | Jurisdiction | Contact |
|---|---|---|
| Federal Trade Commission (FTC) | United States (Federal) | reportfraud.ftc.gov |
| California Privacy Protection Agency (CPPA) | California | cppa.ca.gov |
| California Attorney General | California | oag.ca.gov/privacy |
| Your State Attorney General | Other U.S. States | Refer to your state government website for contact information |
17. Contact Information for Privacy Inquiries
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please do not hesitate to contact our privacy team:
Privacy Contact — Via 313
- Company: Via 313
- Email: [email protected]
- Website: via313.digital
We are committed to working with you to achieve a fair and prompt resolution of any privacy concerns. All privacy inquiries will be treated with confidentiality and addressed in accordance with applicable law.