Please ensure Javascript is enabled for purposes of website accessibility
Caterizi
catering marketplace
Caterizi
CateringMarketplace
Privacy Policy

Privacy Policy

Caterizi Platform Privacy Policy

PRIVACY POLICY OF THE CATERIZI PLATFORM

United States Edition Publication Date: March 18, 2026 Effective Date: March 18, 2026

GENERAL PROVISIONS

This Privacy Policy (hereinafter referred to as the "Policy") defines the procedure for collecting, processing, and protecting the personal data of users of the Caterizi platform (owner – Natalia Babkina, individual entrepreneur, autónomo, NIE Y5479825C, Spain) in accordance with applicable United States federal and state privacy laws, including the California Consumer Privacy Act (CCPA), the California Privacy Rights Act (CPRA), the Children's Online Privacy Protection Act (COPPA), the CAN-SPAM Act, and other applicable federal and state privacy regulations.

We comply with the principles of lawfulness, fairness, and transparency in data processing and take necessary measures to protect the confidentiality of your data.

This Policy applies to all users of the Caterizi platform located in the United States of America, including Clients placing orders through the Platform and Partners providing services through the Platform.

DATA CONTROLLER

Natalia Babkina is the controller of your personal data collected through the Caterizi platform.

Caterizi operates as a Spanish-registered sole proprietor providing digital marketplace services to users located in the United States of America.

If you have any questions regarding this Privacy Policy or the processing of your personal data, you may contact us at:

privacy@caterizi.com

COLLECTED PERSONAL DATA

We collect and process the following categories of personal data:

Identification data:

  • user's first and last name.

Contact data:

  • postal address (event or delivery address)

  • phone number

  • email address.

Payment information:

  • data required for processing payment transactions.

Note: payment credentials are processed directly by our third-party payment processor. We do not store your full bank card data on our servers. All payment processing complies with PCI DSS security standards.

Order data:

  • history of orders placed through the Platform

  • ordered services

  • transaction dates and amounts

  • order statuses

  • event details and requirements.

Technical data:

  • IP address

  • cookies and similar tracking technologies

  • data on activity on the website including viewed pages, clicks, and visit time

  • device information and browser type

  • other online identifiers.

These data allow us to analyze the use of the Platform and ensure the correct functioning of services.

Professional information (Partners only):

  • business name and registration information

  • Employer Identification Number (EIN) or Social Security Number (SSN) for tax reporting purposes

  • licenses and permits information

  • insurance information.

We do not request or collect special categories of sensitive personal data such as data on health, political views, religious beliefs, racial or ethnic origin, or biometric data, as such information is not required for the operation of Caterizi. Please refrain from providing us with such information through the Platform.

SOURCES OF DATA COLLECTION

Personal data is provided by users directly and collected by us automatically when interacting with the Platform:

Account registration: When creating an account on Caterizi, you provide us with your first name, last name, email address, phone number, and where necessary your address. These data are required to identify the user and ensure the functionality of the Platform.

Placing an order: When ordering services through Caterizi, you enter data necessary to fulfill the order including name, event address, contact phone number, and payment details. We also retain information about the order itself and its history.

Using the website: During your use of the Platform, we automatically receive some technical data. When visiting the site, your IP address and cookies are recorded. We use cookies and similar technologies to collect information about how you interact with our site. This helps improve service performance, remember your preferences, and customize a convenient interface. You can manage cookie settings in your browser. However, disabling cookies may affect the availability of certain Platform functions.

Support requests: If you contact us for support, we may receive additional data that you provide in your request. These data will be used exclusively to resolve your request.

We collect only the minimally necessary personal data, limited to information without which we cannot provide you with our services or improve their quality. All data is obtained lawfully and in accordance with this Policy.

LEGAL BASIS FOR PROCESSING

We process personal data on the following legal bases under applicable United States law:

  • Performance of a contract — when processing is necessary to provide the services requested by users through the Platform.

  • Legitimate interests — when processing is necessary for the operation, improvement, and security of the Platform, including fraud prevention and service optimization.

  • Legal obligations — when we are required to process or disclose personal data in order to comply with applicable federal or state laws and regulations.

  • Consent — when users voluntarily provide consent for specific processing activities such as marketing communications.

COOKIES AND TRACKING TECHNOLOGIES

The Platform may use cookies and similar technologies to enhance user experience, analyze traffic, and improve the functionality of the website.

Cookies may include:

  • essential cookies necessary for the operation of the Platform

  • analytics cookies used to understand how users interact with the Platform

  • preference cookies that remember user settings and preferences.

Users may manage cookie preferences through their browser settings.

The Platform does not use cookies or tracking technologies for the purpose of selling personal data to third parties.

PURPOSES OF PERSONAL DATA PROCESSING

We process the personal data of Caterizi users for the following specific and lawful purposes:

Order processing and fulfillment: Your data including name, address, phone number, and order details is used to process, confirm, and fulfill your order, as well as to issue payment confirmations and coordinate with Service Providers.

User communication: We use contact data to inform you about order status, clarify details, provide service communications, and respond to your support requests.

Payment processing: Payment information is transferred to our payment processor to process reservation deposits. We process this data to confirm payment and prevent fraud.

Compliance with legal obligations: We may process and store some of your data to comply with applicable federal and state legal requirements, including tax reporting obligations under IRS regulations, state tax requirements, and applicable data retention laws.

Analytics and service improvement: Data about your interaction with the Platform is used for analytical purposes to understand user needs and improve our site and services.

IRS tax reporting: For Partners, we may process tax identification information including EIN or SSN for IRS reporting purposes in accordance with applicable federal tax law including Form 1099-K reporting requirements.

Marketing communications: Marketing communications will be sent only with your explicit consent and in compliance with the CAN-SPAM Act. You can always unsubscribe from marketing communications by following the unsubscribe instructions included in each communication or by contacting us at privacy@caterizi.com.

We guarantee that personal data processing is not carried out in a manner incompatible with the purposes listed. Data will not be used for new purposes without your consent or other legal basis.

TRANSFER OF PERSONAL DATA TO THIRD PARTIES

We treat the confidentiality of your data with respect and do not sell personal data to third-party organizations for their own marketing purposes. The transfer of data to third parties is limited to the minimally necessary amount and is carried out in the following cases:

Payment processors: To process payment, your payment data is securely transferred to our external payment processor including Stripe or similar providers. The payment processor receives only the information necessary to complete the transaction. All such third parties are required to comply with data security and confidentiality requirements including PCI DSS standards.

Service Providers (Partners): In order to facilitate the execution of Orders, the Platform transfers relevant Client information to the selected Service Provider. Such information may include name, contact details, event location, and event requirements. Service Providers are required to use such data solely for the purpose of fulfilling the specific order.

Disclosure required by law: We may disclose your personal data to government bodies, law enforcement authorities, regulatory agencies, or other third parties if required by applicable federal or state law, by court order, or by a valid legal process. In each such case, we will provide only the information that is necessary and required by law.

Third-party service providers: We may share personal data with trusted third-party service providers acting as data processors, including:

  • cloud hosting and infrastructure providers

  • analytics and performance monitoring services

  • customer support tools

  • marketing and communication platforms.

Such processors are contractually obligated to process personal data only in accordance with our instructions and applicable data protection laws.

Except in the cases specified, no personal data is transferred to third parties without your explicit consent. We never transfer your data to advertisers outside the purposes listed above.

DO NOT SELL OR SHARE MY PERSONAL INFORMATION

In accordance with the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA), California residents have the right to opt out of the sale or sharing of their personal information.

Caterizi does not sell personal information to third parties for monetary consideration.

Caterizi does not share personal information for cross-context behavioral advertising purposes.

California residents may submit a Do Not Sell or Share request by contacting us at: privacy@caterizi.com

AUTOMATED DECISION-MAKING

Caterizi does not use personal data for automated decision-making processes that produce legal effects or significantly affect users without human involvement.

DATA SECURITY

Caterizi implements appropriate technical and organizational measures designed to protect personal data against unauthorized access, loss, misuse, alteration, or disclosure.

Security measures include:

  • secure infrastructure and encrypted data transmission using SSL/TLS technology

  • encryption of stored data where appropriate

  • restricted access to personal data limited to authorized personnel

  • regular review and updating of security policies and procedures

  • contractual non-disclosure obligations for all personnel with access to personal data.

In the event of a personal data security breach affecting your personal data, we will notify affected users in accordance with applicable federal and state data breach notification laws within the timeframes required by applicable law.

DATA RETENTION

Personal data will be retained only for as long as necessary to fulfill the purposes described in this Privacy Policy, including compliance with legal, tax, and regulatory obligations.

Retention periods by category:

Account data: Your profile information is stored for the entire duration of your use of the Caterizi Platform. If you choose to delete your account, we will delete or anonymize this data except where retention is required by applicable law.

Order and payment history: Data about your orders, transactions, and payments is retained as long as necessary for contract performance and legal compliance. In accordance with applicable IRS regulations and state tax requirements, we retain financial transaction records for a minimum of five (5) years following the transaction.

Correspondence and support requests: If you contact our support service, correspondence and related data will be stored for as long as necessary to process your request. Typically such data is retained for no more than two (2) years after resolving your issue unless longer retention is required for legal claims.

Technical and analytical data: Server logs, IP address records, and other technical data are stored for up to one (1) year unless longer retention is necessary for security or analytics purposes.

Data deletion after achieving purposes: Once the processing purposes are fulfilled and the retention period expires, the data is securely deleted or anonymized so that it can no longer identify you.

USER RIGHTS

General rights available to all United States users:

  • the right to know what personal data we collect and how it is used

  • the right to request correction of inaccurate or incomplete data

  • the right to request deletion of personal data subject to certain legal exceptions

  • the right to opt out of marketing communications at any time

  • the right to data portability where technically feasible

  • the right to withdraw consent where processing is based on consent.

Additional rights for California residents (CCPA / CPRA):

  • Right to Know — the right to request information about the categories and specific pieces of personal data collected, the purposes for which it is used, and the categories of third parties with whom it is shared.

  • Right to Delete — the right to request deletion of personal data collected by the Platform subject to certain exceptions permitted by law.

  • Right to Correct — the right to request correction of inaccurate personal data maintained by the Platform.

  • Right to Opt-Out of Sale or Sharing — the right to opt out of the sale or sharing of personal data. As stated above, Caterizi does not sell personal data.

  • Right to Non-Discrimination — the Platform will not discriminate against users for exercising their privacy rights under the CCPA or CPRA.

  • Right to Limit Use of Sensitive Personal Information — to the extent the Platform collects sensitive personal information as defined under the CPRA, users may request that the Platform limit its use to purposes permitted by law.

California residents may submit privacy requests by contacting: privacy@caterizi.com

The Platform will respond to verifiable consumer requests within forty-five (45) days as required by applicable California law.

Rights for residents of other states:

Users located in states with applicable privacy laws including Virginia (VCDPA), Colorado (CPA), Connecticut (CTDPA), and Texas (TDPSA) retain all privacy rights provided under their respective state laws.

Such rights may include the right to access, correct, delete, and opt out of certain processing of personal data.

Users may submit privacy requests by contacting: privacy@caterizi.com

Requests are fulfilled free of charge and within the time limits set by applicable law.

INTERNATIONAL DATA TRANSFERS

As the Platform is operated by a Spanish-registered business, personal data collected from users located in the United States may be transferred to and processed in Spain and the European Union.

Such transfers are made in accordance with applicable data protection laws. The Platform implements appropriate safeguards to protect personal data during international transfers.

By using the Platform, users acknowledge that their personal data may be processed in Spain in accordance with the terms of this Policy.

CHILDREN'S PRIVACY

The Caterizi Platform is not directed at children under the age of thirteen (13).

The Platform does not knowingly collect personal data from children under the age of thirteen in accordance with the Children's Online Privacy Protection Act (COPPA).

Registration on the Platform and placing orders is permitted only for users who have reached the age of eighteen (18).

If the Platform becomes aware that personal data has been collected from a child under the age of thirteen without verifiable parental consent, the Platform will take steps to delete such data as soon as reasonably possible.

Parents or legal guardians who discover that a child has provided personal data to the Platform may contact us at privacy@caterizi.com and we will promptly delete the relevant information.

CAN-SPAM COMPLIANCE

All commercial electronic communications sent by the Platform comply with the requirements of the CAN-SPAM Act of 2003.

All promotional communications sent by the Platform will:

  • clearly identify the sender

  • include a clear and functioning opt-out mechanism

  • include the Platform's physical mailing address

  • not contain deceptive subject lines or headers.

The Platform will honor opt-out requests within ten (10) business days of receipt.

The Platform's mailing address for CAN-SPAM purposes is: 2446 W Madison Ave, Suite 1 PMB 1070 Chicago, IL 60612 United States

CONTACT INFORMATION

For all questions related to this Privacy Policy and the processing of your personal data, you can contact us at:

Email: privacy@caterizi.com Website: www.caterizi.com

We will review your inquiry and respond to you as quickly as possible and within the timeframes required by applicable law.

If you are contacting us regarding the exercise of your data subject rights, please describe your request and the data it concerns in detail so we can assist you effectively.

CONSENT TO THE PRIVACY POLICY

By registering on the Caterizi Platform or using our website and services, you confirm your agreement with this Privacy Policy.

By providing us with personal data, you consent to its processing in accordance with the terms outlined herein.

If you do not agree with any provision of this Policy, please stop using the Platform and contact us at privacy@caterizi.com for clarification.

CHANGES TO THE PRIVACY POLICY

We reserve the right to periodically make changes to this Privacy Policy to reflect changes in our activities, legal requirements, or new security measures.

If we make material changes to this Policy, we will notify users by:

  • posting a prominent notice on the website

  • sending an email notification to registered users where we have your email address for such notifications

  • updating the Publication Date at the top of this Policy.

The current version of the Policy is always available on our website at www.caterizi.com.

We recommend that you regularly review this Policy to stay informed about how we protect the personal data we collect.

Continuing to use the Caterizi Platform after changes to the Policy indicates your acceptance of the updated data processing terms.