Privacy Policy

Effective Date: July 4, 2026  |  Last Updated: July 4, 2026

This Privacy Policy describes how Marcos ("we," "us," or "our") collects, uses, discloses, and protects your personal information when you visit our website at new-marcos.rest, place orders through our digital platforms, or otherwise interact with our food services. We are committed to protecting your privacy and handling your personal data with transparency, care, and respect for applicable law.

Please read this Privacy Policy carefully. By accessing or using our website, mobile application, or any of our services, you acknowledge that you have read, understood, and agree to be bound by this policy. If you do not agree with any part of this Privacy Policy, please discontinue use of our services immediately.

For the purposes of this policy, "personal information" means any information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or household. This definition aligns with the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA) and other applicable United States privacy laws.


1. About Us

Marcos is a food service business operating in the United States. We provide restaurant dining, food ordering, catering, and related culinary services to our customers. Our commitment extends beyond excellent food — we take your privacy seriously and strive to be fully transparent about how we handle your information.

Business Name Marcos
Website new-marcos.rest
Email [email protected]

All privacy-related inquiries, requests, and concerns should be directed to the contact information provided in Section 14 of this policy.


2. Information We Collect

We collect various types of information in connection with your use of our services. The categories of personal information we collect include, but are not limited to, the following:

2.1 Information You Provide Directly

When you interact with Marcos — whether by placing an order, creating an account, signing up for our newsletter, making a reservation, or contacting our customer support — you may provide us with personal information including:

  • Identity Information: Full name, username or similar identifier, date of birth (where required to verify age or comply with legal requirements).
  • Contact Information: Email address, telephone number, billing address, delivery address, and other similar contact details.
  • Account Credentials: Username, password (stored in encrypted form), and other security information used for authentication purposes.
  • Financial Information: Payment card details, bank account information, billing details, and transaction history. Please note that full payment card numbers are processed by our trusted third-party payment processors and are not stored on our servers.
  • Order Information: Details about the food items you order, your dietary preferences, special instructions, and order history.
  • Communications: The content of messages you send to us through our contact forms, email correspondence, live chat, or customer service calls, including feedback, reviews, and complaints.
  • Profile Information: Preferences, interests, and other information you add to your account profile.

2.2 Information Collected Automatically

When you visit our website or use our digital services, we automatically collect certain technical and usage data, including:

  • Device Information: IP address, device type, operating system and version, browser type and version, device identifiers, and mobile network information.
  • Usage Data: Pages visited, time and date of your visit, time spent on each page, links clicked, search queries made on our site, referring URLs, and exit pages.
  • Location Data: General geographic location based on IP address. With your explicit consent, we may collect more precise location data through your mobile device to assist with delivery services.
  • Cookie and Tracking Data: Information collected through cookies, web beacons, pixel tags, and similar tracking technologies. Please see Section 8 of this policy for more information about our use of cookies.
  • Log Files: Server log files that record activity on our website, including access times, hardware and software information, and error logs.

2.3 Information From Third Parties

We may also receive personal information about you from third-party sources, including:

  • Third-Party Platforms: If you connect your social media accounts (such as Facebook or Google) to our services, we may receive information from those platforms in accordance with your privacy settings on those services.
  • Delivery Partners: Information related to your orders from third-party delivery platforms that facilitate the delivery of our food.
  • Analytics Providers: Aggregated and sometimes individual-level data from analytics platforms that help us understand how users interact with our website.
  • Marketing Partners: Information from advertising networks and marketing partners who help us reach potential customers.
  • Review Platforms: Information about reviews and ratings you have left on third-party review platforms that are shared publicly.

2.4 Sensitive Personal Information

In limited circumstances, we may collect information that is considered "sensitive personal information" under applicable law, such as precise geolocation data for delivery purposes, or food allergy and dietary restriction information you provide to us for food preparation. We use this information solely for the purposes for which it was provided and do not use it to infer characteristics about you beyond what is necessary to serve you.


3. How We Use Your Information

We use the personal information we collect for a variety of legitimate business purposes. The legal bases for our processing activities include fulfilling contracts with you, complying with legal obligations, pursuing our legitimate business interests, and — where required — obtaining your consent.

3.1 Service Provision and Order Fulfillment

  • To process and fulfill your food orders, including coordinating delivery or pickup.
  • To create and manage your account on our platform.
  • To process payments and send you related documentation such as invoices and receipts.
  • To make reservations and manage bookings at our restaurant locations.
  • To accommodate your dietary preferences, food allergies, and special requests.
  • To provide customer support and respond to your inquiries, feedback, or complaints.
  • To send you service-related communications, such as order confirmations and status updates.

3.2 Analytics and Service Improvement

  • To analyze how our website and services are used in order to improve their functionality, layout, and content.
  • To conduct research and analysis to better understand customer preferences and trends.
  • To monitor and analyze traffic patterns and user behavior on our website.
  • To troubleshoot technical issues and improve the performance and security of our platform.
  • To develop new products, services, features, and functionality.

3.3 Marketing and Promotional Communications

  • To send you promotional offers, newsletters, and information about our menu, events, and special deals — but only where you have consented to receive such communications or where we have a legitimate interest to do so.
  • To display targeted advertisements on our website and on third-party platforms, based on your browsing behavior and interests.
  • To measure the effectiveness of our marketing campaigns and promotional activities.
  • To administer contests, promotions, surveys, and loyalty programs.

You have the right to opt out of marketing communications at any time by clicking the "unsubscribe" link in any marketing email, by contacting us at [email protected], or by adjusting your account preferences.

3.4 Legal Compliance and Safety

  • To comply with applicable federal and state laws and regulations, including food safety regulations and tax obligations.
  • To detect, prevent, and investigate fraud, security incidents, and other potentially illegal or unauthorized activities.
  • To enforce our Terms of Service and other applicable agreements and policies.
  • To protect the rights, property, and safety of Marcos, our customers, employees, and the public.
  • To respond to lawful requests from courts, law enforcement agencies, regulatory authorities, and other government bodies.

4. Sharing Your Information With Third Parties

We do not sell your personal information to third parties for monetary compensation. However, we may share your personal information with certain categories of third parties in the following circumstances:

4.1 Service Providers and Business Partners

We engage trusted third-party companies and individuals to perform services on our behalf. These service providers are granted access to your personal information only to the extent necessary to perform their contractual obligations to us and are required by contract to maintain the confidentiality and security of your information. Categories of service providers include:

  • Payment Processors: Companies that securely process your payment transactions (e.g., Stripe, Square, or similar processors).
  • Delivery and Logistics Partners: Third-party delivery services that fulfill food delivery orders on our behalf.
  • Cloud and IT Service Providers: Companies providing cloud infrastructure, hosting, data storage, and cybersecurity services.
  • Analytics Providers: Platforms such as Google Analytics that help us analyze website traffic and user behavior.
  • Email and Communication Providers: Services that help us send transactional and marketing emails.
  • Customer Support Tools: Platforms we use to manage customer support interactions and ticketing.
  • Marketing and Advertising Platforms: Companies that assist us with targeted advertising, social media management, and digital marketing.

4.2 Legal Requirements and Law Enforcement

We may disclose your personal information if we believe in good faith that such disclosure is necessary to: (a) comply with a legal obligation, court order, subpoena, or other governmental or legal request; (b) protect and defend our rights, property, or legitimate business interests; (c) prevent or investigate possible wrongdoing in connection with our services; (d) protect the personal safety of users of our services or the general public; or (e) protect against legal liability.

4.3 Business Transfers

In the event that Marcos undergoes a business transaction such as a merger, acquisition, reorganization, sale of assets, or bankruptcy, your personal information may be transferred as part of that transaction. We will notify you via email and/or a prominent notice on our website of any such change in ownership or control of your personal information.

4.4 With Your Consent

We may share your personal information with other third parties when we have your explicit consent to do so.

4.5 Aggregated and De-Identified Data

We may share aggregated or de-identified information that cannot reasonably be used to identify you with third parties for research, marketing, analytics, and other business purposes.


5. Data Security

The security of your personal information is a priority for us. We implement and maintain a comprehensive set of technical, administrative, and physical security measures designed to protect your personal information from unauthorized access, use, alteration, disclosure, or destruction.

5.1 Technical Safeguards

  • We use industry-standard SSL/TLS encryption to protect data transmitted between your browser and our servers.
  • Passwords are stored using strong, salted cryptographic hashing algorithms.
  • Access to personal data is restricted to authorized personnel on a strict need-to-know basis.
  • We use firewalls, intrusion detection systems, and regular vulnerability scanning to protect our infrastructure.
  • Payment information is processed through PCI-DSS compliant payment processors.

5.2 Organizational Safeguards

  • We conduct regular employee training on data privacy and security best practices.
  • We maintain data processing agreements with all third-party service providers who handle personal data.
  • We have established internal policies and procedures for data breach detection, response, and notification.
Important Notice: Despite our best efforts, no method of transmission over the internet or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal information, we cannot guarantee absolute security. In the event of a data breach that is likely to result in a risk to your rights and freedoms, we will notify you and applicable regulatory authorities as required by law.

6. Your Privacy Rights

Depending on your state of residence within the United States, you may have a number of rights with respect to your personal information. We are committed to honoring these rights and providing you with mechanisms to exercise them.

6.1 Rights Under the California Consumer Privacy Act (CCPA/CPRA)

If you are a California resident, you have the following rights under the CCPA as amended by the CPRA:

  • Right to Know: You have the right to request that we disclose what personal information we collect, use, disclose, and sell about you.
  • Right to Delete: You have the right to request the deletion of personal information we have collected from you, subject to certain exceptions.
  • Right to Correct: You have the right to request that we correct inaccurate personal information we maintain about you.
  • Right to Opt-Out of Sale/Sharing: You have the right to opt out of the sale or sharing of your personal information for cross-context behavioral advertising. We do not sell personal information for monetary consideration; however, certain data sharing with advertising partners may constitute "sharing" under California law.
  • Right to Limit Use of Sensitive Personal Information: You have the right to limit our use and disclosure of sensitive personal information to what is necessary to perform the services you requested.
  • Right to Non-Discrimination: We will not discriminate against you for exercising any of your CCPA/CPRA rights. We will not deny you goods or services, charge you different prices, or provide you with a different level of service as a result of your exercise of these rights.

6.2 Rights Available to All Users

Regardless of your state of residence, we honor the following general privacy rights for all of our users:

  • Right of Access: You may request access to the personal information we hold about you and receive a copy of that information in a commonly used, machine-readable format.
  • Right to Correction: You may request that we update or correct any inaccurate or incomplete personal information we hold about you.
  • Right to Deletion: You may request that we delete your personal information, subject to our retention obligations and legal requirements.
  • Right to Data Portability: Where technically feasible, you may request that we provide you with your personal information in a structured, commonly used format so that you can transfer it to another service provider.
  • Right to Withdraw Consent: Where our processing is based on your consent, you may withdraw that consent at any time without affecting the lawfulness of processing carried out prior to withdrawal.
  • Right to Opt Out of Marketing: You may opt out of receiving marketing communications from us at any time.

6.3 How to Exercise Your Rights

To exercise any of the rights described in this section, please submit a verifiable request to us by:

  • Sending an email to: [email protected] with the subject line "Privacy Rights Request"
  • Visiting our website at: new-marcos.rest and using our online contact form

We will respond to your verifiable consumer request within 45 days of receipt. If we require more time (up to an additional 45 days), we will inform you of the reason and extension period in writing. We may need to verify your identity before processing your request to prevent unauthorized disclosure or deletion of your information. We will not charge a fee for processing your request unless it is excessive, repetitive, or manifestly unfounded.


7. Data Retention

We retain personal information for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, regulatory, or reporting requirements. The criteria we use to determine retention periods include:

Category of Data Retention Period
Account and profile information For the duration of your account, plus 3 years after account closure
Order and transaction history 7 years (in accordance with tax and accounting obligations)
Payment records 7 years (to comply with financial reporting requirements)
Customer support communications 3 years from the date of the interaction
Marketing preferences and consent records Until you withdraw consent, plus 3 years
Website usage and analytics data Up to 26 months
Cookie data As specified in our Cookie Policy
Legal dispute records Duration of the dispute plus applicable statute of limitations

When personal information is no longer required, we will securely delete or anonymize it. In some circumstances, we may retain anonymized data that cannot be used to identify you for statistical and research purposes indefinitely.


8. Cookie Policy (Summary)

Our website uses cookies and similar tracking technologies to enhance your browsing experience, analyze site traffic, and assist in our marketing efforts. Cookies are small text files that are placed on your device when you visit a website. They allow us to recognize your device and store certain information about your preferences and past actions.

8.1 Types of Cookies We Use

  • Strictly Necessary Cookies: These cookies are essential for the operation of our website. They enable core functions such as security, network management, and account authentication. Without these cookies, our website cannot function properly.
  • Performance and Analytics Cookies: These cookies collect information about how visitors use our website, such as which pages are visited most often and whether visitors receive error messages. This data is used to improve how our website works.
  • Functional Cookies: These cookies allow our website to remember choices you make (such as your language preference or saved items in your cart) and provide enhanced, personalized features.
  • Targeting and Advertising Cookies: These cookies are used to deliver advertisements that are more relevant to you and your interests. They may also be used to limit the number of times you see an advertisement and help measure the effectiveness of advertising campaigns.

8.2 Managing Cookies

You can control and manage cookies in various ways. Most web browsers automatically accept cookies, but you can modify your browser settings to decline cookies if you prefer. Please note that if you disable cookies, some features of our website may not function as intended. You can also opt out of certain advertising cookies by visiting the Network Advertising Initiative's opt-out page or the Digital Advertising Alliance's opt-out page.

For full details about the cookies we use, please refer to our complete Cookie Policy available on our website at new-marcos.rest.


9. Children's Privacy

Age Restriction: Our services are not directed to, and we do not knowingly collect personal information from, individuals under the age of 18.

Marcos operates food services and digital platforms that are intended exclusively for adults aged 18 years and older. We do not knowingly collect, solicit, or maintain personal information from children under the age of 18. If you are under 18 years of age, you are not permitted to use our services or provide any personal information on our website.

If we become aware that we have inadvertently collected personal information from a child under the age of 18 without verifiable parental consent, we will take prompt steps to delete that information from our records. If you are a parent or guardian and you believe that your child has provided us with personal information, please contact us immediately at [email protected] so that we can take appropriate action.

We also comply with the Children's Online Privacy Protection Act (COPPA) and will not knowingly collect personal information from children under 13 years of age under any circumstances.


10. International Data Transfers

Marcos is based in the United States and primarily processes and stores personal information within the United States. However, some of our third-party service providers may be located in, or operate servers in, other countries. When we transfer your personal information to service providers in other jurisdictions, we take steps to ensure that your information receives an adequate level of protection.

These steps may include:

  • Entering into data processing agreements with our service providers that include standard contractual clauses or other appropriate safeguards.
  • Verifying that third-party recipients maintain adequate data protection practices.
  • Only transferring data to countries that have been recognized as providing an adequate level of protection for personal data.

By using our services and providing us with your personal information, you acknowledge that your information may be transferred to, stored, and processed in the United States or other countries where our service providers maintain facilities. The data protection laws in these countries may differ from those in your country of residence.


11. Third-Party Websites and Links

Our website may contain links to third-party websites, including social media platforms, delivery partner platforms, review websites, and other services. This Privacy Policy does not apply to those third-party websites, and we are not responsible for the privacy practices of any third party. We encourage you to review the privacy policies of any third-party websites you visit. The inclusion of a link on our website does not constitute an endorsement or recommendation of the linked website by Marcos.


12. Applicable Law and Regulatory Framework

As a business operating in the United States, our data privacy practices are governed by the following laws and regulations, among others:

  • Federal Trade Commission Act (FTC Act): Section 5 of the FTC Act prohibits unfair or deceptive acts or practices, including in the context of privacy and data security.
  • California Consumer Privacy Act (CCPA) / California Privacy Rights Act (CPRA): Provides California residents with specific rights regarding their personal information, as detailed in Section 6 of this policy.
  • Children's Online Privacy Protection Act (COPPA): Governs the online collection of personal information from children under 13 years of age.
  • CAN-SPAM Act: Governs our commercial email practices and provides recipients with the right to opt out of marketing emails.
  • Electronic Communications Privacy Act (ECPA): Governs the interception and disclosure of electronic communications.
  • State Privacy Laws: We also monitor and comply with applicable privacy laws enacted by other U.S. states, including but not limited to the Virginia Consumer Data Protection Act (VCDPA), the Colorado Privacy Act (CPA), and similar legislation.
  • Food and Drug Administration (FDA) Regulations: To the extent applicable to our food service operations and any health-related data we may process.

13. How to File a Complaint

If you believe that we have violated your privacy rights or have handled your personal information in a manner inconsistent with this Privacy Policy or applicable law, we encourage you to first contact us directly so that we can attempt to resolve your concern.

You may contact us at:

We will acknowledge receipt of your complaint within 10 business days and aim to resolve the matter within 30 business days.

If you are a California resident and you are not satisfied with our response to your complaint, you have the right to file a complaint with the California Privacy Protection Agency (CPPA), which is the state agency responsible for enforcing the CPRA. You may contact the CPPA at:

  • Website: https://cppa.ca.gov
  • Address: California Privacy Protection Agency, 2101 Arena Blvd, Sacramento, CA 95834

If you have concerns about deceptive or unfair business practices, you may also file a complaint with the Federal Trade Commission (FTC) at:

Residents of other states may also have the right to file complaints with their respective state attorneys general or data protection authorities.


14. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, or if you would like to exercise any of your privacy rights, please do not hesitate to contact our privacy team:

Business Name Marcos
Email Address [email protected]
Website new-marcos.rest

When contacting us regarding a privacy matter, please include your full name, a description of your request or concern, and any relevant details that will help us address your inquiry efficiently. We are committed to responding to all privacy-related inquiries in a timely and professional manner.


15. Changes to This Privacy Policy

We reserve the right to update, revise, or modify this Privacy Policy at any time to reflect changes in our business practices, applicable laws, or the services we offer. When we make material changes to this policy, we will:

  • Update the "Last Updated" date at the top of this policy;
  • Post a prominent notice on our website informing users of the changes;
  • Where required by law or where we deem appropriate, notify you directly via email.

We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information. Your continued use of our services after the effective date of any revised Privacy Policy constitutes your acceptance of the updated policy. If you do not agree with the revised policy, please discontinue your use of our services and contact us to request the deletion of your personal information.


Marcos Privacy Policy

Effective Date: July 4, 2026

Website: new-marcos.rest

Contact: [email protected]