Privacy Policy

Last Updated: November 2023

Welcome to www.slapfishrestaurant.com (the “Website”), owned and controlled by Slapfish Restaurant Group, LLC (“we,” “us,” “Slapfish”). This Privacy Policy (“Policy”) explains the type of information (“Information”) we collect from users of the Website and our mobile application (collectively, the “Sites”), how that Information is used, how the Information may be shared with other parties, and what controls our users have regarding their Information. We encourage you to read this Policy carefully. Any updates or modifications to this Policy will be posted to our Website on this page. By using or accessing the Website, you signify that you have read, understand and agree to be bound by this Policy.

Information We Collect

You may browse portions of our Sites without providing us with personally identifiable information (“Personal Information”). However, if you wish to contact us using the “Contact Us” form, register for the “Newsletter,” order online, order a gift card, enter one of our sweepstakes or other promotions, create a Slapfish Loyalty Rewards account, or otherwise communicate with us, we may at that time require that you provide Personal Information, including without limitation your name, address, phone number, and email address. When you submit Personal Information on the Website, you are giving your consent to the collection, use and disclosure of your Personal Information as set forth in this Privacy Policy.

We may also collect, store or accumulate certain non-personally identifiable information concerning your use of this Website, such as information regarding which of our pages, products or services are most popular. We may collect certain usage information automatically when you visit the Sites (“Usage Information”), including: your browser type and operating system; your Internet Protocol (IP) address, which is the number automatically assigned to your computer whenever you access the Internet and that can sometimes be used to derive your general geographic area; geolocation information; other unique identifiers, including mobile device identification numbers; sites you visited before and after visiting the Sites; pages you view and links you click on within the Sites; information collected through cookies, web beacons, and other technologies; information about your interactions with e-mail messages, such as the links clicked on and whether the messages were opened or forwarded; and Standard Server Log Information. Except to the extent required by applicable law, we do not consider Usage Information to be Personal Information. However, Usage Information may be combined with your Personal Information. To the extent that we combine Usage Information with your Personal Information, we will treat the combined information as Personal Information under this Policy.

Information gathered may be used in aggregate form for internal business purposes, such as generating statistics and developing marketing plans. We may share or transfer such aggregate, non-personally identifiable information with or to our affiliates, licensees and partners. We use geolocation data to tailor the Sites to your needs, including displaying your closest Slapfish locations.  We will ask you for your consent prior to using your location.

Please note that if you choose to use the web-based remote food ordering system on our Website, you will be transferred to the site of our third-party partner which will process your order. Slapfish does not collect any food order information. We use a secure, encrypted third-party payment provider to collect and process your payment, so even though it is provided by you via our Sites, We never see nor have access to your Payment Information. Our third-party partners have their own privacy policy which will apply to all online orders. You should read and familiarize yourself with our partners’ privacy policy and other applicable terms.

Uses Of Personal Information

We use Personal Information we collect to process your requests, authenticate Website visits/usage, inform users of relevant services, products, and specials, maintain and develop our Website, administer and manage your account, authenticate your identity, identify when you sign in, administer specials and promotions, and communicate with you and respond to your questions and requests. You always will be given the opportunity to unsubscribe from further emails in any promotional messages we send you.

We will not disclose, rent, sell or share any Personal Information to third parties for marketing purposes.

We may share your information as necessary to comply with any applicable laws. We may share your information: (i) In response to subpoenas, court orders, or other legal process; to establish or exercise our legal rights; to defend against legal claims; or as otherwise required by law (in such cases we reserve the right to raise or waive any legal objection or right available to us); (ii) When we believe it is appropriate to investigate, prevent, or take action regarding illegal or suspected illegal activities; to protect and defend the rights, property, or safety of Slapfish, our users, or others; and in connection with our Terms and Conditions and other agreements; or (iii) In connection with a corporate transaction, such as a divestiture, merger, consolidation, or asset sale, or in the unlikely event of bankruptcy.

Privacy And Security

We use SSL (Secure Sockets Layer) encryption technology to safeguard the security of your Personal Information; however, transmissions made on or through the internet are vulnerable to attack and cannot be guaranteed to be secure. You hereby acknowledge that we are not responsible for any intercepted information sent via the internet, and you hereby release us from any and all claims arising out of or related to the use of intercepted information in any unauthorized manner.

Cookies

In order to improve your user experience, we may use cookies. “Cookies” are small pieces of information that are stored by your browser on your computer's hard drive. Generally, cookies work by assigning to your computer a unique number that has no meaning outside of the Website. Our cookies do not generally contain any personally identifying information. Our Site may use HTTP cookies, HTML5 cookies, Flash cookies and other types of local storage (such as browser-based or plugin-based local storage). Your browser may tell you how to be notified when you receive certain types of cookies and how to restrict or disable certain cookies. You also may be able to delete your Flash cookies or adjust your Flash cookie settings by visiting the Adobe Flash Website Storage Settings Manager. Most web browsers automatically accept cookies, but you can usually configure your browser to prevent this. However, not accepting cookies may make certain features of the Website unavailable to you.

Our cookies, tokens and similar technologies (collectively, “Tracking Technologies”) also are used for administering the Sites, including without limitation, for authentication, to remember your settings, to customize the content and layout of the Website for you, to contact you about the Website, and to improve our internal operations and the content of our Website. To learn more about cookies and similar tracking technologies, and how they can affect your privacy, visit allaboutcookies.org.

You may be able to control the use of, or reject or disable, some Tracking Technologies at the individual browser level. If you reject or disable Tracking Technologies, you may still use our Sites, but your ability to use some features may be limited. We use Tracking Technologies to identify your device and keep track of your Internet session with our Sites. We also use Tracking Technologies that allow us to recognize your device when you return to the Website within a certain period of time (as determined by us in our sole discretion) and automatically log you back into your account with us.

To control which servers collect information by automated means, we may place tags on our Website called “web beacons.” Web beacons (sometimes called transparent GIFs, clear GIFs, or web bugs) are small strings of code that provide a way for us to deliver a small graphic image (usually invisible) on a web page or in an email. Web beacons can recognize certain types of information on your computer such as cookies, the time and date a page is viewed, and a description of the page where the web beacon is placed. We also may include web beacons in e-mail messages to record whether an email has been opened or whether certain links in such email have been clicked.

We may use third-party analytics sites, such as Google Analytics, to evaluate your use of the Sites, compile reports on activity, collect demographic data, analyze performance metrics, and collect and evaluate other information related to the Website. Google Analytics is a web analytics service provided by Google, Inc. (“Google”). Google Analytics places cookies on your computer to help the Website analyze how users use the Website. The information generated by the cookie about your use of the Website (including your IP address) will be transmitted to and stored by Google on servers in the United States. Google will use this information to evaluate your use of the Website, compiling reports on Website activity for Website operators and providing other information relating to Website activity and internet usage. Google may also transfer this information to third parties where required to do so by law, or where such third parties process the information on Google’s behalf. Google will not associate your IP address with any other data held by Google. By using this Website, you consent to the processing of data about you by Google in the manner and for the purposes set out above. For more information regarding Google Analytics please visit Google’s website, and pages that describe Google Analytics, such as www.google.com/analytics/learn/privacy.html.

You will have the option to opt-in to receive certain communications from us through text or SMS messages. By providing your express consent to receive text or SMS messages from us, you agree to our Terms and Conditions and acknowledge that you may receive alerts about your account, reminders to take certain actions, or details about new products and features. 

To stop receiving text or SMS messages, you may reply to any messages with STOP. We may utilize software from third party contractors to facilitate our text or SMS communications.

We may send you promotional emails about our Sites, locations, or other materials that we believe may be of interest to you. If required by applicable law, we will obtain your consent before sending you marketing emails. You may unsubscribe from communications from promotional communications by clicking the link at the bottom of any promotional email.

Notice to California Residents

We comply with the California Consumer Privacy Act (“CCPA”). If you are a resident of California you have following additional rights available to you, including: 

  • The right to access your Personal Information;
  • The right to obtain your Personal Information in a portable format;
  • The right to have your Personal Information deleted from our databases; and
  • The right to refuse us the right to sell your Personal Information;

If you would like to make any requests under the CCPA, please use email us at admin@slapfishrestaurant.com.

California law permits users of our Site who are California residents to request certain information regarding our disclosure of Personal Information to third parties for their direct marketing purposes. To make such a request write to us at:

Slapfish Restaurant Group, LLC
11750 Katy Freeway, Suite 1300
Houston, TX 77079

We will provide a list of the categories of Personal Information, if any, disclosed to third parties during the immediately preceding calendar year for third-party direct marketing purposes, along with the names and addresses of these third parties. This request may be made no more than once per calendar year. We reserve our right not to respond to requests submitted other than to the email or postal address specified above. Please include “California Privacy Rights” in the subject line and in your request. You must provide us with specific information regarding yourself so that we can accurately respond to the request.

The Site collects information that identifies, relates to, describes, references, is capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or device (“Personal Information”). In particular, our Sites have collected the following categories of Personal Information from its consumers within the last twelve (12) months:

Category Example Collected
A. Identifiers. A real name, alias, postal address, unique personal identifier, online identifier, Internet Protocol address, email address, account name, Social Security number, or other similar identifiers. YES
B. Personal information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e))
Note: Some Personal Information included in this category may overlap with other categories.
A name, signature, Social Security number, physical characteristics or description, address, telephone number, passport number, driver’s license or state identification card number, insurance policy number, education, employment, employment history, bank account number, credit card number, debit card number, or any other financial information, medical information, or health insurance information. YES
C. Protected classification characteristics under California or federal law. Age (40 years or older), race, color, ancestry, national origin, citizenship, religion or creed, marital status, medical condition, physical or mental disability, sex (including gender, gender identity, gender expression, pregnancy or childbirth and related medical conditions), sexual orientation, genetic information (including familial genetic information). NO
D. Commercial information. Records of personal property, products purchased, obtained, or considered, or other purchasing or consuming histories or tendencies. YES
E. Biometric information. Genetic, physiological, behavioral, and biological characteristics, or activity patterns used to extract a template or other identifier or identifying information, such as, fingerprints, faceprints, and voiceprints, iris or retina scans, keystroke, gait, or other physical patterns, and sleep, health, or exercise data. NO
F. Internet or other similar network activity. Browsing history, search history, information on a consumer’s interaction with a website, application, or advertisement. YES
G. Geolocation data. Physical location or movements. YES
H. Sensory data. Audio, electronic, visual, thermal, olfactory, or similar information. NO
I. Professional or employment-related information. Current or past job history or performance evaluations. YES
J. Non-public education information (per the Family Educational Rights and Privacy Act (20 U.S.C. Section 1232g, 34 C.F.R. Part 99)). Education records directly related to a student maintained by an educational institution or party acting on its behalf, such as grades, transcripts, class lists, student schedules, student identification codes, student financial information, or student disciplinary records. NO
K. Inferences drawn from other Personal Information. Profile reflecting a person’s preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes. NO
 

In the preceding twelve (12) months, we have disclosed the following categories of Personal Information for a business purpose:

  • Category A – Identifiers.
  • Category B – Personal information categories listed in the California Customer Records statute.
  • Category D – Commercial information.
  • Category F – Internet or other similar network activity.
  • Category G – Geolocation data.
  • Category I – Professional or employment-related information.

We do not resell Personal Information that we collect from any consumer.

If you are 16 years of age or older, you may direct us to not sell your Personal Information at any time. We do not sell the Personal Information of consumers we know are less than 16 years of age, unless we receive affirmative authorization from either the consumer who is between 13 and 16 years of age, or the parent or guardian of a consumer less than 13 years of age. If you or your parent or guardian choose to opt-in to Personal Information sales, you or your parent or guardian may still opt-out of future sales at any time. To opt-out, you (or your authorized representative) may submit a request to us at admin@slapfishrestaurant.com.

Once you make an opt-out request, we will wait at least twelve (12) months before asking you to reauthorize Personal Information sales. We will only use Personal Information provided in an opt-out request to review and comply with the request.

We will not discriminate against you for exercising any of your CCPA rights. Unless permitted by the CCPA, we will not:

  • Deny you goods or Site.
  • Charge you different prices or rates for goods or Site.
  • Provide you a different level or quality of goods or
  • Suggest that you may receive a different price or rate for goods or Site or a different level or quality of goods or

However, we may offer and you may consent to receive certain incentives permitted by the CCPA. Any CCPA-permitted incentive we offer will reasonably relate to your Personal Information’s value and contain written terms that describe the program’s material aspects. You may revoke your consent to participate or receive such financial incentive at any time. 

You have the right to request that we disclose certain information to you about our collection and use of your Personal Information over the past 12 months. Once we receive and confirm your verifiable consumer request, we will disclose to you: (A) the categories of Personal Information we collected about you; (B) the categories of sources for the Personal Information we collected about you; (C) our business or commercial purpose for collecting or selling that Personal Information; (D) the categories of third parties with whom we share that Personal Information; (E) the specific pieces of Personal Information we collected about you (also called a data portability request). If we sold or disclosed your Personal Information for a business purpose, we will provide you with two separate lists disclosing such sales or disclosures, identifying the Personal Information categories that each category of recipient purchased or otherwise obtained.

You have the right to request that we delete any of your own Personal Information that we collected from you and retained, subject to certain exceptions. Once we receive and confirm your verifiable consumer request, we will delete (and direct our service providers to delete) your Personal Information from our records, unless an exception applies.

An exception to your request may apply if retaining the information is necessary for us or our service provider(s) to:

  • Complete the transaction for which we collected the Personal Information, provide a good or service that you requested, take actions reasonably anticipated within the context of our ongoing business relationship with you, or otherwise perform our contract with you.
  • Detect security incidents, protect against malicious, deceptive, fraudulent, or illegal activity, or prosecute those responsible for such activities.
  • Debug products to identify and repair errors that impair existing intended
  • Exercise free speech, ensure the right of another consumer to exercise their free speech rights, or exercise another right provided for by law.
  • Comply with the California Electronic Communications Privacy Act (Cal. Penal Code § 1546 etc.).
  • Engage in public or peer-reviewed scientific, historical, or statistical research in the public interest that adheres to all other applicable ethics and privacy laws, when the information’s deletion may likely render impossible or seriously impair the research’s achievement, if you previously provided informed consent.
  • Enable solely internal uses that are reasonably aligned with consumer expectations based on your relationship with us.
  • Comply with a legal obligation.
  • Make other internal and lawful uses of that information that are compatible with the context in which you provided consent.

Only you, or a person registered with the California Secretary of State that you authorize to act on your behalf, may make a verifiable consumer request related to your Personal Information. You may also make a verifiable consumer request on behalf of your minor child. You may only make a verifiable consumer request for access or data portability twice within a 12-month period. The verifiable consumer request must: (A) provide sufficient information that allows us to reasonably verify you are the person about whom we collected Personal Information or an authorized representative; and (B) describe your request with sufficient detail that allows us to properly understand, evaluate, and respond to it. We cannot respond to your request or provide you with Personal Information if we cannot verify your identity or authority to make the request and confirm the Personal Information relates to you. Making a verifiable consumer request does not require you to create an account with us. We will only use Personal Information provided in a verifiable consumer request to verify the requestor’s identity or authority to make the request.

We endeavor to respond to a verifiable consumer request within forty-five (45) days of its receipt. If we require more time (up to ninety (90) days), we will inform you of the reason and extension period in writing. If you have an account with us, we will deliver our written response to that account. If you do not have an account with us, we will deliver our written response by mail or electronically, at your option. Any disclosures we provide will only cover the 12-month period preceding the verifiable consumer request’s receipt. The response we provide will also explain the reasons we cannot comply with a request, if applicable. For data portability requests, we will select a format to provide your Personal Information that is readily usable and should allow you to transmit the information from one entity to another entity without hindrance. We do not charge a fee to process or respond to your verifiable consumer request unless it is excessive, repetitive, or manifestly unfounded. If we determine that the request warrants a fee, we will tell you why we made that decision and provide you with a cost estimate before completing your request.

Do Not Track Signals

We do not recognize or respond to browser-initiated Do Not Track signals.

Data Protection

We maintain reasonable administrative, physical, and technological measures to protect the confidentiality, privacy and security of your Personal Information, based on the nature of the information provided. Unfortunately, no website, server or database is completely secure or “hacker proof.” We therefore cannot guarantee that Personal Information you provide will not be disclosed, misused or lost by accident or by the unauthorized acts of others.

We retain Personal Information after we cease providing the Sites to you for the purpose of fraud monitoring, detection and prevention. We also retain Personal Information to comply with our tax, accounting, and financial reporting obligations, where we are required to retain the data by our contractual commitments. Where we retain data, we do so in accordance with any limitation periods and records retention obligations that are imposed by applicable law.  If you have consented to receive marketing materials from us, we will retain your Personal Information for as long as we have your consent to send you marketing materials. Additionally, we indefinitely retain data that is anonymized, de-identified, and/or aggregated in a manner that removes identifiable Personal Information from it.

Children Under 13

We do not knowingly collect or solicit personal information directly from anyone under the age of 13. If you are under 13, please do not send any information about yourself to us, including your name, address, telephone number, or email address. In the event that we learn that we have collected personal information from a child under age 13 we will delete that information as quickly as possible.

Links To Third Party Websites

Our Website or emails may contain links to third party websites to which we have no affiliation. We do not share your Personal Information with those websites and are not responsible for the privacy policies of any other website or their management of your Personal Information. We suggest you read the privacy policies on those third party websites.

Changes To This Privacy Policy

If any changes are made to this Policy, a notice will be posted as part of this Policy and on the Website, indicating the old and new content, as well as the date of the last update. Your continued use of the Website after the changes are posted constitutes your agreement to the changes. If you do not agree to the changes, you must discontinue your use of the Website.

If you have questions or comments about this Policy, please contact us at:

Slapfish Restaurant Group, LLC
11750 Katy Freeway, Suite 1300
Houston, TX 77079