Privacy Policy
This Privacy Policy describes how Giordanos ("we," "us," or "our") collects, uses, discloses, and protects your personal information when you visit our website at giordanosdelivery.rest, place orders through our platform, or otherwise interact with our food delivery services. Please read this policy carefully to understand our practices regarding your personal data and how we will treat it.
By accessing or using our website, mobile applications, or any of our services, you acknowledge that you have read, understood, and agree to the terms of this Privacy Policy. If you do not agree with this policy, please discontinue use of our services immediately.
We are committed to protecting your privacy and handling your personal information in an open and transparent manner. This Privacy Policy complies with applicable United States federal and state privacy laws, including the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA), the Federal Trade Commission (FTC) Act, and other applicable consumer protection regulations.
1. Information We Collect
We collect various types of information in connection with the services we provide. The categories of personal information we may collect include the following:
1.1 Personal Identification Information
When you create an account, place an order, or contact us, we may collect information that identifies you as an individual, including but not limited to:
- Full name
- Email address
- Phone number
- Billing address and delivery address
- Date of birth (for age verification purposes)
- Username and password (for registered accounts)
- Profile photo (if voluntarily provided)
1.2 Payment and Financial Information
To process your food orders and payments, we collect financial information such as:
- Credit card or debit card details (processed securely through third-party payment processors)
- PayPal, Apple Pay, Google Pay, or other digital wallet credentials
- Billing address associated with your payment method
- Transaction history and order records
Please note that we do not store your full payment card numbers on our servers. All payment data is transmitted and stored using industry-standard encryption through our certified payment processing partners.
1.3 Order and Transaction Data
When you use our food delivery services, we collect information related to your orders, including:
- Items ordered and menu preferences
- Delivery address and instructions
- Order history and frequency
- Special dietary requirements or preferences you voluntarily provide
- Customer reviews and feedback submitted through our platform
- Coupon codes, loyalty points, and promotional redemptions
1.4 Usage and Technical Data
When you interact with our website or applications, we automatically collect certain technical information, including:
- IP address and approximate geographic location
- Browser type and version
- Operating system and device type
- Pages visited, time spent on pages, and navigation paths
- Referring URLs and exit pages
- Clickstream data and interaction logs
- Time zone settings and language preferences
- Screen resolution and display settings
1.5 Location Data
To provide accurate food delivery services, we may collect precise or approximate location data, including:
- GPS coordinates from your mobile device (with your permission)
- Location inferred from your IP address
- Delivery addresses you provide
- Location data used to determine available restaurant options near you
You may disable location sharing through your device settings; however, this may affect the functionality of our delivery services.
1.6 Communications Data
When you contact us or communicate with us through any channel, we may collect:
- Content of emails, chat messages, or phone calls with our support team
- Feedback, survey responses, and reviews
- Social media interactions if you contact us via social platforms
1.7 Cookies and Tracking Technologies
We use cookies, web beacons, pixels, and similar tracking technologies to collect information about your browsing behavior on our website. For detailed information on our use of cookies, please refer to Section 8 of this Privacy Policy.
2. How We Use Your Information
We use the personal information we collect for a variety of legitimate business purposes, including:
2.1 Service Provision and Order Fulfillment
- Processing and fulfilling your food delivery orders
- Communicating order confirmations, updates, and delivery status notifications
- Managing your account and providing customer support
- Verifying your identity and preventing fraudulent transactions
- Processing payments and issuing refunds when applicable
- Connecting you with our delivery partners and restaurant locations
2.2 Personalization and User Experience
- Remembering your preferences and saved addresses for faster checkout
- Personalizing menu recommendations based on your order history
- Customizing promotional offers relevant to your interests
- Improving the overall user interface and functionality of our platform
2.3 Marketing and Promotions
- Sending promotional emails, newsletters, and special offers (with your consent where required)
- Running targeted advertising campaigns on third-party platforms
- Notifying you about new menu items, seasonal promotions, and loyalty program updates
- Conducting surveys and market research to improve our services
You may opt out of marketing communications at any time by using the unsubscribe link in our emails or contacting us directly at [email protected].
2.4 Analytics and Service Improvement
- Analyzing usage patterns and trends to improve our platform
- Monitoring website performance and identifying technical issues
- Conducting A/B testing and feature experiments
- Generating aggregated, anonymized reports for internal business purposes
2.5 Legal Compliance and Safety
- Complying with applicable laws, regulations, and legal obligations
- Responding to lawful requests from government authorities and law enforcement
- Enforcing our Terms of Service and other agreements
- Protecting the rights, property, and safety of our users, employees, and the public
- Preventing, detecting, and investigating fraud, abuse, and security incidents
3. How We Share Your Information
We do not sell your personal information to third parties for monetary compensation. However, we may share your information in the following circumstances:
3.1 Service Providers and Business Partners
We engage trusted third-party companies and individuals to perform services on our behalf. These service providers have access to your personal information only to the extent necessary to perform their functions and are contractually obligated to keep your information confidential. Our service providers include:
- Payment Processors: To securely handle payment transactions
- Delivery Partners: To fulfill your food delivery orders
- Cloud Hosting Providers: To store data and power our digital infrastructure
- Analytics Providers: Such as Google Analytics, to help us understand website usage
- Email Marketing Platforms: To manage and send our marketing communications
- Customer Support Tools: To facilitate communication between you and our support team
- Fraud Prevention Services: To detect and prevent unauthorized transactions
3.2 Restaurant Partners
When you place an order through our platform, we share necessary information (such as your name, delivery address, and order details) with the restaurant preparing your food. This is essential for order fulfillment and delivery coordination.
3.3 Legal Requirements and Law Enforcement
We may disclose your personal information if required to do so by law or in response to valid legal processes, including:
- Court orders, subpoenas, or other judicial processes
- Requests from federal, state, or local law enforcement agencies
- Regulatory investigations or compliance requirements
- Emergency situations involving risk to the safety of individuals
3.4 Business Transfers
In the event of a merger, acquisition, sale of assets, bankruptcy, or other business transition, your personal information may be transferred to the successor entity. We will provide notice before your personal information is transferred and becomes subject to a different privacy policy.
3.5 With Your Consent
We may share your information with other parties when you have given us explicit consent to do so, such as when participating in joint promotions or referral programs.
3.6 Aggregated and De-Identified Data
We may share aggregated or de-identified information that cannot reasonably be used to identify you. This data may be used for industry analysis, demographic profiling, marketing, and other business purposes.
4. Data Security
We take the security of your personal information seriously and implement a range of technical, administrative, and physical safeguards to protect your data from unauthorized access, use, disclosure, alteration, or destruction.
4.1 Technical Security Measures
- Encryption: All data transmitted between your browser and our servers is protected using Secure Socket Layer (SSL) / Transport Layer Security (TLS) encryption
- Secure Payment Processing: Payment card data is handled in compliance with Payment Card Industry Data Security Standards (PCI DSS)
- Access Controls: We implement strict role-based access controls to limit access to personal data to authorized personnel only
- Firewalls and Intrusion Detection: We use firewalls and intrusion detection systems to protect our network infrastructure
- Regular Security Audits: We conduct periodic security assessments and vulnerability testing
4.2 Administrative Security Measures
- Employee training on data privacy and security best practices
- Confidentiality agreements with staff who have access to personal data
- Data minimization policies to limit collection to only what is necessary
- Incident response plans for potential data breaches
4.3 Limitations
While we strive to use commercially acceptable means to protect your personal information, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security and encourage you to use strong, unique passwords and keep your account credentials confidential. If you suspect any unauthorized access to your account, please contact us immediately.
5. Your Privacy Rights
Depending on your location and applicable law, you may have certain rights regarding your personal information. We respect and honor these rights as described below.
5.1 Rights Under the California Consumer Privacy Act (CCPA/CPRA)
If you are a California resident, you have the following rights under the CCPA as amended by the CPRA:
| Right | Description |
|---|---|
| Right to Know | You have the right to request information about the categories and specific pieces of personal information we have collected about you, the sources of that information, the business purposes for collecting it, and the third parties with whom we share it. |
| Right to Delete | You have the right to request that we delete personal information we have collected from you, subject to certain exceptions provided by law. |
| Right to Correct | You have the right to request that we correct inaccurate personal information we maintain about you. |
| Right to Opt-Out of Sale/Sharing | You have the right to opt out of the sale or sharing of your personal information for cross-context behavioral advertising purposes. |
| Right to Limit Use of Sensitive Personal Information | You have the right to limit our use and disclosure of sensitive personal information to purposes necessary for providing our services. |
| Right to Non-Discrimination | We will not discriminate against you for exercising any of your CCPA/CPRA rights. |
| Right to Data Portability | You have the right to receive your personal information in a portable, readily usable format. |
5.2 General Privacy Rights (All Users)
Regardless of your location, all users of our services have the right to:
- Access: Request a copy of the personal information we hold about you
- Correction: Request that we update or correct inaccurate information in your profile
- Deletion: Request deletion of your account and associated personal data, subject to legal retention requirements
- Opt-Out of Marketing: Unsubscribe from marketing communications at any time
- Data Portability: Receive your data in a structured, machine-readable format
- Withdraw Consent: Where processing is based on your consent, withdraw that consent at any time
5.3 How to Exercise Your Rights
To exercise any of the rights described above, please contact us using the following methods:
- Email: [email protected]
- Website: giordanosdelivery.rest
We will verify your identity before processing your request to protect your privacy and security. We aim to respond to all verified requests within 45 days. If we require additional time, we will notify you of the reason and extension period within the initial 45-day period.
6. Cookies and Tracking Technologies
Our website uses cookies and similar tracking technologies to enhance your experience, analyze site traffic, and serve relevant content and advertisements.
6.1 Types of Cookies We Use
- Strictly Necessary Cookies: Essential for the website to function properly, including maintaining your session and processing orders
- Performance and Analytics Cookies: Help us understand how visitors interact with our website by collecting anonymous usage statistics
- Functional Cookies: Enable personalized features such as remembering your preferences, language settings, and saved addresses
- Marketing and Advertising Cookies: Used to deliver relevant advertisements and track the effectiveness of our marketing campaigns
6.2 Managing Your Cookie Preferences
You can control and manage cookies through your browser settings. Most browsers allow you to refuse cookies or alert you when cookies are being sent. However, disabling certain cookies may affect the functionality of our website and services. You may also use our Cookie Preference Center on our website to manage your consent preferences.
For more detailed information about the specific cookies we use, their purposes, and how to manage them, please refer to our dedicated Cookie Policy available on our website at giordanosdelivery.rest.
7. Data Retention
We retain your personal information for as long as necessary to fulfill the purposes for which it was collected, to provide our services, to comply with our legal obligations, to resolve disputes, and to enforce our agreements.
7.1 Retention Periods
| Category of Data | Retention Period |
|---|---|
| Account Information | Duration of account plus 3 years after account closure |
| Order and Transaction Records | 7 years (for tax and accounting compliance) |
| Payment Information | As required by payment processors and PCI DSS standards |
| Customer Support Communications | 3 years from the date of last interaction |
| Marketing Preferences | Until you opt out or request deletion |
| Website Usage and Analytics Data | 26 months from collection |
| Legal and Compliance Records | As required by applicable law (typically 7 years) |
| Cookies and Session Data | Varies by cookie type (session to 24 months) |
When your personal information is no longer needed, we will securely delete or anonymize it in accordance with our data retention procedures and applicable legal requirements.
8. Children's Privacy
Our food delivery services are intended for adults aged 18 years and older. We do not knowingly collect, solicit, or process personal information from individuals under the age of 18.
If we become aware that we have inadvertently collected personal information from a child under the age of 18 without verifiable parental consent, we will take immediate steps to delete that information from our systems. If you believe we may have collected information from or about a minor, please contact us immediately at [email protected].
We comply with the Children's Online Privacy Protection Act (COPPA) and other applicable regulations regarding the online privacy of minors. Parents or legal guardians who believe their child has provided personal information to us without consent are encouraged to contact us so we can investigate and take appropriate action.
9. International Data Transfers
Giordanos is based in the United States and your personal information is primarily processed and stored on servers located within the United States. However, some of our service providers and technology partners may operate in other countries, which may mean your data is transferred to, stored in, or processed in countries outside the United States.
9.1 Transfer Safeguards
When we transfer personal data internationally, we ensure that appropriate safeguards are in place to protect your information, including:
- Contractual clauses with service providers requiring equivalent levels of data protection
- Selecting partners who are certified under recognized international data transfer frameworks
- Implementing technical and organizational security measures to protect transferred data
- Conducting due diligence on third-party providers to ensure data protection compliance
9.2 Cross-Border Data Flow
By using our services, you acknowledge that your personal information may be transferred to and processed in countries that may have different data protection standards than your country of residence. We take all reasonable steps to ensure that your data is treated securely and in accordance with this Privacy Policy regardless of where it is processed.
10. Third-Party Links and Services
Our website may contain links to third-party websites, applications, or services that are not operated or controlled by Giordanos. This Privacy Policy applies only to our services and website. We are not responsible for the privacy practices of third-party sites and encourage you to review the privacy policies of any third-party services you access through our platform.
Third-party services we may link to or integrate with include social media platforms, review sites, mapping services, and payment gateways. Each of these services has its own privacy policy and data practices.
11. Do Not Track Signals
Some web browsers have a "Do Not Track" (DNT) feature that signals to websites that you do not wish to have your online activities tracked. Our website currently does not respond to DNT signals in a uniform way, as there is no industry-wide standard for honoring such signals. However, you can manage your tracking preferences through our cookie settings and by adjusting your browser configuration.
We continue to monitor developments in DNT standards and will update our practices accordingly as universally accepted standards emerge.
12. California-Specific Privacy Disclosures
In addition to the rights described in Section 5 of this Privacy Policy, California residents are entitled to the following additional disclosures under the CCPA/CPRA:
12.1 Categories of Personal Information Collected in the Past 12 Months
| Category | Examples | Collected |
|---|---|---|
| Identifiers | Name, email, phone, IP address | Yes |
| Commercial Information | Order history, transaction records | Yes |
| Internet or Electronic Network Activity | Browsing history, interaction data | Yes |
| Geolocation Data | Delivery addresses, GPS data | Yes |
| Financial Information | Payment card data (via processors) | Yes |
| Inferences | Preferences drawn from usage data | Yes |
| Sensitive Personal Information | Account login credentials | Yes |
12.2 Shine the Light Law
Under California Civil Code Section 1798.83 (the "Shine the Light" law), California residents who provide personal information in obtaining products or services for personal, family, or household use are entitled to request and obtain from us once a calendar year information about the customer information we shared, if any, with other businesses for their own direct marketing uses. To make such a request, please contact us at [email protected].
13. Filing Complaints with Regulatory Authorities
If you believe that we have violated your privacy rights or applicable privacy laws, we encourage you to first contact us directly so that we can attempt to resolve your concerns.
13.1 Contact Us First
Before filing a formal complaint with a regulatory authority, please reach out to us at:
- Email: [email protected]
- Website: giordanosdelivery.rest
We will do our best to address your concerns promptly and fairly.
13.2 California Privacy Protection Agency (CPPA)
California residents may file complaints with the California Privacy Protection Agency (CPPA), which is the state agency responsible for enforcing the CCPA/CPRA:
- Website: cppa.ca.gov
- Address: California Privacy Protection Agency, 2101 Arena Boulevard, Sacramento, CA 95834
13.3 Federal Trade Commission (FTC)
All consumers in the United States may file a complaint with the Federal Trade Commission (FTC) regarding unfair or deceptive business practices:
- Website: www.ftc.gov/complaint
- Phone: 1-877-FTC-HELP (1-877-382-4357)
13.4 State Attorney General Offices
You may also file a complaint with your state's Attorney General office. Many state AG offices have consumer protection divisions that handle privacy-related complaints.
14. Updates to This Privacy Policy
We reserve the right to update or modify this Privacy Policy at any time to reflect changes in our business practices, technology, legal requirements, or for other operational reasons. When we make material changes to this policy, we will:
- Post the updated Privacy Policy on our website with a new "Last Updated" date
- Send an email notification to registered users with a summary of significant changes
- Display a prominent notice on our website for a reasonable period following the update
Your continued use of our services after any changes to this Privacy Policy constitutes your acceptance of the revised policy. We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.
15. Contact Information
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please do not hesitate to contact us. We are committed to addressing your privacy inquiries promptly and transparently.
| Company | Giordanos |
|---|---|
| [email protected] | |
| Website | giordanosdelivery.rest |
When contacting us regarding a privacy request, please include your full name, email address associated with your account, and a clear description of your request or concern. This will help us process your inquiry efficiently and accurately.
Effective Date: This Privacy Policy is effective as of July 18, 2026. All previous versions of our Privacy Policy are superseded by this document.