Privacy Policy
This Privacy Policy describes how Giordanos ("we," "us," or "our") collects, uses, discloses, and protects your personal information when you visit our website at giordanos.click, place orders, use our services, or interact with us in any way. We are committed to protecting your privacy and handling your personal data with transparency, integrity, and care.
Please read this Privacy Policy carefully. By accessing or using our website and services, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy. If you do not agree with the terms set forth herein, please discontinue your use of our website and services immediately.
We operate in the United States and comply with all applicable federal and state privacy laws, including the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA), the Federal Trade Commission Act (FTC Act), and other relevant consumer protection regulations.
1. About Us and How to Contact Us
Giordanos is a food business dedicated to delivering quality food experiences to our customers. We take your privacy seriously and have appointed a responsible party to oversee data protection and privacy compliance.
| Company Name | Giordanos |
|---|---|
| Website | giordanos.click |
| Email Address | [email protected] |
| Business Type | Food Services |
| Location | United States |
For any privacy-related questions, requests, or concerns, please contact us directly at [email protected]. We aim to respond to all inquiries within thirty (30) days of receipt.
2. Information We Collect
We collect various types of information in connection with your use of our website and services. The categories of personal information we may collect are described below.
2.1 Personal Identification Information
When you register an account, place an order, subscribe to our newsletter, or contact us, we may collect the following personal identification information:
- Full name
- Email address
- Phone number
- Billing and shipping address (street address, city, state, ZIP code)
- Username and password (stored in encrypted form)
- Date of birth (used to verify age eligibility)
- Payment information (credit/debit card details — processed securely via third-party payment processors)
- Profile picture or avatar (if voluntarily uploaded)
2.2 Order and Transaction Data
When you place an order through our website, we collect information related to your transaction, including:
- Items ordered, quantities, and customizations
- Order history and frequency
- Delivery preferences and special instructions
- Transaction amounts and payment methods used
- Promotional codes or discounts applied
- Loyalty points or reward balances (if applicable)
2.3 Usage and Behavioral Data
We automatically collect certain information about how you interact with our website, including:
- Pages visited, time spent on each page, and navigation paths
- Search queries entered on our website
- Clicks, scrolls, and other interaction events
- Referral URLs (the website that directed you to ours)
- Date and time of visits
- Features and menu items viewed
2.4 Device and Technical Information
We collect technical information about the device and browser you use to access our website, including:
- IP address
- Browser type and version
- Operating system and device type
- Screen resolution and display settings
- Language preferences
- Internet service provider (ISP)
- Cookie identifiers and session tokens
- Mobile device identifiers (for mobile app users)
2.5 Location Data
With your permission, we may collect your precise or approximate geographic location to provide delivery services, suggest nearby locations, or display relevant menu options based on your area. You may disable location sharing through your device or browser settings at any time.
2.6 Communications and Feedback
When you contact us via email, our contact form, or other communication channels, or when you submit reviews or feedback, we collect the content of your messages, your contact details, and any attachments or media you provide.
2.7 Information from Third Parties
We may receive information about you from third-party sources, including:
- Social media platforms (if you connect your social account or log in using social login features)
- Third-party delivery platforms or marketplace partners
- Marketing and advertising partners
- Analytics providers
- Payment processors and fraud prevention services
2.8 Cookies and Tracking Technologies
We use cookies, web beacons, pixel tags, local storage, and similar tracking technologies to collect information and enhance your experience on our website. For more detailed information about the types of cookies we use, your choices regarding cookies, and how to opt out, please refer to our Cookie Policy available on our website. A summary of our cookie practices is included in Section 9 of this Privacy Policy.
3. How We Use Your Information
We use the personal information we collect for a variety of legitimate business purposes as described below. We will only use your personal information when we have a valid legal basis to do so, including your consent, fulfillment of a contract, compliance with legal obligations, or our legitimate business interests.
3.1 Service Provision and Order Fulfillment
- Processing and fulfilling your food orders and delivery requests
- Managing your account and providing customer support
- Sending order confirmations, receipts, and delivery notifications
- Processing payments and preventing fraudulent transactions
- Coordinating with delivery partners to ensure accurate and timely delivery
- Responding to your inquiries, complaints, and feedback
3.2 Website Improvement and Analytics
- Analyzing website usage patterns to improve functionality and user experience
- Conducting internal research and product development
- Testing new features, menus, and services before public launch
- Monitoring website performance, security, and reliability
- Identifying and resolving technical issues
3.3 Marketing and Promotional Communications
- Sending promotional emails, newsletters, and special offer announcements (with your consent or where permitted by law)
- Personalizing content, recommendations, and advertisements based on your preferences and order history
- Administering loyalty programs, contests, sweepstakes, and promotions
- Retargeting advertising through third-party advertising networks
You may opt out of marketing communications at any time by clicking the "unsubscribe" link in any marketing email, or by contacting us at [email protected]. Please note that even after opting out of marketing communications, you will still receive transactional emails related to your orders and account activity.
3.4 Legal Compliance and Safety
- Complying with applicable federal and state laws and regulations
- Responding to lawful requests from government authorities or law enforcement
- Protecting the rights, property, and safety of Giordanos, our customers, and the public
- Investigating and preventing fraud, unauthorized access, and other harmful activities
- Enforcing our Terms of Service and other applicable agreements
3.5 Business Operations
- Conducting business planning, budgeting, and forecasting
- Evaluating and executing mergers, acquisitions, or other business transactions
- Maintaining accurate business records
- Training staff and improving service quality
4. Sharing Your Information with Third Parties
We do not sell, rent, or trade your personal information to third parties for their own marketing purposes. However, we may share your information with trusted third parties in the following circumstances:
4.1 Service Providers and Business Partners
We work with carefully selected third-party service providers who assist us in operating our website, processing orders, and delivering services. These service providers are contractually obligated to handle your information only as directed by us and to maintain appropriate security measures. Categories of service providers include:
- Payment processors (e.g., Stripe, PayPal, Square) — for secure processing of payments
- Delivery partners and logistics companies — for fulfilling food delivery orders
- Cloud hosting and IT infrastructure providers — for website hosting and data storage
- Email and communication platforms — for transactional and marketing emails
- Analytics providers (e.g., Google Analytics) — for website performance analysis
- Customer support platforms — for managing customer inquiries
- Advertising networks — for delivering targeted advertisements
- Fraud prevention and security services — for protecting against unauthorized activity
4.2 Legal Requirements and Law Enforcement
We may disclose your personal information if required to do so by law, regulation, legal process, or governmental request, including:
- Compliance with court orders, subpoenas, or warrants
- Responding to lawful requests by public authorities, including law enforcement agencies
- Protecting against legal liability in connection with potential violations of law
- Cooperating with regulatory investigations or proceedings
4.3 Business Transfers
In the event of a merger, acquisition, reorganization, bankruptcy, or sale of all or a portion of our assets, your personal information may be transferred to the acquiring entity. We will provide notice through our website before your personal information is transferred and becomes subject to a different privacy policy.
4.4 With Your Consent
We may share your information with other third parties when you have given us your explicit consent to do so, such as when you choose to share your profile or reviews publicly, or when you opt into a co-branded promotional program.
4.5 Aggregated and Anonymized Data
We may share aggregated or de-identified information that cannot reasonably be used to identify you with third parties for research, marketing, analytics, and other business purposes without restriction.
5. Data Security
We take the security of your personal information seriously and implement a range of technical, administrative, and physical safeguards designed to protect your data from unauthorized access, use, disclosure, alteration, or destruction.
5.1 Security Measures We Employ
- Encryption: All data transmitted between your browser and our servers is protected using industry-standard SSL/TLS encryption (HTTPS).
- Secure payment processing: We do not store full payment card numbers on our servers. Payment information is handled by PCI-DSS compliant third-party processors.
- Access controls: Access to personal data is restricted to authorized personnel who require it to perform their job functions, governed by the principle of least privilege.
- Password security: User passwords are stored using strong cryptographic hashing algorithms (e.g., bcrypt).
- Regular security audits: We conduct periodic security assessments and penetration testing to identify and address vulnerabilities.
- Firewalls and intrusion detection: We use firewalls, intrusion detection systems, and other network security technologies to monitor for suspicious activity.
- Employee training: Our staff receive regular training on data protection best practices and security awareness.
5.2 Limitations of Security
While we strive to protect your personal information using industry best practices, no method of transmission over the internet or method of electronic storage is 100% secure. We cannot guarantee absolute security of your data. You are also responsible for maintaining the confidentiality of your account credentials and for notifying us immediately if you suspect any unauthorized access to your account.
6. Your Privacy Rights
Depending on your location, you may have certain rights regarding your personal information. We are committed to honoring these rights in accordance with applicable law.
6.1 Rights Under the California Consumer Privacy Act (CCPA/CPRA)
If you are a resident of California, you have the following rights under the CCPA as amended by the CPRA:
| Right | Description |
|---|---|
| Right to Know | You have the right to request information about the categories and specific pieces of personal information we have collected about you, the sources of collection, the purposes for collection and use, and the categories of third parties with whom we share your information. |
| Right to Delete | You have the right to request the deletion of personal information we have collected from you, subject to certain exceptions provided by law. |
| Right to Correct | You have the right to request correction of inaccurate personal information we maintain about you. |
| Right to Opt Out of Sale or Sharing | You have the right to opt out of the sale or sharing of your personal information for cross-context behavioral advertising purposes. We do not sell personal information in the traditional sense, but we may share data with advertising partners for targeted advertising. |
| Right to Limit Use of Sensitive Information | You have the right to limit our use and disclosure of sensitive personal information to purposes necessary to perform services you request. |
| Right to Non-Discrimination | We will not discriminate against you for exercising your CCPA rights. We will not deny you goods or services, charge different prices, or provide a different quality of service because you exercised your rights. |
6.2 General Privacy Rights for All Users
Regardless of your location, we provide all users with the following rights:
- Right of Access: You may request a copy of the personal information we hold about you.
- Right to Rectification: You may request that we correct inaccurate or incomplete personal information.
- Right to Erasure: You may request deletion of your personal information where we no longer have a legitimate need to retain it.
- Right to Data Portability: Where technically feasible, you may request a copy of your personal information in a structured, commonly used, machine-readable format.
- Right to Withdraw Consent: Where we rely on your consent to process your personal information, you may withdraw that consent at any time without affecting the lawfulness of processing carried out before withdrawal.
- Right to Object to Marketing: You may opt out of receiving marketing communications at any time.
6.3 How to Exercise Your Rights
To exercise any of the rights described above, please submit a verifiable request to us by:
- Emailing us at: [email protected]
- Using the contact form on our website: giordanos.click
We will verify your identity before processing your request. We may require you to provide certain information, such as your name, email address, and account details, to confirm your identity. We will respond to verifiable requests within forty-five (45) days, with a possible extension of an additional forty-five (45) days when reasonably necessary, as permitted under applicable law. We will not charge a fee for processing your request unless it is excessive, repetitive, or clearly unfounded.
You may designate an authorized agent to submit a request on your behalf. If you use an authorized agent, we may require written proof of authorization and may verify your identity directly.
7. Data Retention
We retain your personal information for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements. The criteria we use to determine retention periods include:
- Account information: Retained for the duration of your active account relationship with us, plus a reasonable period thereafter in case you wish to reactivate your account.
- Order and transaction records: Retained for a minimum of seven (7) years from the date of the transaction, in accordance with applicable tax and financial record-keeping requirements.
- Marketing preferences and communication records: Retained until you opt out or withdraw consent, plus a reasonable period to process your request and maintain a record of your preferences.
- Customer support communications: Retained for up to three (3) years from the date of the last communication, unless a longer period is required for legal proceedings.
- Website usage data and analytics: Retained in aggregated or anonymized form indefinitely; identifiable usage data is retained for up to twenty-six (26) months.
- Legal compliance and fraud prevention records: Retained as long as required by applicable law or as necessary to protect against legal claims.
When personal information is no longer required, we will securely delete, anonymize, or dispose of it in accordance with our data retention and disposal procedures.
8. Children's Privacy
We do not knowingly solicit, collect, or use personal information from anyone under the age of 18. Our website, services, and content are directed at adults, and we do not market or sell food or services to minors through our website.
If you are a parent or guardian and believe that your child under the age of 18 has provided us with personal information without your consent, please contact us immediately at [email protected]. Upon verification, we will take prompt steps to delete such information from our records.
We comply with the Children's Online Privacy Protection Act (COPPA), which prohibits the online collection of personal information from children under the age of 13 without verifiable parental consent. Our position is more protective — we apply this restriction to all individuals under 18 years of age.
9. Cookie Policy Summary
Our website uses cookies and similar tracking technologies to improve your browsing experience, analyze site traffic, and deliver personalized content and advertising. This section provides a brief overview of our cookie practices. For full details, please refer to our complete Cookie Policy available on our website.
9.1 Types of Cookies We Use
| Cookie Type | Purpose | Duration |
|---|---|---|
| Strictly Necessary Cookies | Essential for the website to function properly, including session management, shopping cart functionality, and security features. | Session / Short-term |
| Performance / Analytics Cookies | Collect information about how visitors use our website, which pages are most popular, and how visitors navigate the site. Used to improve website performance. | Up to 2 years |
| Functionality Cookies | Allow the website to remember choices you make (such as your language, region, or saved preferences) to provide a more personalized experience. | Up to 1 year |
| Targeting / Advertising Cookies | Used to deliver relevant advertisements to you, limit the number of times you see an ad, and measure the effectiveness of advertising campaigns. | Up to 2 years |
9.2 Managing Your Cookie Preferences
You can control and manage cookies in several ways. Most web browsers allow you to refuse or accept cookies, delete existing cookies, and set preferences for future cookies through your browser settings. Please note that disabling certain cookies may affect the functionality and performance of our website.
You may also opt out of interest-based advertising by visiting:
- Network Advertising Initiative (NAI) opt-out page: www.networkadvertising.org/choices/
- Digital Advertising Alliance (DAA) opt-out page: www.aboutads.info/choices/
10. International Data Transfers
Giordanos is based in the United States, and the information we collect is governed by United States law. If you are accessing our website from outside the United States, please be aware that your information may be transferred to, stored, and processed in the United States where our servers are located and our central database is operated.
The data protection laws in the United States may differ from those in your country of residence. By using our website or providing us with your personal information, you acknowledge and consent to the transfer of your information to the United States.
We take appropriate steps to ensure that any international transfer of personal data complies with applicable law and that adequate safeguards are in place to protect your personal information. If you have questions about international data transfers, please contact us at [email protected].
11. Third-Party Websites and Links
Our website may contain links to third-party websites, applications, or services that are not operated by us. These may include social media platforms, delivery partner websites, payment processors, and promotional partner sites. When you click on a third-party link, you will be directed to that third party's website.
We strongly advise you to review the privacy policy of every third-party site you visit. We have no control over, and assume no responsibility for, the content, privacy policies, or practices of any third-party websites or services. This Privacy Policy applies solely to information collected by our website at giordanos.click and does not cover any third-party platforms.
12. Do Not Track Signals
Some browsers include a "Do Not Track" (DNT) feature that signals to websites that you do not want your online activity tracked. Currently, there is no universally accepted standard for how websites should respond to DNT signals. Our website does not currently alter its data collection practices in response to DNT browser signals. However, you may manage your tracking preferences through your cookie settings and the opt-out mechanisms described in Section 9.
We will continue to monitor developments in DNT standards and update our practices accordingly as industry consensus emerges.
13. California-Specific Privacy Disclosures
In addition to the rights described in Section 6, California residents are entitled to the following disclosures under California law:
13.1 Categories of Personal Information Collected
Under the CCPA/CPRA, the following categories of personal information have been collected from consumers in the preceding twelve (12) months:
- Identifiers (name, email address, IP address, account login credentials)
- Personal information as defined in California Civil Code § 1798.80 (name, address, telephone number, payment card information)
- Commercial information (order history, purchasing records, transaction data)
- Internet or other electronic network activity information (browsing history, search history, interaction with website)
- Geolocation data (approximate location based on IP address or precise location with consent)
- Inferences drawn from the above to create a profile about consumer preferences
13.2 Business Purposes for Collecting Personal Information
We collect the above categories of personal information for the business purposes described in Section 3 of this Privacy Policy, including order fulfillment, customer service, marketing, analytics, and legal compliance.
13.3 Shine the Light Law
California Civil Code Section 1798.83 (the "Shine the Light" law) permits California residents to request certain information about our disclosure of personal information to third parties for their direct marketing purposes. To make such a request, please contact us at [email protected].
14. How to File a Complaint
We are committed to resolving any concerns or complaints you may have about our privacy practices. If you believe we have not complied with this Privacy Policy or applicable privacy laws, we encourage you to first contact us directly so we can address your concern.
14.1 Contact Us Directly
Submit your privacy complaint to:
- Email: [email protected]
- Subject Line: Privacy Complaint / Data Protection Inquiry
- Website: giordanos.click
We will acknowledge receipt of your complaint within five (5) business days and provide a substantive response within thirty (30) days.
14.2 Filing a Complaint with Regulatory Authorities
If you are not satisfied with our response or believe we are processing your personal information in violation of applicable law, you have the right to file a complaint with the appropriate regulatory authority:
- California Privacy Protection Agency (CPPA): California residents may file complaints with the California Privacy Protection Agency, which oversees and enforces the CCPA/CPRA. Visit cppa.ca.gov for more information.
- Federal Trade Commission (FTC): United States residents may file complaints with the Federal Trade Commission at reportfraud.ftc.gov or by calling 1-877-382-4357.
- State Attorney General: You may also file a complaint with your state's Attorney General office if you believe your consumer privacy rights have been violated.
15. Changes to This Privacy Policy
We reserve the right to update or modify this Privacy Policy at any time to reflect changes in our data practices, legal requirements, or business operations. When we make material changes to this policy, we will:
- Update the "Last Updated" date at the top of this page
- Post a notice on our website homepage informing users of the change
- Where required by law or where we deem it appropriate, send an email notification to registered users
We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information. Your continued use of our website and services after any changes to this Privacy Policy constitutes your acceptance of the updated terms.
16. Governing Law
This Privacy Policy is governed by the laws of the United States, including applicable federal laws such as the FTC Act, and any applicable state laws. For California residents, this policy is additionally subject to the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA). Any disputes arising under or in connection with this Privacy Policy shall be subject to the exclusive jurisdiction of the courts located in the United States.
17. Contact Information
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please do not hesitate to contact us using the information below:
| Company | Giordanos |
|---|---|
| [email protected] | |
| Website | giordanos.click |
| Country | United States |
We are dedicated to addressing your privacy concerns in a timely and thorough manner. Thank you for trusting Giordanos with your personal information. We value your privacy and are committed to maintaining it.