top of page

Privacy Policy

Effective Date: July 1, 2025

Last Updated: August 28, 2025

ZEN Cakes Miami (“ZEN Cakes,” “we,” “us,” or “our”) values your privacy. This Privacy Policy explains how we collect, use, disclose, and protect personal information when you visit our website, purchase our products, interact with our mobile/SMS program, or otherwise engage with us—whether as an individual consumer (B2C) or as a business contact (B2B).

This Policy applies to information collected online (our website, forms, SMS) and offline (e.g., events, pop‑ups). By using our services, you agree to this Policy.

1. Information We Collect

We may collect the following categories of personal information (as defined by the California Privacy Rights Act, “CPRA”):

  • Identifiers: name, email, phone number, shipping/billing address, IP address, device identifiers.
     

  • Customer Records: order history, account details (if you create one), communications, support requests.
     

  • Commercial Information: products viewed, items in cart, purchase details, discount/loyalty participation.
     

  • Internet / Network Activity: browsing data, pages visited, referral URLs, timestamps, approximate location from IP.
     

  • Geolocation: we do not collect precise geolocation; approximate location may be derived from IP for analytics/fraud prevention.
     

  • Payment Information: processed by certified processors. We do not store full card numbers.
     

  • Inferences: preferences or interests we may derive from other data (e.g., dessert categories you like).
     

  • Sensitive Personal Information (SPI) (limited): account login and password (if you create an account). We do not collect SSNs, driver’s license numbers, or precise geolocation.

  • Sources. We collect information directly from you (checkout, forms, SMS opt‑ins), automatically via cookies/SDKs, and from service providers/partners that assist with payments, delivery logistics, analytics, and marketing.

2. How We Use Information (Purposes)

We use personal information to:

  1. Provide services: process orders, take payment, arrange delivery/pick‑up, provide customer support.
     

  2. Communicate: send order updates, service notices, and—if you consent—marketing/SMS messages and cart reminders.
     

  3. Improve & secure: operate, maintain, and enhance our website, analyze performance, prevent fraud/abuse.
     

  4. Personalize: understand preferences, tailor offerings, and measure campaign effectiveness.
     

  5. Compliance: meet legal, tax, and accounting obligations; enforce terms; respond to lawful requests.
     

Retention. We keep data only as long as reasonably necessary for the purposes above, including:
• Orders & transaction records: up to 7 years (accounting/tax).
• Account & support records: up to 4 years after last interaction.
• Marketing/SMS data: until you opt out or after 24 months of inactivity.
• Website logs/analytics: typically 12–24 months.
We may retain data longer if required by law or to protect our rights.

3. Disclosure of Information (Service Providers & Partners)

We do not sell your personal information for money. We may disclose data to trusted service providers under contracts that limit their use of your information to our instructions, including:

  • Website/e‑commerce & hosting (e.g., platform and cloud providers)
     

  • Payment processors & fraud prevention (e.g., Square)
     

  • Fulfillment & delivery partners (e.g., courier/logistics integrations)
     

  • Customer communications & SMS platforms (e.g., Klaviyo equivalents)
     

  • Analytics & advertising (e.g., Google Analytics, Meta/Instagram Ads, ad networks)
     

  • Professional services (e.g., accountants, auditors, legal counsel)
     

Klaviyo requirement (explicit exclusion):
“The above excludes text messaging originator opt‑in data and consent; this information will not be shared with any third parties.”

We may also disclose information when required by law, to protect our rights/safety, in connection with a merger or acquisition, or with your explicit consent.

4. Sale & “Sharing” (CCPA/CPRA Opt‑Out & GPC)

Under CPRA, “sale” also includes certain exchanges of personal information for benefit; “sharing” covers disclosure for cross‑context behavioral advertising (targeted ads). Because we may use marketing/analytics tools, we treat some uses as “sharing.”

  • You can opt out at any time via our “Do Not Sell or Share My Personal Information” link in the footer (or go directly to your privacy preferences in the site banner/popup).
     

  • We honor the Global Privacy Control (GPC) signal. If your browser sends a GPC signal, we treat it as a valid opt‑out for that browser/device/session and apply it reasonably across our systems.
     

We do not sell or share personal information of consumers we know are under 16.

5. Mobile Messaging & Cart Reminders (Klaviyo‑required)

If you opt in to our SMS/text program, we collect your phone number and messaging preferences to operate the program (see also our Terms & Conditions – Mobile Terms of Service).

Cart reminders (required disclosure):
“ZEN Cakes Miami’s website uses cookies to help keep track of items you put into your shopping cart, including when you have abandoned your cart. This information is used to determine when to send cart reminder messages via SMS.”

  • Message frequency varies; message and data rates may apply.
     

  • You can opt out anytime by texting STOP to +1 (844) 520‑8845 or using the unsubscribe link (where available).
     

  • SMS opt‑in data and consent are never shared or sold.
     

6. Cookies & Tracking

We use cookies, pixels, and similar technologies to operate the site, remember your preferences/cart, analyze performance, and—where permitted—deliver or measure ads.

  • Manage preferences via our cookie banner or your browser settings (note: disabling certain cookies may impact site functionality).
     

  • See our separate Cookies Policy for details on types of cookies we use and how to control them.
     

We do not currently use device GPS or precise geolocation. If this changes, we will update this Policy and our consent flows.

7. Your U.S. State Privacy Rights

Depending on your state (e.g., California, Virginia, Colorado, Connecticut, Utah), you may have the right to:

  • Know/Access the categories and specific pieces of personal information we collected about you.
     

  • Delete personal information (subject to legal exceptions).
     

  • Correct inaccurate personal information.
     

  • Data Portability (receive a copy in a portable format).
     

  • Opt Out of sale and sharing (targeted advertising).
     

  • Limit Use/Disclosure of Sensitive PI (where applicable).
     

  • Appeal a decision (for certain states).
     

  • Non‑Discrimination for exercising your rights.
     

How to Exercise Your Rights

  • Use the footer link “Do Not Sell or Share My Personal Information”, or
     

  • Email us at info@zencakesmiami.com; alex@zencakesmiami.com with the subject “Privacy Request” and tell us which right(s) you wish to exercise.
     

Verification. We may ask for limited information (e.g., your email/phone/order details) to verify your request. Authorized agents may submit requests by providing proof of authorization and your verified identity.

 

Timing. We aim to respond within 45 days (with a possible 45‑day extension where permitted).

8. Business & B2B Contacts

If you interact with us on behalf of a company (e.g., wholesale, corporate gifting), we process your business contact details to manage our relationship. You can exercise the same rights above.

9. Security

We use reasonable technical and organizational safeguards to protect personal information. Payments are encrypted and handled by certified processors; we do not store full card numbers. No system is 100% secure, so please use strong passwords and keep account credentials confidential.

10. Children’s Privacy

Our services are not intended for children under 13, and we do not knowingly collect their personal information. If you believe a child under 13 provided data, contact us and we will delete it. We do not sell/share personal information of consumers under 16.

11. International Visitors

Our website is operated in the United States. If you access it from outside the U.S., your information may be processed in the U.S., where privacy laws may differ from those in your country.

12. Financial Incentives & Promotions

We may offer discounts or perks in exchange for your marketing consent (email/SMS). Participation is voluntary; you can withdraw at any time (unsubscribe or text STOP). The value of any incentive is reasonably related to the value of your data for marketing (e.g., typical discount percentages).

13. Links & Third‑Party Sites

Our site may link to third‑party websites or services. Their privacy practices are governed by their own policies. Please review them carefully.

14. Changes to This Policy

We may update this Policy periodically. When we do, we will revise the “Last Updated” date above and, where required, notify you. Continued use of our services after changes means you accept the updated Policy.

15. Contact Us

Questions or requests about this Privacy Policy or your privacy rights:

ZEN Cakes Miami
📧 info@zencakesmiami.com

📧 alex@zencakesmiami.com
Miami, Florida, USA

16. California “Notice at Collection” (CPRA)

Categories Collected: Identifiers; Customer Records; Commercial Information; Internet/Network Activity; Approx. Geolocation (from IP); Inferences; Payment data (via processors); Sensitive PI (account credentials if you create an account).
Purposes: See Section 2 above.
Retention: See Section 2 (Retention).
Sale/Sharing: We do not sell personal information for money; we may share for cross‑context behavioral advertising. See Section 4 for opt‑out and GPC.
Sensitive PI: We do not use or disclose Sensitive PI for purposes that require a “Limit” request under CPRA (beyond what is necessary to provide requested services).
Minors: We do not sell/share personal information of consumers under 16.
Non‑Discrimination: We will not discriminate against you for exercising your CPRA rights.

17. Mobile Privacy Summary (how SMS data is handled)

  • We collect your phone number, messaging preferences, and delivery status data only if you opt in.
     

  • Used for: service notifications (e.g., order updates) and, with consent, promotions/cart reminders.
     

  • Cart reminders use cookies to detect an abandoned cart (see disclosure in Section 5).
     

  • Opt out anytime: text STOP to +1 (844) 520‑8845.
     

We do not share or sell SMS opt‑in data or consent with any third parties.

ZEN Cakes Miami
  • Insta
  • FB

1239 Washington Ave, Miami Beach, FL 33139

info@zencakesmiami.com

FAQ

Privacy Policy

Terms & Conditions

Cookies Policy

All right reserved 2025

bottom of page