Privacy Policy

Welcome to Marcos ("we," "us," "our," or "the Company"). We operate the website meals-marcos.click and provide food-related services to our valued customers across the United States. This Privacy Policy explains how we collect, use, disclose, retain, and protect your personal information when you visit our website, place orders, or otherwise interact with our services.

By accessing or using our website and services, you acknowledge that you have read, understood, and agree to be bound by the terms of this Privacy Policy. If you do not agree with the practices described herein, please discontinue use of our website and services immediately.

We are committed to protecting your privacy and handling your personal data in an open and transparent manner. This policy has been drafted in compliance with applicable United States federal and state privacy laws, including the California Consumer Privacy Act (CCPA), the California Privacy Rights Act (CPRA), the Federal Trade Commission Act (FTC Act), and other relevant federal and state regulations governing consumer data protection.

1. Information We Collect

When you interact with Marcos through our website meals-marcos.click, we may collect various categories of personal and non-personal information. The specific information we collect depends on how you use our services.

1.1 Personal Identification Information

We may collect the following personal identification data:

• Full name – to identify you as a customer and personalize your experience
• Email address – to send order confirmations, updates, and marketing communications (where permitted)
• Phone number – to contact you regarding your orders or for delivery coordination
• Mailing and delivery address – to facilitate food delivery services
• Billing address and payment information – for processing transactions securely
• Date of birth or age verification data – to ensure compliance with our age restrictions
• Username and password – if you create an account on our platform
• Profile preferences and dietary restrictions – to personalize your food ordering experience

1.2 Transaction and Order Data

When you place an order with us, we collect:

• Details of the food items ordered
• Order history and frequency
• Special instructions or customization requests
• Payment method type (e.g., credit card, debit card, digital wallet)
• Transaction IDs and purchase amounts
• Delivery time preferences and special delivery instructions

1.3 Usage and Technical Data

When you browse our website, we automatically collect certain technical information, including:

• IP address – for security monitoring and geographic analysis
• Browser type and version – to optimize website compatibility
• Operating system – for technical troubleshooting
• Pages visited – to understand navigation patterns and improve our website layout
• Time spent on pages – to assess content engagement
• Referral source – to understand how users find our website
• Clickstream data – records of links clicked within our site
• Search queries – terms entered into our website search function

1.4 Device Information

We may collect device-specific information such as:

• Device type (smartphone, tablet, desktop)
• Device identifiers (where applicable and permitted)
• Screen resolution and display settings
• Mobile network information
• Location data (if you permit location access on your device)

1.5 Cookies and Tracking Technologies

We use cookies, web beacons, pixel tags, local storage, and similar tracking technologies to collect information about your browsing behavior on our website. Please refer to Section 8 of this Privacy Policy for detailed information about our cookie practices.

1.6 Communications Data

If you contact us via email, phone, or contact forms, we may collect:

• The content of your messages and inquiries
• Customer service interaction records
• Survey responses and feedback submissions
• Reviews and ratings you submit about our food and services

1.7 Information from Third Parties

We may receive information about you from third parties, including:

• Payment processors who confirm transaction details
• Delivery partners and logistics providers
• Social media platforms if you log in using a social media account
• Marketing and advertising partners who provide aggregated audience data
• Analytics service providers

2. How We Use Your Information

Marcos uses the information we collect for several legitimate business purposes. We only process your personal data when we have a lawful basis to do so, such as your consent, the performance of a contract, our legitimate business interests, or legal obligations.

2.1 Service Provision and Order Fulfillment

• Processing and fulfilling your food orders
• Coordinating delivery logistics and communicating estimated arrival times
• Managing your customer account and profile preferences
• Handling payments and issuing receipts or invoices
• Resolving order disputes, refunds, and complaints
• Providing customer support and responding to your inquiries

2.2 Website Improvement and Analytics

• Analyzing website traffic patterns and user behavior
• Identifying technical issues and optimizing website performance
• Conducting A/B testing to improve user interface design
• Understanding which menu items and features are most popular
• Developing new products, services, and features based on user demand

2.3 Marketing and Promotional Communications

• Sending promotional emails about special offers, new menu items, and discounts (with your consent where required)
• Personalizing marketing messages based on your order history and preferences
• Serving targeted advertisements on third-party platforms
• Conducting loyalty programs and referral campaigns
• Sending seasonal promotions and holiday offers

You may opt out of marketing communications at any time by clicking the "unsubscribe" link in any promotional email or by contacting us at [email protected].

2.4 Security and Fraud Prevention

• Monitoring for fraudulent transactions and suspicious account activity
• Verifying user identities and preventing unauthorized account access
• Protecting the integrity of our payment systems
• Complying with anti-money laundering and fraud prevention obligations

2.5 Legal and Regulatory Compliance

• Meeting our obligations under applicable US federal and state laws
• Responding to lawful requests from government authorities and law enforcement
• Enforcing our Terms of Service and other legal agreements
• Establishing, exercising, or defending legal claims

3. Sharing Your Information with Third Parties

We do not sell your personal information to third parties for their own independent marketing purposes. However, we may share your data with trusted partners in the following circumstances:

3.1 Service Providers and Business Partners

We share information with third-party service providers who assist us in operating our business, including:

All service providers are contractually required to handle your data confidentially and use it only for the specific purposes we have authorized. They are prohibited from using your data for their own commercial purposes.

3.2 Legal Requirements and Law Enforcement

We may disclose your personal information when required by law or in good faith belief that such action is necessary to:

• Comply with a legal obligation, court order, subpoena, or governmental request
• Protect and defend the rights or property of Marcos
• Prevent or investigate possible wrongdoing in connection with our services
• Protect the personal safety of users or members of the public
• Protect against legal liability

3.3 Business Transfers

In the event of a merger, acquisition, corporate restructuring, sale of assets, or bankruptcy, your personal information may be transferred to a successor entity. We will notify you via email or a prominent notice on our website before your data is transferred and becomes subject to a different privacy policy.

3.4 Aggregated and Anonymized Data

We may share aggregated, anonymized, or de-identified data that cannot reasonably be used to identify any individual person with research organizations, marketing partners, or for other business purposes. This type of data sharing does not constitute selling personal information.

4. Data Security Measures

Marcos takes the security of your personal information very seriously. We implement a comprehensive range of technical and organizational measures designed to protect your data against unauthorized access, alteration, disclosure, or destruction.

4.1 Technical Safeguards

• SSL/TLS Encryption: All data transmitted between your browser and our website is encrypted using industry-standard Secure Socket Layer (SSL) or Transport Layer Security (TLS) protocols
• Encryption at Rest: Sensitive personal data stored on our servers is encrypted using AES-256 or equivalent encryption standards
• Secure Payment Processing: We utilize PCI-DSS compliant payment processors and do not store complete credit card numbers on our servers
• Firewalls and Intrusion Detection: Our systems are protected by firewalls and intrusion detection systems that monitor for unauthorized access attempts
• Regular Security Audits: We conduct periodic security assessments and vulnerability testing

4.2 Organizational Safeguards

• Access to personal data is restricted to employees and contractors who need it to perform their job functions
• All staff who handle personal data receive regular privacy and security training
• We maintain written data protection policies and procedures
• Data breach response procedures are in place to enable prompt notification in the event of a security incident

4.3 Limitations of Security

While we implement robust security measures, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee the absolute security of your information. In the event of a data breach that poses a risk to your rights and freedoms, we will notify you and relevant authorities as required by applicable law.

5. Your Privacy Rights

Depending on your state of residence, you may have certain rights regarding your personal information. We honor these rights in accordance with applicable US federal and state law, including the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA).

5.1 Right to Know and Access

You have the right to request information about the personal data we have collected about you, including the categories of data collected, the purposes for which it is used, and the third parties with whom it has been shared. You may also request a copy of the specific personal data we hold about you.

5.2 Right to Correction

If you believe that personal information we hold about you is inaccurate or incomplete, you have the right to request that we correct or update that information. We will respond to correction requests within a reasonable timeframe.

5.3 Right to Deletion

You have the right to request the deletion of your personal data, subject to certain exceptions. We may retain data where necessary to complete transactions, comply with legal obligations, detect security incidents, or exercise our legal rights.

5.4 Right to Opt Out of Sale or Sharing

Under CCPA/CPRA, California residents have the right to opt out of the "sale" or "sharing" of their personal information. As noted above, we do not sell personal information in the traditional sense. However, certain data-sharing activities with advertising partners may constitute "sharing" under California law. You may exercise your opt-out right by contacting us at [email protected].

5.5 Right to Data Portability

You have the right to receive a copy of your personal data in a structured, commonly used, and machine-readable format, where technically feasible, to facilitate transfer to another service provider.

5.6 Right to Non-Discrimination

We will not discriminate against you for exercising any of your privacy rights. This means we will not deny you goods or services, charge different prices, or provide a different quality of service based on your exercise of privacy rights.

5.7 Right to Limit Use of Sensitive Personal Information

Under the CPRA, California residents have the right to limit the use and disclosure of sensitive personal information (such as precise geolocation data or payment card information) to that which is necessary to provide the requested services.

5.8 How to Exercise Your Rights

To exercise any of the rights described above, please contact us using the following methods:

We will verify your identity before processing your request to protect your data from unauthorized access. We aim to respond to all verifiable consumer requests within 45 days. If we require additional time, we will notify you of the extension and the reason for the delay.

You may designate an authorized agent to submit requests on your behalf. Authorized agents must provide written proof of authorization and we may require additional verification.

6. Data Retention

We retain your personal information only for as long as is necessary to fulfill the purposes for which it was collected, comply with our legal obligations, resolve disputes, and enforce our agreements. The specific retention periods we apply depend on the type of data and the purpose for which it is used.

When your data is no longer required, we will securely delete or anonymize it in accordance with our data destruction procedures.

7. Children's Privacy

Our website and services are intended for use by individuals who are 18 years of age or older. We do not knowingly collect, solicit, or process personal information from individuals under the age of 18.

If you are a parent or guardian and believe that your minor child has provided us with personal information without your consent, please contact us immediately at [email protected]. Upon receiving such notification, we will take prompt steps to delete the child's personal information from our systems.

Our practices regarding children's data are consistent with the requirements of the Children's Online Privacy Protection Act (COPPA) and applicable state laws. We do not direct our services to children under 13, and we do not knowingly collect personal information from children under 13 years of age.

8. Cookie Policy

Our website meals-marcos.click uses cookies and similar tracking technologies to enhance your browsing experience, analyze website performance, and deliver relevant advertising.

8.1 Types of Cookies We Use

• Strictly Necessary Cookies: Essential for the website to function properly, including maintaining your shopping cart and login session. These cannot be disabled.
• Performance and Analytics Cookies: Help us understand how visitors interact with our website by collecting and reporting information anonymously (e.g., Google Analytics).
• Functionality Cookies: Allow the website to remember your preferences, such as language settings and saved menu items.
• Marketing and Advertising Cookies: Used to deliver personalized advertisements and track the effectiveness of our marketing campaigns.

8.2 Managing Your Cookie Preferences

You can control and manage cookies through your browser settings. Most browsers allow you to refuse cookies or delete existing cookies. Please note that disabling certain cookies may affect the functionality of our website and your ability to use certain features.

You may also opt out of interest-based advertising through the Digital Advertising Alliance (DAA) at www.aboutads.info or the Network Advertising Initiative (NAI) at www.networkadvertising.org.

For comprehensive information about our cookie practices, please refer to our dedicated Cookie Policy available on our website.

9. International Data Transfers

Marcos is based in the United States and primarily processes your personal data within the United States. However, some of our service providers and technology partners may be located in or process data in other countries.

If personal data is transferred outside the United States, we take steps to ensure that appropriate safeguards are in place to protect your information in a manner consistent with this Privacy Policy and applicable law. These safeguards may include:

• Using service providers that operate under recognized privacy frameworks
• Entering into data processing agreements with appropriate contractual protections
• Ensuring third-party recipients maintain data security practices equivalent to our own

By using our website and services, you acknowledge that your data may be transferred to and processed in countries other than your country of residence, which may have different data protection laws.

10. California Privacy Rights (CCPA/CPRA)

If you are a California resident, you are entitled to additional rights and disclosures under the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA).

10.1 Categories of Personal Information Collected

In the past 12 months, we have collected the following categories of personal information:

• Identifiers (name, email, IP address, phone number)
• Commercial information (order history, purchasing records)
• Internet or electronic network activity (browsing history on our site, interaction data)
• Geolocation data (delivery address, approximate location)
• Inferences drawn from personal information to create consumer profiles

10.2 Shine the Light Law

California Civil Code Section 1798.83 ("Shine the Light" law) permits California residents to request information about disclosure of personal information to third parties for direct marketing purposes. To make such a request, please contact us at [email protected].

10.3 Do Not Track Signals

California law requires us to disclose how we respond to "Do Not Track" signals. Currently, our website does not respond to Do Not Track (DNT) signals, as there is no uniform industry standard for DNT compliance. We will update this policy if we implement DNT response mechanisms in the future.

11. Third-Party Websites and Links

Our website may contain links to third-party websites, social media platforms, and external services that are not operated by Marcos. This Privacy Policy does not apply to those third-party websites. We are not responsible for the privacy practices of external sites and encourage you to review their respective privacy policies before providing any personal information.

12. Filing a Complaint with a Data Protection Authority

If you believe we have processed your personal information in a manner inconsistent with applicable law and your concerns have not been adequately addressed through our internal complaint process, you have the right to file a complaint with the appropriate regulatory authority.

12.1 Federal Trade Commission (FTC)

For consumer protection complaints related to unfair or deceptive data practices, you may contact the Federal Trade Commission (FTC):

12.2 California Privacy Protection Agency (CPPA)

California residents may file complaints with the California Privacy Protection Agency (CPPA):

12.3 State Attorneys General

Residents of other states may also have the ability to file privacy-related complaints with their state's Attorney General office. We encourage you to check your state's consumer protection resources for more information.

13. Changes to This Privacy Policy

We reserve the right to update or modify this Privacy Policy at any time to reflect changes in our business practices, legal requirements, or data processing activities. When we make material changes to this policy, we will:

• Update the "Last Updated" date at the top of this page
• Post a prominent notice on our website notifying you of the changes
• Send an email notification to registered account holders (for significant changes)

We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information. Your continued use of our website and services after any changes to this policy constitutes your acceptance of the revised terms.

14. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data processing practices, please do not hesitate to contact us. We are committed to addressing all privacy inquiries promptly and transparently.

We will respond to all legitimate privacy requests within 45 days of receipt. In certain complex cases, we may require up to 90 days, in which case we will notify you of the extension within the initial 45-day period.

We are committed to working with you to resolve any privacy concerns in a fair, transparent, and timely manner. Your trust is important to us, and we take every inquiry seriously.