Privacy Policy
Welcome to Dions. We are committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website cafe-dions.click, place orders, or otherwise interact with our food service business. Please read this policy carefully. If you do not agree with the terms of this Privacy Policy, please discontinue use of our website and services.
This Privacy Policy is governed by applicable United States federal and state privacy laws, including but not limited to the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA), the Federal Trade Commission Act (FTC Act), and other applicable consumer protection regulations. We comply with all relevant data protection standards to ensure the safety and integrity of your personal information.
1. Who We Are
Dions is a food service business operating in the United States. For the purposes of this Privacy Policy, "Dions," "we," "us," or "our" refers to the business entity operating under this name.
| Business Name | Dions |
|---|---|
| Website | cafe-dions.click |
| [email protected] |
We act as the data controller for the personal information collected through our website and services. As a data controller, we determine the purposes and means by which your personal data is processed. If you have any questions or concerns about our practices described in this policy, please contact us using the information provided in Section 14 of this document.
2. Information We Collect
We collect various types of information to provide and improve our services. The categories of personal information we collect include, but are not limited to, the following:
2.1 Personal Identification Information
When you register an account, place a food order, make a reservation, subscribe to our newsletter, or contact us, we may collect:
- Full name
- Email address
- Phone number
- Billing and delivery address (street address, city, state, ZIP code)
- Username and password (when you create an account)
- Profile picture or avatar (if voluntarily uploaded)
- Date of birth (for age verification or promotional purposes)
- Dietary preferences and food allergy information (when voluntarily provided)
2.2 Payment and Financial Information
When you make a purchase or complete a transaction through our website, we collect payment-related information necessary to process your order. This may include:
- Credit card or debit card details (card type, last four digits)
- Billing address associated with your payment method
- Transaction history and order details
Please note that full payment card numbers are processed by our third-party payment processors and are not stored directly on our servers. We use industry-standard encryption to protect payment data in transit.
2.3 Usage Data and Activity Information
We automatically collect certain information when you visit, use, or navigate our website. This usage data may include:
- IP address
- Browser type and version
- Operating system and platform
- Pages visited, time spent on pages, and links clicked
- Referring URLs and exit pages
- Search queries entered on our website
- Date and time of your visit
- Geographic location data (general, derived from IP address)
- Order history and browsing behavior on our platform
2.4 Device Information
We may collect information about the device you use to access our website or services, including:
- Device type (desktop, laptop, smartphone, tablet)
- Unique device identifiers
- Mobile network information
- Hardware model and settings
- Screen resolution and display preferences
2.5 Communications Data
If you contact us directly via email, phone, or through our website's contact form, we may retain records of those communications, including:
- The content of your messages and inquiries
- Your contact details provided in correspondence
- Customer support tickets and responses
- Reviews, feedback, and survey responses you submit
2.6 Cookies and Tracking Technologies
We use cookies, web beacons, pixel tags, local storage, and similar tracking technologies to collect information about your browsing behavior and preferences on our website. For detailed information about our use of cookies, please refer to Section 9 of this Privacy Policy.
2.7 Information from Third Parties
We may receive personal information about you from third-party sources, including:
- Social media platforms if you connect or log in using a social media account
- Food delivery and ordering platform partners
- Analytics providers and advertising networks
- Publicly available databases or directories
3. How We Use Your Information
We use the personal information we collect for a variety of legitimate business purposes, including:
3.1 Service Provision and Order Fulfillment
- Processing and fulfilling your food orders, deliveries, and reservations
- Communicating with you about your orders, including confirmations, updates, and receipts
- Providing customer support and responding to your inquiries
- Managing your account and maintaining your profile
- Processing payments and preventing fraudulent transactions
3.2 Analytics and Service Improvement
- Analyzing website usage patterns and user behavior to improve our platform
- Conducting internal research and development to enhance our menu and services
- Monitoring and troubleshooting technical issues on our website
- Measuring the effectiveness of our website features and content
- Developing new products, services, and promotional offerings
3.3 Marketing and Communications
- Sending promotional emails, newsletters, and special offers (with your consent)
- Personalizing your experience and delivering targeted content relevant to your preferences
- Notifying you about new menu items, seasonal specials, and events
- Running loyalty programs and promotional campaigns
- Displaying personalized advertisements on our website or third-party platforms
You may opt out of marketing communications at any time by clicking the "unsubscribe" link in any email we send, or by contacting us directly at [email protected].
3.4 Legal Compliance and Safety
- Complying with applicable federal, state, and local laws and regulations
- Responding to lawful requests from government authorities and law enforcement
- Enforcing our Terms of Service and other agreements
- Protecting our rights, property, and safety, as well as those of our users and the public
- Detecting and preventing fraud, abuse, or other harmful activities
4. Sharing Your Information with Third Parties
We do not sell your personal information to third parties. However, we may share your information with trusted partners and service providers under specific circumstances described below.
4.1 Service Providers and Business Partners
We may share your personal information with third-party companies that perform services on our behalf, including:
- Payment processors: To securely process your payments and transactions
- Delivery and logistics partners: To fulfill your food delivery orders
- Email and communication service providers: To send transactional and marketing emails
- Website hosting and cloud storage providers: To maintain and operate our website
- Analytics providers: Such as Google Analytics, to analyze website traffic and usage
- Customer relationship management (CRM) platforms: To manage customer data and interactions
- Advertising platforms: To serve relevant advertisements to our customers
All third-party service providers are required to maintain the confidentiality of your information and are prohibited from using your personal data for any purpose other than the specific services they perform for us.
4.2 Legal Requirements and Law Enforcement
We may disclose your personal information if required to do so by law, or in response to valid legal requests such as:
- Court orders, subpoenas, or other legal processes
- Requests from governmental or regulatory authorities
- Investigations of potential violations of our Terms of Service
- Protection of the rights, property, or safety of Dions, our users, or the public
4.3 Business Transfers
In the event of a merger, acquisition, sale of assets, reorganization, or bankruptcy, your personal information may be transferred to or acquired by a successor entity. We will notify you via email and/or a prominent notice on our website before your information is transferred and becomes subject to a different privacy policy.
4.4 With Your Consent
We may share your personal information with third parties in other circumstances if we have obtained your explicit consent to do so.
5. Data Security Measures
Dions takes the security of your personal information seriously and implements a variety of technical, administrative, and physical safeguards to protect your data from unauthorized access, disclosure, alteration, or destruction. Our security measures include:
- Encryption: We use SSL/TLS encryption to protect data transmitted between your browser and our servers. Payment data is encrypted using industry-standard protocols.
- Access controls: Access to personal information is restricted to authorized personnel who need the data to perform their job functions.
- Secure servers: Our website and databases are hosted on secure, regularly updated servers with firewall protection.
- Regular security audits: We conduct periodic reviews and audits of our security practices and infrastructure.
- Employee training: Our staff receive regular training on data privacy and security best practices.
- Incident response procedures: We maintain documented procedures for responding to potential data breaches and security incidents.
- Password hashing: User account passwords are stored using secure, one-way hashing algorithms.
However, no method of transmission over the internet or electronic storage is completely secure. While we strive to use commercially acceptable means to protect your personal information, we cannot guarantee its absolute security. In the event of a data breach that affects your rights and freedoms, we will notify affected users and relevant authorities as required by applicable law.
6. Your Privacy Rights
Depending on your state of residence, you may have certain rights with respect to your personal information. We are committed to honoring these rights in accordance with applicable United States privacy laws.
6.1 Rights Under the California Consumer Privacy Act (CCPA/CPRA)
If you are a California resident, you have the following rights under the CCPA as amended by the CPRA:
- Right to Know: You have the right to request that we disclose what personal information we have collected about you, the categories of sources, the purposes for collection, and the third parties with whom we share it.
- Right to Delete: You have the right to request that we delete personal information we have collected from you, subject to certain exceptions.
- Right to Correct: You have the right to request that we correct inaccurate personal information that we maintain about you.
- Right to Opt Out of Sale or Sharing: You have the right to opt out of the sale or sharing of your personal information for cross-context behavioral advertising.
- Right to Limit Use of Sensitive Personal Information: You have the right to limit our use of sensitive personal information to that which is necessary to perform the services you requested.
- Right to Non-Discrimination: We will not discriminate against you for exercising any of your CCPA/CPRA privacy rights.
6.2 General Privacy Rights for All Users
Regardless of your location, we provide the following rights to all users where technically feasible:
- Right of Access: You may request a copy of the personal information we hold about you.
- Right to Rectification: You may request that we correct any inaccurate or incomplete personal information.
- Right to Erasure: You may request that we delete your personal information from our records under certain circumstances.
- Right to Restrict Processing: You may request that we limit how we use your personal information in certain situations.
- Right to Data Portability: You may request to receive a copy of your personal data in a structured, commonly used, and machine-readable format.
- Right to Withdraw Consent: Where processing is based on your consent, you have the right to withdraw that consent at any time.
6.3 How to Exercise Your Rights
To exercise any of the rights described above, please submit a verifiable consumer request by:
- Emailing us at: [email protected]
- Visiting our website at: cafe-dions.click
We will respond to your request within 45 days of receipt. In certain circumstances, we may require additional time (up to an additional 45 days) to process your request, in which case we will notify you of the extension and the reason for the delay. We may need to verify your identity before processing your request to protect your personal information from unauthorized access.
7. Data Retention
We retain your personal information only for as long as is necessary to fulfill the purposes for which it was collected, including to comply with legal, accounting, or reporting obligations. Our general data retention practices are as follows:
| Category of Data | Retention Period |
|---|---|
| Account and registration information | Duration of account plus 3 years after account closure |
| Order and transaction records | 7 years (for tax and financial compliance purposes) |
| Customer support correspondence | 3 years from the date of last interaction |
| Marketing preferences and consent records | 3 years from the date of last consent or opt-out |
| Website usage and analytics data | 26 months (as per standard analytics retention) |
| Payment information | As required by PCI DSS standards and applicable law |
| Legal claims and compliance records | As required by applicable statute of limitations |
When personal information is no longer required, we will securely delete or anonymize it in accordance with our data retention and disposal procedures. Anonymized data that cannot identify you may be retained indefinitely for analytical and statistical purposes.
8. Children's Privacy
Our website and services are intended for use by individuals who are 18 years of age or older. We do not knowingly collect, solicit, or process personal information from children under the age of 13, in accordance with the Children's Online Privacy Protection Act (COPPA), or from minors under the age of 16 in states where such stricter protections apply.
If we become aware that we have inadvertently collected personal information from a child under the applicable age threshold, we will take immediate steps to delete that information from our records. If you believe that a child under the age of 18 has provided us with personal information without appropriate parental or guardian consent, please contact us immediately at [email protected].
Parents and guardians who wish to review, correct, or request the deletion of any personal information collected from a child should contact us using the information provided in Section 14 of this policy.
9. Cookie Policy
Our website uses cookies and similar tracking technologies to enhance your browsing experience, analyze website traffic, and deliver personalized content and advertising. This section provides a brief overview of our cookie practices.
9.1 What Are Cookies?
Cookies are small text files stored on your device when you visit a website. They help websites remember your preferences, keep you logged in, and provide useful functionality. Cookies may be "session cookies" (which expire when you close your browser) or "persistent cookies" (which remain on your device for a set period).
9.2 Types of Cookies We Use
- Strictly Necessary Cookies: Essential for the operation of our website, including enabling you to log in, place orders, and use core features. These cannot be disabled.
- Performance and Analytics Cookies: Used to collect information about how visitors use our website, including which pages are visited most frequently, to help us improve our services.
- Functionality Cookies: Allow us to remember your preferences and settings to provide a personalized experience.
- Marketing and Advertising Cookies: Used to deliver relevant advertisements and track the effectiveness of our marketing campaigns across different platforms.
- Third-Party Cookies: Set by third-party services we use, such as Google Analytics, social media plugins, and advertising networks.
9.3 Managing Your Cookie Preferences
You can control and manage cookies through your browser settings. Most browsers allow you to refuse or accept cookies, delete existing cookies, and set preferences for certain websites. Please be aware that disabling certain cookies may affect the functionality of our website and your ability to use certain features.
For California residents exercising their right to opt out of the sale or sharing of personal information through cookies and tracking technologies, you may submit a request via email to [email protected]. Additionally, you may use the Global Privacy Control (GPC) signal to opt out of data sharing for advertising purposes.
10. International Data Transfers
Dions is headquartered in the United States and our services are primarily directed at users within the United States. However, some of our third-party service providers and partners may be located in or operate from countries outside of the United States.
When we transfer your personal information to third parties located outside of the United States, we take steps to ensure that your data receives adequate protection consistent with this Privacy Policy and applicable data protection laws. These steps may include entering into data processing agreements with service providers that include appropriate data protection clauses, or relying on recognized legal mechanisms for international data transfers.
By using our website and services, you acknowledge and consent to the potential transfer of your personal information to countries outside of your country of residence, which may have different data protection laws than those in your jurisdiction. We will always take reasonable steps to ensure that any such transfers are handled safely and in accordance with this Privacy Policy.
11. Third-Party Links and Services
Our website may contain links to third-party websites, applications, or services that are not operated or controlled by Dions. These include, but are not limited to, food delivery platforms, social media pages, and payment gateways. This Privacy Policy does not apply to third-party websites or services.
We encourage you to review the privacy policies of any third-party sites or services before providing your personal information. We have no control over, and assume no responsibility for, the content, privacy practices, or terms of any third-party websites or services you may access through our website.
12. Legal Basis for Processing (Where Applicable)
To the extent required by applicable law, we process your personal information on the following legal bases:
- Contractual Necessity: Processing necessary to fulfill your food orders, deliver services, and manage your account.
- Legitimate Interests: Processing for our legitimate business interests, such as improving our services, preventing fraud, and marketing our products, where these interests are not overridden by your privacy rights.
- Consent: Processing based on your explicit consent, such as for marketing emails or the use of non-essential cookies. You may withdraw your consent at any time.
- Legal Obligation: Processing necessary to comply with applicable federal, state, and local laws and regulations.
13. Filing a Complaint with a Data Protection Authority
If you believe that we have not handled your personal information in accordance with applicable privacy laws, you have the right to file a complaint with the appropriate data protection or consumer protection authority.
13.1 California Residents
California residents who believe their CCPA/CPRA rights have been violated may file a complaint with the California Privacy Protection Agency (CPPA):
- Website: cppa.ca.gov
- Email: [email protected]
You may also file a complaint with the California Attorney General's Office if you believe we have violated the CCPA/CPRA.
13.2 All United States Residents
Consumers in all states may file complaints regarding unfair or deceptive business practices with the Federal Trade Commission (FTC):
- Website: ftc.gov
- Phone: 1-877-FTC-HELP (1-877-382-4357)
We encourage you to contact us first at [email protected] to resolve any privacy concerns before filing a complaint with a regulatory authority. We are committed to addressing your concerns promptly and transparently.
14. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our data handling practices, please do not hesitate to contact us. We will respond to all privacy-related inquiries within a reasonable timeframe.
When contacting us regarding a privacy request, please provide sufficient information to allow us to verify your identity and locate your records in our system. We may require you to provide additional verification information to process certain requests, particularly those involving access to, correction of, or deletion of personal information.
15. Changes to This Privacy Policy
We reserve the right to update or modify this Privacy Policy at any time to reflect changes in our practices, technology, legal requirements, or for other operational reasons. When we make material changes to this policy, we will:
- Post the updated Privacy Policy on this page with a new "Last Updated" date
- Send a notification to the email address associated with your account (for significant changes)
- Display a prominent notice on our website when you next visit
We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your personal information. Your continued use of our website and services following the posting of changes constitutes your acknowledgment and acceptance of the updated policy.
If you disagree with any changes to this Privacy Policy, you should discontinue your use of our website and services and may request the deletion of your personal information by contacting us at [email protected].
This Privacy Policy was last reviewed and updated on May 27, 2026. This document constitutes the complete and current Privacy Policy for Dions and supersedes all previous versions.