Privacy Policy

Effective Date: June 4, 2026 | Last Updated: June 4, 2026

Important Notice: This Privacy Policy explains how Giordanos collects, uses, stores, and protects your personal information when you visit our website at meal-giordanos.rest or use any of our food-related services. Please read this document carefully before using our platform.

1. Introduction and Who We Are

Welcome to Giordanos. We are a food service business operating in the United States, committed to delivering high-quality dining experiences while respecting and protecting your personal privacy at every step of your interaction with us.

This Privacy Policy applies to all users who visit our website located at meal-giordanos.rest, place food orders, subscribe to our newsletters, participate in promotions, or otherwise interact with us through digital or physical channels.

Our contact information for privacy-related matters is as follows:

Company Name	Giordanos
Website	meal-giordanos.rest
Email Address	[email protected]

By using our website or services, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with the terms set forth herein, we kindly request that you discontinue use of our website and services.

2. Legal Framework and Applicable Laws

As a business operating in the United States, Giordanos complies with the following applicable privacy and data protection laws:

California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA) — for users and customers residing in the State of California.
Federal Trade Commission Act (FTC Act) — governing unfair or deceptive practices in commerce, including data privacy and security obligations.
Children's Online Privacy Protection Act (COPPA) — protecting the privacy of children under the age of 13 online.
CAN-SPAM Act — governing commercial electronic communications and email marketing practices.
Electronic Communications Privacy Act (ECPA) — protecting electronic communications from unauthorized interception or access.
Applicable state-level data breach notification laws requiring timely disclosure to affected individuals.

Where required, we implement appropriate technical and organizational measures to ensure full compliance with these legal obligations. California residents are encouraged to review Section 11 of this policy for information specifically relevant to their rights under CCPA/CPRA.

3. Information We Collect

Giordanos collects various categories of personal and non-personal information to provide, improve, and personalize our food services. The types of data we collect are described in detail below.

3.1 Personal Information You Provide Directly

When you interact with our website or services, you may voluntarily provide us with the following categories of personal information:

Identity Information: Your full name, username, or display name used when creating an account or placing an order.
Contact Information: Email address, phone number, and mailing or delivery address.
Account Credentials: Username and encrypted password when registering for an account on our platform.
Payment Information: Credit card numbers, debit card information, billing address, and other financial data necessary to process transactions. Note that full payment card details are handled by our PCI-DSS-compliant third-party payment processors and are not stored on our servers.
Order Information: Details of food items ordered, special dietary requests, delivery preferences, and order history.
Communication Data: Messages, feedback, complaints, or inquiries you submit via contact forms, email, or customer support channels.
Marketing Preferences: Your choices regarding receiving promotional materials, newsletters, and special offers from us.

3.2 Information Collected Automatically

When you browse our website at meal-giordanos.rest, we automatically collect certain technical and usage-related information, including:

Device Information: Type of device (desktop, mobile, tablet), operating system, browser type and version, and unique device identifiers.
Log Data: IP address, browser type, referring/exit pages, pages visited on our site, date and time stamps, and clickstream data.
Usage Data: How you navigate our website, which food categories you browse, how long you spend on each page, and actions you take (such as adding items to a cart).
Location Data: General geographic location derived from your IP address, or precise location data if you grant permission through your browser or mobile device settings.
Cookie and Tracking Data: Information collected through cookies, web beacons, pixel tags, and similar tracking technologies. Please see Section 8 for detailed information on our cookie practices.

3.3 Information From Third-Party Sources

We may also receive information about you from third-party sources, including:

Social media platforms (such as Facebook, Instagram, or Google) if you connect your social account to our services or interact with our social media presence.
Third-party food delivery aggregators or partner platforms that facilitate orders on our behalf.
Analytics providers that help us understand how users interact with our website.
Marketing partners and advertising networks that provide demographic and behavioral insights.
Fraud prevention services that flag potentially fraudulent account activity or transactions.

4. How We Use Your Information

Giordanos uses the information we collect for a variety of legitimate business purposes, all aimed at delivering excellent food service and improving your overall experience with us.

4.1 Service Provision and Order Fulfillment

Processing and fulfilling your food orders, including coordinating delivery or pickup logistics.
Creating and managing your customer account.
Processing payments and issuing receipts or invoices.
Communicating order confirmations, status updates, and delivery notifications.
Responding to your customer service inquiries, complaints, or feedback.
Facilitating loyalty programs or rewards where applicable.

4.2 Website Improvement and Analytics

Analyzing how visitors use our website to improve navigation, functionality, and content.
Conducting internal research and data analysis to understand customer preferences and food ordering trends.
Testing new features, menu items, and website functionalities.
Monitoring website performance, identifying technical errors, and ensuring uptime reliability.
Generating anonymized and aggregated statistical reports for business planning purposes.

4.3 Marketing and Promotional Communications

Sending you promotional emails, newsletters, and special offers about our food and services, where you have consented or where we have a legitimate interest in doing so.
Personalizing the content and advertisements you see based on your browsing history and food preferences.
Conducting targeted advertising campaigns via social media platforms and third-party ad networks.
Notifying you about seasonal promotions, limited-time menu items, and exclusive deals.

You may opt out of marketing communications at any time by clicking the "unsubscribe" link in any marketing email or by contacting us at [email protected].

4.4 Legal Compliance and Safety

Complying with applicable federal and state laws, regulations, and legal obligations.
Responding to lawful requests from government authorities, courts, or law enforcement agencies.
Detecting, preventing, and investigating fraud, unauthorized access, or other illegal activities.
Enforcing our Terms of Service and other applicable agreements.
Protecting the safety, rights, and property of Giordanos, our customers, and the public.

5. Sharing Your Information With Third Parties

Giordanos does not sell your personal information to third parties for monetary consideration. However, we may share your information with trusted partners and service providers under specific circumstances as described below.

5.1 Service Providers and Business Partners

We engage third-party companies and individuals to perform certain functions on our behalf. These service providers have access to your personal information only to perform specific tasks and are contractually obligated to protect your data. Categories of service providers include:

Payment Processors: Companies that securely handle credit and debit card transactions on our behalf.
Delivery Partners: Third-party couriers or food delivery services that fulfill your orders.
Cloud Hosting Providers: Platforms that host our website and store data securely.
Email Service Providers: Platforms used to send transactional and marketing emails.
Analytics Providers: Services such as Google Analytics that help us understand website traffic and user behavior.
Customer Support Tools: Platforms that manage customer inquiries and support tickets.
Fraud Prevention Services: Companies that help us detect and prevent fraudulent transactions.

5.2 Legal Requirements and Law Enforcement

We may disclose your personal information if required to do so by law or in response to valid legal processes, including:

Court orders, subpoenas, or other judicial processes.
Requests from federal, state, or local government authorities.
Regulatory investigations or audits by competent authorities.
Situations where disclosure is necessary to protect national security, public safety, or the rights of others.

5.3 Business Transfers

In the event that Giordanos undergoes a merger, acquisition, sale of assets, or other business restructuring, your personal information may be transferred as part of that transaction. We will notify you via email or a prominent notice on our website before your personal data is transferred and becomes subject to a different privacy policy.

5.4 Aggregated and Anonymized Data

We may share aggregated, anonymized, or de-identified data with business partners, advertisers, and researchers for industry analysis, demographic profiling, and marketing purposes. Such data does not identify any individual and is not considered personal information under applicable law.

6. Data Security Measures

Giordanos takes the security of your personal information seriously and implements comprehensive technical, administrative, and physical safeguards designed to protect your data from unauthorized access, disclosure, alteration, or destruction.

6.1 Technical Safeguards

SSL/TLS Encryption: All data transmitted between your browser and our website is encrypted using industry-standard Secure Socket Layer (SSL) or Transport Layer Security (TLS) protocols.
Data Encryption at Rest: Sensitive data stored on our servers is encrypted using robust encryption algorithms.
Firewalls and Intrusion Detection: Our servers are protected by enterprise-grade firewalls and active intrusion detection systems.
Secure Payment Processing: Payment card data is handled exclusively by PCI-DSS-certified processors and is never stored on our internal systems.
Access Controls: Access to personal data is restricted on a need-to-know basis, with multi-factor authentication required for administrative access.

6.2 Administrative Safeguards

Regular staff training on data privacy best practices and security awareness.
Internal data governance policies governing the collection, use, and storage of personal data.
Data minimization practices ensuring we collect only what is necessary for legitimate purposes.
Vendor due diligence processes to vet third-party service providers before sharing data with them.

6.3 Incident Response

In the event of a data breach that affects your personal information, we will notify affected individuals and relevant regulatory authorities in accordance with applicable state data breach notification laws. We will provide timely notice describing the nature of the breach, the data involved, and the steps we are taking to address the situation.

Please Note: While we employ industry-standard security measures, no method of data transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security of your information and encourage you to use strong passwords and keep your account credentials confidential.

7. Data Retention

Giordanos retains your personal information for as long as necessary to fulfill the purposes for which it was collected, comply with legal obligations, resolve disputes, and enforce our agreements. The following general retention guidelines apply:

Data Category	Retention Period	Reason
Account and registration data	Duration of account + 3 years after closure	Service provision and legal compliance
Order and transaction records	7 years	Financial recordkeeping and tax obligations
Marketing preferences and consent records	3 years from last interaction	Compliance with CAN-SPAM Act and consent documentation
Customer support communications	3 years	Quality assurance and dispute resolution
Website usage and log data	Up to 24 months	Analytics and security monitoring
Cookie and tracking data	Varies by cookie type (see Section 8)	Functionality and analytics

Once data is no longer required for these purposes, we will securely delete or anonymize it in accordance with our internal data lifecycle management procedures.

8. Cookie Policy Overview

Our website, meal-giordanos.rest, uses cookies and similar tracking technologies to enhance your browsing experience, analyze website traffic, and deliver personalized content and advertisements. This section provides a brief overview of our cookie practices.

8.1 Types of Cookies We Use

Essential Cookies: Strictly necessary for the operation of our website, including session management, shopping cart functionality, and secure login processes. These cannot be disabled.
Performance and Analytics Cookies: Help us understand how visitors interact with our website by collecting anonymous usage statistics. We use services such as Google Analytics for this purpose.
Functional Cookies: Remember your preferences, such as language settings, saved delivery addresses, and previously ordered menu items.
Targeting and Advertising Cookies: Used to deliver advertisements relevant to your interests on our site and across other websites. These cookies track your browsing activity across sites.

8.2 Managing Your Cookie Preferences

You can control and manage cookie settings through your browser settings or through our cookie consent tool displayed when you first visit our website. Please note that disabling certain cookies may affect the functionality of our website and your ability to place orders.

For detailed information about the specific cookies we use, their purposes, and how long they remain active, please refer to our full Cookie Policy available on our website.

9. Children's Privacy

Giordanos is committed to protecting the privacy of children. Our website and services are intended for use by individuals who are 18 years of age or older. We do not knowingly collect, use, or disclose personal information from individuals under the age of 18.

In compliance with the Children's Online Privacy Protection Act (COPPA), we do not knowingly collect personal information from children under the age of 13. If we become aware that we have inadvertently collected personal information from a child under 13 without verifiable parental consent, we will take immediate steps to delete such information from our records.

If you are a parent or guardian and believe that your child has provided personal information to us without your consent, please contact us immediately at [email protected] so that we can investigate and take appropriate action.

10. International Data Transfers

Giordanos is based in the United States, and all data we collect is primarily stored and processed within the United States. However, some of our third-party service providers may be located in, or operate from, other countries. In such cases, your personal information may be transferred to and processed in countries outside the United States.

When transferring data internationally, we take appropriate steps to ensure that your personal information receives adequate protection consistent with this Privacy Policy and applicable law. These measures may include:

Entering into data processing agreements with our service providers that include appropriate contractual data protection clauses.
Ensuring that international recipients of your data adhere to data protection standards equivalent to those required under U.S. law.
Implementing technical safeguards such as encryption for data in transit and at rest.

By using our website and services, you acknowledge and consent to the transfer of your information to countries outside your country of residence, including to the United States, where privacy laws may differ from those in your home jurisdiction.

11. Your Privacy Rights

Depending on your state of residence, you may have certain rights with respect to your personal information. Giordanos respects these rights and provides mechanisms for you to exercise them.

11.1 Rights Available to All Users

Right to Access: You may request a copy of the personal information we hold about you.
Right to Correction: You may request that we correct any inaccurate or incomplete personal information we have on file.
Right to Deletion: You may request that we delete your personal information, subject to certain exceptions (such as legal obligations to retain certain records).
Right to Opt-Out of Marketing: You may opt out of receiving promotional communications from us at any time.
Right to Data Portability: Where technically feasible, you may request a copy of your personal data in a structured, commonly used, machine-readable format.

11.2 Additional Rights for California Residents (CCPA/CPRA)

If you are a resident of California, you have the following additional rights under the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA):

Right to Know: The right to request details about the categories and specific pieces of personal information we have collected about you, the sources of that information, the business purposes for collecting it, and the categories of third parties with whom we share it.
Right to Delete: The right to request deletion of personal information we have collected from you, subject to certain exemptions.
Right to Correct: The right to request correction of inaccurate personal information we maintain about you.
Right to Opt-Out of Sale or Sharing: The right to direct us not to sell or share your personal information with third parties for cross-context behavioral advertising. To exercise this right, please contact us at [email protected].
Right to Limit Use of Sensitive Personal Information: The right to limit our use of sensitive personal information to that which is necessary to perform our services.
Right to Non-Discrimination: We will not discriminate against you for exercising any of your CCPA/CPRA rights. This means we will not deny you services, charge different prices, or provide a different level of quality because you exercised your privacy rights.

11.3 How to Exercise Your Rights

To exercise any of the rights described above, please contact us using the following methods:

Email: [email protected]
Website: meal-giordanos.rest

We will respond to verified requests within 45 days of receipt. If we require additional time, we will notify you of the extension and the reason for it. We may need to verify your identity before processing your request to ensure we are disclosing information to the right person.

You may designate an authorized agent to submit a rights request on your behalf. If you use an authorized agent, we may require written proof of authorization and identity verification from both you and the agent.

12. Third-Party Websites and Links

Our website may contain links to third-party websites, applications, or services that are not operated by Giordanos. This Privacy Policy does not apply to those third-party sites. We are not responsible for the privacy practices or content of any third-party website, and we encourage you to review the privacy policies of any third-party site you visit. The inclusion of a link on our website does not constitute an endorsement of the linked site.

13. Changes to This Privacy Policy

Giordanos reserves the right to update or modify this Privacy Policy at any time to reflect changes in our business practices, legal requirements, or technological developments. When we make material changes to this policy, we will:

Post the updated Privacy Policy on our website at meal-giordanos.rest with a revised "Last Updated" date.
Send a notification email to registered users at the email address associated with their account.
Display a prominent notice on our website for a reasonable period following the update.

Your continued use of our website or services following the posting of changes constitutes your acceptance of the updated Privacy Policy. We encourage you to review this page periodically to stay informed about how we protect your information.

14. How to File a Complaint

If you believe that we have not handled your personal information in accordance with this Privacy Policy or applicable data protection laws, we encourage you to contact us first so that we can attempt to resolve your concern.

To file a privacy complaint with Giordanos, please contact us at:

Email: [email protected]

We will acknowledge receipt of your complaint within 5 business days and aim to provide a full response within 30 days.

14.1 Filing a Complaint With Regulatory Authorities

If you are not satisfied with our response, or if you believe your privacy rights have been violated under applicable law, you may file a complaint with the relevant regulatory authority:

Federal Trade Commission (FTC): The FTC is the primary federal agency responsible for consumer protection in the United States, including matters of privacy and data security. You can file a complaint at www.ftc.gov or by calling 1-877-FTC-HELP (1-877-382-4357).
California Privacy Protection Agency (CPPA): California residents may contact the CPPA regarding complaints related to violations of CCPA/CPRA rights at cppa.ca.gov.
State Attorney General Offices: Residents of other states may file privacy-related complaints with their respective state Attorney General's office, many of which have consumer protection divisions with authority over data privacy matters.

15. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please do not hesitate to reach out to us. Our privacy team is available to assist you.

Company Name	Giordanos
Website	meal-giordanos.rest
Email	[email protected]

Privacy Policy Version: This policy was last reviewed and updated on June 4, 2026. Giordanos is committed to transparency and the responsible stewardship of your personal information. Thank you for trusting us with your data.