Privacy Policy
At Dions, we are deeply committed to protecting your personal information and your right to privacy. This Privacy Policy explains what information we collect, how we use it, with whom we share it, and what rights you have in relation to it. If you have any questions or concerns about this policy or our practices regarding your personal information, please contact us at [email protected].
This Privacy Policy applies to all information collected through our website meals-dions.click (the "Website"), as well as any related services, sales, marketing, or events we operate (collectively referred to as the "Services"). By using our Services, you agree to the collection and use of information in accordance with this Privacy Policy.
Please read this policy carefully. If you disagree with any terms in this Privacy Policy, please discontinue use of our Services immediately.
1. Who We Are
Dions is a food service business operating in the United States. We provide food-related products and services through our website and related platforms. For the purposes of applicable data protection and privacy laws, Dions acts as the data controller responsible for your personal information.
| Company Name | Dions |
|---|---|
| Website | meals-dions.click |
| [email protected] | |
| Location | United States |
2. Information We Collect
We collect personal information that you voluntarily provide to us, as well as information that is automatically collected when you visit or interact with our Website. The categories of information we collect are described in detail below.
2.1 Personal Information You Provide to Us
We collect personal information that you voluntarily provide to us when you:
- Register for an account on our Website
- Place an order or purchase food products or services
- Subscribe to our newsletter or marketing communications
- Complete a contact form or reach out to customer support
- Participate in surveys, promotions, or contests
- Leave reviews, comments, or feedback
- Apply for a job or submit any other form on our Website
The personal information we collect may include:
- Identity Data: First name, last name, username, or similar identifiers
- Contact Data: Email address, telephone number, billing address, and delivery address
- Financial Data: Payment card details, bank account information (processed securely through third-party payment processors)
- Transaction Data: Details about purchases, orders, payments, and deliveries
- Profile Data: Your username and password, food preferences, dietary restrictions, order history, and feedback
- Communications Data: Your preferences in receiving marketing from us and your communication preferences
2.2 Information Automatically Collected
When you visit our Website, we automatically collect certain technical information about your device and browsing behavior. This information is necessary for the operation of the Website and to improve your experience. This includes:
- Device Information: IP address, browser type and version, operating system, device identifiers, hardware model, and mobile network information
- Usage Data: Pages visited, time and date of your visit, time spent on pages, links clicked, referring and exit pages, and other browsing activity on our Website
- Location Data: General geographic location based on your IP address; more precise location data if you grant permission through your device settings
- Cookie and Tracking Data: Information collected through cookies, web beacons, pixels, and similar tracking technologies (see Section 7 for more detail)
- Log Data: Server logs that include your IP address, browser type, the pages you visit, and other diagnostic data
2.3 Information from Third Parties
We may also receive information about you from third parties, including:
- Social media platforms if you connect or interact with our social media accounts or use social login features
- Analytics providers and advertising networks
- Payment processors and fraud prevention services
- Delivery and logistics partners when fulfilling food orders
- Publicly available sources
3. How We Use Your Information
We use the information we collect for a variety of purposes, all of which are grounded in providing, improving, and marketing our food services. Specifically, we use your information to:
3.1 Service Provision and Order Fulfillment
- Process and fulfill your food orders and transactions
- Manage your account and provide customer support
- Send order confirmations, delivery updates, and transactional communications
- Process payments and prevent fraudulent transactions
- Comply with legal obligations associated with food safety and consumer protection
3.2 Improvement and Analytics
- Analyze how visitors use our Website to improve functionality and user experience
- Monitor and analyze trends, usage, and activities on our Website
- Conduct research and develop new products, services, and features
- Troubleshoot technical issues and maintain the security of our Website
- Perform internal audits and business reporting
3.3 Marketing and Communications
- Send you promotional communications about new menu items, special offers, and events (with your consent where required by law)
- Personalize your experience on our Website and tailor recommendations based on your preferences and order history
- Deliver targeted advertising on our Website and third-party platforms
- Administer referral programs, surveys, contests, and promotions
3.4 Legal and Safety Purposes
- Comply with applicable federal and state laws and regulations
- Respond to legal requests, court orders, and government investigations
- Enforce our Terms of Service and other legal agreements
- Protect the rights, property, or safety of Dions, our customers, and the public
- Detect, investigate, and prevent fraudulent transactions and other illegal activities
We will only use your personal information for the purposes for which it was collected, unless we reasonably consider that we need to use it for another reason that is compatible with the original purpose. If we need to use your information for an unrelated purpose, we will notify you and explain the legal basis for doing so.
4. Legal Basis for Processing
As a business operating in the United States, we rely on the following legal bases for processing your personal information under applicable federal and state laws, including the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA), and the Federal Trade Commission (FTC) Act:
- Performance of a Contract: Processing is necessary to fulfill your orders and provide services you have requested
- Legitimate Interests: Processing is necessary for our legitimate business interests, such as fraud prevention, network and information security, and business analytics, provided these interests are not overridden by your rights
- Consent: Where you have given clear, affirmative consent to the processing of your personal information for a specific purpose (such as marketing communications)
- Legal Obligation: Processing is necessary to comply with our legal obligations under applicable law
5. Sharing Your Information with Third Parties
We do not sell, trade, or rent your personal information to third parties for their own marketing purposes. However, we do share your information in the following circumstances:
5.1 Service Providers
We share your information with trusted third-party service providers who assist us in operating our Website and delivering our services. These providers are contractually obligated to handle your data only in accordance with our instructions and this Privacy Policy. Service providers include:
- Payment Processors: To securely handle payment transactions (e.g., Stripe, PayPal, Square)
- Delivery and Logistics Partners: To fulfill and deliver food orders to your address
- Cloud Hosting Providers: To host and store our Website and data
- Email and Communication Platforms: To send transactional and marketing emails
- Analytics Providers: To analyze Website traffic and user behavior (e.g., Google Analytics)
- Advertising Networks: To deliver targeted advertisements on our Website and third-party platforms
- Customer Support Tools: To manage customer inquiries and support tickets
5.2 Business Transfers
In the event of a merger, acquisition, reorganization, bankruptcy, or sale of all or a portion of our assets, your personal information may be transferred as part of that transaction. We will notify you via email and/or a prominent notice on our Website before your personal information becomes subject to a different privacy policy.
5.3 Legal Requirements
We may disclose your personal information where we are legally required to do so in order to comply with applicable law, governmental requests, judicial proceedings, court orders, or legal processes. This may include sharing information with:
- Federal, state, and local law enforcement agencies
- Courts and regulatory authorities
- Tax authorities and financial regulators
- Public health authorities in relation to food safety matters
5.4 Protection of Rights
We may disclose your information when we believe disclosure is necessary to protect the rights, property, or safety of Dions, our customers, or others; to detect, prevent, or address fraud, security, or technical issues; or to enforce our agreements and policies.
5.5 With Your Consent
We may share your information with other third parties with your explicit consent or at your direction, such as when you participate in co-sponsored promotions or events.
6. Data Security
We take the security of your personal information very seriously. We implement a variety of industry-standard technical, administrative, and physical security measures designed to protect your personal information from unauthorized access, disclosure, alteration, or destruction. These measures include:
- Encryption: We use Secure Socket Layer (SSL) / Transport Layer Security (TLS) encryption for data transmitted between your browser and our Website
- Access Controls: We restrict access to personal information to authorized employees, contractors, and service providers who need it to perform their functions
- Secure Payment Processing: Payment card information is processed through PCI-DSS compliant third-party payment processors and is never stored on our servers
- Regular Security Assessments: We conduct regular reviews of our information collection, storage, and processing practices to guard against unauthorized access
- Data Minimization: We collect only the minimum personal information necessary to provide our services
- Incident Response: We maintain procedures for responding to data security incidents and breaches
In the event of a data breach that affects your rights and freedoms, we will notify you and relevant authorities as required by applicable law, including under state breach notification laws.
7. Cookies and Tracking Technologies
We use cookies and similar tracking technologies (such as web beacons, pixels, and local storage) to collect and store information about how you interact with our Website. Cookies are small data files placed on your device when you visit a website.
7.1 Types of Cookies We Use
| Cookie Type | Purpose |
|---|---|
| Strictly Necessary | Essential for the Website to function. Enable you to navigate the site and use features like adding items to your cart and completing orders. |
| Performance / Analytics | Collect information about how visitors use our Website, helping us identify popular pages and improve performance. |
| Functionality | Remember your preferences (such as language and location) to provide a more personalized experience. |
| Marketing / Advertising | Track your browsing activity to deliver relevant advertisements and measure the effectiveness of advertising campaigns. |
7.2 Managing Cookies
You can control and manage cookies through your browser settings. Most browsers allow you to refuse cookies or alert you when cookies are being sent. However, disabling certain cookies may affect the functionality of our Website and your ability to place orders or use certain features.
For more detailed information about the cookies we use, the purposes for which we use them, and how to opt out, please refer to our Cookie Policy available on our Website.
You may also opt out of certain advertising cookies by visiting the Digital Advertising Alliance opt-out page or the Network Advertising Initiative opt-out page.
8. Your Privacy Rights
Depending on your state of residence within the United States, you may have specific rights regarding your personal information. We honor and respect these rights to the fullest extent required by law.
8.1 Rights Under the California Consumer Privacy Act (CCPA / CPRA)
If you are a resident of California, you have the following rights under the CCPA as amended by the CPRA:
- Right to Know: You have the right to request information about the categories and specific pieces of personal information we have collected about you, the categories of sources from which it was collected, the purposes for collecting it, and the categories of third parties with whom we share it.
- Right to Delete: You have the right to request the deletion of personal information we have collected from you, subject to certain exceptions.
- Right to Correct: You have the right to request correction of inaccurate personal information we maintain about you.
- Right to Opt-Out of Sale or Sharing: You have the right to opt out of the sale or sharing of your personal information to third parties. We do not sell your personal information. However, if you wish to opt out of sharing for cross-context behavioral advertising, please contact us.
- Right to Limit Use of Sensitive Personal Information: You have the right to limit the use and disclosure of sensitive personal information to certain permitted purposes.
- Right to Non-Discrimination: You have the right not to receive discriminatory treatment for exercising any of your CCPA/CPRA privacy rights.
8.2 General Privacy Rights for All US Residents
Regardless of your state of residence, we provide the following rights to all users:
- Access: You may request access to the personal information we hold about you.
- Correction: You may request that we correct inaccurate or incomplete personal information.
- Deletion: You may request deletion of your personal information, subject to certain legal exceptions.
- Data Portability: Where technically feasible, you may request a copy of your personal information in a structured, machine-readable format.
- Opt-Out of Marketing: You may opt out of receiving marketing communications from us at any time by clicking "unsubscribe" in our emails or by contacting us directly.
- Withdraw Consent: Where processing is based on consent, you may withdraw your consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.
8.3 How to Exercise Your Rights
To exercise any of your privacy rights, please contact us using the information below:
We will respond to verified requests within 45 days as required by the CCPA/CPRA. If we require more time, we will inform you of the reason and the extension period (up to an additional 45 days). We may need to verify your identity before processing your request to protect your privacy and security. We will not charge a fee for processing your request unless it is excessive, repetitive, or manifestly unfounded.
You may designate an authorized agent to make a request on your behalf. The authorized agent must provide written permission signed by you, and we may require you to verify your identity directly with us.
9. Data Retention
We retain your personal information only for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements.
| Category of Data | Retention Period |
|---|---|
| Account and Profile Information | Duration of your account plus 3 years after account closure |
| Order and Transaction Records | 7 years (to comply with tax and financial recordkeeping requirements) |
| Payment Information | Processed by third-party payment processors; not stored by us beyond transaction completion |
| Marketing Communications Preferences | Until you opt out, plus 3 years for documentation purposes |
| Customer Support Records | 3 years from the date of the last interaction |
| Website Usage and Analytics Data | 26 months (standard Google Analytics retention) |
| Cookie Data | As specified in our Cookie Policy (typically 1–24 months depending on cookie type) |
| Legal and Compliance Records | As required by applicable law (typically 7 years) |
When personal information is no longer needed, we will securely delete or anonymize it. Where deletion is not immediately possible (for example, because your information is stored in backup archives), we will securely store your information and isolate it from any further processing until deletion is possible.
10. Children's Privacy
Dions's Website and Services are intended for use by individuals who are 18 years of age or older. We do not knowingly collect, use, or disclose personal information from children under the age of 18. If you are under 18, please do not use our Website or provide any personal information to us.
If we become aware that we have inadvertently collected personal information from a child under the age of 18 without verifiable parental consent, we will take steps to delete that information as soon as reasonably practicable.
If you are a parent or guardian and you believe that your child under the age of 18 has provided us with personal information, please contact us immediately at [email protected] so that we can take appropriate action.
Our practices comply with the Children's Online Privacy Protection Act (COPPA) enforced by the Federal Trade Commission (FTC).
11. International Data Transfers
Dions is based in the United States. If you are accessing our Website from outside the United States, please be aware that your information may be transferred to, stored, and processed in the United States and other countries where our service providers operate.
The data protection laws in the United States and other countries may differ from those in your country of residence. By using our Services, you consent to the transfer of your information to the United States and other jurisdictions as described in this Privacy Policy.
When we transfer personal information internationally, we take steps to ensure that appropriate safeguards are in place to protect your information, including:
- Using service providers that are certified under recognized data transfer frameworks
- Implementing contractual data protection clauses with international service providers
- Ensuring service providers maintain appropriate technical and organizational security measures
If you have questions about how we handle international transfers of your personal information, please contact us at [email protected].
12. Third-Party Links and Services
Our Website may contain links to third-party websites, services, social media platforms, and applications that are not operated or controlled by Dions. This Privacy Policy does not apply to those third-party services, and we are not responsible for the privacy practices of such third parties.
We strongly encourage you to review the privacy policies of any third-party services you visit or interact with. The presence of a link to a third-party website on our Website does not constitute an endorsement of that website's privacy practices.
Third-party services that may collect information from you when you interact with our Website include:
- Google Analytics (analytics and reporting)
- Social media platforms (Facebook, Instagram, Twitter/X) when you use share buttons or interact with embedded social content
- Payment processing services
- Food delivery and logistics partners
13. Do Not Track Signals
Some web browsers transmit "Do Not Track" (DNT) signals to websites. Currently, there is no universal standard for how websites should respond to DNT signals. We currently do not change our data collection and use practices in response to DNT signals from your browser. We will continue to monitor developments in this area and may update this policy if and when a standard is established.
California residents may also use the Global Privacy Control (GPC) signal to opt out of the sale or sharing of personal information. We honor GPC signals as required by the CCPA/CPRA.
14. Your Right to File a Complaint
If you believe that we have not handled your personal information in accordance with applicable law, you have the right to file a complaint with a relevant data protection authority.
14.1 Federal Trade Commission (FTC)
In the United States, the Federal Trade Commission (FTC) is the primary federal agency responsible for consumer protection and enforcing privacy rights under the FTC Act. You may file a complaint with the FTC at:
Website: www.ftc.gov/complaint
Phone: 1-877-FTC-HELP (1-877-382-4357)
Address: 600 Pennsylvania Avenue NW, Washington, DC 20580
14.2 California Privacy Protection Agency (CPPA)
If you are a California resident, you may also file a complaint with the California Privacy Protection Agency (CPPA), the state agency responsible for enforcing the CCPA/CPRA:
Website: cppa.ca.gov
Address: 2101 Arena Blvd, Sacramento, CA 95834
14.3 State Attorneys General
Many US states have Attorneys General who handle privacy-related complaints. You may contact your state's Attorney General office for guidance on filing a complaint related to data privacy.
We encourage you to contact us first before filing a complaint with a regulatory authority so that we have the opportunity to resolve any concerns you may have directly and promptly.
15. California-Specific Disclosures
In addition to the rights described in Section 8, California residents are entitled to the following additional disclosures under California law:
15.1 Categories of Personal Information Collected
In the preceding 12 months, we have collected the following categories of personal information as defined under the CCPA:
| Category | Examples | Collected |
|---|---|---|
| Identifiers | Name, email address, IP address, account name | Yes |
| Customer Records | Name, contact information, payment information | Yes |
| Commercial Information | Purchase history, food preferences, order data | Yes |
| Internet/Electronic Activity | Browsing history, search history, Website interactions | Yes |
| Geolocation Data | Approximate location based on IP; precise location if permitted | Yes |
| Inferences | Profiles based on food preferences and purchase behavior | Yes |
| Sensitive Personal Information | Dietary restrictions, allergies (provided voluntarily) | Yes |
15.2 Shine the Light Law
Under California Civil Code Section 1798.83 ("Shine the Light" law), California residents may request information about how we disclose personal information to third parties for their direct marketing purposes. We do not disclose personal information to third parties for their direct marketing purposes without your consent. To make a request under the Shine the Light law, please contact us at [email protected].
16. Changes to This Privacy Policy
We reserve the right to update or modify this Privacy Policy at any time, and such changes will be effective immediately upon posting on our Website. We will notify you of any material changes to this Privacy Policy by:
- Posting the updated policy on this page with a new "Last Updated" date
- Sending you an email notification to the email address associated with your account (where applicable)
- Displaying a prominent notice on our Website homepage
We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information. Your continued use of our Services after any modifications to this Privacy Policy will constitute your acknowledgment of the modifications and your consent to abide by the updated policy.
17. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please do not hesitate to contact us. We are committed to addressing your inquiries promptly and transparently.
| Company | Dions |
|---|---|
| [email protected] | |
| Website | meals-dions.click |
| Location | United States |
We will respond to all legitimate privacy-related inquiries within a reasonable timeframe. If you are a California resident making a request under the CCPA/CPRA, we will respond within the timeframes required by law (generally 45 days, extendable by an additional 45 days with notice).
This Privacy Policy was last reviewed and updated on June 12, 2026. © 2026 Dions. All rights reserved.