630-350-9550

Privacy Policy for Mamma Maria’s Pizzeria

Effective Date: 01/04/2020
Last updated: 10/7/2025

Welcome to Mamma Maria’s Pizzeria (“we”, “us”, “our”). We respect your privacy and are committed to protecting your personal information. This Privacy Policy describes how we collect, use, disclose, store, and protect information when you visit or interact with our website (https://mmpizzeria.com) (the “Site”), place orders, interact with us in person or online, or otherwise engage with our services (collectively, “Services”).

By using our Site or Services or by providing us information, you consent to the practices described in this Privacy Policy.

1. Information We Collect

We collect personal and non-personal information in various ways. Below are the main categories of information we collect and how.

a) Information You Provide Directly

When you interact with us (e.g. placing an order, making a reservation, signing up for newsletters or promotions, contacting us), you may provide:

  • Contact information: name, email address, phone number, postal address (e.g. for delivery)

  • Account credentials: username, password (if you create an account)

  • Payment information: credit card number, billing address (processed via third-party payment processors)

  • Order / transaction details: what you ordered, delivery instructions, order history

  • Communications: messages, feedback, reviews, survey responses

  • Promotional preferences: whether you agree to receive marketing emails, SMS, or other communications

  • Other optional information: e.g. notes, preferences, special instructions

b) Automatically Collected Information

When you visit our Site or use our Services, we may automatically collect:

  • Device and usage information: your IP address, browser type and version, device type, operating system, pages visited, referring URLs, timestamps, clickstream data, site analytics

  • Cookies and similar technologies: we (and third parties) use cookies, web beacons, pixel tags, local storage, and similar technologies to recognize your browser, remember preferences, improve the Site, analyze usage, and for marketing purposes

  • Log files: server logs including access times, pages viewed, errors, etc.

c) Information from Third Parties

We may receive information about you from third-party sources, such as:

  • Payment processors (confirmation, billing address)

  • Delivery or logistics partners

  • Marketing or analytics providers

  • Social media platforms if you interact via social login or share content

  • Public databases, vendors, or marketing partners

2. Use of Your Information

We use the information we collect for purposes including:

  • To process and fulfill orders (including payments, deliveries, refunds)

  • To manage your account, authenticate users, and provide customer support

  • To send you confirmations, receipts, order updates, and other transactional messages

  • To send you marketing communications, offers, newsletters, provided you have consented (you may opt out)

  • To personalize content, offers, and the user experience

  • To analyze, monitor, and improve our Site, Services, and business operations

  • To detect, prevent, or respond to fraud, security incidents, or misuse

  • To comply with legal obligations or enforce our legal rights

  • For any other legitimate business purpose disclosed to you

3. Sharing and Disclosure of Information

We do not sell your personal information. We may share or disclose your information under the following circumstances:

  • Service providers / vendors: third parties who help us operate our business (e.g. payment processors, delivery companies, hosting providers, email/SMS marketing, analytics) — they are only permitted to use information on our behalf

  • Legal and compliance: when required by law, subpoena, court order, or governmental request

  • Protection of rights: to protect our, your, or others’ rights, property, or safety

  • Business transfers: in connection with a merger, acquisition, reorganization, or sale of our assets (with notice)

  • Aggregated or de-identified data: which no longer identifies you individually

4. Cookies & Tracking Technologies; Advertising

  • We use cookies (session and persistent) and similar technologies to improve usability, remember preferences, analyze site performance, and for marketing.

  • We (or third-party partners) may use tracking technologies to serve interest-based (targeted) ads across other sites or social media.

  • You can usually control cookies through your browser settings (delete cookies, block new ones), but disabling cookies may limit certain features of the Site.

  • To opt out of targeted advertising (e.g. via Google Ads), you may use Google’s Ad Settings or other opt-out tools provided by ad networks.

5. Data Retention

We retain personal information only for as long as necessary to fulfill the purposes for which it was collected, or as required by law. When data is no longer needed, we securely delete, anonymize, or aggregate it.

6. Security

We take reasonable and appropriate measures (administrative, technical, and physical safeguards) to protect your information from unauthorized access, disclosure, alteration, or destruction. However, no internet transmission or storage method is 100% secure, and we cannot guarantee absolute security.

7. Data Breach Notification (Illinois)

Under Illinois law (e.g. the Personal Information Protection Act, 815 ILCS 530), if we become aware of a security breach involving personal information, we will notify affected Illinois residents in the most expedient time possible and without unreasonable delay. IL Financial Regulation+1

If a breach affects more than 500 Illinois residents, we will also notify the Illinois Attorney General. Centraleyes+1

8. Biometric Data & Illinois BIPA

If we (hypothetically) collect biometric identifiers (e.g. fingerprints, facial scans), Illinois law (Biometric Information Privacy Act, BIPA) imposes special requirements:

  • We must first inform you in writing that we are collecting biometric data, the purpose, how long we’ll retain it, and obtain your informed consent. Illinois General Assembly+1

  • We must provide a retention schedule and disposal guidelines and destroy biometric data once purpose is satisfied or within three years of last interaction (unless otherwise required). Illinois General Assembly

  • We cannot sell, lease, or profit from biometric data. Illinois General Assembly

If you believe we have collected biometric information improperly, you may have a right to legal recourse under BIPA.

9. Children’s Privacy

Our Site and Services are not intended for children under age 13. We do not knowingly collect personal information from children under 13. If we discover that we have inadvertently collected such information, we will promptly delete it.

10. Your Rights & Choices

Depending on your location and applicable law, you may have rights such as:

  • Access / obtain a copy of the personal data we hold about you

  • Correct or update inaccurate or incomplete data

  • Request deletion of your data (subject to legal exceptions)

  • Opt out of marketing or promotional communications

  • Object to or restrict certain processing

  • Withdraw consent (where processing is based on consent)

  • Right of non-discrimination for exercising privacy rights

To exercise these rights, please contact us (see Section 12 below). We may need to verify your identity before fulfilling a request.

11. Third-Party Partners

We may partner with third-party advertisers to serve ads, including targeted ads, who collect certain information, including Personal Information, when you visit our websites or apps. These third parties may use cookies or pixels to collect such data during your visit to our property in order to help show you more relevant advertisements on other websites and other e-forms of media. We also disclose Personal Information to third parties for purposes of personalization, modeling, customer onboarding, and data linkage including for measurement and analytics on campaign performance. Mamma Maria’s may share consumer data (cookie or mobile ad ID) with unaffiliated third parties for targeted advertising. This includes states such as VA, CO, and CT.” 

12. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact:

Mamma Maria’s Pizzeria
Address: 438 S York Rd, Bensenville, IL 60106
Email: mmpizzeria438@gmail.com
Phone: 630-350-9550

You may also reach out to us via the Contact page on our Site.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we do, we will post the revised version on this page with the “Last updated” date. Your continued use of our Site or Services following changes constitutes your acceptance of the revised policy.