Privacy Policy

Effective Date: June 12, 2026 | Last Updated: June 12, 2026

This Privacy Policy describes how Wings Over ("we," "us," "our," or "the Company") collects, uses, discloses, and safeguards your personal information when you visit our website wingsovereat.click, place orders, use our services, or otherwise interact with us. Please read this policy carefully. By accessing or using our website and services, you acknowledge that you have read, understood, and agree to the practices described herein.

We are committed to protecting your privacy and handling your personal data in a transparent, lawful, and responsible manner, in full compliance with applicable United States privacy laws, including the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA), the Federal Trade Commission Act (FTC Act), and any other applicable state or federal privacy regulations.

1. Who We Are

Wings Over is a food service business operating in the United States. We provide food ordering, delivery, and related culinary services to customers through our website and other channels.

Business Name	Wings Over
Website	wingsovereat.click
Email Address	[email protected]
Country of Operation	United States

For any questions, concerns, or requests relating to this Privacy Policy or your personal data, please contact us at the details provided above or in the Contact Us section at the end of this document.

2. Information We Collect

We collect various categories of personal information depending on how you interact with our website, services, and communications. The types of information we collect include, but are not limited to, the following:

2.1 Personal Identification Information

When you create an account, place an order, make a reservation, sign up for our newsletter, or contact us directly, we may collect:

Full name
Email address
Phone number
Mailing and delivery address
Billing address
Date of birth (where required for age verification purposes)
Username and password (for registered accounts)
Profile photo (if voluntarily submitted)

2.2 Payment and Transaction Information

When you make a purchase through our website, we collect information necessary to process your payment, including:

Credit or debit card type and last four digits
Billing address associated with the payment method
Order history, including items purchased, amounts, and dates
Transaction identifiers and confirmation numbers

Please Note: Full payment card details (such as complete card numbers, CVV codes) are processed directly by our third-party payment processors and are not stored on our servers. We comply with applicable Payment Card Industry Data Security Standards (PCI-DSS).

2.3 Usage Data and Technical Information

When you visit wingsovereat.click, we automatically collect certain technical information through cookies, web beacons, pixels, and similar tracking technologies, including:

IP address and approximate geographic location derived from IP
Browser type and version
Operating system and device type
Referring URL (the page that directed you to our site)
Pages viewed, links clicked, and time spent on pages
Search queries entered on our website
Session duration and frequency of visits
Error logs and crash reports

2.4 Device Information

We may collect information about the device you use to access our services, such as:

Device model and manufacturer
Unique device identifiers
Mobile network information
Screen resolution and language settings
Time zone settings

2.5 Communications and Customer Support Data

When you contact us via email, phone, online forms, or any other channel, we collect:

The content of your messages or inquiries
Your contact information used during the communication
Records of our correspondence with you
Feedback, reviews, and ratings you submit

2.6 Marketing and Preference Data

With your consent where required, we may collect:

Dietary preferences and food allergies (if provided voluntarily)
Marketing communication preferences (opt-ins and opt-outs)
Survey responses and promotional participation records
Loyalty program participation data

2.7 Information from Third Parties

We may receive information about you from third-party sources such as:

Social media platforms, if you choose to connect your social account or interact with our social media pages
Third-party delivery platforms or partner services
Analytics providers who supplement our data to improve service delivery
Fraud prevention and identity verification services

3. How We Use Your Information

We use the personal information we collect for legitimate business purposes, including the following:

3.1 Service Provision and Order Fulfillment

To process and fulfill your food orders, including preparation and delivery coordination
To manage your account and provide customer support
To send order confirmations, receipts, and status updates
To facilitate payments and handle refunds or disputes
To address food allergy or dietary requests you have submitted

3.2 Communication

To respond to your questions, comments, or complaints
To send transactional communications related to your orders or account
To send promotional offers, newsletters, and marketing materials (where you have consented or where permitted by applicable law)
To notify you of changes to our services, policies, or terms

3.3 Analytics and Service Improvement

To analyze usage trends and understand how customers interact with our website
To monitor and improve the performance and security of our website and services
To develop new menu items, features, or services based on customer feedback and behavior
To conduct internal research and business analysis

3.4 Marketing and Personalization

To personalize your experience on our website, including displaying relevant menu items or offers
To deliver targeted advertisements through our website and third-party platforms (where permitted)
To measure the effectiveness of our marketing campaigns
To administer contests, promotions, or loyalty programs

3.5 Legal Compliance and Safety

To comply with applicable federal, state, and local laws and regulations
To enforce our Terms of Service and other agreements
To detect, investigate, and prevent fraud, unauthorized access, or other harmful activities
To protect the rights, property, or safety of our customers, employees, or third parties
To respond to lawful requests from government authorities or courts

4. Cookies and Tracking Technologies

Our website uses cookies and similar tracking technologies to enhance your browsing experience, remember your preferences, and collect analytical data. Cookies are small text files stored on your device when you visit a website.

4.1 Types of Cookies We Use

Cookie Type	Purpose
Strictly Necessary Cookies	Required for the website to function properly, including maintaining your session and processing orders.
Performance / Analytics Cookies	Collect information about how visitors use our website to help us improve its performance and user experience.
Functional Cookies	Remember your preferences and settings, such as language, location, and saved cart items.
Marketing / Targeting Cookies	Track your online activity to deliver personalized advertisements and measure campaign effectiveness.

You may control or disable cookies through your browser settings. Please note that disabling certain cookies may affect the functionality of our website. For more detailed information about the cookies we use and your choices, please refer to our Cookie Policy, which is available on our website.

5. Sharing Your Information with Third Parties

We do not sell, rent, or trade your personal information to unaffiliated third parties for their own marketing purposes without your explicit consent. However, we may share your information with trusted third parties in the following circumstances:

5.1 Service Providers and Business Partners

We engage third-party companies and individuals to perform functions on our behalf, such as:

Payment processors — to securely handle financial transactions
Delivery services — to fulfill food delivery orders
Email and SMS marketing platforms — to send communications with your consent
Analytics providers (e.g., Google Analytics) — to help us understand website usage
Cloud hosting and IT infrastructure providers — to store and manage data securely
Customer support software providers — to help manage inquiries and support tickets
Fraud prevention services — to protect against unauthorized or fraudulent activity

These service providers are contractually obligated to use your information solely for the purposes we designate, to maintain appropriate security measures, and to comply with applicable privacy laws.

5.2 Legal and Regulatory Disclosures

We may disclose your personal information if required to do so by law, regulation, or legal process, including:

In response to a court order, subpoena, or governmental request
To comply with the FTC Act, CCPA/CPRA, or other applicable U.S. laws
To investigate or report illegal activity
To enforce our legal rights or defend against legal claims

5.3 Business Transfers

In the event that Wings Over undergoes a merger, acquisition, restructuring, asset sale, or bankruptcy proceeding, your personal information may be transferred as part of that transaction. We will notify you via email or a prominent notice on our website if such a transfer results in a material change to this Privacy Policy.

5.4 With Your Consent

We may share your personal information with other third parties when you have provided explicit consent to such disclosure, such as when participating in co-branded promotions or partner loyalty programs.

California Residents — Important Notice: Under the California Consumer Privacy Act (CCPA) as amended by the CPRA, California residents have the right to opt out of the "sale" or "sharing" of their personal information. Wings Over does not sell personal information for monetary consideration. However, certain advertising or analytics activities may constitute "sharing" under California law. To exercise your opt-out rights, please see Section 8 of this policy.

6. Data Security

We take the security of your personal information seriously and implement a range of technical, administrative, and physical safeguards to protect your data against unauthorized access, use, disclosure, alteration, or destruction.

6.1 Security Measures We Employ

Encryption: We use industry-standard SSL/TLS encryption to protect data transmitted between your browser and our servers.
Access Controls: Access to personal data is restricted to authorized personnel who require it to perform their job functions, and is governed by role-based access controls.
Secure Payment Processing: Payment information is handled by PCI-DSS compliant payment processors.
Regular Security Assessments: We conduct periodic reviews of our data collection, storage, and processing practices to identify and address potential vulnerabilities.
Data Minimization: We only collect and retain the personal information necessary for the purposes described in this policy.
Incident Response: We maintain a data breach response plan to promptly address and notify affected individuals and authorities in the event of a security incident, as required by applicable law.

While we strive to use commercially acceptable means to protect your personal information, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security, and we encourage you to take steps to protect your own account credentials and personal information.

7. Data Retention

We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

Data Category	Retention Period
Account information	For the duration of your account, plus up to 3 years after account deletion
Order and transaction records	Up to 7 years (for tax, accounting, and legal compliance purposes)
Customer support communications	Up to 3 years from the date of last interaction
Marketing preferences and consent records	Until you withdraw consent, plus 2 years for compliance records
Website usage and analytics data	Up to 26 months (anonymized data may be retained longer)
Legal and compliance records	As required by applicable federal and state law

When your personal information is no longer needed, we will securely delete or anonymize it in accordance with our internal data retention procedures and applicable legal requirements.

8. Your Privacy Rights

Depending on your state of residence, you may have certain rights regarding your personal information. We are committed to honoring these rights in accordance with applicable U.S. privacy law.

8.1 Rights Available to All U.S. Customers

Right to Know: You have the right to request information about the categories and specific pieces of personal information we have collected about you, the sources of collection, the purposes of use, and the categories of third parties with whom we share it.
Right to Access: You may request a copy of the personal information we hold about you.
Right to Correction: You have the right to request that we correct inaccurate or incomplete personal information.
Right to Deletion: You may request that we delete your personal information, subject to certain exceptions (such as legal obligations, fraud prevention, or completing a transaction).
Right to Opt Out of Marketing: You may opt out of receiving promotional communications from us at any time by following the unsubscribe instructions in any marketing email or by contacting us directly.

8.2 Additional Rights for California Residents (CCPA/CPRA)

If you are a resident of California, you have additional rights under the CCPA and CPRA, including:

Right to Opt Out of Sale or Sharing of Personal Information: You may direct us not to sell or share your personal information with third parties for cross-context behavioral advertising.
Right to Limit Use of Sensitive Personal Information: Where we collect sensitive personal information (as defined under CPRA), you have the right to limit its use to necessary purposes.
Right to Data Portability: You may request that we provide your personal information in a portable, readily usable format that allows you to transmit it to another entity.
Right to Non-Discrimination: We will not discriminate against you for exercising any of your CCPA/CPRA rights. We will not deny you services, charge different prices, or provide a different level of quality because you exercised your privacy rights.

8.3 How to Submit a Privacy Rights Request

To exercise any of your privacy rights, please contact us using one of the following methods:

Email: [email protected]
Website: wingsovereat.click

We will acknowledge your request within 10 business days and respond substantively within 45 calendar days. If we require additional time (up to 90 days total), we will notify you in writing with an explanation. We may need to verify your identity before processing your request to protect your information from unauthorized access.

8.4 Authorized Agents

California residents may designate an authorized agent to submit privacy rights requests on their behalf. The agent must provide written authorization signed by you, and we may still require you to verify your own identity directly to ensure security.

9. Children's Privacy

Age Restriction: Our website and services are intended exclusively for individuals who are 18 years of age or older. We do not knowingly collect personal information from children under the age of 13, or from minors under the age of 18 without verifiable parental consent.

In compliance with the Children's Online Privacy Protection Act (COPPA) and other applicable laws, we do not knowingly collect, use, or disclose personal information from children under the age of 13. If we discover that we have inadvertently collected personal information from a child under 13, we will take immediate steps to delete such information from our records.

If you are a parent or guardian and believe that your child has provided us with personal information without your consent, please contact us immediately at [email protected] so that we can take appropriate action.

Our food ordering services may involve alcohol-related products or content in certain regions, and as such, we encourage all users to confirm they meet the minimum age requirements for all products they order.

10. International Data Transfers

Wings Over is based in the United States and primarily processes personal information within the United States. However, some of our third-party service providers may be located in or operate from other countries, which means that your personal data may be transferred to, stored, or processed outside of the United States.

When we transfer personal information internationally, we take steps to ensure that appropriate safeguards are in place to protect your information in accordance with applicable privacy laws. These safeguards may include:

Contractual clauses with third-party processors requiring equivalent levels of data protection
Ensuring that recipient countries or entities provide adequate protections as recognized by applicable U.S. law
Implementing technical and organizational measures to protect data during international transfers

By using our website or services, you acknowledge that your personal information may be transferred to and processed in countries other than your country of residence, including the United States, which may have different data protection laws than your jurisdiction.

11. Third-Party Websites and Links

Our website may contain links to third-party websites, social media platforms, delivery partner portals, or other external resources. This Privacy Policy applies only to our website and services at wingsovereat.click. We are not responsible for the privacy practices or content of third-party websites.

We encourage you to review the privacy policies of any third-party websites you visit, particularly those involved in processing your payment, delivery, or other services related to your order. Clicking on a third-party link does not imply our endorsement of their privacy practices.

12. Do Not Track Signals

Some web browsers offer a "Do Not Track" (DNT) feature that sends signals to websites requesting that they do not track the user's online activities. Currently, there is no universally accepted standard for how websites should respond to DNT signals. At this time, our website does not respond to browser-initiated DNT signals.

However, you may adjust your cookie preferences using the cookie settings on our website, or through your browser settings, to limit certain types of tracking. California residents also have the right to opt out of the sale or sharing of personal information under the CCPA/CPRA as described in Section 8 above.

13. California Shine the Light Law

California Civil Code Section 1798.83 (the "Shine the Light" law) permits California residents to request and obtain from us, once per year and free of charge, information about the categories of personal information we disclosed to third parties for their direct marketing purposes, and the names and addresses of those third parties, in the preceding calendar year.

If you are a California resident and wish to make such a request, please contact us at [email protected] with the subject line "California Shine the Light Request." We will provide the required information within 30 days of receiving a verified request.

14. Your Opt-Out Choices

We provide you with meaningful choices over how we use your personal information for marketing purposes:

14.1 Email Marketing

If you no longer wish to receive promotional emails from us, you may opt out by:

Clicking the "Unsubscribe" link at the bottom of any marketing email we send you
Emailing us at [email protected] with your request

Please note that even if you opt out of marketing communications, you will continue to receive transactional emails related to your orders and account.

14.2 SMS/Text Marketing

If you have opted into SMS marketing messages, you may opt out at any time by replying "STOP" to any text message we send, or by contacting us directly.

14.3 Analytics and Advertising

You may opt out of Google Analytics by installing the Google Analytics Opt-out Browser Add-on. You may also opt out of interest-based advertising through the Digital Advertising Alliance at aboutads.info or the Network Advertising Initiative at networkadvertising.org.

15. How to File a Complaint

If you have concerns about how we handle your personal information and are not satisfied with our response to your inquiry or rights request, you have the right to file a complaint with the appropriate data protection authority.

15.1 Filing a Complaint in the United States

In the United States, privacy-related complaints may be submitted to the following authorities:

Federal Trade Commission (FTC): The FTC enforces federal consumer protection laws, including those relating to unfair or deceptive privacy practices. You may file a complaint at reportfraud.ftc.gov or call 1-877-FTC-HELP (1-877-382-4357).
California Attorney General (for California Residents): California residents may file a complaint regarding CCPA/CPRA violations with the California Privacy Protection Agency (CPPA) or the California Attorney General's Office at oag.ca.gov/privacy/ccpa.
State Attorney General Offices: Residents of other states may contact their respective state Attorney General's office regarding state-specific privacy law violations.

We encourage you to contact us first at [email protected] before filing a complaint with a regulatory authority, as we are committed to resolving your concerns promptly and fairly.

16. Changes to This Privacy Policy

We reserve the right to update or modify this Privacy Policy at any time to reflect changes in our practices, legal obligations, or for other operational reasons. When we make material changes to this policy, we will:

Update the "Last Updated" date at the top of this page
Post a prominent notice on our website homepage or during your next login session
Where required by law, provide direct notification via email

Your continued use of our website and services following the posting of an updated Privacy Policy constitutes your acknowledgment and acceptance of the changes. We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

17. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or the way we handle your personal information, please do not hesitate to contact us:

Wings Over — Privacy Inquiries

Business Name	Wings Over
Email Address	[email protected]
Website	wingsovereat.click
Country	United States

We will make every effort to respond to your privacy inquiries within 10 business days. For formal privacy rights requests (such as data access, correction, or deletion), please allow up to 45 calendar days for a full response, as described in Section 8 above.

Thank you for trusting Wings Over with your personal information. Your privacy is important to us, and we are dedicated to protecting it with integrity, transparency, and care.