Privacy Policy

Welcome to East Coast Wings. We are committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website eastcoastcafe.rest, place orders, interact with our services, or otherwise engage with us. Please read this policy carefully. If you disagree with the terms of this Privacy Policy, please discontinue use of our website and services immediately.

We take your privacy seriously. If you have any questions or concerns about this policy or our practices regarding your personal information, please contact us using the details provided at the end of this document.


1. About Us

East Coast Wings is a food service business operating in the United States. We are dedicated to serving our customers with quality food and an exceptional dining experience. Our contact information is as follows:

Business Name East Coast Wings
Website eastcoastcafe.rest
Email [email protected]

2. Scope of This Privacy Policy

This Privacy Policy applies to all personal information we collect through:

  • Our website located at eastcoastcafe.rest
  • Online food ordering systems and reservation platforms
  • Email, telephone, and written communications
  • Loyalty programs, promotions, and sweepstakes
  • In-person interactions at our restaurant locations
  • Mobile applications associated with our business
  • Third-party platforms through which we offer services (e.g., food delivery apps)

This policy does not apply to third-party websites, applications, or services that may be linked to from our website. We encourage you to review the privacy policies of any third-party services you access through links on our site.


3. Information We Collect

We collect several types of information in connection with the services we provide. The categories of information we collect include, but are not limited to, the following:

3.1 Personal Identification Information

When you create an account, place an order, make a reservation, sign up for our loyalty program, or contact us, we may collect:

  • Full name
  • Email address
  • Mailing address and delivery address
  • Phone number
  • Date of birth (for age verification and birthday promotions)
  • Username and password for online accounts
  • Profile photo (if you choose to upload one)

3.2 Payment and Financial Information

When you make purchases through our website or ordering platform, we collect:

  • Credit or debit card information (processed securely through our payment processor)
  • Billing address
  • Transaction history and order details
  • Digital wallet identifiers (e.g., Apple Pay, Google Pay)

Please note that we do not store your full credit card number on our servers. Payment card data is processed and secured by our certified PCI-DSS compliant third-party payment processors.

3.3 Order and Food Preference Information

  • Food orders, customizations, and preferences
  • Dietary restrictions and food allergen information you provide
  • Order history and frequency
  • Favorite items and saved preferences
  • Restaurant location preferences

3.4 Usage Data and Technical Information

When you visit our website or use our digital services, we automatically collect certain technical and usage information, including:

  • IP address
  • Browser type and version
  • Operating system
  • Device type, model, and unique device identifiers
  • Pages visited, links clicked, and navigation patterns
  • Time and date of your visit
  • Time spent on pages
  • Referring URLs (the website that directed you to ours)
  • Search queries entered on our website
  • Error logs and diagnostic data

3.5 Location Information

With your permission, we may collect precise or approximate location data to:

  • Help you find the nearest East Coast Wings location
  • Facilitate delivery orders to your location
  • Provide location-based promotions and offers

You can control location sharing through your device settings at any time.

3.6 Cookie and Tracking Technology Data

We use cookies, web beacons, pixel tags, and similar tracking technologies to collect information about your browsing activities. Please refer to Section 9 of this policy for more detailed information about our cookie practices.

3.7 Communications Data

When you contact us by email, phone, or through our contact form, we may retain records of:

  • The content of your messages and inquiries
  • Customer service interaction history
  • Feedback and reviews you submit
  • Survey responses

3.8 Marketing and Preference Data

  • Your marketing communication preferences
  • Responses to promotional emails and campaigns
  • Loyalty program membership data and rewards history
  • Participation in contests, sweepstakes, or special events

3.9 Information From Third Parties

We may receive information about you from third parties such as:

  • Food delivery platform partners (e.g., DoorDash, Uber Eats, Grubhub)
  • Social media platforms (if you connect your account or use social login features)
  • Analytics and advertising partners
  • Publicly available sources

4. How We Use Your Information

We use the personal information we collect for the following purposes:

4.1 Service Provision and Order Fulfillment

  • Processing and fulfilling your food orders, whether for dine-in, takeout, or delivery
  • Managing your online account and loyalty program membership
  • Facilitating reservations and seating arrangements
  • Processing payments and sending receipts
  • Communicating order confirmations, updates, and status notifications
  • Providing customer support and responding to your inquiries

4.2 Personalization and User Experience

  • Personalizing your experience on our website and app
  • Remembering your preferences, favorite orders, and dietary restrictions
  • Providing menu recommendations based on your order history
  • Displaying location-specific content and promotions

4.3 Marketing and Promotional Communications

  • Sending promotional emails, newsletters, and special offers (with your consent where required)
  • Administering contests, sweepstakes, loyalty rewards, and referral programs
  • Delivering targeted advertisements through our website and third-party platforms
  • Sending birthday and anniversary promotions
  • Notifying you about new menu items, seasonal offerings, and limited-time deals

You may opt out of marketing communications at any time by following the unsubscribe link in any email or by contacting us directly at [email protected].

4.4 Analytics and Business Improvement

  • Analyzing usage patterns and trends to improve our website, menu, and services
  • Conducting market research and customer satisfaction surveys
  • Monitoring and analyzing the effectiveness of marketing campaigns
  • Generating aggregated, anonymized statistical reports for internal business purposes

4.5 Safety, Security, and Legal Compliance

  • Verifying your identity and preventing fraudulent transactions
  • Detecting and preventing unauthorized access, data breaches, and other security incidents
  • Complying with applicable laws, regulations, and legal obligations
  • Responding to lawful requests from government authorities and law enforcement
  • Enforcing our Terms of Service and other agreements
  • Protecting the rights, property, and safety of East Coast Wings, our customers, and the public

4.6 Operational Purposes

  • Managing our day-to-day business operations
  • Staff training and quality assurance
  • Inventory and supply chain management
  • Accounting, auditing, and financial reporting

5. Legal Basis for Processing

Our processing of your personal information is based on one or more of the following lawful grounds, consistent with the requirements of applicable United States privacy laws, including the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA), and the Federal Trade Commission Act (FTC Act):

  • Contractual Necessity: Processing necessary to fulfill your orders, manage your account, or perform our contractual obligations to you.
  • Legitimate Business Interests: Processing necessary for our legitimate business interests, such as improving our services, preventing fraud, and marketing our products, provided these interests are not overridden by your privacy rights.
  • Legal Obligation: Processing necessary to comply with applicable laws and regulations.
  • Consent: Processing based on your explicit consent, such as for certain marketing communications or optional features.

6. Sharing Your Information With Third Parties

We do not sell, trade, or rent your personal information to third parties for their own marketing purposes. However, we may share your information in the following circumstances:

6.1 Service Providers and Business Partners

We work with trusted third-party service providers who assist us in operating our business and delivering our services. These providers are contractually obligated to handle your information securely and only for the purposes we specify. They include:

  • Payment Processors: To securely process credit and debit card transactions
  • Delivery Partners: Such as DoorDash, Uber Eats, and Grubhub, to fulfill delivery orders
  • Email Marketing Platforms: To manage and deliver our promotional communications
  • Analytics Providers: Such as Google Analytics, to help us understand how our website is used
  • Cloud Hosting and IT Service Providers: To store and manage our data securely
  • Customer Relationship Management (CRM) Systems: To manage customer accounts and communications
  • Point-of-Sale (POS) System Providers: To process in-restaurant and online orders
  • Loyalty Program Administrators: To manage rewards and membership programs

6.2 Legal Requirements and Law Enforcement

We may disclose your personal information if required to do so by law or in the good-faith belief that such action is necessary to:

  • Comply with a legal obligation, court order, or governmental request
  • Protect and defend the rights or property of East Coast Wings
  • Prevent or investigate possible wrongdoing in connection with our services
  • Protect the personal safety of users of our services or the public
  • Respond to an emergency that threatens personal safety

6.3 Business Transfers

In the event of a merger, acquisition, reorganization, bankruptcy, or sale of all or a portion of our assets, your personal information may be transferred as part of that transaction. We will notify you via email and/or a prominent notice on our website of any change in ownership or uses of your personal information.

6.4 Aggregated and Anonymized Data

We may share aggregated or anonymized information that cannot reasonably be used to identify you with third parties for research, marketing, analytics, and other business purposes.

6.5 With Your Consent

We may share your information with other third parties when we have your explicit consent to do so.


7. Data Security

We take the security of your personal information seriously and have implemented a range of technical, administrative, and physical safeguards designed to protect your data from unauthorized access, use, disclosure, alteration, or destruction. Our security measures include:

7.1 Technical Safeguards

  • Encryption: All data transmitted between your browser and our servers is encrypted using SSL/TLS technology (HTTPS). Payment card data is encrypted using industry-standard AES-256 encryption.
  • Firewalls: We use firewall technology to protect our network infrastructure from unauthorized access.
  • Secure Password Storage: User passwords are stored using bcrypt or equivalent one-way hashing algorithms.
  • Access Controls: We restrict access to personal data to authorized personnel on a need-to-know basis.
  • Multi-Factor Authentication (MFA): We use MFA for administrative access to sensitive systems.
  • Regular Security Audits: We conduct periodic vulnerability assessments and penetration testing.
  • PCI-DSS Compliance: Our payment processing meets Payment Card Industry Data Security Standards.

7.2 Administrative Safeguards

  • Employee training on data privacy and security best practices
  • Data processing agreements with all third-party service providers
  • Incident response plan for data breach management and notification
  • Regular review and updating of security policies and procedures

7.3 Physical Safeguards

  • Restricted physical access to servers and data processing facilities
  • Secure disposal of physical media containing personal information

8. Your Privacy Rights

Depending on your location within the United States, you may have specific rights regarding your personal information. We are committed to honoring these rights in compliance with applicable state and federal privacy laws, including the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA).

8.1 Right to Know and Access

You have the right to request that we disclose information about:

  • The categories and specific pieces of personal information we have collected about you
  • The categories of sources from which your information was collected
  • The business or commercial purpose for collecting your information
  • The categories of third parties with whom we share your information

8.2 Right to Correction

You have the right to request that we correct inaccurate personal information we hold about you. We will use commercially reasonable efforts to correct the information within 45 days of your request.

8.3 Right to Deletion

You have the right to request that we delete the personal information we have collected about you, subject to certain exceptions permitted by law (such as retaining information necessary to complete a transaction, detect fraud, comply with legal obligations, or exercise free speech rights).

8.4 Right to Data Portability

You have the right to receive a copy of your personal information in a structured, commonly used, and machine-readable format, and to transmit that information to another entity where technically feasible.

8.5 Right to Opt-Out of Sale or Sharing

Under the CCPA/CPRA, California residents have the right to opt out of the sale or sharing of their personal information for cross-context behavioral advertising. If we engage in such activities, we will provide a "Do Not Sell or Share My Personal Information" link on our website.

8.6 Right to Limit Use of Sensitive Personal Information

California residents have the right to request that we limit the use and disclosure of sensitive personal information (such as precise geolocation data, health information, or payment card details) to only what is necessary to perform the services requested.

8.7 Right to Non-Discrimination

We will not discriminate against you for exercising any of your privacy rights. We will not deny you services, charge you different prices, or provide a lower quality of service because you have exercised your rights under applicable privacy law.

8.8 Right to Opt-Out of Marketing

You have the right to opt out of receiving marketing communications from us at any time by:

  • Clicking the "unsubscribe" link in any marketing email
  • Contacting us at [email protected]
  • Updating your communication preferences in your online account settings

8.9 How to Exercise Your Rights

To exercise any of the rights described above, please submit a verifiable consumer request by:

We may need to verify your identity before processing your request. We will respond to verifiable consumer requests within 45 days. If we require more time (up to 90 days total), we will inform you of the reason and the extension in writing. We do not charge a fee to process or respond to verifiable consumer requests unless they are excessive, repetitive, or manifestly unfounded.

You may designate an authorized agent to make a request on your behalf. The authorized agent must provide written authorization from you, and we may still require you to directly verify your identity.


9. Cookie Policy

Our website uses cookies and similar tracking technologies to enhance your browsing experience, analyze website traffic, and deliver personalized content and advertising. Cookies are small text files that are placed on your device when you visit a website.

9.1 Types of Cookies We Use

Cookie Type Purpose Duration
Strictly Necessary Essential for website functionality, shopping cart, and secure login Session / Short-term
Performance/Analytics Track website usage and performance (e.g., Google Analytics) Up to 2 years
Functional Remember your preferences, language settings, and saved orders Up to 1 year
Marketing/Advertising Deliver relevant advertisements and track campaign effectiveness Up to 1 year

9.2 Managing Cookies

You can control and manage cookies through your browser settings. Most browsers allow you to block or delete cookies. However, please note that disabling certain cookies may affect the functionality of our website and your ability to place orders online. You may also opt out of certain third-party advertising cookies by visiting:

For more detailed information about our cookie practices, please refer to our full Cookie Policy available on our website at eastcoastcafe.rest.


10. Data Retention

We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. The criteria we use to determine our retention periods include:

Data Category Retention Period
Account and profile information Duration of account + 3 years after account closure
Order history and transaction records 7 years (for tax and legal compliance)
Payment information Processed by payment provider; we retain minimal records for 7 years
Customer service communications 3 years from the date of last contact
Marketing preferences and consent records Until you opt out + 3 years
Website usage and analytics data Up to 26 months
Cookie data As specified in our Cookie Policy (typically up to 2 years)
Legal and compliance records As required by applicable law (typically 7-10 years)

When personal information is no longer needed, we will securely delete or anonymize it in accordance with our data retention procedures and applicable legal requirements.


11. Children's Privacy

East Coast Wings does not knowingly solicit, collect, or use personal information from children under the age of 18. Our website is not designed for or directed at children. If you are a parent or guardian and believe that your child has provided us with personal information without your consent, please contact us immediately at [email protected].

Upon receiving a verified notification that we have collected personal information from a child under the age of 13, we will take prompt steps to delete such information in compliance with the Children's Online Privacy Protection Act (COPPA). For users between the ages of 13 and 17, we require parental or guardian consent for account registration and data collection where required by applicable law.

If you are under the age of 18, please do not submit any personal information through our website or services without the direct supervision and consent of a parent or legal guardian.


12. International Data Transfers

East Coast Wings is a United States-based business, and our primary data processing activities occur within the United States. However, some of our third-party service providers (such as cloud hosting providers, analytics platforms, and email marketing services) may process or store data in servers located outside the United States.

If your personal information is transferred to or processed in a country other than the United States, we will ensure that appropriate safeguards are in place to protect your information, including:

  • Contractual data processing agreements with service providers that include appropriate data protection clauses
  • Use of Standard Contractual Clauses (SCCs) approved by relevant authorities where applicable
  • Verification that service providers adhere to recognized data protection frameworks

By using our website and services, you acknowledge and consent to the potential transfer of your personal information to countries outside the United States, which may have different data protection laws than your country of residence. We will always handle your data in accordance with this Privacy Policy regardless of where it is processed.


13. Third-Party Links and Integrations

Our website may contain links to third-party websites, social media platforms, food delivery services, and other external services. These third-party websites have their own privacy policies, and we are not responsible for their privacy practices or the content of those sites. We encourage you to review the privacy policy of any third-party service before providing them with your personal information.

Our website may integrate with the following types of third-party services:

  • Social media platforms (e.g., Facebook, Instagram, Twitter/X)
  • Food delivery platforms (e.g., DoorDash, Uber Eats, Grubhub)
  • Payment processors (e.g., Stripe, Square, PayPal)
  • Google Maps for location services
  • Review platforms (e.g., Yelp, Google Reviews)

14. Do Not Track Signals

Some browsers have a "Do Not Track" (DNT) feature that signals to websites that you do not want to be tracked across websites. Currently, there is no universally accepted standard for how websites should respond to DNT signals. At this time, our website does not respond to DNT browser signals.

However, you can manage your tracking preferences through our cookie settings on our website and through your browser's built-in privacy settings. California residents may also exercise their rights under the CCPA/CPRA as described in Section 8 of this policy.


15. Your California Privacy Rights

If you are a California resident, you have specific rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA) in addition to the general rights described in Section 8 of this policy.

15.1 Categories of Personal Information Collected

In the past 12 months, we have collected the following categories of personal information as defined by the CCPA:

  • Identifiers (name, email address, phone number, IP address)
  • Commercial information (order history, purchasing records)
  • Internet or other electronic network activity information (browsing history, interactions with our website)
  • Geolocation data (with your permission)
  • Inferences drawn to create a profile about preferences and characteristics
  • Sensitive personal information (payment card numbers processed by third parties)

15.2 California "Shine the Light" Law

California Civil Code Section 1798.83 permits California residents to request information regarding the disclosure of their personal information to third parties for direct marketing purposes. If you are a California resident and would like to make such a request, please contact us at [email protected].

15.3 Submitting a CCPA Request

California residents may submit CCPA/CPRA requests through the following channels:


16. Filing Complaints With Regulatory Authorities

If you believe that our processing of your personal information violates applicable privacy laws or this Privacy Policy, we encourage you to first contact us directly so that we can attempt to resolve your concern. You may reach us at:

If you are not satisfied with our response or believe we have not addressed your concern adequately, you have the right to file a complaint with the relevant regulatory authority. In the United States, the primary regulatory bodies include:

16.1 Federal Trade Commission (FTC)

The Federal Trade Commission enforces consumer protection laws, including laws related to unfair or deceptive privacy practices under the FTC Act (15 U.S.C. § 45). You may file a complaint with the FTC at:

  • Website: www.ftc.gov/complaint
  • Phone: 1-877-FTC-HELP (1-877-382-4357)
  • Address: Federal Trade Commission, 600 Pennsylvania Avenue NW, Washington, DC 20580

16.2 California Privacy Protection Agency (CPPA)

California residents may file complaints with the California Privacy Protection Agency, which enforces the CCPA/CPRA:

  • Website: cppa.ca.gov
  • Address: California Privacy Protection Agency, 2101 Arena Boulevard, Sacramento, CA 95834

16.3 State Attorney General

You may also file a privacy-related complaint with your state's Attorney General office. Contact information for state Attorneys General can be found through the National Association of Attorneys General at www.naag.org.


17. Changes to This Privacy Policy

We reserve the right to update or modify this Privacy Policy at any time to reflect changes in our business practices, legal requirements, or technological developments. When we make material changes to this policy, we will:

  • Update the "Last Updated" date at the top of this page
  • Post a prominent notice on our website homepage
  • Send an email notification to registered users where required by applicable law

We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information. Your continued use of our website and services after any changes to this policy constitutes your acceptance of the updated terms. If you do not agree with the updated policy, please discontinue use of our services and contact us to close your account.


18. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please do not hesitate to contact us. We are committed to addressing your inquiries promptly and transparently.

We will make every effort to respond to your inquiry within 10 business days. For formal privacy rights requests under the CCPA/CPRA, we will respond within 45 days as required by law.

Thank you for trusting East Coast Wings with your personal information. We are dedicated to maintaining your privacy and providing you with a safe and enjoyable experience every time you interact with our brand.