Effective Date: 6/19/25
Last Updated: 6/19/25

This Privacy Policy describes how Main Street Menu Club, a DBA of First Site Media Group, Inc. ("Company," "we," "us," or "our") collects, uses, stores, and protects your personal information when you visit our website at mainstreetmenuclub.com, use our services, or otherwise interact with us.



Business Entity Information:

• Legal Business Name: First Site Media Group, Inc.
• Operating Name: Main Street Menu Club
• Website: https://mainstreetmenuclub.com
• Business Address: 505 Johnson Ave, Bohemia, NY 11716
• Phone: (631) 837-2344
• Email: support@mainstreetmenuclub.com

This Privacy Policy applies to all data collection and processing activities conducted by First Site Media Group, Inc. through the Main Street Menu Club brand and services.

2.1 SMS Consent and Communications

By providing your mobile phone number to First Site Media Group, Inc. (operating as Main Street Menu Club), you expressly consent to receive text messages (SMS) from us or our authorized representatives regarding our services, promotional offers, and other business-related communications.

2.2 Business Use Cases

Our SMS messaging includes the following types of communications:

Marketing Messages:

• Promotional offers for design services and special discounts
• Educational content related to menu design and restaurant marketing
• Business tips and industry insights

Transactional Messages:

• Order confirmations and payment receipts
• Project status updates and proof notifications
• Account notifications and service-related updates

Informational Messages:

• Design tips and restaurant marketing insights
• Service announcements and updates
• Project reminders and deadline notifications

Customer Service Messages:

• Support responses and account assistance
• Technical help and answers to inquiries
• Project communication and updates

2.3 Consent and Frequency

• Message frequency varies and may include promotional messages, service updates, and transactional notifications
• You may receive up to 5 promotional messages per week
• Message and data rates may apply depending on your mobile carrier plan
• Carriers are not liable for delayed or undelivered messages

2.4 Opt-Out Instructions

• To stop receiving text messages, reply STOP to any message
• To get help, reply HELP to any message or contact us at support@mainstreetmenuclub.com
• You may also opt-out by calling (631) 837-2344
• Your opt-out request will be processed within 48 hours

2.5 TCPA Compliance

• First Site Media Group, Inc. may use automatic telephone dialing systems and/or prerecorded messages to send text messages to the phone number you provide
• You are not required to consent to receive text messages as a condition of purchasing any goods or services from Main Street Menu Club
• Your consent to receive SMS messages is not a condition of purchase
• Standard message and data rates apply as determined by your mobile carrier
• We comply with all applicable federal and state laws regarding automated communications

2.1 SMS Consent and Communications

By providing your mobile phone number to First Site Media Group, Inc. (operating as Main Street Menu Club), you expressly consent to receive text messages (SMS) from us or our authorized representatives regarding our services, promotional offers, and other business-related communications.

2.2 Business Use Cases

Our SMS messaging includes the following types of communications:

Marketing Messages:

• Promotional offers for design services and special discounts
• Educational content related to menu design and restaurant marketing
• Business tips and industry insights

Transactional Messages:

• Order confirmations and payment receipts
• Project status updates and proof notifications
• Account notifications and service-related updates

Informational Messages:

• Design tips and restaurant marketing insights
• Service announcements and updates
• Project reminders and deadline notifications

Customer Service Messages:

• Support responses and account assistance
• Technical help and answers to inquiries
• Project communication and updates

2.3 Consent and Frequency

• Message frequency varies and may include promotional messages, service updates, and transactional notifications
• You may receive up to 5 promotional messages per week
• Message and data rates may apply depending on your mobile carrier plan
• Carriers are not liable for delayed or undelivered messages

2.4 Opt-Out Instructions

• To stop receiving text messages, reply STOP to any message
• To get help, reply HELP to any message or contact us at support@mainstreetmenuclub.com
• You may also opt-out by calling (631) 837-2344
• Your opt-out request will be processed within 48 hours

2.5 TCPA Compliance

• First Site Media Group, Inc. may use automatic telephone dialing systems and/or prerecorded messages to send text messages to the phone number you provide
• You are not required to consent to receive text messages as a condition of purchasing any goods or services from Main Street Menu Club
• Your consent to receive SMS messages is not a condition of purchase
• Standard message and data rates apply as determined by your mobile carrier
• We comply with all applicable federal and state laws regarding automated communications

3.1 Personal Information You Provide

When you interact with our services, we may collect the following personal information:

Contact Information:

• Full name
• Business name and title
• Email address
• Phone number
• Mailing address

Business Information:

• Restaurant/business details
• Menu content and pricing
• Brand materials and logos
• Website content and images
• Marketing preferences
• Domain information and DNS access credentials

Payment Information:

• Credit card details (processed securely through Stripe)
• Billing address
• Transaction history

Account Information:

• Login credentials
• Service preferences
• Communication preferences
• Project files and documents
• PageProof account information and access logs

Design and Project Data:

• Design briefs and specifications
• Revision requests and feedback
• Approval status and timestamps
• Source files and working documents
• Print specifications and requirements

3.2 Information Automatically Collected

When you visit our website or use our services, we automatically collect:

Technical Information:

• IP address
• Browser type and version
• Operating system
• Device information
• Referring website URLs
• Pages visited and time spent
• Cookies and similar tracking technologies

Usage Data:

• How you interact with our website
• Features used
• Error logs
• Performance data

3.3 Information from Third Parties

We may receive information about you from:

• Payment processors (Stripe)
• Social media platforms (when you interact with our profiles)
• Marketing partners
• Public databases
• PageProof platform usage and interaction data
• Email marketing service providers
• SMS marketing service providers
• Website hosting and analytics providers
• Other service providers we work with

We use your personal information for the following purposes:

4.1 Service Delivery

• Providing menu design and engineering services
• Website design, development, and hosting
• Print production and fulfillment
• Digital marketing services (email and SMS campaigns)
• Customer support and communication
• Managing PageProof workflows and approvals
• Processing design revisions and feedback
• Maintaining project timelines and deliverables
• Providing design consultations and onboarding

4.2 Business Operations

• Processing payments and managing accounts
• Managing subscriptions and recurring billing
• Sending service-related notifications
• Improving our services and website functionality
• Conducting internal analytics and research

3.3 Marketing and Communications

• Sending promotional emails and newsletters (with your consent)
• SMS marketing communications (with your consent)
• Social media marketing and advertising
• Sharing tips, insights, and industry information
• Promoting our services and portfolio
• Managing email and SMS marketing campaigns for clients
• Tracking communication engagement and effectiveness
• Processing opt-out requests for email and SMS communications

4.4 Legal and Compliance

• Complying with legal obligations
• Protecting our rights and property
• Preventing fraud and ensuring security
• Enforcing our Terms & Conditions

Consent: When you voluntarily provide information and agree to specific processing activities, including:

• Newsletter subscriptions
• Marketing communications (email and SMS)
• Non-essential cookies and tracking
• Voluntary surveys or feedback

Contract Performance: When processing is necessary to provide our services:

• Account creation and management
• Service delivery and access
• Payment processing
• Customer support

Legitimate Interest: For our business operations where your interests don't override ours:

• Website analytics and improvement
• Fraud prevention and security
• Internal business administration
• Existing customer communications about related services

Legal Obligation: When required by law:

• Tax and financial record keeping
• Compliance with consumer protection laws
• Response to legal requests
• Withdrawing Consent: You can withdraw your consent at any time by contacting us. This won't affect the lawfulness of processing before withdrawal.

We may share your personal information in the following circumstances:

6.1 Service Providers

We work with trusted third-party service providers who assist us in:

• Payment processing (Stripe)
• Email marketing services
• SMS marketing and communication services
• Website hosting and maintenance
• Cloud storage and backup services
• Analytics and performance monitoring
• Customer support tools
• PageProof platform services
• Print production and fulfillment
• Domain and DNS management services

All service providers are contractually required to protect your information and use it only for specified purposes.

6.2 Corporate Family

We may share information with:

• Subsidiaries and affiliates of First Site Media Group, Inc.
• Related companies for joint marketing or operational purposes
• Corporate partners for service collaboration

6.3 Legal and Safety Requirements

We may disclose information when we believe in good faith that disclosure is necessary to:

• Comply with applicable laws, regulations, or legal processes
• Respond to valid governmental requests or court orders
• Enforce our Terms & Conditions or other agreements
• Investigate potential violations of our policies
• Prevent fraud, security threats, or illegal activities
• Protect the rights, property, or safety of our company, users, or the public
• Collaborate with law enforcement when legally required

6.4 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the new entity, subject to the same privacy protections.

6.5 Your Control Over Sharing

You can limit how we share your information by:

• Opting out of marketing communications
• Adjusting your communication preferences
• Contacting us to restrict certain types of sharing
• Exercising your privacy rights as described in this Policy

Note: Some sharing is necessary to provide our services and cannot be opted out of while maintaining your account.

We do not sell your personal information to third parties.

We implement appropriate technical and organizational measures to protect your personal information:

• Encryption: Data transmitted to our servers is encrypted using SSL/TLS
• Secure Storage: Data stored on secure servers with access controls
• Payment Security: Stripe handles all payment processing with PCI DSS compliance
• Access Controls: Limited employee access on a need-to-know basis
• Regular Updates: Security systems and software regularly updated
• Monitoring: Continuous monitoring for security threats

Despite our security measures, no method of transmission over the internet is 100% secure. We cannot guarantee absolute security of your information.

We retain your personal information for different periods depending on the purpose:

Marketing Data:

• Email marketing lists: Until you unsubscribe + 3 years for suppression purposes
• SMS consent records: 4 years from last contact
• Marketing preference data: Until withdrawn + 1 year

Customer Account Data:

• Active accounts: Duration of relationship + 7 years
• Financial records: 7 years from last transaction
• Project access records: 10 years for reference purposes

Technical Data:

• Website analytics: 26 months
• Cookie data: As specified in cookie settings (typically 1-2 years)
• Security logs: 1 year

Project-Specific Data:

• PageProof communications and logs: Retained for 12 months from project completion
• Revision history and approval records: Retained for 12 months
• Working files: Retained until delivered to client or as specified in service agreement

Legal Requirements: Some data may be retained longer when required by law or for legitimate business purposes such as dispute resolution.

You may request deletion of your personal information by contacting us at support@mainstreetmenuclub.com, subject to legal retention requirements.

9.1 Universal Privacy Rights

Right to Know (Access):

• Receive confirmation about whether we process your personal information
• Access your stored personal information and supplementary details
• Understand how your information is collected, used, and shared
• Receive information about data retention periods

Right to Portability:

• Receive a copy of personal information you provided to us
• Data will be provided in a structured, commonly used, machine-readable format (typically JSON or CSV)
• Covers information you directly provided (contact details, account info, preferences)

Right to Correct (Rectification):

• Request correction of inaccurate or incomplete personal information
• Update your account information, contact details, and preferences
• Correct errors in your transaction or project history

Right to Delete (Erasure):

• Request deletion of your personal information
• Subject to legal retention requirements and legitimate business needs
• Some information may be retained for tax, legal, or safety purposes

Right to Object:

• Object to processing based on legitimate interests
• Opt-out of marketing communications (email and SMS)
• Object to automated decision-making or profiling

Right to Restrict Processing:

• Request limitation of how we use your information
• Temporarily suspend certain processing activities
• Maintain your account while limiting data use

Right to Complain:

• Lodge complaints with supervisory authorities
• Contact relevant data protection agencies in your jurisdiction
• File complaints with state attorneys general (for US residents)

9.2 How to Exercise Your Rights

Contact Methods:

• Email: support@mainstreetmenuclub.com (preferred method)
• Phone: (631) 837-2344
• Mail: First Site Media Group, Inc., 505 Johnson Ave, Bohemia, NY 11716

Request Process:

• Submit Request: Use any contact method above
• Identity Verification: We may ask for identification to protect your privacy
• Processing Time: We respond within 30 days (45 days for complex requests)
• Follow-up: We'll contact you if we need additional information
• Resolution: We'll confirm actions taken or explain any limitations

Required Information for Requests:

• Full name and email address associated with your account
• Specific right you want to exercise
• Detailed description of your request
• Preferred method for receiving our response

9.3 Marketing Communications

• Email: Unsubscribe links in all marketing emails
• SMS: Reply "STOP" to opt out of text messages
• Phone: Request removal from calling lists
• Client Marketing Services: If you use our marketing services for your business, your customers' opt-out requests will be honored immediately

9.4 State-Specific Rights

California Residents (CCPA/CPRA): California residents have additional rights including:

• Right to know what personal information is collected
• Right to delete personal information
• Right to opt out of the sale of personal information (we do not sell personal information)
• Right to non-discrimination for exercising privacy rights
• Right to correct inaccurate personal information
• Right to limit use of sensitive personal information

Virginia, Colorado, Connecticut, and Utah Residents:

• Similar rights to California residents under state privacy laws
• Right to appeal our decisions regarding your privacy requests
• Additional protections for sensitive data processing

European Union Residents (GDPR): EU residents have additional rights including:

• All rights listed above under GDPR framework
• Right to lodge complaints with EU supervisory authorities
• Right to appeal to data protection authorities
• Additional protections for international data transfers

9.5 Limitations and Exceptions

When Rights May Be Limited:

• Legal Requirements: We must retain some information for tax, legal, or regulatory compliance
• Legitimate Interests: Processing necessary for fraud prevention, security, or business operations
• Technical Constraints: Some data may be difficult to extract from backup systems
• Active Investigations: Information related to ongoing fraud or security investigations
• Contract Performance: Data necessary to fulfill our service obligations

To exercise your rights, contact us at support@mainstreetmenuclub.com or (631) 837-2344.

Our website uses cookies and similar technologies to:

• Remember your preferences and settings
• Analyze website traffic and usage patterns
• Provide personalized content and advertising
• Improve website functionality and user experience

A "cookie" is a small piece of information that a website assigns to your device while you are viewing a website. Cookies are very helpful and can be used for various different purposes. These purposes include allowing you to navigate between pages efficiently, enable automatic activation of certain features, remembering your preferences and making the interaction between you and our services quicker and easier. Cookies are also used to help ensure that the advertisements you see are relevant to you and your interests and to compile statistical data on your use of our services.

Types of Cookies We Use:

Essential Cookies: Required for website functionality - these cannot be disabled

• Session cookies which are stored only temporarily during a browsing session and are deleted when the browser is closed
• Used for normal website operation and security

Analytics Cookies: Help us understand website usage

• Persistent cookies which are saved on your computer for a fixed period
• Used to remember your preferences for repeat visits
• Google Analytics cookies to collect information about website usage

Marketing Cookies: Used to deliver relevant advertisements and track campaign effectiveness

• Third-party cookies set by advertising partners
• Used to show relevant advertisements based on your interests

Third-Party Cookies: Set by our partners for advertising and social media integration

• Set by other online services who run content on our pages
• Used by third-party analytics and advertising companies

Managing Your Cookie Preferences: You can control cookie settings through:

• Your browser settings to remove or disable cookies
• Third-party opt-out tools for advertising cookies
• Note that disabling certain cookies may affect website functionality

Google Analytics: We use Google Analytics to collect information about your use of our website. Google Analytics collects information such as how often users access our site, what pages they visit, etc. We use this information only to improve our website and services. Google Analytics collects the IP address assigned to you rather than your name or other identifying information. We do not combine the information collected through Google Analytics with personally identifiable information. Google's ability to use and share information collected by Google Analytics is restricted by the Google Analytics Terms of Use and the Google Privacy Policy.

Our website may contain links to third-party websites and services. This Privacy Policy does not apply to those external sites. We encourage you to review the privacy policies of any third-party services you visit or use.

Third-Party Services We Use:

• Stripe (payment processing)
• Google Analytics (website analytics)
• Social media platforms (Instagram, Facebook)
• Email marketing platforms
• SMS marketing services
• PageProof (design review and approval platform)
• Cloud storage providers
• Print production partners

Third-Party Advertising: We may use third-party advertising technology to serve advertisements when you access our website. This technology uses your information regarding your use of our services to serve advertisements to you (e.g., by placing third-party cookies on your web browser).

You may opt-out of many third-party ad networks, including those operated by members of the Network Advertising Initiative ("NAI") and the Digital Advertising Alliance ("DAA"). For more information about this practice and your choices regarding having this information used by these companies, including how to opt-out of third-party ad networks, please visit:

• NAI opt-out: http://optout.networkadvertising.org/
• DAA opt-out: http://optout.aboutads.info/

Some of our service providers may be located outside your country. When we transfer your information internationally:

• We ensure adequate protection through legal frameworks (e.g., Standard Contractual Clauses)
• We require contractual commitments to protect your data
• We comply with applicable cross-border transfer regulations

We understand the importance of protecting children's privacy, especially in an online environment. Our website is not designed for or directed at children. Under no circumstances shall we allow use of our services by minors without prior consent or authorization by a parent or legal guardian. We do not knowingly collect personal information from children under 13 years of age. If a parent or guardian becomes aware that his or her child has provided us with personal information without their consent, he or she should contact us at support@mainstreetmenuclub.com.

14.1 Telecommunications Compliance

First Site Media Group, Inc., operating as Main Street Menu Club, maintains compliance with all major wireless carrier requirements for Application-to-Person (A2P) messaging, including:

• Verizon Wireless messaging policies
• AT&T messaging guidelines
• T-Mobile messaging requirements
• Other major carrier A2P standards

14.2 Message Categories and Examples

Our text messaging falls into the following verified use cases:

Marketing Messages Example: "Main Street Menu Club: New design service available! Professional menu design that increases sales. 20% off this week only. Learn more: [link] Reply STOP to opt out. Msg&data rates apply."

Transactional Messages Example: "Main Street Menu Club: Design project approved! Your final files are ready for download at [link]. Questions? Reply HELP or call (631) 837-2344. Reply STOP to opt out."

Informational Messages Example: "Main Street Menu Club: Design Tip - Strategic color use can boost menu item sales by 15%. See our latest blog post for details. Reply STOP to opt out."

Customer Service Messages Example: "Main Street Menu Club: Thanks for contacting us! We've received your question about [topic]. Our team will respond within 24 hours. Reply STOP to opt out."

14.3 Compliance Monitoring

We regularly audit our messaging practices to ensure continued compliance with:

• Telephone Consumer Protection Act (TCPA)
• CAN-SPAM Act requirements
• Wireless carrier guidelines
• Industry best practices for A2P messaging

Message Delivery:

• Messages are sent only to numbers that have explicitly opted in
• We maintain opt-out suppression lists across all campaigns
• Message content is regularly reviewed for compliance
• We monitor delivery rates and carrier feedback for optimization

We may update this Privacy Policy periodically to reflect changes in our practices or applicable laws. We will notify you of material changes by:

• Posting the updated policy on our website
• Sending email notifications to registered users
• Updating the "Last Updated" date at the top of this policy
• Your continued use of our services after any changes constitutes acceptance of the updated Privacy Policy.

15.1 When We Provide Marketing Services

When you engage us to provide email or SMS marketing services for your business:

• We act as a data processor for your customer information
• You remain the data controller for your customer data
• We process customer data only according to your instructions
• Customer data is used solely to deliver the marketing services you've contracted

15.2 Client Customer Data

We may process the following data about your customers:

• Names and contact information
• Email addresses and phone numbers
• Marketing preferences and engagement history
• Demographic information you provide
• Purchase history and customer behavior data

15.3 Client Responsibilities

As the data controller for your customer information, you are responsible for:

• Obtaining proper consent from your customers for marketing communications
• Providing privacy notices to your customers
• Ensuring compliance with applicable privacy laws
• Processing customer opt-out requests
• Maintaining accurate customer data

15.4 Our Obligations as Data Processor

When processing your customer data, we:

• Process data only for the specific marketing services requested
• Implement appropriate security measures
• Do not use customer data for our own marketing purposes
• Honor opt-out requests immediately
• Provide data deletion upon contract termination or your request

16.1 PageProof Platform Usage

We use PageProof, a third-party platform, for design review and approval processes. When you use PageProof:

• All proof communications are logged and retained for 12 months
• Access logs are maintained for dispute resolution purposes
• Comments, markups, and revision requests are stored on PageProof servers
• User roles and permissions are tracked (Approver vs. Reviewer status)
• Timestamps for all actions are recorded for project management

16.2 Design Process Data

During our design and revision process, we collect and store:

• Design feedback and revision requests
• Approval status and timestamps
• Communication history related to projects
• File access and download logs
• Project milestone and deadline information

16.3 PageProof Data Sharing

PageProof may have access to:

• Your project files and designs
• Communication and feedback data
• User interaction logs
• Account and contact information necessary for platform functionality

We reserve the right to periodically amend or revise this Privacy Policy; material changes will be effective immediately upon the display of the revised Privacy Policy. The last revision will be reflected in the "Last Updated" section. Your continued use of our services, following the notification of such amendments on our website, constitutes your acknowledgment and consent of such amendments to the Privacy Policy and your agreement to be bound by the terms of such amendments.

Material changes will be posted on our website with at least 30 days notice before taking effect. We will notify you of material changes by:

• Posting the updated policy on our website
• Sending email notifications to registered users
• Updating the "Last Updated" date at the top of this policy

If you have questions about this Privacy Policy or our privacy practices, please contact us:

Main Street Menu Club
Data Protection Officer (DPO)
505 Johnson Ave
Bohemia, NY 11716

Email: support@mainstreetmenuclub.com
Phone: (631) 837-2344
Business Hours: Monday-Friday, 9am-5pm EST. Available via email or text 24/7

For GDPR-related inquiries, please include "GDPR Request" in your email subject line.
For CCPA-related inquiries, please include "CCPA Request" in your email subject line.

• Data Protection Officer Contact:
  For specific privacy-related inquiries, you may contact our designated privacy contact at: support@mainstreetmenuclub.com with "Privacy Inquiry" in the subject line.

This Privacy Policy is effective as of 6/19/2025 and was last updated on 6/19/2025. Inquiries
505 Johnson Ave
Bohemia, NY 11716

Email: support@mainstreetmenuclub.com
Phone: (631) 837-2344

For GDPR-related inquiries, please include "GDPR Request" in your email subject line.
For CCPA-related inquiries, please include "CCPA Request" in your email subject line.

• Data Protection Officer Contact:
  For specific privacy-related inquiries, you may contact our designated privacy contact at: support@mainstreetmenuclub.com with "Privacy Inquiry" in the subject line.