Privacy Policy
1. Introduction
At Dions, we are committed to protecting your privacy and ensuring the security of your personal information. We understand that when you order food from us, share your dietary preferences, or engage with our services, you trust us with sensitive information about your lifestyle and preferences.
This Privacy Policy outlines our practices regarding the collection, use, storage, and protection of your personal information when you use our website, mobile applications, or engage with our food delivery and catering services. This policy applies to all interactions with Dions, whether you're ordering online, visiting our restaurants, or participating in our loyalty program.
By using our services, creating an account, placing orders, or providing us with your information, you agree to the collection and use of your information as described in this Privacy Policy. If you do not agree with our practices, please do not use our services.
2. Information We Collect
2.1 Information You Provide to Us
When you interact with Dions, you may provide us with various types of personal information:
- Personal Identification Information: Name, email address, phone number, delivery address, billing address, date of birth
- Account Information: Username, password, purchase history, order preferences, saved payment methods
- Food-Related Information: Dietary restrictions, allergen information, food preferences, favorite orders, special dietary requirements (vegan, vegetarian, halal, kosher, gluten-free)
- Payment Information: Credit card details, billing information (stored in encrypted form through secure payment processors)
- Order Details: Order history, delivery instructions, table reservation preferences, catering event details
- Communication Data: Contact form submissions, customer service interactions, reviews and ratings, feedback
- Marketing Preferences: Newsletter subscriptions, promotional preferences, communication channel preferences
- Loyalty Program Data: Rewards points, membership tier, redemption history, special offers used
2.2 Automatically Collected Information
When you visit our website or use our mobile applications, we automatically collect certain information:
- Device Information: IP address, browser type and version, operating system, device type, screen resolution
- Usage Data: Pages visited, time spent on pages, click patterns, search queries, features used
- Location Data: Approximate location based on IP address, precise location (with permission) for delivery services
- Cookie Data: Session IDs, user preferences, website functionality data, analytics information
- Performance Data: Page load times, error reports, app crashes, performance metrics
2.3 Information from Third Parties
We may receive information about you from third-party sources:
- Social Media Platforms: Profile information if you connect your social media accounts
- Payment Processors: Transaction verification, fraud prevention data
- Delivery Partners: Delivery status updates, delivery completion confirmations
- Marketing Partners: Campaign performance data, advertising effectiveness metrics
- Public Sources: Publicly available information to verify identity and prevent fraud
3. How We Use Your Information
3.1 Service Provision
We use your information primarily to provide and improve our food delivery and restaurant services:
- Order Processing: Processing food orders, coordinating preparation, managing delivery logistics
- Account Management: Creating and maintaining user accounts, authentication, password recovery
- Customer Support: Responding to inquiries, resolving issues, providing assistance
- Quality Improvement: Analyzing service performance, identifying areas for enhancement
- Personalization: Customizing menu recommendations based on dietary preferences and order history
- Reservation Management: Processing table reservations, managing catering bookings
3.2 Communication
- Order Updates: Confirmation emails, preparation status, delivery notifications, pickup reminders
- Customer Support: Responding to questions, providing assistance, following up on issues
- Important Notices: Policy changes, service updates, security alerts, maintenance notifications
- Marketing Communications: Promotional offers, new menu items, special events (only with your consent)
3.3 Marketing and Analytics
- Personalized Marketing: Tailored promotions based on preferences and order history
- Website Analytics: Understanding user behavior, improving website functionality
- Campaign Measurement: Evaluating marketing effectiveness, ROI analysis
- Market Research: Developing new menu items, improving service offerings
3.4 Legal and Security
- Legal Compliance: Meeting regulatory requirements, responding to legal requests
- Fraud Prevention: Detecting and preventing fraudulent activities, protecting accounts
- Safety and Security: Protecting rights, property, and safety of customers and employees
- Dispute Resolution: Resolving complaints, handling refunds, managing chargebacks
4. Information Sharing and Disclosure
4.1 Service Providers
We share your information with trusted third-party service providers who help us operate our business:
- Payment Processors: Stripe, PayPal, and other payment services to process transactions securely
- Delivery Services: Third-party delivery partners to fulfill food orders and provide tracking
- Cloud Storage Providers: AWS, Google Cloud for secure data storage and backup
- Marketing Services: Email marketing platforms, SMS services, advertising networks
- Analytics Tools: Google Analytics, heatmap tools for website performance analysis
- Customer Support: Helpdesk software, chat services, call center solutions
4.2 Legal Requirements
We may disclose your information when required by law or to protect our legitimate interests:
- Legal Process: Court orders, subpoenas, search warrants, legal investigations
- Regulatory Compliance: Food safety regulations, tax requirements, business licensing
- Rights Protection: Protecting our intellectual property, enforcing terms of service
- Public Safety: Emergency situations, public health concerns, safety threats
4.3 Business Transfers
In the event of a merger, acquisition, or sale of business assets:
- Customer information may be transferred as part of the business assets
- We will notify customers before any transfer occurs
- The new owner will be required to honor this Privacy Policy
- Customers will have the opportunity to opt out before the transfer
4.4 With Your Consent
We may share your information for other purposes with your explicit consent, such as:
- Participating in partner promotions or cross-marketing campaigns
- Sharing testimonials or reviews (with permission)
- Research studies or surveys (anonymized data)
5. Data Security
5.1 Technical Measures
We implement comprehensive technical safeguards to protect your information:
- Encryption: SSL/TLS encryption for all data transmission between your device and our servers
- Secure Storage: All personal information is encrypted at rest using industry-standard encryption
- Firewall Protection: Advanced firewall systems to prevent unauthorized access
- Access Controls: Role-based access ensuring only authorized personnel can access data
- Monitoring: 24/7 security monitoring and intrusion detection systems
- Backup Systems: Regular, encrypted backups stored in secure, geographically distributed locations
5.2 Organizational Measures
- Employee Training: Regular security awareness training for all staff members
- Data Handling Procedures: Strict protocols for accessing, processing, and storing personal information
- Confidentiality Agreements: All employees and contractors sign confidentiality agreements
- Incident Response Plan: Comprehensive plan for responding to security breaches
- Regular Audits: Internal and external security audits to identify and address vulnerabilities
5.3 Your Security Responsibilities
You play an important role in keeping your information secure:
- Strong Passwords: Use unique, complex passwords for your account
- Password Protection: Never share your password or login credentials
- Public Computers: Always log out when using public or shared computers
- Phishing Awareness: Be cautious of suspicious emails or links claiming to be from Dions
- Account Monitoring: Regularly review your account for unauthorized activity
- Report Issues: Contact us immediately if you suspect unauthorized access to your account
6. Cookies and Tracking Technologies
We use various tracking technologies to enhance your experience on our website and mobile applications:
| Cookie Type | Purpose | Duration |
|---|---|---|
| Essential Cookies | Basic site functionality, user authentication, shopping cart, security | Session or until logout |
| Functional Cookies | User preferences, language settings, location preferences, customization | Up to 1 year |
| Analytics Cookies | Website usage analysis, performance monitoring, user behavior tracking | Up to 2 years |
| Marketing Cookies | Personalized advertising, campaign measurement, remarketing | Up to 1 year |
| Social Media Cookies | Social sharing functionality, social login, social media integration | Up to 1 year |
Other Tracking Technologies
- Google Analytics: Website traffic analysis, user behavior insights, conversion tracking
- Facebook Pixel: Advertising effectiveness measurement, custom audience creation
- Web Beacons: Email open rate tracking, newsletter engagement measurement
- Local Storage: Browser-based data storage for enhanced functionality
- Session Replay Tools: Understanding user interactions to improve website usability
Managing Cookies
You can control cookies through your browser settings:
- Accept or reject all cookies
- Delete existing cookies
- Set preferences for specific websites
- Receive notifications when cookies are set
Please note: Disabling certain cookies may affect website functionality, such as staying logged in, maintaining your shopping cart, or receiving personalized recommendations.
7. Your Privacy Rights
We respect your privacy rights and provide you with control over your personal information. Depending on your location, you may have the following rights under GDPR, CCPA, and other privacy regulations:
7.1 Right of Access
You have the right to know what personal information we have collected about you, including the sources of information, purposes of processing, and third parties we share it with.
7.2 Right to Rectification
You can request correction of inaccurate or incomplete personal information. You can update most information directly through your account settings.
7.3 Right to Erasure (Right to be Forgotten)
You can request deletion of your personal information, subject to certain exceptions for legal, business, or security purposes.
7.4 Right to Restrict Processing
You can request that we limit how we use your personal information in certain circumstances, such as while a complaint is being resolved.
7.5 Right to Data Portability
You can request a copy of your personal information in a machine-readable format to transfer to another service provider.
7.6 Right to Object
You can object to our processing of your personal information, particularly for direct marketing purposes or when processing is based on legitimate interests.
7.7 Right Against Automated Decision-Making
You have the right not to be subject to decisions based solely on automated processing, including profiling, that have legal or significant effects.
How to Exercise Your Rights
To exercise any of these rights, please contact us using the information provided in Section 13. We will respond to your request within 30 days and may require verification of your identity to protect your privacy.
8. Children's Privacy
Dions is committed to protecting the privacy of children. Our services are not intended for individuals under the age of 16, and we do not knowingly collect personal information from children under 16.
- We do not intentionally solicit or collect personal information from children under 16
- If we learn that we have collected information from a child under 16, we will delete it promptly
- Parents or guardians who believe their child has provided us with personal information should contact us immediately
- We encourage parents to monitor their children's internet usage and educate them about online privacy
If you are a parent or guardian and believe your child has provided us with personal information, please contact us at [email protected], and we will promptly delete such information.
9. International Data Transfers
As a global food service company, we may transfer your personal information across international borders to provide our services effectively.
9.1 Protection Measures
- Adequacy Decisions: We transfer data to countries recognized by regulatory authorities as providing adequate protection
- Standard Contractual Clauses (SCCs): We use EU-approved contractual terms for data transfers
- Data Processing Agreements: All international partners sign comprehensive data protection agreements
- Security Measures: Encryption and security protocols apply to all international transfers
- Regular Audits: We conduct regular compliance assessments of international partners
9.2 Transfer Destinations
- United States: Cloud storage services, payment processing, customer support
- European Union: Data analytics, marketing services, compliance monitoring
- Canada: Customer support services, data backup facilities
- Other Countries: As necessary for service provision, always with appropriate safeguards
10. Data Retention Periods
We retain your personal information only as long as necessary to fulfill the purposes for which it was collected and to comply with legal obligations.
| Information Type | Retention Period | Reason for Retention |
|---|---|---|
| Account Information | 6 months after account deletion | Legal obligations, dispute resolution, fraud prevention |
| Order History | 7 years | Tax and accounting requirements, warranty claims |
| Payment Information | As required by payment processors | Chargeback protection, fraud prevention |
| Marketing Consent | 3 months after withdrawal | Consent record keeping, compliance verification |
| Website Usage Logs | Up to 2 years | Security monitoring, analytics, performance optimization |
| Customer Support Records | 3 years | Service quality improvement, training purposes |
| Dietary Preferences | Until account deletion | Service personalization, health and safety |
| Delivery Addresses | 2 years after last use | Service efficiency, reorder convenience |
Safe Data Disposal
When data retention periods expire, we ensure secure disposal:
- Electronic Data: Complete deletion using industry-standard methods ensuring data is unrecoverable
- Physical Records: Secure shredding by certified document destruction services
- Backup Systems: Systematic purging of expired data from all backup systems
- Disposal Records: Maintaining records of data disposal for compliance purposes
11. Third-Party Links
Our website and mobile applications may contain links to third-party websites, social media platforms, or partner services that are not operated by Dions.
- We are not responsible for the privacy practices or content of third-party websites
- Third-party sites have their own privacy policies, which we encourage you to review
- Your interactions with third-party sites are governed by their terms and policies, not ours
- We do not endorse or make representations about third-party websites
12. Policy Changes
We may update this Privacy Policy periodically to reflect changes in our practices, technology, legal requirements, or business operations.
12.1 Change Notification Methods
- Website Notice: Prominent notice on our homepage and privacy policy page
- Email Notification: Direct email to registered users for significant changes
- Account Notification: In-app or dashboard notifications when you log in
- Pop-up Notifications: Browser notifications for major policy changes
- Social Media: Announcements on our official social media channels
12.2 Staying Informed
- The most current version of our Privacy Policy is always available on our website
- Check the "Last Updated" date at the top of this policy
- Continued use of our services after changes indicates acceptance of the new policy
- If you disagree with changes, you may stop using our services or contact us to discuss concerns
Significant Changes: For material changes that affect how we use your personal information, we will obtain your explicit consent before implementing the changes.
13. Contact Information
We are committed to addressing your privacy concerns and questions promptly. Please don't hesitate to contact us using any of the following methods:
Dions Privacy Office
Company: Dions
Address: 4640 Telegraph Ave, Oakland, CA 94609, USA
Phone: +1 510-239-9287
Email: [email protected]
Privacy Email: [email protected]
Business Hours: Monday - Friday, 9:00 AM - 6:00 PM PST
Response Commitment
We are committed to responding to your privacy inquiries within 3 business days. For complex requests or rights exercises, we may take up to 30 days as permitted by law.
13.1 Filing Complaints
We encourage you to contact us first if you have concerns about our privacy practices. However, you also have the right to file a complaint with supervisory authorities:
- US Residents: Federal Trade Commission (FTC) - consumer.ftc.gov
- California Residents: California Attorney General's Office
- EU Residents: Your local data protection authority
- UK Residents: Information Commissioner's Office (ICO)
14. Withdrawal of Consent
You have the right to withdraw your consent for certain types of data processing at any time. Here's how you can manage your consent preferences:
14.1 Marketing Consent Withdrawal
- Email Unsubscribe: Click the unsubscribe link in any marketing email
- Account Settings: Update your communication preferences in your account dashboard
- Contact Support: Email or call our customer support team
- SMS Opt-out: Reply "STOP" to any promotional text message
14.2 Account Deletion Process
To permanently delete your account and personal information:
- Log into your account and navigate to account settings
- Select "Delete Account" or "Close Account"
- Follow the verification steps to confirm your identity
- Review what data will be deleted and what may be retained for legal purposes
- Confirm your deletion request
Important Note: Some information may be retained for legal compliance, fraud prevention, or legitimate business purposes as outlined in our retention policy.
15. Conclusion
At Dions, protecting your privacy is fundamental to our relationship with you. We understand that trust is earned through consistent, transparent, and responsible handling of your personal information.
This Privacy Policy reflects our ongoing commitment to:
- Transparently communicating how we collect and use your information
- Implementing strong security measures to protect your data
- Respecting your rights and preferences regarding your personal information
- Continuously improving our privacy practices as technology and regulations evolve
- Maintaining the trust you place in us when you choose Dions for your dining needs
Your privacy matters to us, and we are dedicated to maintaining the highest standards of data protection. Whether you're ordering your favorite pizza, exploring new menu items, or participating in our loyalty program, you can trust that your information is handled with care and respect.
If you have any questions about this Privacy Policy, our data practices, or your privacy rights, please don't hesitate to contact us. We value your feedback and are always working to improve our privacy program.
Thank you for choosing Dions and for trusting us with your personal information. We look forward to continuing to serve you with delicious food and exceptional service while protecting your privacy every step of the way.