Last Updated: January 2025

Privacy Policy

1. Introduction

Welcome to Costa Vida. We are committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website, use our food delivery services, or interact with us in any way.

This policy applies to all services offered by Costa Vida, including our website (costa-vida.rest), mobile applications, delivery services, catering services, loyalty programs, and any related services or features we may offer.

By using our services, you agree to the collection and use of information in accordance with this policy. We want to be transparent about how we handle your personal information and we never sell your personal data to third parties.

Our Privacy Commitment: We never sell your personal data. Your information is used solely to provide you with the best food delivery experience possible and to improve our services.

2. Information We Collect

2.1 Information You Provide to Us

  • Personal Identification Information: Name, email address, phone number, delivery address, billing address
  • Account Information: Username, password, profile picture, purchase history, order preferences
  • Payment Information: Credit card details, billing information (stored securely with encryption)
  • Food Preferences and Dietary Information: Dietary restrictions, allergen information, favorite orders, special dietary requirements (vegan, halal, kosher, gluten-free, etc.)
  • Order and Delivery Information: Delivery instructions, order history, timing preferences, special requests
  • Loyalty Program Data: Rewards points, membership tier, participation in promotions
  • Table Reservation Information: Reservation details, party size, special occasions
  • Catering Event Details: Event size, location, menu preferences, contact information
  • Communication Data: Contact form submissions, customer reviews, feedback, chat messages, support tickets
  • Marketing Preferences: Email subscription preferences, promotional communication choices

2.2 Information Automatically Collected

  • Device Information: IP address, browser type and version, operating system, device identifiers
  • Usage Data: Pages visited, time spent on site, clicks, search queries, referring websites
  • Location Information: Approximate location from IP address, precise location if you enable location services
  • Cookie Data: Session identifiers, user preferences, analytics data, advertising identifiers
  • Performance Data: Page load times, error reports, crash data

2.3 Information from Third Parties

  • Social Media: Profile information if you connect social media accounts
  • Payment Processors: Transaction confirmation and fraud detection information
  • Delivery Partners: Delivery status updates, driver information
  • Marketing Partners: Campaign performance data, audience insights
  • Data Aggregators: Demographic information for market research (anonymized)

3. How We Use Your Information

3.1 Service Provision

  • Order Processing: Processing and fulfilling your food orders, coordinating delivery
  • Account Management: Creating and maintaining your account, authentication, security
  • Customer Support: Responding to inquiries, resolving issues, providing assistance
  • Service Improvement: Analyzing usage patterns to optimize our website, menu, and delivery process
  • Personalization: Customizing your experience based on preferences and order history

3.2 Communication

  • Order Notifications: Confirmation emails, delivery updates, receipt information
  • Customer Support: Responding to your questions and providing assistance
  • Important Notices: Service changes, policy updates, security alerts
  • Marketing Communications: Promotional emails, special offers, new menu items (only with your consent)
  • Surveys and Feedback: Requesting reviews and feedback to improve our services

3.3 Marketing and Analytics

  • Personalized Advertising: Showing relevant ads based on your preferences and behavior
  • Traffic Analysis: Understanding how visitors use our website to improve functionality
  • Campaign Measurement: Evaluating the effectiveness of our marketing efforts
  • Market Research: Developing new products and services based on customer insights
  • Trend Analysis: Identifying popular menu items and peak ordering times

3.4 Legal Compliance and Protection

  • Legal Obligations: Complying with applicable laws and regulations
  • Fraud Prevention: Detecting and preventing fraudulent activities
  • Safety and Security: Protecting the rights, property, and safety of our customers and employees
  • Dispute Resolution: Resolving legal disputes and enforcing agreements

4. Information Sharing and Disclosure

4.1 Service Providers

We work with trusted third-party service providers to deliver our services:

  • Payment Processors: Secure handling of payment transactions and fraud prevention
  • Delivery Companies: Coordinating food delivery to your location
  • Cloud Storage Providers: Secure data storage and backup services
  • Email Marketing Services: Sending promotional emails and newsletters
  • Analytics Tools: Understanding website usage and improving user experience
  • Customer Support Platforms: Managing customer inquiries and support tickets

4.2 Legal Requirements

We may disclose your information when required by law or to protect our legal rights:

  • In response to court orders, subpoenas, or other legal processes
  • To comply with applicable laws and regulations
  • To protect the rights, property, or safety of Costa Vida, our customers, or others
  • In connection with investigations of fraud or other illegal activities
  • During emergencies when disclosure is necessary to protect someone's safety

4.3 Business Transfers

If Costa Vida is involved in a merger, acquisition, or sale of assets, your personal information may be transferred as part of that transaction. We will:

  • Notify you before your personal information is transferred
  • Ensure the new owner follows this privacy policy
  • Give you the opportunity to opt out if the new privacy policy is significantly different

4.4 With Your Consent

We may share your information for other purposes with your explicit consent, such as:

  • Sharing reviews or testimonials (with your permission)
  • Participating in marketing campaigns or contests
  • Connecting with third-party apps or services you choose to integrate

5. Data Security

5.1 Technical Security Measures

  • Encryption: All sensitive data is encrypted using industry-standard SSL/TLS encryption during transmission
  • Secure Storage: Personal information is stored on secure servers with restricted access
  • Firewall Protection: Advanced firewall systems protect against unauthorized access
  • Access Controls: Strict access controls ensure only authorized personnel can access your data
  • Regular Monitoring: 24/7 security monitoring to detect and respond to threats
  • Data Backups: Regular secure backups to prevent data loss

5.2 Organizational Security Measures

  • Employee Training: Regular security awareness training for all staff
  • Data Handling Procedures: Strict policies governing how personal data is processed
  • Confidentiality Agreements: All employees and third parties sign confidentiality agreements
  • Incident Response Plan: Comprehensive procedures for responding to security incidents
  • Security Audits: Regular third-party security assessments and penetration testing

5.3 Your Security Responsibilities

  • Use strong, unique passwords for your account
  • Don't share your login credentials with others
  • Log out of your account on shared or public computers
  • Be cautious of phishing emails or suspicious links
  • Report any unauthorized account access immediately
Security Breach Notification: In the unlikely event of a data breach that affects your personal information, we will notify you and relevant authorities promptly in accordance with applicable laws.

6. Cookies and Tracking Technologies

We use various cookies and tracking technologies to improve your experience on our website:

Type Purpose Duration
Essential Cookies Basic site functions, login state, shopping cart Session
Functional Cookies User preferences, language settings, location Up to 1 year
Analytics Cookies Usage analysis, performance monitoring, improvement Up to 2 years
Marketing Cookies Personalized advertising, campaign tracking Up to 1 year

Tracking Technologies Used:

  • Google Analytics: Traffic analysis and user behavior insights
  • Facebook Pixel: Advertising effectiveness measurement
  • Web Beacons: Email open rates and engagement tracking
  • Local Storage: Storing user preferences in your browser
  • Session Storage: Temporary data storage during your visit

Cookie Management:

You can control cookies through your browser settings. Most browsers allow you to:

  • View what cookies are stored on your device
  • Delete existing cookies
  • Block cookies from specific sites
  • Block all cookies

Please note that disabling certain cookies may affect the functionality of our website.

7. Your Rights (GDPR/CCPA Compliance)

Depending on your location, you may have the following rights regarding your personal information:

7.1 Right of Access

You have the right to request information about the personal data we hold about you, including:

  • What personal data we process
  • The purposes of processing
  • Categories of third parties with whom we share data
  • How long we retain your data

7.2 Right to Rectification

You can request that we correct any inaccurate or incomplete personal data we hold about you.

7.3 Right to Erasure (Right to be Forgotten)

You may request deletion of your personal data in certain circumstances, such as:

  • The data is no longer necessary for the original purpose
  • You withdraw consent and there's no other legal basis for processing
  • The data has been unlawfully processed

7.4 Right to Restrict Processing

You may request that we limit how we use your personal data in certain situations.

7.5 Right to Data Portability

You can request a copy of your personal data in a machine-readable format and have it transferred to another service provider.

7.6 Right to Object

You may object to processing of your personal data, especially for direct marketing purposes.

7.7 Right Against Automated Decision-Making

You have the right not to be subject to decisions based solely on automated processing that significantly affects you.

How to Exercise Your Rights:

To exercise any of these rights, please contact us using the information in the Contact section. We will respond to your request within 30 days.

8. Children's Privacy

Our services are not intended for children under the age of 16. We do not knowingly collect personal information from children under 16.

  • If we discover that we have collected personal information from a child under 16, we will delete it immediately
  • If you are a parent or guardian and believe your child has provided us with personal information, please contact us
  • We take additional precautions to protect children's privacy and comply with applicable laws

9. International Data Transfers

9.1 Protection Measures

When we transfer your personal data internationally, we ensure adequate protection through:

  • Adequacy Decisions: Transfers to countries with adequate data protection laws
  • Standard Contractual Clauses: EU-approved contractual safeguards
  • Data Processing Agreements: Contractual obligations with third parties
  • Security Measures: Technical and organizational safeguards during transfer
  • Regular Audits: Ongoing compliance monitoring

9.2 Transfer Destinations

Your data may be transferred to and processed in:

  • United States (for cloud storage and analytics)
  • European Union (for data analytics and marketing)
  • Other countries as necessary for service provision, always with appropriate safeguards

10. Data Retention Periods

Information Type Retention Period Reason
Account Information 6 months after account deletion Legal obligations, dispute resolution
Purchase History 7 years Tax and accounting requirements
Marketing Consent 3 months after withdrawal Consent record keeping
Website Usage Logs Up to 2 years Security, analytics, improvement
Customer Support Records 3 years Service quality improvement
Payment Information As required by payment processors Fraud prevention, chargebacks
Delivery Information 1 year Order history, customer service
Loyalty Program Data Duration of membership + 2 years Program administration, benefits

Safe Data Disposal:

When we delete your data, we ensure:

  • Complete electronic deletion making data unrecoverable
  • Physical destruction of any paper records
  • Removal from backup systems within reasonable timeframes
  • Documented disposal procedures for audit purposes

11. Third-Party Links

Our website and services may contain links to third-party websites, applications, or services:

  • We are not responsible for the privacy practices of third-party sites
  • We encourage you to review the privacy policies of any third-party sites you visit
  • This Privacy Policy applies only to Costa Vida services
  • Third-party sites may collect information about you independently
  • Use caution when providing personal information to third parties

12. Policy Changes

12.1 Change Notification

We may update this Privacy Policy from time to time. When we make changes, we will:

  • Post a prominent notice on our website
  • Send email notifications to registered users about significant changes
  • Display pop-up notifications when you log into your account
  • Request explicit consent for any material changes affecting your rights

12.2 Checking for Changes

  • The latest version of this policy is always available on our website
  • Check the "Last Updated" date at the top of this policy
  • Continued use of our services after changes constitutes acceptance
  • If you disagree with changes, you may stop using our services

13. Contact Information

Contact Costa Vida

Company: Costa Vida

Address: 2944 E 12th St Unit A, Austin, TX 78702, USA

Phone: +26 974 189 2527

Email: [email protected]

Business Hours: Monday - Friday: 9:00 AM - 6:00 PM CST

Response Time: We respond to all privacy inquiries within 3 business days

13.1 Filing Complaints

If you have concerns about how we handle your personal information:

  • Contact us first using the information above for direct resolution
  • If unsatisfied with our response, you may contact your local data protection authority
  • EU residents may contact their national supervisory authority
  • California residents may contact the California Attorney General's office

14. Withdrawal of Consent

14.1 Marketing Consent Withdrawal

You can withdraw consent for marketing communications at any time:

  • Click the "Unsubscribe" link in any marketing email
  • Update your preferences in your account settings
  • Contact our customer support team
  • Send an email to [email protected] with "Unsubscribe" in the subject line

14.2 Account Deletion

To delete your account and personal information:

  1. Log into your account and go to account settings
  2. Select "Delete Account" option
  3. Follow the confirmation process
  4. Or contact customer support for assistance

Note: Some information may be retained for legal compliance as outlined in our retention policy.

15. Conclusion

At Costa Vida, we are committed to protecting your privacy and being transparent about how we handle your personal information. We understand that trust is fundamental to our relationship with you, and we work hard every day to earn and maintain that trust.

Your privacy matters to us, and we continuously review and improve our privacy practices to ensure we meet the highest standards. We believe that respecting your privacy is not just a legal obligation, but a core value that guides everything we do.

If you have any questions about this Privacy Policy or how we handle your personal information, please don't hesitate to contact us. We're here to help and ensure you feel confident about using our services.

Thank you for choosing Costa Vida and trusting us with your personal information. We look forward to serving you delicious food while protecting your privacy every step of the way.

Remember: This Privacy Policy was last updated in January 2025. Please check back regularly for updates, as we may modify this policy to reflect changes in our practices or applicable laws.