Privacy Policy

This Privacy Policy describes how Marcos ("we," "us," or "our") collects, uses, discloses, and safeguards your personal information when you visit our website marcoscafe.rest, place orders, interact with our services, or otherwise engage with us. Please read this policy carefully. If you do not agree with the terms of this Privacy Policy, please discontinue use of our website and services.

We are committed to protecting your privacy and handling your personal data in an open and transparent manner. This policy is designed to comply with applicable United States federal and state privacy laws, including the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA), the Federal Trade Commission Act (FTC Act), and other relevant consumer protection regulations.


1. About Us

Marcos is a food service business operating in the United States. We operate the website located at marcoscafe.rest and provide food-related products and services to our customers.

Business Name Marcos
Website marcoscafe.rest
Email Address [email protected]

For any privacy-related questions, concerns, or requests, you may contact us at any time using the contact information provided above or in the Contact Us section at the bottom of this policy.


2. Information We Collect

We collect several types of information in connection with the operation of our food service business and website. The categories of personal information we may collect include the following:

2.1 Personal Identification Information

When you interact with our website, create an account, place an order, make a reservation, or contact us, we may collect:

  • Full name
  • Email address
  • Phone number
  • Billing and shipping/delivery address
  • Date of birth (where required for age verification)
  • Username and password (for account holders)
  • Profile picture (if you choose to provide one)

2.2 Financial and Payment Information

When you place an order or make a payment through our website, we may collect:

  • Credit or debit card information (processed securely through our payment processors)
  • Billing address
  • Transaction history and order records
  • Gift card or promotional code information

2.3 Order and Transaction Information

When you place an order with us, we collect information related to that transaction, including:

  • Items ordered and quantities
  • Special dietary requests or food preferences
  • Delivery instructions
  • Order history and purchase records
  • Feedback and reviews about food or service

2.4 Usage and Technical Data

When you visit our website, we automatically collect certain technical and usage data, including:

  • IP address
  • Browser type and version
  • Operating system and device type
  • Pages visited and time spent on each page
  • Referring URLs (the page you came from before visiting ours)
  • Clickstream data and navigation patterns
  • Date and time of your visit
  • Search terms used on our website
  • Error logs and crash reports

2.5 Cookie and Tracking Data

We use cookies, web beacons, pixel tags, and similar tracking technologies to collect information about your browsing behavior on our website. This includes session cookies, persistent cookies, and analytics cookies. For detailed information about our use of cookies, please refer to Section 9 of this policy.

2.6 Communications Data

When you contact us via email, phone, or our website's contact forms, we collect:

  • The content of your messages and inquiries
  • Your contact information as provided
  • Records of correspondence
  • Call recordings (where permitted by applicable law and with prior notice)

2.7 Location Data

With your consent, we may collect precise or approximate location data to facilitate delivery services, find nearby locations, or provide location-based features on our website or app.

2.8 Marketing and Preference Data

We may collect information about your marketing preferences, including your communication preferences, dietary preferences, favorite menu items, and feedback from surveys or promotional activities.


3. How We Use Your Information

We use the personal information we collect for a variety of legitimate business purposes, including:

3.1 Providing and Managing Our Services

  • Processing and fulfilling your food orders and delivery requests
  • Managing your customer account and profile
  • Processing payments and issuing receipts
  • Communicating order status, delivery updates, and confirmations
  • Facilitating table reservations and catering requests
  • Responding to your inquiries and customer support requests

3.2 Improving Our Business and Website

  • Analyzing website usage trends and customer behavior patterns
  • Conducting research and analysis to improve our menu offerings
  • Testing new features and improving the functionality of our website
  • Monitoring website performance and resolving technical issues
  • Conducting internal audits and quality assurance reviews

3.3 Marketing and Promotional Communications

  • Sending you newsletters, promotional offers, and special deals (with your consent)
  • Personalizing your experience and offering tailored recommendations
  • Retargeting you with relevant advertisements on third-party platforms
  • Administering loyalty programs, contests, and sweepstakes
  • Notifying you about new menu items, seasonal specials, and events

You may opt out of marketing communications at any time by clicking the "unsubscribe" link in any email we send you or by contacting us directly at [email protected].

3.4 Legal and Compliance Purposes

  • Complying with applicable laws, regulations, and legal obligations
  • Responding to lawful requests from government authorities or law enforcement
  • Enforcing our Terms of Service and other agreements
  • Protecting our legal rights, property, and interests
  • Preventing fraud, unauthorized access, and other illegal activities

3.5 Safety and Security

  • Verifying user identities and preventing fraudulent transactions
  • Maintaining the security and integrity of our systems
  • Detecting and investigating suspicious activities

4. Legal Bases for Processing (Where Applicable)

Under applicable U.S. federal and state laws, including the FTC Act and CCPA/CPRA, we process your personal information based on the following legal grounds:

  • Contractual Necessity: Processing required to fulfill your orders and provide the services you request.
  • Legitimate Business Interests: Processing necessary for our legitimate interests, such as improving our services, preventing fraud, and marketing our business, where such interests are not overridden by your privacy rights.
  • Consent: Processing based on your explicit consent, such as for marketing communications and certain cookie-based tracking.
  • Legal Obligation: Processing required to comply with applicable laws, regulations, and legal processes.

5. Sharing Your Information with Third Parties

We do not sell, rent, or trade your personal information for monetary compensation. However, we may share your information with certain third parties in the following circumstances:

5.1 Service Providers and Business Partners

We engage trusted third-party service providers who assist us in operating our business. These parties are contractually obligated to use your information only as directed by us and in accordance with this Privacy Policy. Such service providers include:

  • Payment Processors: To securely process credit/debit card transactions
  • Delivery and Logistics Partners: To fulfill food delivery orders
  • Email and SMS Marketing Platforms: To send you communications and promotional materials
  • Analytics Providers: Such as Google Analytics, to help us understand website usage
  • Cloud Hosting and IT Services: To host our website and data securely
  • Customer Support Tools: To manage and respond to customer inquiries
  • Advertising Networks: To deliver targeted advertisements on your behalf

5.2 Legal Requirements and Law Enforcement

We may disclose your personal information if we are required to do so by law or in response to valid legal processes, including:

  • Court orders, subpoenas, or other legal demands
  • Requests from government agencies or law enforcement authorities
  • When disclosure is necessary to protect the safety of any person
  • When required to investigate or prevent illegal activity or fraud

5.3 Business Transfers

In the event of a merger, acquisition, reorganization, sale of assets, or bankruptcy, your personal information may be transferred to the acquiring or successor entity. We will notify you via email and/or a prominent notice on our website prior to such a transfer and any change in privacy practices.

5.4 Aggregate and De-Identified Data

We may share aggregated, anonymized, or de-identified information that cannot reasonably be used to identify you with third parties for research, marketing, analytics, or other business purposes.


6. Data Security

We take the security of your personal information seriously and have implemented a range of technical, administrative, and physical safeguards designed to protect your data from unauthorized access, disclosure, alteration, or destruction. Our security measures include:

  • Encryption: All data transmitted between your browser and our website is encrypted using Secure Socket Layer (SSL) / Transport Layer Security (TLS) technology.
  • Secure Payment Processing: Payment information is processed through PCI-DSS compliant third-party processors. We do not store full card numbers on our servers.
  • Access Controls: Access to personal data is restricted to authorized personnel who have a legitimate need to access it in the course of their duties.
  • Regular Security Assessments: We conduct periodic security audits, vulnerability assessments, and penetration tests.
  • Data Minimization: We only collect personal information that is necessary for the stated purposes.
  • Incident Response: We have procedures in place to detect, respond to, and report data breaches in a timely manner, as required by applicable laws.

7. Your Privacy Rights

Depending on your state of residence, you may have certain rights regarding your personal information. We are committed to honoring these rights in accordance with applicable law.

7.1 Rights Under the California Consumer Privacy Act (CCPA/CPRA)

If you are a California resident, you have the following rights under the CCPA and CPRA:

  • Right to Know: You have the right to request disclosure of the categories and specific pieces of personal information we have collected about you, the purposes for collection, and the third parties with whom we share it.
  • Right to Delete: You have the right to request deletion of personal information we have collected about you, subject to certain exceptions.
  • Right to Correct: You have the right to request correction of inaccurate personal information we maintain about you.
  • Right to Opt-Out of Sale or Sharing: You have the right to opt out of the sale or sharing of your personal information for cross-context behavioral advertising. We do not sell personal information for monetary consideration, but if we engage in sharing for advertising purposes, you may opt out.
  • Right to Limit Use of Sensitive Personal Information: You may have the right to limit our use and disclosure of sensitive personal information to what is necessary to provide our services.
  • Right to Non-Discrimination: We will not discriminate against you for exercising any of your CCPA rights.

To submit a CCPA rights request, please contact us at [email protected]. We will respond to your verifiable request within 45 days, with the possibility of a 45-day extension where necessary.

7.2 General Privacy Rights for All U.S. Residents

Regardless of your state of residence, you may have the following rights:

  • Right of Access: You may request a copy of the personal information we hold about you.
  • Right to Correction: You may request that we correct any inaccurate personal information.
  • Right to Deletion: You may request that we delete your personal information, subject to legal obligations and legitimate business reasons to retain it.
  • Right to Data Portability: Where technically feasible, you may request that we provide your personal information in a structured, commonly used, machine-readable format.
  • Right to Withdraw Consent: Where we process your data based on consent, you may withdraw that consent at any time without affecting the lawfulness of prior processing.
  • Right to Opt-Out of Marketing: You may opt out of receiving marketing communications at any time.

7.3 How to Exercise Your Rights

To exercise any of the rights described above, please contact us using one of the following methods:

We may need to verify your identity before processing your request. This is to ensure the security of your personal information. In most cases, we will ask you to provide certain identifying information consistent with our records.


8. Data Retention

We retain personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. Our retention practices are as follows:

Type of Data Retention Period
Account and profile information For the duration of the account plus 3 years after closure
Order and transaction records 7 years (for tax and accounting compliance)
Payment records 7 years (as required by financial regulations)
Customer service communications 2 years from the date of last interaction
Marketing and preference data Until you withdraw consent or opt out, plus 1 year
Website usage and analytics data Up to 2 years (in aggregated or anonymized form thereafter)
Cookie and tracking data As specified in our Cookie Policy (varies by cookie type)
Legal and compliance records As required by applicable law (typically 5–7 years)

When personal information is no longer needed, we will securely delete, destroy, or anonymize it in accordance with our data retention and destruction procedures.


9. Cookies and Tracking Technologies

Our website uses cookies and similar tracking technologies to enhance your browsing experience, analyze site traffic, and deliver relevant content and advertising.

9.1 What Are Cookies?

Cookies are small text files that are placed on your device (computer, tablet, or mobile phone) when you visit a website. They help the website recognize your device on subsequent visits and store your preferences and settings.

9.2 Types of Cookies We Use

  • Essential Cookies: Necessary for the website to function properly (e.g., maintaining your login session, shopping cart).
  • Analytical/Performance Cookies: Help us understand how visitors use our website by collecting anonymous statistical information (e.g., Google Analytics).
  • Functional Cookies: Allow the website to remember choices you make (e.g., language preferences, saved addresses).
  • Marketing/Advertising Cookies: Used to deliver personalized advertisements and track the effectiveness of our marketing campaigns.

9.3 Managing Cookie Preferences

You can control cookie settings through your web browser. Most browsers allow you to refuse or delete cookies. However, disabling certain cookies may affect the functionality of our website. You may also opt out of interest-based advertising through the Digital Advertising Alliance or the Network Advertising Initiative.

For comprehensive information about our cookie practices, please refer to our Cookie Policy.


10. Children's Privacy

Our website and services are intended for use by individuals who are 18 years of age or older. We do not knowingly collect personal information from children under the age of 13, and we do not target our services at minors.

If you are under 18, please do not use our website or provide any personal information to us. If you are a parent or guardian and believe that your child under 13 has provided us with personal information without your consent, please contact us immediately at [email protected]. Upon verification, we will promptly delete such information from our systems.

We comply with the Children's Online Privacy Protection Act (COPPA), which prohibits the collection of personal information from children under 13 without verifiable parental consent.


11. International Data Transfers

Marcos is based in the United States, and your personal information is primarily collected, stored, and processed within the United States. However, our service providers and partners may operate in other countries, which means your personal information may be transferred to, stored in, or processed in countries other than the one in which you reside.

Please be aware that the data protection laws in other countries may differ from those in your state or the United States generally. When we transfer personal information internationally, we take steps to ensure that appropriate safeguards are in place to protect your information, including relying on standard contractual clauses or other legally recognized transfer mechanisms where applicable.

By using our website and services, you acknowledge that your personal information may be processed in countries outside of your home country, including the United States.


12. Third-Party Links and Services

Our website may contain links to third-party websites, applications, or services that are not operated by us, including social media platforms, payment gateways, and food delivery platforms. This Privacy Policy does not apply to any third-party websites or services.

We encourage you to review the privacy policies of any third-party sites you visit. We are not responsible for the content, privacy practices, or data handling of third-party platforms.


13. Do Not Track Signals

Some web browsers offer a "Do Not Track" (DNT) feature that sends a signal to websites indicating that you do not want to be tracked. Currently, there is no universally accepted standard for how websites should respond to DNT signals. As such, our website does not currently respond to DNT browser signals. We will continue to monitor developments in this area and update our practices accordingly.


14. California-Specific Disclosures

In addition to the rights described in Section 7, California residents may have the following rights under California law:

14.1 Shine the Light Law (California Civil Code § 1798.83)

California residents may request information about the disclosure of personal information to third parties for their direct marketing purposes. To submit such a request, please contact us at [email protected].

14.2 Categories of Personal Information Collected (CCPA)

In the preceding 12 months, we have collected the following categories of personal information as defined by the CCPA:

  • Identifiers (name, email, IP address, phone number)
  • Commercial information (purchase history, order records)
  • Internet or network activity information (browsing history, cookie data)
  • Geolocation data (approximate location)
  • Inferences drawn from other information to create a profile
  • Financial information (payment card data processed through third parties)

15. How to File a Complaint

If you believe that we have not handled your personal information in accordance with this Privacy Policy or applicable law, we encourage you to contact us first so that we may attempt to resolve the matter.

15.1 Contact Us Directly

Please send a detailed description of your concern to:

We will acknowledge your complaint within 5 business days and aim to resolve it within 30 days.

15.2 Filing a Complaint with Regulatory Authorities

If you are not satisfied with our response, you have the right to file a complaint with the appropriate regulatory authority:

  • California Residents: The California Attorney General's Office enforces the CCPA/CPRA. You may submit a complaint at oag.ca.gov or by calling 1-800-952-5225.
  • All U.S. Residents: The Federal Trade Commission (FTC) handles consumer protection complaints at ftc.gov/complaint or by calling 1-877-FTC-HELP (1-877-382-4357).
  • State-Specific Agencies: Depending on your state of residence, your state Attorney General's office may also accept privacy-related complaints. We encourage you to visit your state Attorney General's website for more information.

16. Changes to This Privacy Policy

We reserve the right to update or modify this Privacy Policy at any time to reflect changes in our business practices, legal requirements, or technological developments. When we make material changes, we will:

  • Update the "Last Updated" date at the top of this page
  • Post a prominent notice on our website
  • Send you an email notification if we have your contact information on file (for significant changes)

Your continued use of our website or services after the effective date of any changes constitutes your acknowledgment of the updated Privacy Policy. We encourage you to review this page periodically to stay informed about how we protect your information.


17. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data handling practices, please do not hesitate to contact our privacy team:

Marcos — Privacy Inquiries

We are committed to working with you to resolve any concerns about your privacy in a timely and transparent manner. Our team will respond to all privacy-related inquiries within 5 business days.