Privacy Policy
Effective Date: May 22, 2026 | Last Updated: May 22, 2026
1. Introduction and Who We Are
Welcome to Dions. We are a food service business operating in the United States, committed to providing exceptional dining and food-related experiences to our customers. As part of delivering our services, we collect and process certain personal information about you.
This Privacy Policy applies to all personal information collected through our website (meal-dions.rest), mobile platforms, online ordering systems, email communications, telephone interactions, and any other services we operate or provide. This policy is designed to help you understand your rights and our obligations regarding your personal data.
We take your privacy seriously. Our practices are governed by applicable United States federal and state privacy laws, including the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA) for California residents, the Federal Trade Commission Act (FTC Act), and other applicable regulations. We are committed to complying with all relevant privacy legislation.
You may contact us regarding any privacy-related matter at:
- Company Name: Dions
- Address: United States
- Email: [email protected]
- Website: meal-dions.rest
2. Information We Collect
We collect various categories of personal information to provide, improve, and market our food services. The types of information we collect depend on how you interact with us.
2.1 Personal Identification Information
When you place an order, create an account, sign up for our newsletter, make a reservation, or otherwise interact with us, we may collect the following personal identification information:
- Full name
- Email address
- Phone number
- Billing and delivery addresses
- Date of birth (where required for age verification or promotional purposes)
- Account username and password (in encrypted form)
- Profile photograph (if you choose to provide one)
- Dietary preferences, restrictions, and food allergy information
2.2 Payment and Financial Information
When you make a purchase or pay for our services, we collect payment-related information including:
- Credit card or debit card details (processed securely through third-party payment processors)
- Billing address and ZIP code
- Transaction history and order details
- Promotional vouchers or loyalty reward codes used
We do not store full payment card numbers on our own servers. All payment processing is handled by PCI-DSS compliant third-party payment processors.
2.3 Usage and Behavioral Data
When you browse our website or use our online platforms, we automatically collect certain usage data, including:
- Pages visited and time spent on each page
- Links and buttons clicked
- Search queries entered on our website
- Items browsed, added to cart, or ordered
- Date and time of your visit
- Referring website or source (how you found us)
- Session duration and frequency of visits
- Interactions with emails we send you (open rates, click-throughs)
2.4 Device and Technical Information
We collect technical information about the devices and software you use to access our services:
- IP address
- Browser type and version
- Operating system and version
- Device type (desktop, mobile, tablet)
- Device identifiers and hardware information
- Screen resolution and language settings
- Geographic location data (city and country level, derived from IP address)
- Mobile network information (if using a mobile device)
2.5 Communications and Feedback Data
When you contact us, leave a review, or participate in surveys, we collect:
- Contents of emails, messages, or correspondence sent to us
- Customer service interaction records
- Reviews, ratings, and feedback you submit
- Survey responses and competition entries
- Social media interactions with our official accounts
2.6 Cookie and Tracking Data
We use cookies, web beacons, pixels, and similar tracking technologies to collect data about your browsing behavior. For detailed information about the specific cookies we use, their purposes, and how to manage your preferences, please refer to our dedicated Cookie Policy available on our website.
3. How We Use Your Information
We use the personal information we collect for the following specific, lawful purposes:
3.1 Service Provision and Order Fulfillment
- Processing and fulfilling your food orders and reservations
- Managing your customer account and order history
- Processing payments and handling refunds or disputes
- Communicating order confirmations, updates, and delivery notifications
- Accommodating dietary preferences and food allergy requirements
- Providing customer support and resolving complaints
3.2 Website and Service Improvement
- Analyzing website performance and user experience
- Identifying and fixing technical issues and bugs
- Conducting A/B testing and feature optimization
- Understanding how customers interact with our menu and services
- Developing new menu items, features, and service offerings
3.3 Marketing and Communications
- Sending promotional emails, newsletters, and special offer notifications (with your consent)
- Personalizing the content and recommendations you see on our website
- Running loyalty programs and reward campaigns
- Conducting targeted advertising through third-party platforms
- Notifying you about relevant promotions, seasonal menus, and events
You have the right to opt out of marketing communications at any time by clicking the "unsubscribe" link in any email we send, or by contacting us at [email protected].
3.4 Legal Compliance and Safety
- Complying with applicable federal and state laws and regulations
- Responding to lawful requests from government authorities or law enforcement
- Detecting, preventing, and investigating fraud, security breaches, or illegal activity
- Enforcing our Terms of Service and other legal agreements
- Protecting the rights, property, and safety of Dions, our customers, and the public
3.5 Analytics and Research
- Generating aggregated, anonymized statistics about our customer base and service usage
- Conducting market research and customer satisfaction studies
- Benchmarking our performance and planning business strategy
4. Sharing Your Information with Third Parties
We do not sell your personal information to third parties. However, we may share your information in the following limited circumstances:
4.1 Service Providers and Business Partners
We engage trusted third-party service providers to help us operate our business and deliver services. These providers may receive your personal information strictly for the purpose of performing services on our behalf. They are contractually obligated to maintain the confidentiality and security of your data and are prohibited from using it for any other purpose. Categories of service providers include:
- Payment processors: To securely handle transactions and prevent fraud
- Delivery and logistics partners: To fulfill food delivery orders
- Cloud hosting and IT infrastructure providers: To store and manage our data securely
- Email and communication platforms: To send transactional and marketing communications
- Analytics providers: To help us understand website usage and user behavior
- Customer support software: To manage and track support interactions
- Marketing and advertising platforms: To display relevant advertisements
4.2 Legal Requirements and Law Enforcement
We may disclose your personal information if we believe in good faith that such disclosure is necessary to:
- Comply with a legal obligation, court order, subpoena, or government request
- Enforce our Terms of Service or other agreements
- Protect and defend the rights or property of Dions
- Prevent or investigate possible wrongdoing in connection with our services
- Protect the personal safety of users or the public
4.3 Business Transfers
In the event of a merger, acquisition, reorganization, sale of assets, or bankruptcy, your personal information may be transferred to the acquiring entity as part of the transaction. We will notify you via email and/or a prominent notice on our website before your personal information becomes subject to a different privacy policy.
4.4 Aggregated and Anonymized Data
We may share aggregated or de-identified information that cannot reasonably be used to identify you with third parties for research, marketing, or business purposes. This does not constitute a sale of personal information.
5. Cookies and Tracking Technologies
Our website uses cookies and similar tracking technologies to enhance your user experience, analyze traffic patterns, and deliver personalized content and advertising. Cookies are small text files stored on your device when you visit our website.
5.1 Types of Cookies We Use
| Cookie Type | Purpose | Duration |
|---|---|---|
| Essential Cookies | Required for core website functionality, including login sessions and shopping cart | Session / Short-term |
| Performance Cookies | Collect anonymous data about how visitors use our website to help us improve performance | Up to 2 years |
| Functionality Cookies | Remember your preferences such as language settings and saved addresses | Up to 1 year |
| Marketing Cookies | Track your browsing to deliver relevant advertisements on third-party platforms | Up to 2 years |
You may manage your cookie preferences through your browser settings or through our cookie consent tool available on our website. Please note that disabling certain cookies may affect the functionality of our services.
6. Data Security
We take the security of your personal information seriously and implement a range of technical and organizational measures designed to protect your data from unauthorized access, alteration, disclosure, or destruction.
6.1 Technical Security Measures
- SSL/TLS Encryption: All data transmitted between your browser and our website is encrypted using Secure Socket Layer (SSL) or Transport Layer Security (TLS) protocols
- Data Encryption at Rest: Sensitive data stored in our databases is encrypted
- Secure Payment Processing: Payment information is processed through PCI-DSS compliant payment gateways
- Access Controls: Access to personal data is restricted to authorized personnel on a need-to-know basis
- Firewalls and Intrusion Detection: We employ network security measures to prevent unauthorized access
- Regular Security Audits: We conduct periodic security assessments and vulnerability testing
6.2 Organizational Security Measures
- Employee training on data privacy and security best practices
- Confidentiality agreements for all staff with access to personal data
- Data breach response procedures and incident management protocols
- Vendor security assessments for third-party service providers
7. Data Retention
We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.
| Data Category | Retention Period | Reason |
|---|---|---|
| Account information | Duration of account + 3 years after closure | Service provision and legal compliance |
| Order and transaction history | 7 years | Tax, accounting, and legal requirements |
| Payment records | 7 years | Financial and regulatory compliance |
| Marketing data and preferences | Until opt-out or 3 years from last interaction | Marketing purposes |
| Website usage and analytics data | Up to 26 months | Analytics and service improvement |
| Customer support records | 3 years from last interaction | Dispute resolution and quality assurance |
| Cookie data | As specified per cookie type | Functionality and analytics |
After the applicable retention period, we will securely delete or anonymize your personal information in accordance with our data disposal procedures.
8. Your Privacy Rights
Depending on your location and applicable law, you may have the following rights regarding your personal information:
8.1 Rights for All Users
- Right to Access: You have the right to request a copy of the personal information we hold about you
- Right to Correction: You have the right to request that we correct inaccurate or incomplete personal information
- Right to Deletion: You have the right to request that we delete your personal information, subject to certain legal exceptions
- Right to Opt Out of Marketing: You may withdraw your consent to receive marketing communications at any time
- Right to Restriction: You may request that we restrict the processing of your data in certain circumstances
8.2 Additional Rights for California Residents (CCPA/CPRA)
If you are a resident of California, you have the following additional rights under the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA):
- Right to Know: The right to know what personal information we collect, use, share, and sell about you
- Right to Delete: The right to request deletion of your personal information, with certain exceptions
- Right to Correct: The right to request correction of inaccurate personal information
- Right to Opt Out of Sale/Sharing: The right to opt out of the sale or sharing of your personal information for cross-context behavioral advertising
- Right to Limit Use of Sensitive Personal Information: The right to limit our use of sensitive personal information to specified purposes
- Right to Non-Discrimination: You will not be discriminated against for exercising any of your CCPA/CPRA rights
- Right to Data Portability: The right to receive your personal information in a portable, readily usable format
To exercise any of your California privacy rights, please submit a verifiable consumer request by contacting us at [email protected]. We will respond to your request within 45 days, with the option to extend by an additional 45 days where reasonably necessary.
8.3 How to Submit a Privacy Rights Request
To exercise any of your privacy rights, please contact us using the following methods:
- Email: [email protected]
- Website: meal-dions.rest
To protect your privacy and verify your identity, we may ask you to provide certain information before we can fulfill your request. We will not fulfill your request if we cannot verify your identity. We will not charge a fee for processing your request unless it is excessive, repetitive, or manifestly unfounded.
8.4 Authorized Agents
California residents may designate an authorized agent to submit privacy rights requests on their behalf. To use an authorized agent, you must provide written permission to the agent and verify your own identity directly with us, or provide a power of attorney pursuant to California Probate Code sections 4000 to 4465.
9. Children's Privacy
Our services are intended for individuals who are 18 years of age or older. We do not knowingly collect, solicit, or use personal information from children under the age of 13 or, where applicable, under the age of 16.
If you are under 18 years of age, please do not use our website or services, create an account, or provide us with any personal information.
If we become aware that we have inadvertently collected personal information from a child under 13 years of age without verifiable parental consent, we will take immediate steps to delete that information from our systems. If you believe we may have collected information from a child under 13, please contact us immediately at [email protected].
Our practices regarding children's privacy comply with the Children's Online Privacy Protection Act (COPPA) and any other applicable laws.
10. International Data Transfers
Dions is based in the United States, and we primarily process and store personal information within the United States. If you are accessing our services from outside the United States, please be aware that your personal information may be transferred to, stored, and processed in the United States, where data protection laws may differ from those in your country of residence.
By using our services or providing us with your personal information, you acknowledge and consent to the transfer of your information to the United States and its processing there in accordance with this Privacy Policy.
Where we transfer personal information internationally, we take appropriate steps to ensure that adequate levels of data protection are in place, including:
- Entering into appropriate data transfer agreements with third-party processors
- Implementing contractual clauses and safeguards as required by applicable law
- Ensuring our service providers maintain appropriate security standards
11. Third-Party Websites and Links
Our website may contain links to third-party websites, applications, or services that are not operated or controlled by Dions. This Privacy Policy does not apply to any third-party websites, and we are not responsible for the privacy practices of those websites.
We encourage you to review the privacy policies of any third-party websites you visit. The inclusion of a link on our website does not imply our endorsement of that website or its privacy practices.
Third-party services that may be integrated into our platform include, but are not limited to, payment processors, social media platforms, mapping services, and analytics tools. Each of these services has its own privacy policy governing how they handle your data.
12. Do Not Track Signals
Some web browsers offer a "Do Not Track" (DNT) feature that signals to websites that you do not want your online activities tracked. There is currently no universal standard for how websites should respond to DNT signals. At this time, our website does not respond to DNT signals. However, you can manage your tracking preferences through our cookie consent tool and by adjusting your browser settings.
13. Marketing and Advertising
We may use your personal information to send you promotional communications about our food offerings, special deals, seasonal menus, loyalty programs, and other marketing content. We will only send you marketing communications if you have opted in to receive them or where we have a legitimate interest in doing so under applicable law.
13.1 Email Marketing
If you have subscribed to our email newsletter or opted in to receive promotional emails, you can unsubscribe at any time by:
- Clicking the "unsubscribe" link at the bottom of any marketing email we send
- Contacting us at [email protected] with your request
Please note that even if you opt out of marketing emails, we may still send you transactional or service-related communications, such as order confirmations, receipts, and important account notices.
13.2 Online Behavioral Advertising
We may participate in interest-based advertising and use third-party advertising networks to display targeted advertisements on other websites and platforms based on your online activity. You can opt out of interest-based advertising through the Digital Advertising Alliance (DAA) opt-out tool at www.aboutads.info or the Network Advertising Initiative (NAI) opt-out tool at www.networkadvertising.org.
14. Filing a Complaint
If you believe that your privacy rights have been violated or that we have not handled your personal information in accordance with this Privacy Policy or applicable law, we encourage you to contact us first so that we can attempt to resolve the matter.
14.1 Contact Us First
Please reach out to our privacy team at:
- Email: [email protected]
- Subject Line: Privacy Complaint
We will acknowledge your complaint within 10 business days and aim to provide a full response within 30 days. If the matter is complex, we will inform you of the reason for any delay and an expected resolution date.
14.2 Regulatory Complaints — Federal Trade Commission (FTC)
If you are not satisfied with our response or believe we are engaged in unfair or deceptive practices, you may file a complaint with the Federal Trade Commission (FTC), which enforces consumer protection and privacy laws in the United States:
- FTC Website: www.ftc.gov/complaint
- FTC Phone: 1-877-FTC-HELP (1-877-382-4357)
14.3 California Residents — California Privacy Protection Agency (CPPA)
If you are a California resident and wish to file a complaint regarding your CCPA/CPRA rights, you may contact the California Privacy Protection Agency (CPPA):
- CPPA Website: cppa.ca.gov
- Address: 2101 Arena Blvd, Sacramento, CA 95834
14.4 State Attorney General
You also have the right to contact the Attorney General's office of your state if you believe your privacy rights under state law have been violated. Most state Attorneys General have consumer protection divisions that handle privacy complaints.
15. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. When we make material changes to this policy, we will notify you through one or more of the following methods:
- Posting the updated Privacy Policy on our website with a new "Last Updated" date
- Sending a notification email to the email address associated with your account
- Displaying a prominent notice on our website or app
Your continued use of our services after any changes to this Privacy Policy constitutes your acceptance of the updated terms. We encourage you to review this policy periodically to stay informed about how we protect your information.
If you do not agree with any changes to this Privacy Policy, you should discontinue use of our services and contact us to request deletion of your personal information.
16. Legal Basis for Processing
We process your personal information on the following legal bases, as applicable under relevant United States laws and regulations:
- Contractual Necessity: Processing is necessary to perform our contract with you, including processing orders and providing our food services
- Legal Obligation: Processing is required to comply with applicable laws, regulations, and legal processes
- Legitimate Interests: Processing is in our legitimate business interests, such as improving our services, preventing fraud, and conducting marketing, where these interests are not overridden by your rights
- Consent: Where required by law, we will obtain your explicit consent before processing your personal information for specific purposes, such as marketing communications and non-essential cookies
17. Contact Information for Privacy Inquiries
If you have any questions, concerns, or requests relating to this Privacy Policy or our data practices, please do not hesitate to contact us. We are committed to addressing your privacy concerns promptly and transparently.
| Company Name: | Dions |
| Business Location: | United States |
| Email Address: | [email protected] |
| Website: | meal-dions.rest |
| Subject Line: | Privacy Policy Inquiry |