Privacy Policy

Your privacy is important to us. Learn how we collect, use, and protect your personal information.

Last Updated: January 15, 2026

1. Introduction

Welcome to Lou Malnati's ("we," "our," or "us"). At Lou Malnati's, we are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, share, and protect information about you when you use our website (loumalnatis.click), mobile applications, and services.

This policy applies to all interactions with Lou Malnati's, including when you visit our website, place orders, sign up for our loyalty program, make reservations, use our catering services, or communicate with us through any channel.

By using our services, you agree to the terms outlined in this Privacy Policy. We want to assure you that we never sell your personal data to third parties for their marketing purposes. Your trust is essential to our business, and we are committed to maintaining it through transparent and responsible data practices.

If you have any questions about this Privacy Policy or our data practices, please contact us using the information provided in the Contact section below.

2. Information We Collect

2.1 Information You Provide

We collect information that you voluntarily provide to us when you:

  • Create an Account: Name, email address, phone number, delivery address, password, and date of birth
  • Place Orders: Order history, food preferences, dietary restrictions, allergen information, special dietary requirements (vegan, halal, kosher, gluten-free)
  • Payment Information: Credit card details, billing address (stored securely and encrypted)
  • Loyalty Program: Rewards data, purchase history, favorite orders, earned points and redemptions
  • Reservations: Table reservation details, party size, special occasions, seating preferences
  • Catering Services: Event details, guest count, dietary requirements, delivery information
  • Contact Us: Messages, feedback, reviews, customer support inquiries
  • Marketing Preferences: Communication preferences, subscription choices
  • Location Data: Delivery addresses, pickup locations

2.2 Automatically Collected Information

When you visit our website or use our services, we automatically collect certain information:

  • Device Information: IP address, browser type and version, operating system, device identifiers
  • Usage Data: Pages visited, time spent on site, clicks, search queries, order patterns
  • Cookie Data: Session IDs, user preferences, shopping cart contents, login status
  • Location Information: Approximate location based on IP address for delivery zone verification
  • Performance Data: Website loading times, error reports, technical diagnostics

2.3 Information from Third Parties

We may receive information about you from third-party sources, including:

  • Social Media: Profile information if you connect your social media accounts
  • Payment Processors: Transaction confirmations and fraud prevention data
  • Delivery Partners: Delivery status updates and feedback
  • Marketing Partners: Demographic data and preferences for targeted advertising
  • Review Platforms: Customer reviews and ratings

3. How We Use Your Information

3.1 Service Provision

  • Order Processing: Preparing, confirming, and fulfilling your food orders
  • Delivery Services: Coordinating delivery to your specified address
  • Account Management: Creating and maintaining your customer account
  • Customer Support: Responding to inquiries and resolving issues
  • Loyalty Program: Managing rewards points, special offers, and member benefits
  • Reservations: Managing table bookings and special requests
  • Catering: Planning and executing catering events
  • Quality Improvement: Enhancing our menu, service quality, and customer experience

3.2 Communication

  • Order Updates: Confirmation emails, preparation status, delivery notifications
  • Customer Support: Responding to questions and resolving concerns
  • Important Notices: Policy changes, service updates, security alerts
  • Marketing Communications: Promotional emails, special offers, new menu items (with your consent)
  • Surveys and Feedback: Requesting reviews and service feedback

3.3 Marketing and Analytics

  • Personalized Advertising: Showing relevant offers based on your preferences
  • Usage Analysis: Understanding how customers use our website and services
  • Campaign Effectiveness: Measuring the success of marketing campaigns
  • Market Research: Developing new products and improving existing offerings
  • Customer Segmentation: Creating targeted marketing groups based on preferences

3.4 Legal Compliance

  • Legal Requirements: Complying with applicable laws and regulations
  • Fraud Prevention: Detecting and preventing fraudulent transactions
  • Safety Protection: Protecting the rights, property, and safety of our customers and business
  • Dispute Resolution: Resolving conflicts and legal disputes

4. Information Sharing and Disclosure

4.1 Service Providers

We share information with trusted third-party service providers who help us operate our business:

  • Payment Processors: Secure processing of credit card and payment transactions
  • Delivery Companies: Coordinating food delivery to your address
  • Cloud Storage Providers: Secure data storage and backup services
  • Email Marketing Services: Sending promotional emails and newsletters
  • Analytics Tools: Website traffic analysis and usage insights
  • Customer Support Tools: Managing customer inquiries and support tickets

4.2 Legal Requirements

We may disclose your information when required by law or to protect our rights:

  • Legal Process: Responding to court orders, subpoenas, and legal requests
  • Regulatory Compliance: Meeting food safety and business licensing requirements
  • Rights Protection: Protecting our intellectual property and business interests
  • Public Safety: Addressing emergencies and public safety concerns

4.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the new owner. We will notify you before your information is transferred and becomes subject to a different privacy policy.

4.4 With Your Consent

We may share your information for other purposes with your explicit consent, such as partnering with other businesses for special promotions or events.

5. Data Security

5.1 Technical Measures

  • Encryption: SSL/TLS encryption for all data transmission between your device and our servers
  • Firewall Protection: Advanced firewall systems to prevent unauthorized access
  • Access Controls: Role-based access with minimum necessary permissions for employees
  • Monitoring: 24/7 security monitoring and intrusion detection systems
  • Data Backup: Regular encrypted backups stored in secure off-site locations
  • Vulnerability Testing: Regular security assessments and penetration testing

5.2 Organizational Measures

  • Employee Training: Regular security awareness training for all staff members
  • Data Handling Procedures: Written policies for personal data processing and protection
  • Confidentiality Agreements: Non-disclosure agreements with employees and contractors
  • Incident Response Plan: Procedures for responding to security breaches and data incidents
  • Regular Audits: Periodic security audits and compliance assessments

5.3 Your Responsibilities

You can help protect your information by following these best practices:

  • Strong Passwords: Use unique, complex passwords for your account
  • Password Security: Never share your login credentials with others
  • Public Computers: Always log out when using public or shared computers
  • Phishing Awareness: Be cautious of suspicious emails or links requesting personal information
  • Unauthorized Access: Report any suspected unauthorized access to your account immediately

Security Breach Notification: In the unlikely event of a data security breach that affects your personal information, we will promptly notify you and relevant authorities as required by law, and take immediate steps to mitigate the impact.

6. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience on our website. Below is a detailed breakdown of the types of cookies we use:

Cookie Type Purpose Duration
Essential Cookies Basic site functions, login state, shopping cart, security Session (deleted when browser closes)
Functional Cookies User preferences, language settings, remember me options Up to 1 year
Analytics Cookies Website usage analysis, performance monitoring, improvement insights Up to 2 years
Marketing Cookies Personalized advertising, campaign tracking, social media integration Up to 1 year

Tracking Technologies Used

  • Google Analytics: Website traffic analysis and user behavior insights
  • Facebook Pixel: Advertising effectiveness measurement and retargeting
  • Web Beacons: Email open rates and engagement tracking
  • Local Storage: Browser-based data storage for enhanced functionality

Cookie Management

You can control cookies through your browser settings to accept, reject, or delete cookies. However, please note that disabling certain cookies may affect the functionality of our website and your ability to use some features. Most browsers allow you to:

  • View what cookies are stored on your device
  • Delete cookies individually or all at once
  • Block third-party cookies
  • Set preferences for specific websites

7. Your Rights (GDPR/CCPA Compliance)

Depending on your location, you may have the following rights regarding your personal information:

7.1 Right of Access

You have the right to request access to your personal data and receive information about how we process it, including what data we have, why we use it, and who we share it with.

7.2 Right to Rectification

You can request that we correct any inaccurate or incomplete personal information we have about you.

7.3 Right to Erasure (Right to be Forgotten)

You can request deletion of your personal data, subject to certain legal exceptions such as record-keeping requirements.

7.4 Right to Restrict Processing

You can request that we limit how we use your personal data in certain circumstances.

7.5 Right to Data Portability

You have the right to receive your personal data in a structured, machine-readable format and transmit it to another service provider.

7.6 Right to Object

You can object to our processing of your personal data, particularly for direct marketing purposes.

7.7 Right Against Automated Decision-Making

You have the right not to be subject to decisions based solely on automated processing that significantly affects you.

How to Exercise Your Rights

To exercise any of these rights, please contact us using the information in the Contact section below. We will respond to your request within 30 days and may require verification of your identity before processing your request.

8. Children's Privacy

Our services are not intended for children under the age of 16, and we do not knowingly collect personal information from children under 16. If you are a parent or guardian and believe that your child has provided us with personal information, please contact us immediately.

If we become aware that we have collected personal information from a child under 16 without verification of parental consent, we will take steps to promptly delete that information from our servers.

Parents and guardians are encouraged to monitor their children's internet usage and help enforce this Privacy Policy by instructing their children never to provide personal information through our services without permission.

9. International Data Transfers

9.1 Protection Measures

When we transfer your personal information internationally, we ensure appropriate protection through:

  • Adequacy Decisions: Transfers to countries recognized as having adequate data protection laws
  • Standard Contractual Clauses: EU-approved contractual terms for international transfers
  • Data Processing Agreements: Contracts ensuring recipient compliance with data protection standards
  • Security Measures: Technical and organizational measures to protect data in transit and at rest
  • Compliance Audits: Regular assessments of international partners' data protection practices

9.2 Transfer Destinations

Your personal information may be transferred to and processed in the following jurisdictions:

  • United States: Cloud storage and data processing services
  • European Union: Analytics and customer support services
  • Other Countries: As needed for service provision, always with appropriate safeguards

10. Data Retention Periods

We retain your personal information only as long as necessary for the purposes outlined in this Privacy Policy and as required by law:

Information Type Retention Period Reason
Account Information 6 months after account deletion Legal obligations, dispute resolution
Order History & Purchase Records 7 years Tax and accounting requirements
Marketing Consent Records 3 months after withdrawal Consent record keeping, compliance
Website Usage Logs Up to 2 years Security monitoring, analytics
Customer Support Records 3 years Service quality improvement, training
Loyalty Program Data 2 years after last activity Program administration, fraud prevention
Payment Information As required by payment processors Transaction processing, chargebacks

Safe Data Disposal

When personal information is no longer needed, we ensure secure disposal through:

  • Electronic Deletion: Complete removal of data that cannot be recovered
  • Physical Document Shredding: Secure destruction of paper records
  • Backup Data Removal: Deletion from all backup systems and archives
  • Disposal Documentation: Maintaining records of secure data destruction

11. Third-Party Links

Our website may contain links to third-party websites, including social media platforms, review sites, and partner services. Please note that:

  • We are not responsible for the privacy practices of third-party websites
  • This Privacy Policy does not apply to third-party sites
  • We encourage you to review the privacy policies of any third-party sites before providing personal information
  • You interact with third-party sites at your own discretion and responsibility

When you click on third-party links, you may be directed away from our website. We recommend reading the privacy policy of any website you visit to understand how they collect, use, and protect your information.

12. Policy Changes

12.1 Change Notification

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. When we make changes, we will notify you through:

  • Website Notice: Prominent notification on our website homepage
  • Email Notification: Direct email to registered users for significant changes
  • Login Pop-up: In-app notification when you next log in
  • Explicit Consent: Required consent for material changes that affect your rights

12.2 Checking for Changes

We recommend that you periodically review this Privacy Policy to stay informed about our privacy practices. You can:

  • Check the "Last Updated" date at the top of this policy
  • Subscribe to our newsletter for policy update notifications
  • Contact us if you have questions about changes

Your continued use of our services after changes take effect constitutes acceptance of the updated policy. If you disagree with changes, you may stop using our services and request deletion of your account.

13. Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Lou Malnati's

Address: 2944 E 12th St Unit A, Austin, TX 78702, USA

Phone: +61 456 492 3594

Email: [email protected]

Business Hours: Monday - Friday: 9:00 AM - 6:00 PM (Central Time)

Response Commitment: We will respond to your privacy-related inquiries within 3 business days.

13.1 Complaints

If you have a complaint about our privacy practices, we encourage you to contact us first so we can work to resolve your concern. If you are not satisfied with our response, you may contact your local data protection authority:

For EU Residents: You can contact your national data protection authority or file a complaint with the supervisory authority in your country.

For California Residents: You can contact the California Attorney General's Office at [email protected].

14. Withdrawal of Consent

14.1 Marketing Consent Withdrawal

You can withdraw your consent for marketing communications at any time through:

  • Unsubscribe Link: Click the unsubscribe link in any marketing email
  • Account Settings: Update your communication preferences in your account dashboard
  • Customer Support: Contact our customer support team to opt out
  • Phone: Call us at +61 456 492 3594 to update your preferences

14.2 Account Deletion

To request complete account deletion:

  1. Log into your account and go to Account Settings
  2. Select "Delete Account" option
  3. Confirm your identity and deletion request
  4. Allow up to 30 days for complete deletion

Please Note: Some information may be retained for legal compliance, fraud prevention, or legitimate business purposes as outlined in our retention policy above.

15. Conclusion

At Lou Malnati's, protecting your privacy is fundamental to our business values and customer relationships. We are committed to maintaining the highest standards of data protection and transparency in all our operations.

This Privacy Policy represents our ongoing commitment to respecting your privacy rights and maintaining your trust. We understand that trust is earned through consistent actions and transparent communication about how we handle your personal information.

We encourage you to contact us if you have any questions about this Privacy Policy or our privacy practices. Your feedback helps us improve our services and better protect your privacy.

Thank you for choosing Lou Malnati's and for trusting us with your personal information. We look forward to serving you with the same commitment to quality and trust that has defined our brand since 1971.

Remember: This Privacy Policy was last updated on January 15, 2026. Please check back periodically for updates.