Privacy Policy

Effective Date: May 13, 2026 | Last Updated: May 13, 2026

Welcome to Dions. We respect your privacy and are committed to protecting your personal information. This Privacy Policy explains how Dions ("we," "us," "our," or "the Company") collects, uses, discloses, and safeguards your personal information when you visit our website at food-dions.digital, place food orders, use our digital services, or otherwise interact with us. Please read this policy carefully. By using our website or services, you agree to the practices described in this Privacy Policy.

This Privacy Policy is governed by applicable United States federal and state privacy laws, including but not limited to the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA), the Federal Trade Commission Act (FTC Act), and other applicable consumer protection regulations.

1. About This Privacy Policy

This Privacy Policy applies to all individuals who interact with Dions through our website (food-dions.digital), mobile platforms, online ordering systems, marketing communications, and any other digital touchpoints we operate. It covers all personal information we collect, whether you are a customer placing a food order, a visitor browsing our menu, a newsletter subscriber, or a person who contacts us for any reason.

This policy does not apply to third-party websites, applications, or services that may be linked from our website. We encourage you to review the privacy policies of any third-party platforms you visit independently of our site.

If you have any questions about this Privacy Policy or our data practices, please contact us at [email protected].

2. Information We Collect

We collect various categories of personal information depending on how you interact with our services. Below is a detailed breakdown of the types of data we may collect.

2.1 Personal Identification Information

When you create an account, place a food order, or contact us, we may collect:

Full name
Email address
Phone number
Billing address and delivery address
Date of birth (where required for age verification)
Profile photograph (if voluntarily uploaded)
Username and password (for registered accounts)

2.2 Payment and Financial Information

When you place a food order or make a payment through our platform, we collect payment-related information. Please note that we do not directly store full credit or debit card numbers. Payment processing is handled by secure, PCI-DSS-compliant third-party payment processors. We may retain:

Partial payment card details (e.g., last four digits)
Billing address associated with the payment method
Transaction history and order records
Payment confirmation references

2.3 Order and Transaction Data

When you order food or use our services, we collect:

Items ordered, quantities, and special instructions
Order timestamps and delivery times
Delivery address and preferences
Order history and reorder preferences
Customer feedback and reviews submitted
Loyalty program data (if applicable)

2.4 Usage and Behavioral Data

As you navigate our website and digital platforms, we automatically collect:

Pages viewed, links clicked, and content interacted with
Time spent on pages and navigation paths
Search queries performed on our site
Menu items viewed or saved
Cart abandonment data
Frequency and duration of visits
Referral source (how you arrived at our website)

2.5 Device and Technical Information

We automatically collect technical information about the devices you use to access our services, including:

IP address
Browser type and version
Operating system and device type
Device identifiers (such as advertising IDs)
Screen resolution and display settings
Language preferences
Time zone settings
Network carrier or Wi-Fi connection information

2.6 Location Data

With your permission, we may collect precise or approximate geographic location data to facilitate food delivery services, provide location-based offers, and improve our delivery radius estimates. You may disable location sharing through your device settings at any time.

2.7 Communications Data

When you contact us, we collect:

Email correspondence and chat transcripts
Customer service call records (where permitted by law)
Feedback, complaints, and survey responses
Social media interactions and messages

2.8 Cookies and Tracking Technologies

We use cookies, web beacons, pixel tags, and similar tracking technologies to collect information about your browsing activity. Please see Section 9 (Cookie Usage) for more details.

2.9 Information Collected from Third Parties

We may receive information about you from third-party sources, including:

Social media platforms (if you log in using a social account)
Third-party food delivery platforms or aggregators
Marketing partners and advertising networks
Analytics providers
Fraud detection and identity verification services

3. How We Use Your Information

We use the personal information we collect for specific, legitimate purposes related to operating our food business and serving our customers. We will not use your data in ways that are incompatible with the purposes for which it was collected.

3.1 Service Provision and Order Fulfillment

Processing and fulfilling food orders placed through our website or other platforms
Arranging food delivery or pickup at your chosen location
Communicating order confirmations, updates, and delivery notifications
Managing your account and profile preferences
Processing payments and issuing refunds where applicable
Responding to customer service inquiries and resolving complaints

3.2 Personalization and User Experience

Remembering your food preferences and previous orders
Recommending menu items based on order history
Displaying location-relevant menu options and offers
Saving your delivery addresses and payment preferences for convenience
Customizing the website interface based on your behavior

3.3 Marketing and Promotional Communications

Sending promotional emails, SMS messages, or push notifications about new menu items, special offers, and discounts
Running targeted advertising campaigns on third-party platforms
Administering loyalty programs, contests, and referral schemes
Conducting customer satisfaction surveys

You have the right to opt out of marketing communications at any time by clicking the "unsubscribe" link in any marketing email or by contacting us at [email protected].

3.4 Analytics and Business Improvement

Analyzing website traffic patterns and user behavior
Measuring the effectiveness of marketing campaigns
Identifying popular menu items and ordering trends
Improving our website, app functionality, and user interface
Conducting internal research and business analytics

3.5 Legal, Safety, and Compliance Purposes

Complying with applicable federal and state laws and regulations
Detecting, investigating, and preventing fraudulent transactions
Enforcing our Terms of Service and other policies
Protecting the rights, property, and safety of Dions, our customers, and the public
Responding to lawful requests from government authorities or courts

4. Sharing Your Information with Third Parties

We do not sell your personal information to third parties for monetary consideration. However, we may share your data with trusted parties in the following circumstances:

4.1 Service Providers and Vendors

We work with third-party companies and individuals who assist us in operating our business and providing our services. These service providers are contractually obligated to use your data only as directed by us and in compliance with applicable privacy laws. Categories of service providers include:

Payment processors: To securely handle payment transactions
Delivery partners: To facilitate food delivery logistics
Cloud hosting providers: To store and process data securely
Email and SMS marketing platforms: To send communications on our behalf
Analytics providers: Such as Google Analytics, to analyze website traffic
Customer support tools: To manage customer service interactions
Fraud prevention services: To identify and prevent fraudulent activities

4.2 Business Transfers

In the event that Dions is involved in a merger, acquisition, reorganization, sale of assets, or bankruptcy proceeding, your personal information may be transferred to a successor entity. We will provide notice before your personal information becomes subject to a different privacy policy.

4.3 Legal Requirements and Law Enforcement

We may disclose your personal information where required by law or in good faith belief that such disclosure is necessary to:

Comply with a legal obligation, subpoena, court order, or government request
Enforce our agreements and policies
Protect against legal liability
Investigate potential fraud or illegal activity
Protect the safety and security of our customers, employees, or the public

4.4 Advertising and Analytics Partners

We may share anonymized or aggregated data with advertising networks and analytics partners to improve the relevance of ads you see online. This data does not directly identify you. You may opt out of interest-based advertising by visiting the Digital Advertising Alliance opt-out page at optout.aboutads.info or the Network Advertising Initiative at optout.networkadvertising.org.

4.5 With Your Consent

We may share your personal information with other parties when you have given us explicit consent to do so.

5. Data Security

Dions takes the security of your personal information seriously and employs a range of technical, administrative, and physical safeguards designed to protect your data from unauthorized access, disclosure, alteration, or destruction.

5.1 Technical Security Measures

SSL/TLS encryption for all data transmitted between your browser and our servers
Encryption of sensitive data at rest
Secure, PCI-DSS-compliant payment processing systems
Firewalls and intrusion detection systems
Regular security audits and vulnerability assessments
Multi-factor authentication for administrative access

5.2 Administrative Security Measures

Access controls limiting data access to authorized personnel only
Employee training on data privacy and security best practices
Data processing agreements with all third-party service providers
Documented data breach response procedures

5.3 Incident Response

In the event of a data breach that is likely to result in a risk to your rights and freedoms, we will notify affected individuals and relevant authorities as required by applicable law, including without limitation applicable state breach notification laws. We will provide notice without undue delay and within the timeframes required by law.

Important: While we implement robust security measures, no method of transmission over the internet or electronic storage is completely secure. We cannot guarantee absolute security of your personal data.

6. Your Rights and Choices

Depending on your state of residence in the United States, you may have certain rights regarding your personal information. We are committed to honoring these rights and providing mechanisms for you to exercise them.

6.1 California Residents — CCPA/CPRA Rights

If you are a California resident, you have the following rights under the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA):

Right	Description
Right to Know	You have the right to know what personal information we collect, use, disclose, and sell about you.
Right to Delete	You have the right to request deletion of your personal information, subject to certain exceptions.
Right to Correct	You have the right to request correction of inaccurate personal information we hold about you.
Right to Opt-Out of Sale/Sharing	You have the right to opt out of the sale or sharing of your personal information for cross-context behavioral advertising.
Right to Limit Use of Sensitive Data	You have the right to limit our use and disclosure of sensitive personal information to certain permitted purposes.
Right to Non-Discrimination	We will not discriminate against you for exercising your CCPA/CPRA rights.
Right to Data Portability	You have the right to receive your personal information in a portable, readily usable format.

6.2 General Rights for All U.S. Users

Regardless of your state of residence, we provide all users with the following choices:

Access: Request a copy of the personal information we hold about you.
Correction: Request that we correct inaccurate or incomplete information.
Deletion: Request deletion of your personal information where we have no legal basis for continuing to hold it.
Marketing Opt-Out: Unsubscribe from marketing communications at any time.
Account Deactivation: Close your Dions account at any time by contacting us.

6.3 How to Exercise Your Rights

To exercise any of the rights described above, please submit a verifiable consumer request by:

Emailing us at: [email protected]
Visiting our website: food-dions.digital

We will verify your identity before processing your request. We aim to respond to all verified requests within 45 days. If we require additional time (up to 90 days total), we will inform you of the extension and the reason for it in writing.

We will not charge a fee for processing your request unless it is excessive, repetitive, or manifestly unfounded. If we determine that a fee is warranted, we will notify you of the fee and provide a cost estimate before completing your request.

You may designate an authorized agent to submit requests on your behalf. We may require the authorized agent to provide written permission from you and may verify your identity directly.

7. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes for which it was collected, including to satisfy legal, accounting, regulatory, or reporting obligations.

Data Category	Retention Period
Account and profile information	Duration of account plus 3 years after closure
Order and transaction records	7 years (for tax and accounting purposes)
Payment records	7 years in accordance with financial regulations
Marketing preferences and opt-outs	Indefinitely to honor opt-out requests
Customer service correspondence	3 years from the date of last interaction
Website usage and analytics data	Up to 26 months
Cookie data	Varies by cookie type (session to 24 months)
Fraud prevention and security logs	Up to 5 years

When personal information is no longer required, we securely delete or anonymize it in accordance with our data destruction procedures. Where immediate deletion is not possible (e.g., data stored in backup archives), we will isolate the data from further processing until deletion is feasible.

8. Children's Privacy

Age Requirement: Our services are intended for individuals who are 18 years of age or older. We do not knowingly collect personal information from persons under the age of 18.

Dions' website and food ordering services are not directed to individuals under the age of 18. We do not knowingly collect, solicit, or maintain personal information from children under 18. If you are under 18 years of age, please do not use our services or provide any personal information through our website.

If we become aware that we have inadvertently collected personal information from a person under the age of 18, we will take immediate steps to delete that information from our records. If you are a parent or guardian and believe that your child under 18 has provided us with personal information, please contact us immediately at [email protected] so that we can take appropriate action.

We comply with the Children's Online Privacy Protection Act (COPPA), which prohibits the collection of personal information from children under the age of 13 without verifiable parental consent.

9. Cookie Usage

Our website uses cookies and similar tracking technologies to enhance your browsing experience, analyze site traffic, and deliver personalized content and advertisements. This section provides a summary of our cookie practices.

9.1 What Are Cookies?

Cookies are small text files that are placed on your device when you visit a website. They allow the website to recognize your device and remember certain information about your preferences or past actions.

9.2 Types of Cookies We Use

Strictly Necessary Cookies: Essential for the operation of our website, such as maintaining your session and enabling shopping cart functionality. These cannot be disabled.
Functional Cookies: Allow us to remember your preferences, such as saved delivery addresses and language settings.
Performance and Analytics Cookies: Collect information about how visitors use our website (e.g., Google Analytics) to help us improve our services.
Marketing and Advertising Cookies: Used to deliver advertisements relevant to your interests and to measure the effectiveness of advertising campaigns.

9.3 Managing Cookies

You can control and manage cookies through your browser settings. Most browsers allow you to refuse cookies, delete existing cookies, and set preferences for certain websites. Please note that disabling certain cookies may affect the functionality of our website.

For detailed information about the cookies we use and your choices, please refer to our full Cookie Policy available on our website at food-dions.digital.

10. International Data Transfers

Dions is a United States-based food business and our primary data processing activities occur within the United States. However, some of our third-party service providers (such as cloud hosting services, analytics platforms, and marketing tools) may process data in other countries.

If your personal information is transferred outside of the United States, we ensure that appropriate safeguards are in place to protect your data, including:

Contractual obligations binding service providers to data protection standards equivalent to those applicable in the United States
Ensuring that service providers comply with applicable international data transfer mechanisms
Conducting due diligence on the data protection practices of international vendors

By using our website and services, you acknowledge and agree that your personal information may be transferred to and processed in countries other than your country of residence, which may have different data protection laws than those in your jurisdiction.

11. Third-Party Links and Services

Our website may contain links to third-party websites, social media platforms, or external services. This Privacy Policy does not apply to those third-party sites. We encourage you to review the privacy policies of any external websites you visit. We are not responsible for the privacy practices or the content of third-party websites.

Third-party integrations on our platform may include, but are not limited to:

Google Maps (for delivery address lookup and mapping)
Social media sharing buttons (Facebook, Instagram, etc.)
Third-party payment gateways
Review platforms (such as Yelp or Google Reviews)

When you interact with these features, the third-party service may collect data about you subject to their own privacy policies.

12. Do Not Track Signals

Some browsers have a "Do Not Track" (DNT) feature that signals to websites that you do not want your online activity tracked. Currently, there is no universally accepted standard for how websites should respond to DNT signals. At this time, our website does not respond to DNT signals from browsers. However, you may use the opt-out mechanisms described in this policy and in our Cookie Policy to limit tracking.

13. State-Specific Privacy Rights

In addition to the California rights described in Section 6, residents of certain other states may have additional privacy rights under their respective state laws. These may include residents of Virginia (CDPA), Colorado (CPA), Connecticut (CTDPA), Utah (UCPA), and other states that have enacted comprehensive privacy legislation.

If you are a resident of a state with applicable privacy law protections, you may have rights similar to those described for California residents, including rights to access, correct, delete, and opt out of certain processing of your personal data. To exercise these rights, please contact us using the contact information provided in Section 15.

We will handle all privacy rights requests in accordance with applicable state law requirements and applicable response timelines.

14. How to File a Complaint

If you believe that we have violated your privacy rights or have handled your personal information in a manner inconsistent with this Privacy Policy or applicable law, we encourage you to contact us first so that we can attempt to resolve the issue directly.

14.1 Internal Complaint Process

To file a complaint with us:

Contact us at [email protected] with a detailed description of your concern.
Include your name, contact information, and a description of the issue.
We will acknowledge receipt of your complaint within 10 business days and work to resolve the matter within 45 days.

14.2 Regulatory Complaint Options

If you are not satisfied with our response, you have the right to file a complaint with relevant regulatory authorities. For U.S. residents, applicable authorities include:

Federal Trade Commission (FTC): The FTC enforces federal consumer protection laws, including those relating to privacy and data security. You can file a complaint at reportfraud.ftc.gov or call 1-877-FTC-HELP (1-877-382-4357).
California Attorney General (for California residents): The California Attorney General enforces the CCPA/CPRA. Complaints may be submitted through the California Attorney General's website at oag.ca.gov.
State Attorney General Offices: Residents of other states may contact their respective state Attorney General's office to report privacy concerns or violations.
California Privacy Protection Agency (CPPA): The CPPA is responsible for enforcing the CPRA in California. You may file a complaint at cppa.ca.gov.

15. Contact Us

If you have any questions, concerns, or requests related to this Privacy Policy or our data practices, please reach out to us using the following contact details:

Privacy Contact Information — Dions

Company Name:	Dions
Email:	[email protected]
Website:	food-dions.digital

We are committed to working with you to resolve any privacy-related concerns in a timely and transparent manner. When contacting us about privacy matters, please include sufficient information to help us identify your account and understand the nature of your request.

16. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our data practices, legal requirements, or business operations. When we make material changes, we will:

Update the "Last Updated" date at the top of this page
Post the revised policy on our website at food-dions.digital
Send you an email notification if you have an account with us and the changes are significant
Display a prominent notice on our website where appropriate

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information. Your continued use of our website and services after the effective date of any changes constitutes your acceptance of the updated Privacy Policy.

If you disagree with any changes made to this policy, you should discontinue use of our services and, if applicable, close your account. You may contact us at [email protected] to request deletion of your personal information.

Summary: At Dions, we collect your personal information to provide excellent food ordering and delivery services. We protect your data using industry-standard security measures, respect your privacy rights under applicable U.S. law including the CCPA/CPRA and FTC Act, and never sell your personal information to third parties. For any privacy questions, contact us at [email protected].

This Privacy Policy was last updated on May 13, 2026. It is effective as of May 13, 2026.