Privacy Policy

This Privacy Policy describes how Marcos ("we," "us," or "our") collects, uses, discloses, and safeguards your personal information when you visit our website at pizzamarcos.digital, place orders, use our digital services, or otherwise interact with us. Please read this policy carefully. By accessing or using our website and services, you acknowledge that you have read, understood, and agree to the practices described in this Privacy Policy.

We are committed to protecting your privacy and handling your personal data in a transparent and responsible manner, consistent with applicable United States federal and state privacy laws, including the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA), the Federal Trade Commission Act (FTC Act), and other applicable consumer protection regulations.

1. About Us

Marcos is a food service business operating in the United States. Our mission is to deliver exceptional food experiences to our customers through our digital platform and physical locations. For any questions or concerns about this Privacy Policy or our data practices, you may contact us using the following details:

Company Name Marcos
Website pizzamarcos.digital
Email Address [email protected]
Country of Operation United States

2. Information We Collect

We collect various categories of personal information depending on how you interact with our website and services. Below is a comprehensive description of the types of data we may collect.

2.1 Personal Identification Information

When you create an account, place an order, subscribe to our newsletter, participate in a promotion, or contact us directly, we may collect personal identification information such as:

  • Full name
  • Email address
  • Phone number
  • Billing and delivery addresses (street address, city, state, ZIP code)
  • Date of birth (where required for age verification)
  • Username and password for account access
  • Profile photograph (if uploaded voluntarily)

2.2 Transaction and Payment Information

When you place an order through our platform, we collect transaction-related information, including:

  • Order history and details (items ordered, quantities, preferences, special instructions)
  • Payment method type (credit card, debit card, digital wallet)
  • Billing address associated with your payment method
  • Transaction ID and confirmation numbers

Please note that full payment card numbers are not stored on our servers. Payment processing is handled by third-party payment processors who maintain PCI-DSS compliance. We only receive tokenized or masked payment data.

2.3 Usage and Behavioral Data

We automatically collect certain information about how you access and use our website and digital services, including:

  • Pages visited and time spent on each page
  • Links clicked and features used
  • Search queries entered on our site
  • Referral source (how you arrived at our website)
  • Shopping cart activity and abandoned cart data
  • Frequency and recency of visits

2.4 Device and Technical Information

We may collect technical information about the device and connection you use to access our services, including:

  • IP address
  • Browser type and version
  • Operating system and device type (desktop, mobile, tablet)
  • Screen resolution
  • Language settings
  • Time zone
  • Cookie identifiers and similar tracking technologies
  • Mobile device identifiers (if applicable)

2.5 Location Data

With your permission, we may collect precise or approximate location data from your device in order to offer you relevant local menu options, estimate delivery times, identify the nearest Marcos location, and enhance your ordering experience. You may disable location access at any time through your device settings.

2.6 Communications and Feedback

If you contact us via email, our website contact form, social media, or any other channel, we collect the content of your message, your contact details, and any other information you provide. This includes feedback, reviews, complaints, and support inquiries.

2.7 Information from Third Parties

We may receive information about you from third-party sources, such as:

  • Social media platforms (if you connect your social account to our services or interact with our social media pages)
  • Delivery partners and aggregator platforms
  • Analytics and advertising partners
  • Publicly available databases or marketing data providers

3. How We Use Your Information

We use the information we collect for a variety of business and operational purposes. We will only use your personal information where we have a lawful basis for doing so, including your consent, performance of a contract, compliance with a legal obligation, or our legitimate business interests.

3.1 Providing and Managing Our Services

  • Processing and fulfilling your food orders and delivery requests
  • Creating and maintaining your account
  • Facilitating payments and preventing fraudulent transactions
  • Sending order confirmations, receipts, and delivery updates
  • Managing loyalty programs and rewards points
  • Providing customer support and resolving disputes

3.2 Personalization and Service Improvement

  • Remembering your preferences, saved addresses, and favorite orders
  • Customizing the content and offers displayed to you based on your past behavior
  • Conducting internal research, analysis, and product development
  • Improving the functionality, design, and performance of our website and app
  • Testing new features and conducting A/B tests

3.3 Marketing and Promotional Communications

With your consent or where otherwise permitted by law, we may use your contact information to:

  • Send promotional emails, special offers, and discount codes
  • Notify you about new menu items, seasonal promotions, and events
  • Send push notifications (if you have enabled them on your device)
  • Display targeted advertisements on our website and third-party platforms

You may opt out of marketing communications at any time by clicking the "unsubscribe" link in any promotional email, adjusting your account notification settings, or contacting us at [email protected].

3.4 Analytics and Performance Measurement

  • Monitoring website traffic and user engagement metrics
  • Analyzing trends to understand how customers use our services
  • Measuring the effectiveness of marketing campaigns
  • Generating aggregated, anonymized reports for business decision-making

3.5 Legal and Compliance Purposes

  • Complying with applicable laws, regulations, and legal processes
  • Enforcing our Terms of Service and other agreements
  • Protecting the rights, property, and safety of Marcos, our customers, and the public
  • Responding to lawful requests from government authorities and law enforcement
  • Detecting, preventing, and investigating fraud, security breaches, or other illegal activity

4. Cookies and Tracking Technologies

Our website uses cookies, pixel tags, web beacons, and similar tracking technologies to enhance your browsing experience, analyze site traffic, and deliver personalized content and advertisements.

4.1 Types of Cookies We Use

  • Strictly Necessary Cookies: Essential for the website to function properly, including maintaining your session and enabling secure login.
  • Performance and Analytics Cookies: Help us understand how visitors interact with our website by collecting anonymized usage data.
  • Functional Cookies: Remember your preferences and settings, such as your preferred location or saved cart items.
  • Marketing and Advertising Cookies: Used to track your browsing activity across websites and deliver relevant advertisements.

You can manage your cookie preferences through your browser settings or our cookie consent tool. Please note that disabling certain cookies may affect the functionality of our website. For detailed information about the cookies we use and how to manage them, please refer to our Cookie Policy.

5. Sharing Your Information with Third Parties

We do not sell your personal information to third parties for monetary consideration. However, we may share your information with select third parties in the following circumstances:

5.1 Service Providers and Business Partners

We work with trusted third-party service providers who assist us in operating our business and providing services to you. These providers are contractually bound to use your information only for the purposes specified and to maintain appropriate security measures. Categories of service providers include:

  • Payment processors and fraud prevention services
  • Delivery and logistics partners
  • Cloud hosting and data storage providers
  • Email marketing and communication platforms
  • Analytics and data intelligence providers (e.g., Google Analytics)
  • Customer relationship management (CRM) software providers
  • Advertising technology platforms
  • IT support and cybersecurity service providers

5.2 Legal Requirements and Law Enforcement

We may disclose your personal information to government authorities, law enforcement agencies, regulators, or courts when:

  • Required to do so by applicable law, regulation, or legal process (such as a subpoena, court order, or regulatory inquiry)
  • Necessary to protect the safety or rights of any person
  • Necessary to detect, investigate, or prevent fraud or illegal activity
  • Required to enforce our legal rights or defend against legal claims

5.3 Business Transfers

In the event that Marcos undergoes a merger, acquisition, asset sale, restructuring, bankruptcy, or other business transaction, your personal information may be transferred as part of that transaction. We will notify you of any such change in ownership or control through a prominent notice on our website or by email.

5.4 Aggregated and Anonymized Data

We may share aggregated or de-identified information that cannot reasonably be used to identify you with third parties for research, marketing, analytics, or other business purposes.

5.5 With Your Consent

We may share your information with other third parties not described above if we obtain your prior explicit consent to do so.

6. Data Security

The security of your personal information is a top priority for us. We implement a range of technical, administrative, and physical security measures to protect your data from unauthorized access, disclosure, alteration, and destruction.

6.1 Security Measures We Employ

  • Encryption of data in transit using Transport Layer Security (TLS/SSL) protocols
  • Encryption of sensitive data at rest
  • Secure, access-controlled data storage environments
  • Regular security audits, vulnerability assessments, and penetration testing
  • Employee training on data privacy and security best practices
  • Role-based access controls limiting employee access to personal data on a need-to-know basis
  • Multi-factor authentication for internal systems
  • Incident response plans and breach notification procedures

6.2 Limitations

While we employ industry-standard security practices, no method of data transmission or electronic storage is 100% secure. We cannot guarantee absolute security of your information. In the event of a data breach that is likely to result in significant harm to you, we will notify you and the appropriate authorities as required by applicable law, including applicable state data breach notification laws.

7. Your Privacy Rights

Depending on your state of residence, you may have specific rights with respect to your personal information. We respect and honor these rights to the fullest extent required by applicable law.

7.1 Rights for California Residents (CCPA/CPRA)

If you are a resident of California, you have the following rights under the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA):

  • Right to Know: You have the right to request that we disclose what personal information we have collected about you, the sources of collection, the business purposes for which it was collected, and the categories of third parties with whom it is shared.
  • Right to Access: You have the right to request a copy of the specific pieces of personal information we hold about you.
  • Right to Delete: You have the right to request that we delete personal information we have collected from you, subject to certain exceptions (such as fulfilling ongoing transactions or complying with legal obligations).
  • Right to Correct: You have the right to request that we correct inaccurate personal information we maintain about you.
  • Right to Opt-Out of Sale or Sharing: You have the right to opt out of the sale or sharing of your personal information for cross-context behavioral advertising. To exercise this right, visit our "Do Not Sell or Share My Personal Information" page or contact us directly.
  • Right to Limit Use of Sensitive Personal Information: You have the right to limit our use and disclosure of sensitive personal information to purposes strictly necessary to provide services to you.
  • Right to Non-Discrimination: We will not discriminate against you for exercising any of your CCPA/CPRA rights. We will not deny services, charge different prices, or provide a different level of quality because you exercised your rights.

7.2 General Rights for All U.S. Residents

Regardless of your state of residence, we also offer the following rights as a matter of our company policy:

  • Right to Access: Request confirmation of whether we process your personal data and obtain a copy of it.
  • Right to Correction: Request that we correct or update inaccurate or incomplete personal information.
  • Right to Deletion: Request that we delete your personal data, subject to legal retention requirements.
  • Right to Data Portability: Request that we provide your personal information in a structured, commonly used, and machine-readable format.
  • Right to Withdraw Consent: Where processing is based on your consent, you may withdraw consent at any time without affecting the lawfulness of prior processing.
  • Right to Object to Marketing: Opt out of direct marketing communications at any time.

7.3 How to Exercise Your Rights

To exercise any of the rights described above, please submit a verifiable request to us using one of the following methods:

We will respond to your request within 45 days of receipt. If we require additional time (up to 90 days total), we will inform you of the extension and the reason within the initial 45-day period. We may need to verify your identity before processing your request. You may also designate an authorized agent to submit requests on your behalf, provided they can demonstrate proper authorization.

8. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. The specific retention periods we apply are as follows:

Data Category Retention Period
Account and profile information Duration of account activity + 3 years after account closure
Order history and transaction records 7 years (for tax, accounting, and legal compliance purposes)
Payment information (tokenized) Duration required by payment processor compliance obligations
Usage and behavioral data Up to 2 years from collection
Marketing preferences and consent records 3 years from last interaction or until consent is withdrawn
Customer support communications 3 years from resolution of the inquiry
Cookies and tracking data As specified in our Cookie Policy (typically 1–24 months)
Legal and compliance records As required by applicable law (up to 10 years)

When personal information is no longer needed, we will securely delete or anonymize it. Where deletion is not immediately possible (e.g., data stored in backup archives), we will isolate the data from further processing until deletion is feasible.

9. Children's Privacy

Our website and services are intended for users who are 18 years of age or older. We do not knowingly collect, use, or disclose personal information from children under the age of 13, in compliance with the Children's Online Privacy Protection Act (COPPA).

If you are under the age of 18, you are not permitted to use our services or submit any personal information to us without the supervision and express consent of a parent or legal guardian.

If we discover or are informed that we have inadvertently collected personal information from a child under the age of 13, we will take immediate steps to delete such information from our records. If you believe we may have collected personal information from a child under 13, please contact us immediately at [email protected].

10. International Data Transfers

Marcos is based in the United States, and your personal information is primarily collected, processed, and stored within the United States. However, some of our third-party service providers may be located in or operate from other countries, which means your personal information may be transferred to and processed in countries other than your country of residence.

When personal information is transferred internationally, we take steps to ensure that adequate protections are in place, including:

  • Entering into data processing agreements with third-party service providers that incorporate standard contractual clauses or other appropriate safeguards
  • Ensuring that recipient countries offer an adequate level of data protection as determined by applicable standards
  • Obtaining your explicit consent where required

By using our services, you acknowledge and consent to the transfer of your personal information to the United States and other countries as described in this section.

11. Third-Party Websites and Links

Our website may contain links to third-party websites, social media platforms, and other online services that are not operated by us. This Privacy Policy does not apply to those third-party sites. We are not responsible for the privacy practices or content of any third-party websites. We encourage you to review the privacy policies of any third-party websites you visit.

12. Do Not Track Signals

Some web browsers offer a "Do Not Track" (DNT) feature that signals to websites that you do not want to be tracked across websites. Currently, our website does not respond to browser DNT signals, as there is no industry-wide standard for interpreting such signals. However, you may opt out of certain tracking activities through our cookie consent tool and the opt-out mechanisms described in this Privacy Policy.

13. Social Media and Third-Party Integrations

Our website may include social media features (such as "Like" or "Share" buttons) and integrations with third-party platforms. These features may collect your IP address, note which pages you visit on our site, and set a cookie to enable the feature to function properly. Social media features and widgets are either hosted by a third party or hosted directly on our site. Your interactions with these features are governed by the privacy policies of the respective third-party companies.

If you choose to log in to our services using a social media account (e.g., Facebook Login or Google Sign-In), we will receive certain profile information from your social media provider, such as your name, email address, and profile picture, as permitted by your privacy settings on that platform.

14. California-Specific Disclosures

In addition to the rights described in Section 7, California residents should be aware of the following disclosures made in compliance with the CCPA/CPRA:

14.1 Categories of Personal Information Collected in the Past 12 Months

  • Identifiers (name, email address, phone number, IP address)
  • Personal information categories listed in the California Customer Records statute (payment information, address)
  • Commercial information (purchase history, ordering preferences)
  • Internet or other electronic network activity information (browsing history, search history)
  • Geolocation data
  • Inferences drawn from personal information to create a profile about preferences

14.2 Business or Commercial Purposes for Collection

As described in Section 3 of this Privacy Policy.

14.3 Shine the Light Law (California Civil Code § 1798.83)

California residents may request information once per calendar year about our disclosures of personal information to third parties for direct marketing purposes. To make such a request, please contact us at [email protected] with "California Shine the Light Request" in the subject line.

15. Filing a Complaint

If you believe that we have not handled your personal information in accordance with applicable law or this Privacy Policy, we encourage you to contact us first so that we can attempt to resolve your concern:

If you are not satisfied with our response, you may have the right to file a complaint with the relevant regulatory authorities. In the United States, relevant authorities include:

  • Federal Trade Commission (FTC): The FTC enforces federal consumer protection laws, including those related to privacy and data security. You may file a complaint at www.ftc.gov/complaint or by calling 1-877-FTC-HELP (1-877-382-4357).
  • California Privacy Protection Agency (CPPA): California residents may file a complaint with the California Privacy Protection Agency at cppa.ca.gov.
  • State Attorney General: Residents of other states may contact their state Attorney General's office for guidance on state-specific privacy rights and complaint procedures.

16. Changes to This Privacy Policy

We reserve the right to update or modify this Privacy Policy at any time to reflect changes in our data practices, applicable laws, or business operations. When we make material changes, we will:

  • Update the "Last Updated" date at the top of this policy
  • Post a prominent notice on our website
  • Send an email notification to registered users where required by law or where we deem appropriate

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information. Your continued use of our services after the effective date of any changes constitutes your acceptance of the updated Privacy Policy.

17. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data handling practices, please do not hesitate to reach out to us through any of the following channels:

Company Marcos
Email [email protected]
Website pizzamarcos.digital

This Privacy Policy was last updated on June 3, 2026. If you are reading a cached version of this page, please visit pizzamarcos.digital to access the most current version of our Privacy Policy.