Free Refund Policy Generator for Restaurant / Food — CCPA Compliant

🇺🇸 Key CCPA Requirements

The California Consumer Privacy Act (CCPA), enhanced by the CPRA in 2023, gives California residents extensive rights over their personal data. It applies to businesses that meet certain revenue or data processing thresholds. Fines range from $2,500 per unintentional violation to $7,500 per intentional violation.

• Right to know what personal information is collected, used, shared, or sold
• Right to delete personal information collected
• Right to opt-out of the sale or sharing of personal information
• Right to non-discrimination for exercising CCPA rights
• "Do Not Sell or Share My Personal Information" link required if applicable
• Privacy policy must list categories of personal information collected and sold in the past 12 months
• Annual privacy policy updates required

Restaurant / Food — Specific Considerations

Food businesses with online ordering, delivery apps, or loyalty programs collect customer contact information, order history, location data, and payment details. Allergy information is particularly sensitive — treating it as health data means it may require heightened protection under GDPR and other regulations.

Data typically collected by Restaurant / Food businesses: name, delivery address, phone number, payment details, order history, dietary preferences and allergy information

• Allergy and dietary data as sensitive data
• Third-party delivery platform data sharing (DoorDash, Uber Eats)
• Loyalty program data and expiry
• Location tracking for delivery
• Marketing preferences and opt-out