Privacy Policy
This Privacy Policy describes how Giordanos ("we," "us," or "our") collects, uses, discloses, and safeguards your personal information when you visit our website at giordanos-meal.digital, place orders, use our digital services, or otherwise interact with us. Please read this policy carefully. By accessing or using our services, you acknowledge that you have read, understood, and agree to the practices described herein.
We are committed to protecting the privacy of every individual who interacts with our platform. This Privacy Policy has been prepared in accordance with applicable United States federal and state privacy laws, including the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA), the Federal Trade Commission Act (FTC Act), and other applicable consumer protection regulations.
1. About Us
Giordanos is a food service business operating through its digital platform. For questions, concerns, or requests relating to this Privacy Policy, you may contact us using the following details:
| Business Name | Giordanos |
|---|---|
| Website | giordanos-meal.digital |
| Email Address | [email protected] |
2. Scope of This Privacy Policy
This Privacy Policy applies to all personal information collected by Giordanos through the following channels:
- Our website located at giordanos-meal.digital
- Online food ordering and delivery systems
- Email, telephone, and other communication channels
- Loyalty programs, promotions, and contests
- Social media pages and third-party platforms where we have a presence
- Any other digital or physical touchpoints where we interact with customers
This policy does not apply to third-party websites, applications, or services that may be linked to from our platform. We encourage you to review the privacy policies of any third-party services you access through our website.
3. Information We Collect
We collect various categories of personal information depending on how you interact with our services. These categories are described in detail below.
3.1 Personal Identification Information
When you create an account, place an order, or contact us, we may collect:
- Full name
- Email address
- Phone number
- Mailing or delivery address
- Date of birth (where required for age verification or promotional purposes)
- Username and password (stored in encrypted form)
3.2 Payment and Transaction Information
When you make a purchase through our platform, we collect:
- Payment card details (processed securely through PCI-DSS compliant third-party payment processors)
- Billing address
- Order history and transaction records
- Purchase amounts and payment confirmations
3.3 Usage and Behavioral Data
As you navigate and interact with our website, we automatically collect:
- Pages visited, time spent on pages, and navigation paths
- Search queries entered on our platform
- Menu items viewed, added to cart, or ordered
- Click-through rates and interaction data
- Referral URLs and traffic sources
- Session duration and frequency of visits
3.4 Device and Technical Information
We collect technical information from the devices you use to access our services, including:
- IP address
- Browser type and version
- Operating system and device type
- Screen resolution and display settings
- Device identifiers and advertising identifiers
- Time zone settings and language preferences
- Network provider information
3.5 Location Data
To facilitate food delivery and improve our services, we may collect:
- Delivery addresses you provide
- General geographic location derived from your IP address
- Precise GPS location, if you grant permission through your device settings
3.6 Communications and Customer Support Data
When you contact us or engage with our team, we collect:
- Contents of emails, messages, or chat conversations
- Records of telephone calls (where permitted by applicable law)
- Feedback, complaints, and survey responses
- Customer service interaction logs
3.7 Cookie and Tracking Data
We use cookies, web beacons, pixel tags, and similar tracking technologies to collect information about your browsing behavior. For detailed information about our use of cookies, please refer to Section 9 of this Privacy Policy.
3.8 Information from Third Parties
We may receive information about you from third-party sources, including:
- Social media platforms (if you connect your account or interact with our social media presence)
- Third-party delivery partners and aggregator platforms
- Analytics and advertising partners
- Publicly available data sources
4. How We Use Your Information
We use the personal information we collect for the following purposes, all of which are grounded in legitimate business interests, contractual necessity, legal obligation, or your consent:
4.1 Service Provision and Order Fulfillment
- Processing and fulfilling your food orders
- Coordinating delivery logistics and communicating estimated arrival times
- Managing your account and maintaining your order history
- Processing payments and issuing receipts or refunds
- Verifying your identity and preventing fraudulent transactions
4.2 Customer Communication
- Sending order confirmations, updates, and delivery notifications
- Responding to your inquiries, complaints, and requests
- Notifying you of changes to our menu, services, or policies
- Sending important account-related alerts and security notifications
4.3 Marketing and Promotional Activities
- Sending newsletters, special offers, and promotional communications (with your consent or opt-in)
- Administering loyalty programs, contests, and reward schemes
- Personalizing promotions and recommendations based on your preferences and order history
- Conducting targeted advertising through digital channels
You may opt out of receiving marketing communications at any time by clicking the "unsubscribe" link in any marketing email or by contacting us at [email protected].
4.4 Analytics and Service Improvement
- Analyzing website traffic, user behavior, and service performance
- Identifying trends and improving our menu offerings
- Conducting internal research and business analysis
- Testing new features, designs, and functionality
- Monitoring system performance and resolving technical issues
4.5 Legal Compliance and Safety
- Complying with applicable federal, state, and local laws and regulations
- Responding to lawful requests from government authorities or law enforcement
- Enforcing our Terms of Service and other agreements
- Protecting the rights, property, and safety of Giordanos, our customers, and the public
- Detecting, investigating, and preventing fraudulent or illegal activity
5. Sharing Your Information with Third Parties
We respect the confidentiality of your personal information. We do not sell your personal information to third parties for monetary compensation. However, we may share your information in the following circumstances:
5.1 Service Providers and Business Partners
We engage trusted third-party service providers who assist us in operating our business and delivering services to you. These providers may include:
- Payment processors: To handle secure payment transactions
- Delivery partners: To fulfill and coordinate food delivery
- Cloud hosting providers: To store and manage data infrastructure
- Email and SMS service providers: To send transactional and marketing communications
- Analytics providers: To help us understand website usage and improve our services
- Customer support platforms: To manage and respond to customer inquiries
- Marketing and advertising platforms: To deliver targeted promotions
All third-party service providers are required to handle your personal information in accordance with this Privacy Policy and are contractually prohibited from using it for any unauthorized purposes.
5.2 Legal Requirements and Law Enforcement
We may disclose your personal information if required to do so by law or in good faith belief that such disclosure is necessary to:
- Comply with a legal obligation, court order, or government request
- Protect and defend the rights or property of Giordanos
- Prevent or investigate possible wrongdoing in connection with our services
- Protect the personal safety of users or the public
- Protect against legal liability
5.3 Business Transfers
In the event of a merger, acquisition, reorganization, bankruptcy, or sale of all or a portion of our assets, your personal information may be transferred to the acquiring entity. We will notify you via email or a prominent notice on our website prior to any such transfer and before your information becomes subject to a materially different privacy policy.
5.4 Aggregated and De-identified Data
We may share aggregated, anonymized, or de-identified data that cannot reasonably be used to identify you with third parties for research, analytics, marketing, or business development purposes.
6. Data Security
We take the security of your personal information seriously and implement a range of technical, administrative, and physical safeguards designed to protect your data from unauthorized access, disclosure, alteration, or destruction.
6.1 Security Measures We Employ
- Encryption: All data transmitted between your browser and our servers is protected using industry-standard SSL/TLS encryption.
- Access Controls: We restrict access to personal information to authorized personnel only, based on the principle of least privilege.
- Secure Payment Processing: Payment data is processed through PCI-DSS compliant systems and is not stored on our servers.
- Password Hashing: Account passwords are stored using strong cryptographic hashing algorithms.
- Regular Security Audits: We conduct periodic vulnerability assessments and security reviews.
- Incident Response: We maintain a data breach response plan to promptly address any security incidents.
6.2 Limitations of Security
While we strive to protect your personal information, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security. In the event of a data breach that poses a risk to your rights or freedoms, we will notify affected users and relevant authorities as required by applicable law, including compliance with state data breach notification laws applicable across the United States.
7. Your Privacy Rights
Depending on your location and applicable law, you may have certain rights regarding your personal information. We are committed to honoring these rights and responding to verifiable requests within the timeframes required by law.
7.1 Rights Under the California Consumer Privacy Act (CCPA/CPRA)
If you are a California resident, you have the following rights under the CCPA as amended by the CPRA:
| Right | Description |
|---|---|
| Right to Know | You have the right to request information about the categories and specific pieces of personal information we collect, use, disclose, and sell about you. |
| Right to Delete | You have the right to request deletion of personal information we have collected about you, subject to certain exceptions. |
| Right to Correct | You have the right to request correction of inaccurate personal information we maintain about you. |
| Right to Opt-Out | You have the right to opt out of the sale or sharing of your personal information for cross-context behavioral advertising. |
| Right to Limit Use of Sensitive Information | You have the right to limit our use and disclosure of sensitive personal information to certain permitted purposes. |
| Right to Non-Discrimination | We will not discriminate against you for exercising your CCPA/CPRA rights. |
| Right to Data Portability | You have the right to receive a portable copy of your personal information in a structured, commonly used format. |
7.2 General Privacy Rights (All Users)
Regardless of your location, we provide the following rights to all users of our platform:
- Right of Access: Request a copy of the personal information we hold about you.
- Right of Correction: Request correction of inaccurate or incomplete personal information.
- Right of Deletion: Request deletion of your personal information, where we have no legal obligation to retain it.
- Right to Withdraw Consent: Withdraw consent for processing activities based on consent, at any time.
- Right to Opt-Out of Marketing: Unsubscribe from marketing communications at any time.
7.3 How to Exercise Your Rights
To exercise any of your privacy rights, you may submit a verifiable request by:
- Emailing us at [email protected] with the subject line "Privacy Rights Request"
- Visiting our website at giordanos-meal.digital and using any available privacy request form
We will acknowledge your request within 10 business days and respond fully within 45 days. If additional time is needed, we will notify you and may extend the response period by an additional 45 days as permitted by applicable law. We may need to verify your identity before processing your request to ensure the security of your information.
8. Data Retention
We retain personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. Our general retention guidelines are as follows:
| Data Category | Retention Period |
|---|---|
| Account and profile information | Duration of account activity, plus 3 years after account closure |
| Order and transaction records | 7 years (for tax, accounting, and legal compliance purposes) |
| Payment processing records | As required by PCI-DSS standards and applicable financial regulations |
| Customer service communications | 3 years from the date of last interaction |
| Marketing preferences and consent records | Until consent is withdrawn, plus 3 years |
| Usage and analytics data | Up to 26 months in aggregated or de-identified form |
| Security and fraud prevention logs | 2 years from the date of the relevant event |
When personal information is no longer needed, we will securely delete or anonymize it in accordance with our data retention and disposal procedures.
9. Cookies and Tracking Technologies
Our website uses cookies and similar tracking technologies to enhance your browsing experience, analyze website traffic, and deliver personalized content and advertising.
9.1 Types of Cookies We Use
- Strictly Necessary Cookies: Essential for the operation of our website, enabling core functions such as order processing, account authentication, and security.
- Functional Cookies: Allow us to remember your preferences (such as language settings and saved delivery addresses) to improve your experience.
- Analytics Cookies: Help us understand how visitors interact with our website by collecting aggregated usage data. We may use services such as Google Analytics for this purpose.
- Marketing and Advertising Cookies: Used to deliver relevant advertisements and track the effectiveness of our marketing campaigns. These may include third-party cookies from advertising platforms.
9.2 Managing Your Cookie Preferences
You can control and manage cookies through your browser settings. Most browsers allow you to refuse or delete cookies. Please note that disabling certain cookies may affect the functionality of our website and your ability to use certain features, including the ordering system.
You may also opt out of certain third-party advertising cookies through industry opt-out tools such as:
- The Digital Advertising Alliance's opt-out tool at optout.aboutads.info
- The Network Advertising Initiative's opt-out tool at optout.networkadvertising.org
For more detailed information about the specific cookies we use, their purposes, and how to manage them, please refer to our full Cookie Policy available on our website at giordanos-meal.digital.
10. Children's Privacy
Giordanos does not knowingly solicit or collect personal information from minors under the age of 18. Our website and services are not directed at children, and we do not intentionally market our services to individuals under 18 years of age.
In accordance with the Children's Online Privacy Protection Act (COPPA), if we become aware that we have inadvertently collected personal information from a child under the age of 13 without verifiable parental consent, we will take immediate steps to delete such information from our records.
If you are a parent or guardian and believe that your child has provided us with personal information without your consent, please contact us immediately at [email protected] so that we can investigate and take appropriate action.
11. International Data Transfers
Giordanos operates primarily within the United States. However, some of the third-party service providers we work with may be located in, or operate from, countries outside of the United States. In such cases, your personal information may be transferred to, stored in, or processed in other countries.
When we transfer personal information internationally, we take steps to ensure that appropriate safeguards are in place to protect your information and that such transfers comply with applicable U.S. laws and regulations. These safeguards may include:
- Entering into data processing agreements with third-party providers that include contractual protections for personal data
- Working only with providers that maintain adequate data protection standards
- Ensuring transfers to third countries comply with applicable U.S. privacy frameworks and obligations
By using our services, you acknowledge and consent to the transfer of your personal information to countries outside your country of residence, where data protection laws may differ from those in your home jurisdiction.
12. Do Not Track Signals
Some web browsers offer a "Do Not Track" (DNT) feature that signals to websites that you do not wish to have your online activity tracked. Currently, there is no universally accepted standard for how websites should respond to DNT signals. As a result, our website does not currently alter its data collection and usage practices in response to DNT signals. We will continue to monitor developments in this area and update our practices accordingly.
California residents may also exercise their right to opt out of the sale or sharing of their personal information as described in Section 7 of this Privacy Policy.
13. Third-Party Links and Services
Our website may contain links to third-party websites, applications, or services that are not operated or controlled by Giordanos. These may include social media platforms, delivery partner websites, or promotional partner pages. This Privacy Policy does not apply to those third-party services, and we are not responsible for the privacy practices of any third party.
We strongly encourage you to review the privacy policies of any third-party websites or services you access through links on our platform. Your interactions with those services are governed by their respective privacy policies and terms of use.
14. California Privacy Rights — Additional Disclosures
For California residents, the following additional disclosures are provided in accordance with the CCPA and CPRA:
14.1 Categories of Personal Information Collected in the Past 12 Months
- Identifiers (name, email address, IP address, phone number)
- Commercial information (purchase history, transaction records)
- Internet or electronic network activity information (browsing history, interactions with our website)
- Geolocation data (delivery address, approximate location from IP)
- Inferences drawn from personal information to create profiles reflecting preferences or behavior
14.2 Business or Commercial Purpose for Collecting Personal Information
Personal information is collected for the purposes of providing our food ordering and delivery services, processing payments, communicating with customers, conducting analytics, and complying with legal obligations, as described in detail in Section 4 of this Privacy Policy.
14.3 California "Shine the Light" Law
Under California Civil Code Section 1798.83, California residents may request information about our disclosures of personal information to third parties for those third parties' direct marketing purposes. To make such a request, please contact us at [email protected].
15. How to File a Complaint
If you believe that your privacy rights have been violated or that we have not adequately addressed your privacy concerns, you have the right to file a complaint with the relevant data protection or consumer protection authority.
15.1 Contact Us First
We encourage you to contact us first so that we can attempt to resolve your concern directly:
- Email: [email protected]
- Website: giordanos-meal.digital
15.2 Federal Trade Commission (FTC)
If you believe that we have engaged in unfair or deceptive practices, you may file a complaint with the Federal Trade Commission (FTC), the primary federal consumer protection agency in the United States:
- Website: www.ftc.gov
- Phone: 1-877-382-4357
- Address: Federal Trade Commission, 600 Pennsylvania Avenue NW, Washington, DC 20580
15.3 California Residents — California Privacy Protection Agency (CPPA)
California residents may file complaints regarding violations of the CCPA/CPRA with the California Privacy Protection Agency (CPPA):
- Website: cppa.ca.gov
- Email: [email protected]
15.4 State Attorneys General
Residents of any U.S. state may also file privacy-related complaints with their respective State Attorney General's office. Contact information for your state's Attorney General can be found through the National Association of Attorneys General at www.naag.org.
16. Changes to This Privacy Policy
We reserve the right to update or modify this Privacy Policy at any time to reflect changes in our business practices, applicable laws, or service offerings. When we make material changes, we will:
- Update the "Last Updated" date at the top of this Privacy Policy
- Post the revised Privacy Policy on our website at giordanos-meal.digital
- Where required by law or where changes are materially significant, notify you by email or through a prominent notice on our website
Your continued use of our website and services following the posting of any changes constitutes your acceptance of the revised Privacy Policy. We encourage you to review this page periodically to stay informed about how we protect your personal information.
17. Contact Us
If you have any questions, concerns, or requests relating to this Privacy Policy or our data practices, please do not hesitate to reach out to us:
| Business Name | Giordanos |
|---|---|
| [email protected] | |
| Website | giordanos-meal.digital |
We are committed to working with you to resolve any privacy concerns promptly and transparently. Our team will acknowledge all privacy-related inquiries within 5 business days and provide a substantive response within the timeframes required under applicable law.