Privacy Policy

Effective Date: March 18, 2026 | Last Updated: March 18, 2026

This Privacy Policy describes how Dion's Pizza ("Dion's," "we," "us," or "our") collects, uses, discloses, and protects information obtained from visitors and customers who access or use our website located at dionspizza.digital (the "Site") and any related online or offline services we provide (collectively, the "Services"). Please read this Privacy Policy carefully before using our Site or submitting any personal information to us.

By accessing or using our Site, placing an order, creating an account, or otherwise interacting with our Services, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy. If you do not agree with the terms of this Privacy Policy, please do not use our Site or Services.

We are committed to protecting your privacy and complying with all applicable federal and state privacy laws in the United States, including but not limited to the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA), the Federal Trade Commission Act (FTC Act), the CAN-SPAM Act, and other applicable consumer protection statutes.

1. Information We Collect

We collect various types of information in connection with your use of our Site and Services. This information falls into the following categories:

1.1 Personal Information You Provide Directly

When you interact with our Site or Services, we may ask you to provide personal information voluntarily. The types of personal information we collect directly from you include:

Contact Information: Your full name, email address, mailing address, billing address, delivery address, and phone number.
Account Information: Username, password, and account preferences when you register for an account on our Site.
Order and Transaction Information: Details about the food items you order, special instructions or dietary preferences, order history, and payment information (note: full payment card details are processed by our secure third-party payment processors and are not stored on our servers).
Communication Data: Messages, feedback, reviews, comments, and other communications you send us via contact forms, email, or other channels.
Loyalty Program Data: If you participate in any rewards or loyalty program we offer, we collect data related to your participation, points accumulation, and redemptions.
Marketing Preferences: Your preferences regarding receiving marketing communications from us, including opt-in and opt-out choices.
Promotion and Contest Data: Information you provide when you enter a contest, sweepstakes, or promotional event we may run.

1.2 Information Collected Automatically

When you access and use our Site, we and our third-party service providers automatically collect certain technical and usage information, including:

Device Information: IP address, browser type and version, operating system, device identifiers, screen resolution, and language settings.
Usage Data: Pages viewed, links clicked, time spent on pages, referring URLs, search queries entered on our Site, and navigation paths through our Site.
Log Data: Server log files that record activity on our Site, including access times, error logs, and other diagnostic data.
Location Data: General geographic location inferred from your IP address. If you use certain features of our Site, we may request access to more precise location information (with your consent).
Cookies and Tracking Technologies: We use cookies, web beacons, pixel tags, local storage, and similar technologies to collect information about your interactions with our Site. Please see Section 7 of this Privacy Policy for more details.

1.3 Information We Receive from Third Parties

We may also receive personal information about you from third-party sources, including:

Social Media Platforms: If you connect your social media account to our Site or interact with our social media pages, we may receive information from those platforms, such as your name, profile picture, and email address, subject to their privacy policies.
Analytics Providers: Third-party analytics companies that help us understand how users interact with our Site.
Advertising Partners: Advertising networks that provide us with aggregated or segmented audience information to help us target our marketing efforts.
Delivery Partners: If we partner with third-party delivery platforms, we may receive order and delivery information from those partners.
Payment Processors: Confirmation and status information related to your transactions from our secure payment processing partners.

2. How We Use Your Information

We use the information we collect for a variety of business purposes, all of which are consistent with applicable law. These purposes include:

2.1 Providing and Managing Our Services

Processing and fulfilling your food orders, including coordinating delivery or pickup arrangements.
Creating, maintaining, and managing your customer account.
Processing payments and sending transaction confirmations and receipts.
Responding to your questions, comments, complaints, and requests for customer support.
Administering loyalty programs, promotions, contests, and special offers.
Personalizing your experience on our Site, such as remembering your preferences and previous orders.

2.2 Analytics and Service Improvement

Analyzing how customers use our Site and Services to identify trends and areas for improvement.
Conducting internal research and development to enhance our menu offerings, website functionality, and overall customer experience.
Monitoring and improving the performance, security, and reliability of our Site.
Generating aggregated, anonymized statistical data about our customers and their interactions with our Services.

2.3 Marketing and Advertising

Sending you promotional emails, newsletters, special offers, and information about new menu items or services, where you have provided consent or where permitted by applicable law.
Displaying targeted advertisements on our Site and on third-party websites based on your browsing history and preferences.
Measuring the effectiveness of our marketing campaigns and promotional activities.
Retargeting you on social media platforms and other digital advertising networks.

2.4 Legal and Compliance Purposes

Complying with applicable federal, state, and local laws and regulations.
Enforcing our Terms of Service and other applicable agreements and policies.
Detecting, investigating, and preventing fraudulent transactions, unauthorized access, and other illegal activities.
Protecting the rights, property, and safety of Dion's Pizza, our customers, and the public.
Responding to lawful requests from law enforcement and government authorities.

3. Sharing Your Information with Third Parties

We do not sell your personal information in the traditional sense. However, we may share your information with third parties in certain circumstances as described below. Under the CCPA/CPRA, certain sharing of data with advertising partners for cross-context behavioral advertising may constitute a "sale" or "sharing" of personal information. Where required, we provide opt-out rights for such activities.

3.1 Service Providers and Business Partners

We work with trusted third-party service providers who perform services on our behalf. These providers are authorized to use your personal information only as necessary to provide services to us and are contractually obligated to maintain appropriate security measures. Such service providers include:

Payment Processors: To securely process credit card and other payment transactions.
Delivery Services: To coordinate food delivery to your location.
Email and Communication Service Providers: To send transactional emails, newsletters, and marketing communications.
Cloud Hosting and Infrastructure Providers: To store data and operate our website and systems.
Analytics Providers: Such as Google Analytics, to help us understand website traffic and user behavior.
Customer Support Tools: Platforms that help us manage customer inquiries and support tickets.
Marketing and Advertising Networks: To deliver targeted advertising and measure campaign effectiveness.

3.2 Legal Requirements and Law Enforcement

We may disclose your personal information if we believe in good faith that such disclosure is necessary to:

Comply with a legal obligation, court order, subpoena, or other lawful government request.
Enforce or apply our Terms of Service or other agreements.
Protect and defend the rights or property of Dion's Pizza.
Prevent or investigate possible wrongdoing in connection with our Services.
Protect the personal safety of our customers, employees, or the general public.
Protect against legal liability.

3.3 Business Transfers

If Dion's Pizza is involved in a merger, acquisition, sale of all or a portion of its assets, financing, bankruptcy, reorganization, or similar transaction, your personal information may be transferred as part of that transaction. We will notify you via email and/or a prominent notice on our Site before your personal information is transferred and becomes subject to a different privacy policy.

3.4 Aggregated and Anonymized Data

We may share aggregated, anonymized, or de-identified information that cannot reasonably be used to identify you with third parties for research, marketing, analytics, and other purposes. This information is not subject to the same restrictions as personal information under this Privacy Policy.

3.5 With Your Consent

We may share your personal information with other third parties when you have given us your explicit consent to do so.

4. Data Security

We take the security of your personal information seriously and implement a variety of technical, administrative, and physical security measures designed to protect your information from unauthorized access, use, disclosure, alteration, and destruction.

4.1 Security Measures We Employ

Encryption: Our Site uses Secure Socket Layer (SSL) / Transport Layer Security (TLS) encryption to protect data transmitted between your browser and our servers. Payment information is encrypted using industry-standard protocols.
Access Controls: We restrict access to personal information to employees, contractors, and agents who need to know that information to process it on our behalf. These individuals are subject to strict confidentiality obligations.
Secure Storage: Personal information is stored on secure servers with appropriate firewall and intrusion detection protections.
Regular Security Assessments: We conduct periodic reviews of our data collection, storage, and processing practices, as well as physical security measures, to guard against unauthorized access to systems.
PCI DSS Compliance: Our payment processing practices comply with Payment Card Industry Data Security Standards (PCI DSS) requirements.

4.2 Limitations of Security

While we strive to use commercially acceptable means to protect your personal information, no method of transmission over the internet or method of electronic storage is 100% secure. We cannot guarantee the absolute security of your data. In the event of a data breach that affects your personal information, we will notify you as required by applicable federal and state breach notification laws.

You are responsible for maintaining the confidentiality of your account credentials and for any activity that occurs under your account. We encourage you to use a strong, unique password and to notify us immediately at [email protected] if you suspect any unauthorized use of your account.

5. Your Privacy Rights

Depending on your state of residence and applicable law, you may have certain rights regarding your personal information. We are committed to honoring these rights as required by law.

5.1 Rights Available to All Users

Right to Know / Access: You have the right to request that we disclose information about the categories and specific pieces of personal information we have collected about you, the sources from which it was collected, the purposes for which it is used, and the third parties with whom it is shared.
Right to Correction: You have the right to request that we correct inaccurate personal information we maintain about you.
Right to Deletion: You have the right to request that we delete personal information we have collected from you, subject to certain exceptions permitted by law (such as information needed to complete a transaction you requested or to comply with a legal obligation).
Right to Data Portability: Where technically feasible, you have the right to request that we provide your personal information in a structured, commonly used, and machine-readable format.
Right to Opt-Out of Marketing: You may opt out of receiving promotional communications from us at any time by clicking the "unsubscribe" link in any marketing email we send you or by contacting us directly at [email protected].
Right to Non-Discrimination: We will not discriminate against you for exercising any of your privacy rights. We will not deny you goods or services, charge you different prices, or provide a different level of quality of goods or services because you exercised your rights.

5.2 Additional Rights for California Residents

If you are a resident of California, you have additional rights under the CCPA/CPRA:

Right to Know About Sensitive Personal Information: You have the right to know what sensitive personal information (as defined by the CPRA) we collect and how it is used.
Right to Limit Use of Sensitive Personal Information: You have the right to direct us to limit the use and disclosure of your sensitive personal information to what is necessary to perform the services you request.
Right to Opt-Out of Sale or Sharing: You have the right to opt out of the "sale" or "sharing" of your personal information, including for cross-context behavioral advertising purposes. To exercise this right, you may use the "Do Not Sell or Share My Personal Information" link on our Site or contact us using the information in Section 11.
Shine the Light Law: California Civil Code Section 1798.83 permits California residents to request information regarding the disclosure of personal information to third parties for direct marketing purposes. To make such a request, please contact us as described in Section 11.

5.3 Rights for Residents of Other States

Residents of Virginia (VCDPA), Colorado (CPA), Connecticut (CTDPA), Utah (UCPA), Texas, Oregon, Montana, and other states with applicable consumer privacy laws may also have rights to access, correct, delete, and port their personal information, as well as to opt out of certain processing activities. We honor these rights to the extent required by applicable law. Please contact us using the information in Section 11 to exercise your rights.

5.4 How to Submit a Privacy Rights Request

To exercise any of your privacy rights, please contact us using one of the following methods:

Email: [email protected]
Website: dionspizza.digital

We will respond to verifiable consumer requests within 45 days of receipt. If we require more time, we will inform you of the reason and the extension period (up to an additional 45 days) in writing. We may need to verify your identity before processing your request. We will not charge a fee for processing your request unless it is excessive, repetitive, or manifestly unfounded.

6. Cookie Policy and Tracking Technologies

Our Site uses cookies and similar tracking technologies to enhance your experience, analyze site traffic, and assist in our marketing efforts. This section provides a brief overview of our cookie practices.

6.1 What Are Cookies?

Cookies are small text files that are placed on your device (computer, smartphone, or tablet) when you visit a website. They are widely used to make websites work more efficiently and to provide information to the website owners. Cookies may be "session cookies" (deleted when you close your browser) or "persistent cookies" (remaining on your device for a set period or until deleted).

6.2 Types of Cookies We Use

Category	Purpose	Examples
Strictly Necessary	Essential for the website to function properly; cannot be disabled.	Session management, shopping cart functionality, security cookies
Performance / Analytics	Collect information about how visitors use our Site to help us improve performance.	Google Analytics, page view tracking
Functional	Remember your preferences and personalize your experience.	Language preferences, saved addresses, login status
Marketing / Advertising	Track your browsing habits to deliver relevant advertisements.	Google Ads, Facebook Pixel, retargeting cookies

6.3 Managing Your Cookie Preferences

You can control and manage cookies in several ways. Most web browsers allow you to refuse or accept cookies and to delete cookies that have already been set. Instructions for managing cookies in common browsers can be found at the browser developer's website. Please note that disabling certain cookies may affect the functionality of our Site and your ability to use certain features, including online ordering.

For more detailed information about how we use cookies and how to manage your preferences, please refer to our full Cookie Policy available on our Site.

7. Data Retention

We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. The criteria we use to determine our retention periods include:

Account Information: We retain your account information for as long as your account is active. If you request deletion of your account, we will delete or anonymize your personal information within 45 days of your verified request, except where we are required to retain it for legal or business purposes.
Order History: We retain transaction and order records for a minimum of seven (7) years to comply with accounting, tax, and legal record-keeping requirements.
Communication Records: Customer support communications and correspondence are typically retained for up to three (3) years after the last interaction.
Marketing Data: Email marketing preferences and communication histories are retained until you opt out, after which we retain a record of your opt-out status to ensure compliance.
Analytics and Log Data: Automatically collected usage data and server logs are typically retained for up to twenty-four (24) months before being deleted or anonymized.
Cookie Data: Retention periods vary depending on the type of cookie. Session cookies are deleted when you close your browser, while persistent cookies may be retained for varying periods as described in our Cookie Policy.
Legal Holds: Where personal information is subject to litigation, regulatory inquiry, or other legal proceedings, we may retain it for longer than our standard retention periods until the matter is resolved.

When personal information is no longer needed, we will securely delete, destroy, or anonymize it in accordance with our data retention and disposal procedures.

8. Children's Privacy

Our Site and Services are intended for use by individuals who are 18 years of age or older. We do not knowingly collect, solicit, or maintain personal information from children under the age of 13 (or under the age of 16 for purposes of the CCPA/CPRA's provisions regarding minors).

If we learn that we have collected personal information from a child under 13 without parental consent, we will take steps to delete that information as quickly as possible. If you are a parent or guardian and believe that your child has provided personal information to us without your consent, please contact us immediately at [email protected] so that we can take appropriate action.

We do not knowingly "sell" or "share" (as defined by the CCPA/CPRA) the personal information of minors under 16 years of age without affirmative authorization from the minor (if between 13 and 16 years old) or the minor's parent or guardian (if under 13 years old).

9. International Data Transfers

Dion's Pizza is a business operating in the United States, and our primary servers and systems are located in the United States. If you are accessing our Site from outside the United States, please be aware that your information may be transferred to, stored, and processed in the United States, where data protection laws may differ from those in your home country.

By using our Site and Services, you consent to the transfer of your information to the United States and its processing there in accordance with this Privacy Policy. We take reasonable steps to ensure that any international transfers of personal information are conducted in compliance with applicable law and that your information remains protected to a standard consistent with this Privacy Policy.

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, please note that transfers of your personal information to the United States may be made pursuant to appropriate safeguards, including Standard Contractual Clauses approved by the European Commission, where applicable.

10. Third-Party Links and Services

Our Site may contain links to third-party websites, platforms, and services that are not owned or controlled by Dion's Pizza, including social media platforms, delivery partner websites, and online payment processors. This Privacy Policy applies only to information collected by our Site and Services.

We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party websites or services. We strongly encourage you to review the privacy policy of every site you visit. We shall not be responsible or liable, directly or indirectly, for any damage or loss caused by or in connection with the use of or reliance on any content, goods, or services available on or through any third-party websites or services.

11. Contact Information for Privacy Inquiries

If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, or if you wish to exercise any of your privacy rights, please contact us using the following information:

Privacy Contact Information

Company:	Dion's Pizza
Email:	[email protected]
Website:	dionspizza.digital

When contacting us regarding a privacy request, please include your full name, the email address associated with your account (if applicable), and a clear description of your request so that we can respond effectively and efficiently.

12. Filing a Complaint with a Data Protection Authority

If you believe that we have handled your personal information in a manner that violates applicable privacy law, you have the right to file a complaint with the appropriate regulatory or consumer protection authority.

12.1 For U.S. Residents

If you have concerns about our privacy practices that we have not adequately addressed, you may file a complaint with the following authorities:

Federal Trade Commission (FTC): The FTC enforces federal consumer protection laws, including privacy-related regulations. You can file a complaint online at reportfraud.ftc.gov or by calling 1-877-382-4357.
California Residents — California Privacy Protection Agency (CPPA): California residents who believe their CCPA/CPRA rights have been violated may file a complaint with the California Privacy Protection Agency at cppa.ca.gov.
California Residents — California Attorney General: You may also file a complaint with the California Attorney General's office at oag.ca.gov.
Other State Attorneys General: Residents of other states may contact their state's Attorney General office to file privacy-related complaints. Contact information for your state's Attorney General can typically be found on your state government's official website.

We encourage you to first contact us directly so that we may attempt to resolve your concerns before filing a complaint with a regulatory authority.

13. Do Not Track Signals

Some web browsers have a "Do Not Track" (DNT) feature that signals to websites that you do not want your online activity tracked. Currently, there is no universally accepted standard for how websites should respond to DNT signals. Our Site does not currently respond to browser DNT signals. However, you can manage your privacy preferences through the cookie management options described in Section 6 of this Privacy Policy and through your browser settings.

California residents are entitled to know that our Site does not respond to DNT signals under California's Online Privacy Protection Act (CalOPPA). We encourage you to use the opt-out mechanisms described in this Privacy Policy to manage your preferences.

14. Changes to This Privacy Policy

We reserve the right to update or modify this Privacy Policy at any time to reflect changes in our practices, legal requirements, or for other operational, legal, or regulatory reasons. When we make material changes to this Privacy Policy, we will:

Update the "Last Updated" date at the top of this page.
Provide a prominent notice on our Site homepage.
Send a notification email to customers with active accounts, where feasible.

We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information. Your continued use of our Site and Services after any modifications to this Privacy Policy constitutes your acceptance of the revised policy.

15. Legal Basis for Processing (Where Applicable)

To the extent required by applicable law, we rely on the following legal bases for processing your personal information:

Performance of a Contract: Processing is necessary to fulfill your orders, manage your account, and deliver the Services you have requested.
Legitimate Interests: Processing is necessary for our legitimate business interests, such as improving our Services, preventing fraud, and conducting marketing activities, provided that such interests are not overridden by your rights and freedoms.
Legal Obligation: Processing is necessary to comply with our legal obligations under applicable federal, state, or local laws.
Consent: Where we rely on your consent as the legal basis for processing, you have the right to withdraw your consent at any time without affecting the lawfulness of processing carried out prior to such withdrawal.

Questions About This Policy?

If you have any questions about this Privacy Policy or how we handle your personal information, please do not hesitate to reach out to us at [email protected] or visit our website at dionspizza.digital. We are committed to working with you to resolve any concerns promptly and transparently.