Privacy Policy

Effective Date: June 9, 2026 | Last Updated: June 9, 2026

This Privacy Policy describes how Chopt ("we," "us," or "our") collects, uses, discloses, and safeguards your personal information when you visit our website at chopt-meal.rest, place orders, use our services, or otherwise interact with us. Please read this policy carefully. By accessing or using our website and services, you acknowledge that you have read, understood, and agree to the practices described in this Privacy Policy.

We are committed to protecting your privacy and handling your personal data in an open and transparent manner. This policy is designed to comply with applicable United States federal and state privacy laws, including the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA), the Federal Trade Commission Act (FTC Act), and other applicable consumer protection regulations. If you are a California resident, please pay particular attention to Section 10 of this policy, which contains important disclosures specific to you.

If you have any questions about this Privacy Policy or our data practices, you may contact us at any time using the contact information provided at the end of this document.

1. About Us

Chopt is a food service business operating through the website chopt-meal.rest. We offer food ordering, delivery coordination, menu browsing, and related services to customers across the United States.

Company Name	Chopt
Website	chopt-meal.rest
Email Address	[email protected]

2. Information We Collect

We collect various types of information in connection with your use of our website and services. This includes information you provide directly to us, information collected automatically when you use our services, and information we may receive from third parties.

2.1 Personal Information You Provide Directly

When you interact with our website, create an account, place an order, sign up for our newsletter, contact our support team, or otherwise communicate with us, we may collect the following categories of personal information:

Identity Information: Your first name, last name, username, or similar identifiers.
Contact Information: Email address, telephone number, billing address, delivery address, and postal code.
Account Credentials: Password and similar security information used for authentication and account access.
Payment Information: Credit card numbers, debit card details, billing addresses, and other financial information necessary to process payments. Note that payment card details are processed by our trusted third-party payment processors and are not stored directly on our servers in full.
Order Information: Details about the food items you order, special dietary requests, delivery preferences, and order history.
Communications: Records of any correspondence you have with us, including customer support inquiries and feedback submitted via forms or email.
Marketing Preferences: Your preferences for receiving marketing communications from us and your communication preferences.

2.2 Automatically Collected Usage Data

When you access and browse our website, we automatically collect certain technical and usage information. This data helps us understand how our website is used and improve user experience. This includes:

Log Data: Internet Protocol (IP) address, browser type and version, browser language, referring and exit pages, URLs visited, date and time stamps, and clickstream data.
Device Information: Hardware model, operating system, unique device identifiers, mobile network information, and screen resolution.
Usage Data: Pages you view, links you click, search queries entered on our site, time spent on pages, and features you use.
Location Data: General geographic location based on your IP address. If you grant permission, we may also collect more precise location information to facilitate delivery services.
Performance Data: Information about errors, crashes, and the performance of our website and applications.

2.3 Cookies and Tracking Technologies

We use cookies, web beacons, pixel tags, local storage objects, and similar tracking technologies to collect information about your browsing behavior on our website. These technologies help us remember your preferences, maintain your session, understand how you use our website, and deliver relevant advertising. For detailed information about the cookies we use and how to manage your preferences, please refer to our Cookie Policy, which is available on our website.

In brief, we use the following types of cookies:

Strictly Necessary Cookies: Essential for the website to function correctly. These cannot be disabled.
Performance and Analytics Cookies: Help us understand how visitors use our website by collecting anonymous usage statistics.
Functional Cookies: Remember your preferences and settings to enhance your experience.
Marketing and Targeting Cookies: Track your browsing habits to deliver relevant advertising and promotional content.

2.4 Information from Third Parties

We may receive information about you from third-party sources, which we may combine with information we already hold about you. These sources include:

Social Media Platforms: If you connect your social media account to our services or interact with our social media pages, we may receive certain profile information permitted by your social media settings.
Payment Processors: We receive transaction confirmation and fraud-prevention data from our payment service providers.
Analytics Providers: We may receive aggregated and anonymized data from analytics partners to help us understand usage patterns.
Delivery Partners: Information related to the fulfillment and delivery of your orders.
Publicly Available Sources: Publicly accessible databases and government records, where applicable and permitted by law.

3. How We Use Your Information

We use the personal information we collect for a variety of legitimate business purposes. Specifically, we use your information to:

3.1 Service Provision and Order Fulfillment

Process and fulfill your food orders and coordinate delivery.
Create and manage your customer account.
Process payments and send you transaction confirmations, receipts, and invoices.
Communicate with you about the status of your order, including confirmations, updates, and changes.
Respond to your customer service inquiries and resolve disputes or complaints.
Provide you with technical support and troubleshoot issues you encounter with our website.
Honor special dietary requests, allergen disclosures, and customization preferences.

3.2 Website Improvement and Analytics

Analyze how users interact with our website to improve its design, functionality, and content.
Monitor and analyze trends, usage, and activities in connection with our services.
Conduct internal research and development to enhance our food offerings and services.
Perform statistical and demographic analysis about our user base and usage patterns.
Detect, prevent, and address technical problems, bugs, and security incidents.

3.3 Marketing and Promotional Communications

Send you promotional communications about our menu, special offers, discounts, and new features, where you have consented or where we have a legitimate interest and you have not opted out.
Personalize your experience on our website by showing you content and offers relevant to your preferences and order history.
Conduct surveys, contests, and promotions, and notify winners.
Deliver targeted advertisements through third-party platforms.

You may opt out of marketing communications at any time by clicking the "unsubscribe" link in any email we send you, by updating your account preferences, or by contacting us at [email protected]. Please note that even if you opt out of marketing emails, we may still send you transactional messages related to your orders.

3.4 Legal Compliance and Safety

Comply with applicable federal, state, and local laws and regulations.
Enforce our Terms of Service and other applicable policies.
Protect the rights, property, and safety of Chopt, our customers, employees, and the public.
Detect, investigate, and prevent fraudulent transactions, unauthorized access, and other illegal activities.
Respond to lawful requests from law enforcement or regulatory authorities.

4. Sharing Your Information with Third Parties

We do not sell, rent, or trade your personal information to third parties for their own independent marketing purposes without your explicit consent. However, we do share your information with certain categories of third parties as described below.

4.1 Service Providers and Business Partners

We engage trusted third-party companies and individuals to perform services on our behalf. These service providers are contractually obligated to use your information only as directed by us and in accordance with this Privacy Policy. They are not permitted to use your data for their own purposes. Categories of service providers include:

Payment Processors: To securely process credit and debit card transactions.
Delivery and Logistics Partners: To fulfill and coordinate food delivery to your specified address.
Email and Communication Service Providers: To send order confirmations, notifications, and marketing emails.
Cloud Hosting and Infrastructure Providers: To host and maintain our website and databases.
Analytics Providers: Such as Google Analytics, to collect and analyze website usage data.
Customer Support Platforms: To manage and respond to customer inquiries.
Marketing and Advertising Partners: To help us deliver relevant advertising and promotional campaigns.
Fraud Prevention Services: To detect and prevent fraudulent activity.

4.2 Legal Requirements and Law Enforcement

We may disclose your personal information if we believe in good faith that such disclosure is necessary to:

Comply with a subpoena, court order, legal process, or other governmental or regulatory request.
Enforce our Terms of Service, including investigating potential violations.
Protect the rights, property, or personal safety of Chopt, our users, or others.
Respond to claims that any content violates the rights of third parties.
Prevent or investigate possible wrongdoing in connection with our services.

4.3 Business Transfers

In the event that Chopt is involved in a merger, acquisition, sale of assets, restructuring, financing, or similar business transaction, your personal information may be transferred as part of that transaction. We will notify you via email or a prominent notice on our website prior to your information being transferred and becoming subject to a different privacy policy.

4.4 Aggregated and De-Identified Data

We may share aggregated, anonymized, or de-identified information that cannot reasonably be used to identify you with third parties for research, marketing, analytics, and other purposes.

5. Data Security

We take the security of your personal information seriously and implement a variety of technical, administrative, and physical security measures designed to protect your data from unauthorized access, disclosure, alteration, or destruction. Our security practices include:

Encryption: We use industry-standard Secure Socket Layer (SSL) / Transport Layer Security (TLS) technology to encrypt data transmitted between your browser and our servers.
Access Controls: Access to personal information is restricted to authorized personnel who need the information to perform their job functions. These employees are bound by confidentiality obligations.
Secure Payment Processing: Payment card information is processed using PCI-DSS compliant payment processors. We do not store full payment card numbers on our systems.
Regular Security Assessments: We conduct periodic security assessments, vulnerability testing, and reviews of our information collection, storage, and processing practices.
Incident Response: We maintain an incident response plan to address data security breaches promptly. In the event of a data breach that affects your rights and freedoms, we will notify affected individuals and relevant authorities as required by applicable law.
Physical Security: Our offices and data centers are secured with appropriate physical controls to prevent unauthorized access.

Important Notice: Despite our best efforts, no method of transmission over the internet or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal information, we cannot guarantee its absolute security. You are responsible for maintaining the secrecy of your account password and for restricting access to your devices.

6. Your Privacy Rights

Depending on your state of residence, you may have certain rights with respect to your personal information. We are committed to honoring these rights and providing you with the means to exercise them.

6.1 General Rights Available to All Users

Right to Access: You have the right to request information about the personal data we hold about you, including the categories of data, the purposes for which it is used, and the third parties with whom it is shared.
Right to Correction: You have the right to request that we correct any inaccurate or incomplete personal information we hold about you.
Right to Deletion: You have the right to request that we delete your personal information, subject to certain exceptions (such as where we need to retain information for legal compliance or to complete transactions).
Right to Opt-Out of Marketing: You have the right to opt out of receiving marketing and promotional communications from us at any time.
Right to Data Portability: You have the right to request a copy of your personal information in a structured, commonly used, and machine-readable format.

6.2 California Residents — CCPA/CPRA Rights

If you are a resident of California, you have specific rights under the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA). These rights include:

Right to Know: The right to know what personal information we collect, use, disclose, and sell, including specific pieces of information collected about you.
Right to Delete: The right to request deletion of personal information we have collected about you, subject to certain exceptions.
Right to Correct: The right to request correction of inaccurate personal information.
Right to Opt-Out of Sale or Sharing: The right to opt out of the sale or sharing of your personal information. To exercise this right, click the "Do Not Sell or Share My Personal Information" link on our website.
Right to Limit Use of Sensitive Personal Information: The right to limit our use of sensitive personal information to only what is necessary to perform the services you have requested.
Right to Non-Discrimination: We will not discriminate against you for exercising your CCPA/CPRA rights. We will not deny you goods or services, charge you different prices, or provide a different level of quality because you exercised your rights.

To submit a verifiable consumer request under the CCPA/CPRA, please contact us at [email protected] or through the contact methods provided in Section 13 of this policy. We will verify your identity before processing your request. You may also designate an authorized agent to make a request on your behalf.

We aim to respond to verifiable consumer requests within 45 days of receipt. If we need additional time, we will notify you of the extension and the reason for it.

6.3 How to Exercise Your Rights

To exercise any of the rights described in this section, you may:

Send an email to [email protected] with the subject line "Privacy Rights Request."
Visit our website at chopt-meal.rest and use the privacy request form (if available).

We may need to verify your identity before processing your request to ensure we are responding to the correct individual. We will not charge a fee for processing your request unless it is excessive or repetitive.

7. Cookie Usage

Our website uses cookies and similar technologies to enhance your browsing experience, analyze website traffic, and deliver personalized content and advertising. A cookie is a small text file placed on your device when you visit a website.

We use both session cookies (which expire when you close your browser) and persistent cookies (which remain on your device for a set period). You can control cookie settings through your browser preferences. Please note that disabling certain cookies may affect the functionality of our website.

For a complete list of the cookies we use, their purpose, duration, and how to manage your preferences, please refer to our Cookie Policy, available on our website at chopt-meal.rest.

Cookie Consent: When you first visit our website, you will be presented with a cookie consent banner. By accepting all cookies, you consent to our use of all categories of cookies described in our Cookie Policy. You may customize your preferences or withdraw your consent at any time.

8. Data Retention

We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. The criteria we use to determine retention periods include:

Data Category	Retention Period
Account Information	For the duration of your account, plus 3 years after account closure
Order and Transaction Records	7 years (for tax and accounting compliance)
Customer Support Communications	3 years from the date of last interaction
Marketing Preferences and Opt-Out Records	Indefinitely, to honor your preferences
Website Usage and Analytics Data	Up to 26 months
Payment Information (partial/tokenized)	As required by payment processor agreements and applicable law
Security and Fraud Prevention Logs	Up to 2 years

When your personal information is no longer necessary for the purpose for which it was collected, we will securely delete, destroy, or anonymize it in accordance with our data disposal procedures.

9. Children's Privacy

Our website and services are intended for use by individuals who are 18 years of age or older. We do not knowingly collect, use, or solicit personal information from individuals under the age of 18.

If you are under 18 years of age, please do not use our website or provide any personal information to us. If we become aware that we have collected personal information from a child under the age of 18 without parental consent, we will take steps to promptly delete such information from our records.

If you are a parent or guardian and believe that your child has provided personal information to us without your consent, please contact us immediately at [email protected], and we will work to address the situation. Our practices are consistent with the requirements of the Children's Online Privacy Protection Act (COPPA).

10. International Data Transfers

Chopt operates in the United States, and our website and services are directed primarily at residents of the United States. Your personal information will be stored and processed on servers located within the United States.

If you are accessing our website from outside the United States, please be aware that your information may be transferred to, stored in, and processed in the United States, where the data protection laws may differ from those in your country of residence. By using our website and providing your personal information, you consent to the transfer of your data to the United States and its processing in accordance with this Privacy Policy.

If we engage service providers located outside the United States, we will take appropriate safeguards to ensure that your personal information is protected in a manner consistent with this Privacy Policy and applicable legal requirements. These safeguards may include contractual protections and other legally recognized transfer mechanisms.

11. Third-Party Websites and Links

Our website may contain links to third-party websites, applications, or services that are not operated or controlled by Chopt. This Privacy Policy applies only to our website and services. We are not responsible for the privacy practices of third-party websites, and we encourage you to review the privacy policies of any third-party sites you visit.

The inclusion of a link to a third-party website does not imply our endorsement of that site or its privacy practices. Accessing linked third-party sites is done at your own risk.

12. Changes to This Privacy Policy

We reserve the right to update, modify, or revise this Privacy Policy at any time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes to this policy, we will:

Update the "Last Updated" date at the top of this page.
Notify you by sending an email to the address associated with your account, if applicable.
Display a prominent notice on our website for a reasonable period following the update.

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information. Your continued use of our website and services after the effective date of any changes constitutes your acceptance of the revised Privacy Policy.

If you do not agree with the updated Privacy Policy, you should discontinue your use of our website and services and, if applicable, request deletion of your account and personal information.

13. Filing Complaints with Regulatory Authorities

If you believe that we have violated your privacy rights or applicable data protection laws, we encourage you to first contact us directly so that we can attempt to resolve your concern. You may contact us using the information provided in Section 14 below.

If you are not satisfied with our response, or if you believe we are processing your personal information in violation of applicable law, you have the right to file a complaint with the relevant regulatory authority:

Federal Trade Commission (FTC): The FTC enforces federal consumer protection laws, including the FTC Act. You can file a complaint at www.ftc.gov or by calling 1-877-FTC-HELP (1-877-382-4357).
California Residents — California Privacy Protection Agency (CPPA): If you are a California resident, you may submit a complaint to the California Privacy Protection Agency at cppa.ca.gov. The CPPA is the state agency responsible for enforcing the CCPA/CPRA.
California Attorney General: You may also submit a complaint to the California Attorney General's office at oag.ca.gov/privacy.
Other State Attorneys General: Residents of other states may have the right to file complaints with their respective state attorney general's office regarding violations of state-specific privacy laws.

14. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please do not hesitate to contact us. We are committed to addressing your inquiries promptly and thoroughly.

Company Name	Chopt
Email Address	[email protected]
Website	chopt-meal.rest

When contacting us regarding a privacy request, please clearly describe your request, provide your full name and email address associated with your account, and include the subject line "Privacy Inquiry" or "Privacy Rights Request" in your email. This will help us route your inquiry to the appropriate team member and respond as efficiently as possible.

We aim to respond to all privacy-related inquiries within 30 days of receipt. For verifiable consumer requests under the CCPA/CPRA, we will respond within 45 days, with the possibility of a one-time extension of an additional 45 days where reasonably necessary.

Chopt Privacy Policy

Version: June 9, 2026

This document constitutes the complete and current Privacy Policy of Chopt as of the effective date stated above. All prior versions of this Privacy Policy are superseded and replaced by this document.