Privacy Policy

Effective Date: June 25, 2026 | Last Updated: June 25, 2026

This Privacy Policy describes how Giordano's ("we," "us," or "our") collects, uses, discloses, and protects your personal information when you visit our website at giordanospizza.rest, place orders, use our services, or otherwise interact with us. We are committed to protecting your privacy and handling your personal information with transparency, integrity, and care.

Please read this Privacy Policy carefully. By accessing or using our website and services, you acknowledge that you have read, understood, and agree to the practices described in this policy. If you do not agree with any part of this Privacy Policy, please discontinue use of our website and services immediately.

We comply with all applicable United States federal and state privacy laws, including but not limited to the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA), the Federal Trade Commission Act (FTC Act), and other applicable consumer protection regulations.

1. Who We Are

Giordano's is a food service business operating in the United States. We provide dining, carry-out, delivery, and catering services to customers through our physical locations and our online platform at giordanospizza.rest.

Business Name	Giordano's
Website	giordanospizza.rest
Email Address	[email protected]

For any questions, concerns, or requests related to this Privacy Policy or your personal data, please contact us using the information provided in the Contact Us section at the bottom of this document.

2. Information We Collect

We collect various types of information in connection with our services. The categories of personal information we collect are described below.

2.1 Information You Provide Directly

When you interact with our website or services, you may voluntarily provide us with personal information, including:

Contact Information: Your full name, email address, phone number, and mailing or delivery address.
Account Information: Username, password, and other details you provide when creating an account on our platform.
Order Information: Details about the food items you order, special dietary requests, delivery preferences, and order history.
Payment Information: Credit card numbers, debit card numbers, billing addresses, and other financial information necessary to process your payments. Please note that we use third-party payment processors and do not store complete payment card details on our own servers.
Communications: Messages, feedback, reviews, complaints, or other correspondence you send to us via email, contact forms, or other channels.
Marketing Preferences: Your choices regarding receiving promotional emails, text messages, or other marketing communications from us.
Loyalty Program Information: Points balances, rewards history, and related details if you participate in any loyalty or rewards program we offer.

2.2 Information Collected Automatically

When you visit our website at giordanospizza.rest, we automatically collect certain technical and usage information, including:

Device Information: IP address, browser type and version, operating system, device type (desktop, mobile, tablet), screen resolution, and device identifiers.
Usage Data: Pages you visit, time spent on each page, links you click, the order in which you visit pages, search terms you enter on our site, and the website that referred you to our site.
Log Data: Server logs that record your interactions with our website, including timestamps, error reports, and crash data.
Location Information: General geographic location based on your IP address. With your consent, we may also collect more precise location data to provide delivery services or to show you the nearest Giordano's locations.
Cookies and Tracking Technologies: Information collected through cookies, web beacons, pixel tags, and similar tracking technologies. See Section 7 of this policy for more details.

2.3 Information from Third Parties

We may receive information about you from third-party sources, including:

Social Media Platforms: If you connect your social media accounts to our services or interact with our social media pages, we may receive information such as your username, profile picture, and email address.
Third-Party Delivery Platforms: If you place an order through a third-party food delivery application or platform that partners with us, we may receive your order and contact information from that platform.
Analytics Providers: We may receive aggregated or demographic data from analytics companies that help us understand trends in website usage.
Payment Processors: We receive transaction confirmation data from our payment processors to verify completed purchases.
Marketing Partners: We may receive data from advertising or marketing partners to help us reach prospective customers or to understand the effectiveness of our marketing campaigns.

3. How We Use Your Information

We use the personal information we collect for the following purposes:

3.1 Providing and Managing Our Services

Processing and fulfilling your food orders, whether placed online, by phone, or in person.
Managing your customer account, including authentication and profile maintenance.
Communicating with you about your orders, including order confirmations, updates, and delivery notifications.
Processing payments and managing billing.
Administering loyalty programs, promotions, contests, or sweepstakes you participate in.
Providing customer support and responding to your inquiries, complaints, or feedback.
Facilitating catering orders and event bookings.

3.2 Improving Our Services and Website

Analyzing how customers use our website and services to identify areas for improvement.
Conducting research and development to improve our menu offerings, user experience, and operational efficiency.
Monitoring and analyzing trends, usage patterns, and activities in connection with our services.
Troubleshooting technical issues and ensuring the security and stability of our website.

3.3 Marketing and Communications

Sending you promotional emails, newsletters, or special offers about Giordano's products and services, subject to your marketing preferences.
Sending you text message notifications about your orders or, with your consent, promotional offers.
Delivering targeted advertising on our website or on third-party platforms based on your interests and browsing behavior.
Conducting customer satisfaction surveys and market research.

You may opt out of receiving marketing communications from us at any time by clicking the "unsubscribe" link in any marketing email, replying "STOP" to any marketing text message, or contacting us directly at [email protected]. Please note that even if you opt out of marketing communications, we may still send you transactional messages related to your orders and account.

3.4 Legal and Compliance Purposes

Complying with applicable federal, state, and local laws and regulations.
Enforcing our Terms of Service and other agreements.
Protecting the rights, property, and safety of Giordano's, our customers, and the public.
Detecting, investigating, and preventing fraudulent transactions, unauthorized access, and other illegal activities.
Responding to lawful requests from law enforcement authorities and regulatory agencies.

4. How We Share Your Information

We do not sell your personal information to third parties for monetary compensation. However, we may share your information in the following circumstances:

4.1 Service Providers and Business Partners

We share personal information with trusted third-party companies and individuals who assist us in operating our business and providing our services. These service providers are authorized to use your personal information only as necessary to perform services on our behalf and are bound by contractual obligations to maintain the confidentiality and security of your data. Examples of service providers include:

Payment processing companies that handle credit and debit card transactions.
Delivery and logistics partners who fulfill delivery orders.
Cloud hosting and IT infrastructure providers.
Email and SMS communication platforms used to send you order confirmations and promotional messages.
Analytics providers such as Google Analytics that help us understand website usage patterns.
Customer relationship management (CRM) software providers.
Marketing and advertising agencies and platforms.
Loyalty program administrators.

4.2 Legal Requirements

We may disclose your personal information if we are required to do so by law or in good faith belief that such action is necessary to:

Comply with a legal obligation, court order, subpoena, or governmental request.
Protect and defend the rights or property of Giordano's.
Prevent or investigate possible wrongdoing in connection with our services.
Protect the personal safety of our customers, employees, or the public.
Protect against legal liability.

4.3 Business Transfers

In the event that Giordano's undergoes a merger, acquisition, reorganization, sale of assets, or bankruptcy proceeding, your personal information may be transferred to the acquiring entity or successor as part of that transaction. We will notify you via email and/or prominent notice on our website of any such change in ownership or use of your personal information, as well as any choices you may have regarding your personal information.

4.4 Aggregated and De-Identified Data

We may share aggregated or de-identified information that cannot reasonably be used to identify you with third parties for research, analytics, marketing, and other business purposes. This type of data sharing does not constitute a disclosure of personal information.

4.5 With Your Consent

We may share your personal information with other third parties when you have given us your explicit consent to do so.

5. Data Security

We take the security of your personal information seriously and implement a variety of technical, administrative, and physical security measures designed to protect your data from unauthorized access, disclosure, alteration, or destruction.

5.1 Security Measures We Employ

Encryption: We use industry-standard Transport Layer Security (TLS) encryption to protect data transmitted between your browser and our website. Sensitive data such as payment information is encrypted both in transit and at rest.
Access Controls: We restrict access to personal information to authorized employees, contractors, and service providers who need it to perform their job functions. All personnel with access to personal data are required to maintain its confidentiality.
Secure Payment Processing: We use PCI DSS-compliant payment processors to handle credit and debit card transactions. We do not store full card numbers on our servers.
Regular Security Assessments: We conduct periodic security assessments and vulnerability scans to identify and address potential weaknesses in our systems.
Incident Response: We maintain an incident response plan to promptly detect, respond to, and notify affected individuals in the event of a data breach, in accordance with applicable state breach notification laws.
Employee Training: We provide regular privacy and security training to employees who handle personal information.

5.2 Limitations of Security

While we strive to use commercially acceptable means to protect your personal information, no method of transmission over the Internet or method of electronic storage is 100% secure. We cannot guarantee absolute security of your data. You are also responsible for maintaining the security of your account credentials and should notify us immediately if you suspect any unauthorized use of your account.

6. Your Privacy Rights

Depending on your state of residence within the United States, you may have certain rights regarding your personal information. We are committed to honoring these rights in accordance with applicable law.

6.1 Rights Under the California Consumer Privacy Act (CCPA/CPRA)

If you are a California resident, you have the following rights under the CCPA as amended by the CPRA:

Right to Know: You have the right to request that we disclose the categories and specific pieces of personal information we have collected about you, the categories of sources from which we collected it, our business purposes for collecting it, and the categories of third parties with whom we share it.
Right to Delete: You have the right to request that we delete personal information we have collected from you, subject to certain exceptions permitted by law.
Right to Correct: You have the right to request that we correct inaccurate personal information we maintain about you.
Right to Opt-Out of Sale or Sharing: While we do not sell your personal information for monetary compensation, to the extent that any sharing of your data with advertising partners constitutes a "sale" or "sharing" under the CPRA, you have the right to opt out of such activity.
Right to Limit Use of Sensitive Personal Information: You have the right to request that we limit the use and disclosure of sensitive personal information (such as precise geolocation data, financial account information, or health information) to those uses permitted by the CPRA.
Right to Non-Discrimination: We will not discriminate against you for exercising any of your CCPA/CPRA rights. We will not deny you goods or services, charge you different prices, or provide a different level of quality of goods or services because you exercised your rights.

6.2 Rights Available to All U.S. Customers

Regardless of your state of residence, we provide all our customers with the following privacy options:

Access and Review: You may request to review the personal information we hold about you by contacting us at [email protected].
Correction: You may request that we correct or update inaccurate personal information associated with your account.
Deletion: You may request that we delete your personal information, subject to our legal obligations to retain certain data.
Data Portability: Where technically feasible, you may request a copy of your personal information in a structured, commonly used, and machine-readable format.
Opt-Out of Marketing: You may opt out of receiving marketing communications from us at any time as described in Section 3.3.
Account Deletion: You may request the deletion of your Giordano's account at any time by contacting us.

6.3 How to Submit a Privacy Rights Request

To exercise any of your privacy rights, please submit a request to us by:

Sending an email to [email protected] with the subject line "Privacy Rights Request"

We will verify your identity before processing your request to protect the security of your personal information. Verification may require you to provide certain account details or answer security questions. We will respond to verifiable consumer requests within 45 days of receipt. If we require additional time, we will inform you of the reason and extension period in writing.

You may also designate an authorized agent to submit requests on your behalf. Authorized agents must provide written proof of their authorization, and we may still require direct verification from you for security purposes.

7. Cookies and Tracking Technologies

Our website at giordanospizza.rest uses cookies, web beacons, pixel tags, and similar tracking technologies to enhance your browsing experience, analyze website traffic, and deliver personalized content and advertising.

7.1 Types of Cookies We Use

Strictly Necessary Cookies: These cookies are essential for the operation of our website and cannot be switched off. They are usually set in response to actions you take, such as setting your privacy preferences, logging in, or filling in forms.
Performance and Analytics Cookies: These cookies allow us to count visits and traffic sources so we can measure and improve the performance of our site. They help us understand which pages are most and least popular.
Functional Cookies: These cookies enable the website to provide enhanced functionality and personalization, such as remembering your preferences, location, and past orders.
Targeting and Advertising Cookies: These cookies may be set through our site by our advertising partners to build a profile of your interests and show you relevant advertisements on other sites.

7.2 Managing Your Cookie Preferences

You can control and manage cookies in several ways. Most web browsers allow you to refuse or accept cookies, delete existing cookies, and set your browser to alert you when cookies are being set. Please note that disabling certain cookies may affect the functionality of our website.

For more detailed information about how we use cookies and how to manage your preferences, please refer to our Cookie Policy available on our website at giordanospizza.rest.

8. Data Retention

We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by applicable law. The specific retention periods we apply are as follows:

Data Category	Retention Period
Account and profile information	Duration of active account, plus 3 years after account closure
Order history and transaction records	7 years (for tax and accounting compliance)
Payment information	As required by PCI DSS standards; typically not stored beyond transaction completion
Customer support communications	3 years from the date of last communication
Marketing preferences and opt-out records	Until you withdraw consent or request deletion, plus 3 years for compliance records
Website usage and analytics data	26 months from collection
Cookies and tracking data	As specified in our Cookie Policy (typically session to 24 months)
Legal compliance and fraud prevention records	Up to 7 years or as required by applicable law

After the applicable retention period expires, we will securely delete or anonymize your personal information. In some cases, we may retain anonymized data that can no longer be linked to you for statistical and research purposes.

9. Children's Privacy

Important Notice: Our website and services are intended for use by individuals who are 18 years of age or older. We do not knowingly collect personal information from children under the age of 18.

Giordano's does not knowingly solicit or collect personal information from children under the age of 18. Our website, online ordering platform, and related services are not directed at children. If you are under 18 years of age, please do not use our website or provide any personal information to us.

If we become aware that we have inadvertently collected personal information from a child under the age of 18 without verifiable parental consent, we will take prompt steps to delete that information from our records. If you are a parent or guardian and you believe that your child has provided us with personal information, please contact us immediately at [email protected] so that we can take appropriate action.

Our practices comply with the Children's Online Privacy Protection Act (COPPA) and any applicable state laws governing the collection of personal information from minors.

10. International Data Transfers

Giordano's is a United States-based business, and our primary data processing activities take place within the United States. However, some of our third-party service providers, including cloud hosting providers, analytics platforms, and payment processors, may store or process data in servers located outside of the United States.

If your personal information is transferred internationally, we take appropriate steps to ensure that your data receives an adequate level of protection consistent with applicable privacy laws and this Privacy Policy. These steps may include:

Entering into data processing agreements with our service providers that include appropriate data protection clauses.
Ensuring that transfers are made only to countries or organizations that provide adequate levels of data protection.
Implementing technical and organizational security measures to protect transferred data.

By using our website and services, you acknowledge and consent to the transfer of your personal information to the United States and potentially to other countries where our service providers operate, in accordance with this Privacy Policy.

11. Third-Party Links and Integrations

Our website may contain links to third-party websites, applications, or services that are not operated or controlled by Giordano's. These may include social media platforms, third-party delivery services, review platforms, or advertising partners. This Privacy Policy applies only to information collected through our website at giordanospizza.rest and our own services.

We are not responsible for the privacy practices of third-party websites or services. We encourage you to review the privacy policies of any third-party sites you visit before providing any personal information. The inclusion of a link on our website does not imply our endorsement of the third party's privacy practices.

If you access our website through a third-party food delivery platform or app, please be aware that such platforms have their own privacy policies governing how they collect and use your data, and those policies will apply to the information you provide to them directly.

12. Do Not Track Signals

Some browsers include a "Do Not Track" (DNT) feature that signals to websites that you do not want to have your online activity tracked. At this time, there is no universally accepted standard for how websites should respond to DNT signals, and our website does not currently respond to browser DNT signals differently than it responds to non-DNT browser requests.

California residents have additional rights under California's "Shine the Light" law and the CCPA/CPRA regarding the sharing of personal information with third parties for their direct marketing purposes. If you are a California resident and wish to exercise these rights, please contact us at [email protected].

13. State-Specific Privacy Rights

In addition to the rights described for California residents above, customers residing in certain other U.S. states may have additional privacy rights under state-specific laws. We are committed to complying with applicable privacy laws in all states where we operate. These may include laws enacted in states such as Virginia (VCDPA), Colorado (CPA), Connecticut (CTDPA), Texas, Nevada, and others. If you are a resident of any such state and wish to exercise your privacy rights, please contact us using the information below.

We process all privacy rights requests in good faith regardless of the requestor's state of residence, and we will work with you to address your privacy concerns to the extent permitted and required by applicable law.

14. FTC Act Compliance

Our privacy practices are subject to the Federal Trade Commission Act (FTC Act), which prohibits unfair or deceptive acts or practices in or affecting commerce. We are committed to maintaining fair information practices and transparent disclosures about how we collect, use, and share your personal information. If we make any material changes to our privacy practices, we will provide appropriate notice as described in Section 16 of this policy.

15. How to File a Complaint

If you have a concern or complaint about how we handle your personal information, we encourage you to first contact us directly so we have the opportunity to resolve the issue. You can reach us at:

Email: [email protected]
Website: giordanospizza.rest

If we are unable to resolve your concern to your satisfaction, you have the right to file a complaint with the relevant regulatory authority. In the United States, the primary agencies that oversee privacy and consumer protection matters include:

15.1 Federal Trade Commission (FTC)

The FTC is the primary federal consumer protection agency in the United States. You may file a complaint about deceptive or unfair business practices, including privacy-related concerns, with the FTC at:

Website: www.ftc.gov
Phone: 1-877-FTC-HELP (1-877-382-4357)
Address: Federal Trade Commission, 600 Pennsylvania Avenue, NW, Washington, DC 20580

15.2 California Attorney General (California Residents)

If you are a California resident and believe we have violated your rights under the CCPA/CPRA, you may file a complaint with the California Privacy Protection Agency (CPPA) or the California Attorney General:

California Privacy Protection Agency: cppa.ca.gov
California Attorney General: oag.ca.gov/privacy

15.3 State Attorneys General

Residents of other U.S. states may file privacy-related complaints with their respective State Attorney General's office. Contact information for your state's Attorney General can typically be found on your state government's official website.

16. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or for other operational reasons. When we make changes, we will:

Update the "Last Updated" date at the top of this Privacy Policy.
Post the revised Privacy Policy on our website at giordanospizza.rest.
Provide notice of material changes via email to registered users or through a prominent notice on our website, where required by applicable law.

We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information. Your continued use of our website and services after any changes to this Privacy Policy have been posted constitutes your acceptance of the updated policy.

If we make material changes that significantly affect your rights, we will provide at least 30 days' notice before the changes take effect, where required by law. For material changes that require your consent under applicable law, we will seek your affirmative consent before applying those changes to your personal information.

17. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact our privacy team using any of the following methods:

Giordano's — Privacy Inquiries

Business Name	Giordano's
Email	[email protected]
Website	giordanospizza.rest

We will make every effort to respond to your privacy-related inquiries and requests promptly. For verifiable consumer requests under the CCPA/CPRA, we will respond within 45 days of receipt, with possible extensions as permitted by law.

To help us address your inquiry as quickly as possible, please include the following information in your message:

Your full name and email address associated with your account (if applicable).
A clear description of your inquiry or request.
The specific rights you wish to exercise, if applicable.
Your state of residence, if you are requesting specific state-law rights.

This Privacy Policy was last updated on June 25, 2026. The practices described in this policy apply to all personal information collected by Giordano's through our website at giordanospizza.rest and our related services as of the effective date above.