Privacy Policy

Effective Date: May 30, 2026 | Last Updated: May 30, 2026

At Dions, we are deeply committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website dions-meal.click, place food orders, or otherwise interact with our services. Please read this policy carefully. If you disagree with its terms, please discontinue use of our site immediately.

This Privacy Policy applies to all information collected through our website, mobile experience, and any related services, promotions, or events that refer or link to this policy (collectively, the "Services").

1. Who We Are

Dions is a food service company operating in the United States. We provide online food ordering, meal delivery, and related culinary services to our customers.

Company Name	Dions
Website	dions-meal.click
Email	[email protected]
Address	United States

For all privacy-related inquiries, concerns, or requests, please use the contact information provided above or refer to Section 14 of this policy.

2. Information We Collect

We collect information in several ways — directly from you when you provide it to us, automatically as you use our Services, and, in some cases, from third-party sources. The categories of information we collect include the following:

2.1 Personal Information You Provide Directly

When you register an account, place a food order, subscribe to our newsletter, contact our support team, or participate in any promotions, we may collect:

Identity Information: Full name, username, or similar identifier.
Contact Information: Email address, telephone number, and delivery address (including street address, city, state, ZIP code).
Payment Information: Credit or debit card details, billing address, and other financial data necessary to process your transactions. Note: We do not store full payment card numbers; these are processed by PCI-DSS-compliant third-party payment processors.
Account Credentials: Password and security information used to maintain your account.
Order History: Details of meals ordered, special dietary instructions, delivery preferences, and transaction records.
Communications: Any messages, feedback, reviews, or other content you submit to us via contact forms, email, live chat, or social media.
Promotional Information: Your preferences for receiving marketing communications, promotional offers, and updates.

2.2 Information Collected Automatically

When you access or use our website, we automatically collect certain technical and behavioral information, including:

Device Information: IP address, device type, operating system, browser type and version, device identifiers, and mobile network information.
Usage Data: Pages viewed, links clicked, time spent on pages, referring URLs, search queries made on our website, and navigation patterns.
Location Data: General geographic location derived from your IP address. If you grant permission, we may collect more precise GPS-based location data to facilitate delivery services.
Log Data: Server logs, error logs, and diagnostic information generated when you interact with our Services.
Cookie and Tracking Data: Information collected via cookies, web beacons, pixel tags, local storage, and similar tracking technologies. See Section 8 for more details.

2.3 Information from Third-Party Sources

We may receive information about you from third parties, including:

Social Media Platforms: If you connect your social media account (e.g., Facebook, Google) to our Services, we may receive profile information such as your name, email, and profile picture.
Payment Processors: Transaction confirmation and fraud prevention data from our payment processing partners.
Analytics Providers: Aggregated or de-identified data about how users interact with our website.
Delivery Partners: Real-time order status and delivery confirmation data from third-party logistics providers.
Publicly Available Sources: Information that is publicly available, such as business directories or public social media profiles.

3. How We Use Your Information

We use the information we collect for a variety of business and operational purposes. We will only use your personal information when we have a lawful basis for doing so. Our purposes include:

3.1 Service Provision and Order Fulfillment

Processing and fulfilling your food orders, including coordinating delivery to your specified address.
Creating and managing your account on our platform.
Sending order confirmations, receipts, and delivery status updates via email or SMS.
Providing customer support and resolving disputes or complaints related to your orders.
Facilitating payment processing and detecting or preventing fraudulent transactions.
Contacting you for essential service communications, such as changes to your order, service outages, or policy updates.

3.2 Analytics and Service Improvement

Analyzing usage patterns to understand how customers interact with our website and mobile experience.
Conducting internal research and development to improve our menu offerings, website features, and overall customer experience.
Monitoring and analyzing the effectiveness of our marketing campaigns.
Diagnosing technical problems, bugs, and security vulnerabilities in our platform.
Creating aggregated, de-identified, or anonymized datasets for business intelligence purposes.

3.3 Marketing and Personalization

Sending you promotional emails, special offers, discount codes, and newsletters, where you have provided your consent or we have a legitimate interest in doing so.
Personalizing your experience on our website by recommending meals, offers, or features based on your order history and preferences.
Displaying targeted advertisements on our platform or through third-party advertising networks.
Conducting surveys, contests, and other promotional activities.

Your Choice: You may opt out of marketing communications at any time by clicking the "unsubscribe" link in any marketing email, or by contacting us directly at [email protected]. Opting out of marketing communications will not affect transactional or service-related emails.

3.4 Legal and Compliance Purposes

Complying with applicable federal and state laws, regulations, and legal obligations.
Enforcing our Terms of Service and other legal agreements.
Responding to lawful requests from government authorities, law enforcement agencies, or courts.
Protecting the rights, safety, and security of Dions, our customers, employees, and the public.
Preventing, detecting, and investigating fraud, cybersecurity incidents, or other illegal activities.

4. Sharing Your Information with Third Parties

We do not sell your personal information to third parties for monetary compensation. However, we may share your information with select trusted partners and in specific circumstances as described below:

4.1 Service Providers and Business Partners

We share information with third-party vendors and service providers who perform functions on our behalf, including:

Payment Processors: To securely process credit card and other payment transactions.
Delivery and Logistics Partners: To coordinate and complete the delivery of your food orders.
Cloud Hosting and IT Service Providers: To host and maintain our website infrastructure and databases.
Email and SMS Communication Platforms: To send transactional and marketing messages.
Analytics Providers: Such as Google Analytics, to help us understand website usage and improve our Services.
Customer Support Tools: To manage and respond to customer inquiries and complaints.
Advertising Networks: To deliver targeted advertisements and measure their effectiveness.

All service providers are contractually required to protect your information and to use it only for the specific purposes for which it was shared.

4.2 Business Transfers

In the event of a merger, acquisition, asset sale, reorganization, bankruptcy, or other corporate transaction involving Dions, your personal information may be transferred to the successor entity. We will notify you via email or a prominent notice on our website before your information becomes subject to a different privacy policy.

4.3 Legal Requirements and Protection of Rights

We may disclose your information when we believe in good faith that such disclosure is necessary to:

Comply with a subpoena, court order, legal process, or other governmental request under applicable United States law.
Enforce our Terms of Service or investigate potential violations thereof.
Protect against fraud, security threats, or illegal activity.
Protect the rights, property, or safety of Dions, our users, or the public as permitted or required by law.

Where feasible and legally permissible, we will notify you before disclosing your information in response to legal requests.

4.4 With Your Consent

We may share your information with third parties in any other manner not described above when we have obtained your explicit consent to do so.

5. Data Security

Protecting your personal information is a top priority for Dions. We implement a range of administrative, technical, and physical security measures to protect your data from unauthorized access, use, alteration, or disclosure.

5.1 Security Measures We Employ

Encryption: We use Transport Layer Security (TLS) encryption to protect data transmitted between your browser and our servers. Sensitive data such as payment information is encrypted both in transit and at rest.
Access Controls: Access to personal data is restricted to authorized personnel on a need-to-know basis. Employees with access to sensitive data are required to maintain its confidentiality.
Firewalls and Intrusion Detection: Our infrastructure is protected by firewalls, and we monitor our systems for unusual activity and potential security breaches.
Regular Security Audits: We conduct periodic security reviews and vulnerability assessments of our systems and practices.
PCI-DSS Compliance: Our payment processing systems comply with the Payment Card Industry Data Security Standard (PCI-DSS).
Secure Password Storage: User passwords are stored using industry-standard hashing algorithms and are never stored in plain text.

Important Notice: While we take reasonable steps to protect your information, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security. In the event of a data breach that affects your rights and freedoms, we will notify you and relevant authorities as required by applicable law.

6. Your Privacy Rights

Depending on your state of residence and applicable law, you may have the following rights regarding your personal information. We are committed to honoring these rights and responding to valid requests within the timeframes required by law.

6.1 Rights Under the California Consumer Privacy Act (CCPA) / California Privacy Rights Act (CPRA)

If you are a California resident, you have the following rights under the CCPA/CPRA:

Right to Know: You have the right to request that we disclose the categories and specific pieces of personal information we have collected about you, the sources of that information, the purposes for which it was collected or sold, and the categories of third parties with whom we share it.
Right to Delete: You have the right to request the deletion of personal information we have collected from you, subject to certain exceptions.
Right to Correct: You have the right to request that we correct inaccurate personal information we maintain about you.
Right to Opt-Out of Sale or Sharing: You have the right to opt out of the sale or sharing of your personal information for cross-context behavioral advertising purposes. To exercise this right, please contact us at [email protected].
Right to Limit Use of Sensitive Personal Information: You have the right to limit our use and disclosure of your sensitive personal information to purposes necessary for providing Services.
Right to Non-Discrimination: We will not discriminate against you for exercising any of your CCPA/CPRA rights. We will not deny you goods or services, charge you different prices, or provide a lower quality of service because you exercised your rights.

To submit a verifiable consumer request under CCPA/CPRA, please email us at [email protected] with the subject line "California Privacy Rights Request." We will respond within 45 days of receiving your request, with a possible 45-day extension if reasonably necessary and upon notice to you.

6.2 General Privacy Rights for All Users

Regardless of your location, we strive to offer all users the following rights:

Right of Access: You may request a copy of the personal information we hold about you.
Right to Correction: You may request that we correct any inaccurate or incomplete personal information we hold about you.
Right to Deletion: You may request that we delete your personal information, subject to legal and operational retention requirements.
Right to Data Portability: You may request a copy of your personal data in a structured, commonly used, machine-readable format.
Right to Withdraw Consent: Where processing is based on your consent, you may withdraw consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.
Right to Object to Marketing: You may object to the use of your personal information for direct marketing purposes at any time.

To exercise any of these rights, please contact us at [email protected]. We may need to verify your identity before processing your request.

7. Data Retention

We retain your personal information only for as long as is necessary to fulfill the purposes for which it was collected, to provide our Services, to comply with our legal obligations, resolve disputes, and enforce our agreements.

Data Category	Retention Period
Account and Profile Information	Duration of active account, plus 3 years after account closure
Order History and Transaction Records	7 years (to comply with tax and financial record-keeping obligations)
Payment Information	As required by PCI-DSS standards and applicable law (typically not stored beyond transaction completion)
Marketing and Communication Preferences	Until you opt out or request deletion
Customer Support Records	3 years after resolution of the inquiry
Technical and Usage Logs	Up to 12 months
Cookie and Tracking Data	Varies by cookie type (see Section 8)

When personal information is no longer required, we securely delete or anonymize it in accordance with our data disposal procedures. In some circumstances, we may anonymize your personal data so that it can no longer be associated with you, in which case we may use such information without further notice.

8. Cookies and Tracking Technologies

We use cookies, web beacons, pixel tags, local storage objects, and similar tracking technologies to enhance your experience on our website, understand how our Services are used, and deliver relevant advertising.

8.1 Types of Cookies We Use

Strictly Necessary Cookies: Essential for the operation of our website. They enable core functionality such as security, session management, and order processing. You cannot opt out of these cookies.
Performance and Analytics Cookies: These cookies collect information about how visitors use our website, such as which pages are most visited and whether error messages are received. We use this data to improve the performance of our site. Examples include Google Analytics cookies.
Functionality Cookies: These allow us to remember choices you make (such as your preferred language, delivery address, or login details) to provide a more personalized experience.
Targeting and Advertising Cookies: These cookies are used to deliver advertisements relevant to you and your interests, both on our website and on third-party platforms. They also help us measure the effectiveness of our advertising campaigns.

8.2 Managing Your Cookie Preferences

You can control and manage cookies in several ways. Most web browsers allow you to refuse or accept cookies, delete existing cookies, and set preferences for future cookies. Please note that disabling certain cookies may affect the functionality of our website. For more detailed information about the specific cookies we use, their purposes, and your options for managing them, please refer to our full Cookie Policy available on our website.

To opt out of Google Analytics tracking, you can install the Google Analytics Opt-Out Browser Add-on.

9. Children's Privacy

Age Restriction: Our Services are intended for individuals who are 18 years of age or older. We do not knowingly collect, solicit, or process personal information from children under the age of 18.

Dions does not direct its Services to minors under the age of 18, and we do not knowingly collect personal information from children under 18 years of age. If you are under 18, please do not use our Services or provide any information to us.

If we learn that we have inadvertently collected personal information from a child under the age of 18 without verifiable parental consent, we will take prompt steps to delete that information from our servers. If you believe that we may have collected information from or about a child under 18, please contact us immediately at [email protected].

In addition to our general age restriction, we comply with the Children's Online Privacy Protection Act (COPPA), which prohibits the collection of personal information from children under the age of 13 without verified parental consent.

10. International Data Transfers

Dions is based in the United States, and our primary data processing activities occur within the United States. However, in some cases, your personal information may be transferred to, stored, or processed in countries outside of the United States where our service providers or business partners operate.

When we transfer personal information outside the United States, we take appropriate measures to ensure that your information receives adequate protection in accordance with applicable law. These measures may include:

Entering into data processing agreements with service providers that include appropriate data protection clauses.
Using service providers that have certified their compliance with recognized privacy frameworks.
Implementing contractual safeguards that ensure your data is treated with the same level of protection as required under United States law.

By using our Services, you acknowledge and consent to the transfer of your personal information to the United States and potentially to other countries, where data protection laws may differ from those in your country of residence.

11. Third-Party Links and Services

Our website may contain links to third-party websites, social media platforms, and other online services that are not operated by Dions. This Privacy Policy does not apply to those third-party services. We are not responsible for the privacy practices of third-party websites and strongly encourage you to review the privacy policies of any third-party sites you visit.

Third-party integrations on our website — such as social media sharing buttons, embedded maps, payment gateways, or analytics tools — may collect information independently according to their own privacy policies. Please consult those policies before engaging with such features.

12. Federal and State Legal Compliance

Our privacy practices are designed to comply with applicable United States federal and state privacy laws, including but not limited to:

Federal Trade Commission Act (FTC Act): We adhere to the FTC's standards for unfair or deceptive acts or practices, including our obligations related to accurate privacy notices and data security.
California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA): We honor the privacy rights of California residents as described in Section 6.1.
Children's Online Privacy Protection Act (COPPA): We do not knowingly collect personal information from children under 13 without verifiable parental consent.
CAN-SPAM Act: Our commercial email communications comply with the requirements of the CAN-SPAM Act, including providing a clear opt-out mechanism in every marketing email.
Telephone Consumer Protection Act (TCPA): We obtain appropriate consent before sending marketing messages via SMS or automated telephone calls.
State-Specific Privacy Laws: We monitor developments in state privacy legislation and update our practices to comply with new requirements as they become applicable, including laws from states such as Virginia (VCDPA), Colorado (CPA), Connecticut (CTDPA), and others.

13. Changes to This Privacy Policy

We reserve the right to update or modify this Privacy Policy at any time to reflect changes in our practices, technologies, legal requirements, or business operations. When we make material changes to this policy, we will take reasonable steps to notify you, which may include:

Posting the updated Privacy Policy on this page with a new "Last Updated" date.
Sending a notification to the email address associated with your account.
Displaying a prominent notice on our homepage or website upon your next visit.

We encourage you to periodically review this Privacy Policy to stay informed about how we are protecting your information. Your continued use of our Services following the posting of changes constitutes your acknowledgment and acceptance of those changes.

If we make changes that materially and adversely affect your rights, we will request fresh consent from you where required by applicable law.

14. Contact Us for Privacy Inquiries

If you have any questions, concerns, or requests regarding this Privacy Policy or the way we handle your personal information, please do not hesitate to reach out to us. We will respond to all inquiries as promptly as possible and within the timeframes required by applicable law.

Company	Dions
Email (Privacy Inquiries)	[email protected]
Website	dions-meal.click
Country	United States

When contacting us regarding a privacy request, please include the following information to help us process your request efficiently:

Your full name and email address associated with your account.
A clear description of your request or concern.
The type of right you wish to exercise (if applicable), such as access, deletion, or correction.
Any other relevant details that may help us identify your records and verify your identity.

We will verify your identity before processing any requests that involve access to, correction of, or deletion of personal information to protect the security and privacy of all our users.

15. How to File a Complaint

We take all privacy complaints seriously and will work diligently to resolve your concerns in a fair and timely manner. If you are not satisfied with our response to your privacy inquiry, you have the right to escalate your complaint to the appropriate regulatory authority.

15.1 Complaints to Dions

In the first instance, please submit your privacy complaint directly to us at [email protected]. We will acknowledge your complaint within 10 business days and endeavor to resolve it within 30 days.

15.2 Complaints to Regulatory Authorities

If you are not satisfied with our response, or if you believe your privacy rights have been violated, you may file a complaint with the following regulatory bodies:

Federal Trade Commission (FTC):
The FTC handles complaints relating to unfair or deceptive business practices, including privacy violations. You may file a complaint at reportfraud.ftc.gov or by calling 1-877-FTC-HELP (1-877-382-4357).
California Residents – California Privacy Protection Agency (CPPA):
California residents may submit complaints regarding violations of the CCPA/CPRA to the California Privacy Protection Agency at cppa.ca.gov.
California Residents – California Attorney General:
You may also file a complaint with the California Office of the Attorney General at oag.ca.gov.
Other State Residents:
Residents of other states may contact their respective state attorney general's office or state consumer protection agency regarding privacy-related complaints.

We value your trust and are committed to working cooperatively with regulatory authorities to resolve any complaints and improve our privacy practices.

Dions — Privacy Policy

Effective Date: May 30, 2026

For privacy inquiries: [email protected] | dions-meal.click