Privacy Policy

Effective Date: July 1, 2026  |  Last Updated: July 1, 2026

This Privacy Policy describes how Chopt ("we," "us," or "our") collects, uses, discloses, and protects the personal information of users ("you" or "your") who visit our website at chopt-new.click or otherwise interact with our food services. We are committed to protecting your privacy and handling your personal information with transparency, care, and respect.

Please read this Privacy Policy carefully. By accessing or using our website and services, you acknowledge that you have read, understood, and agree to the practices described in this policy. If you do not agree with any part of this policy, please discontinue your use of our website and services immediately.

1. About Us

Chopt is a food business operating in the United States. We are dedicated to providing high-quality food products and related services to our customers. Our primary contact information is as follows:

Company Name Chopt
Email Address [email protected]
Website chopt-new.click
Location United States

2. Scope and Applicability

This Privacy Policy applies to all personal information collected through:

  • Our website located at chopt-new.click
  • Online ordering systems, menus, and digital platforms we operate
  • Email correspondence and customer service communications
  • Loyalty programs, promotional campaigns, and newsletters
  • Any other interactions between you and Chopt, whether online or offline

This policy does not apply to third-party websites, applications, or services that may be linked from our website. We encourage you to review the privacy policies of those third parties independently.

3. Information We Collect

We collect various types of information in connection with your use of our services. Below is a detailed breakdown of the categories of personal information we may collect:

3.1 Personal Identification Information

When you create an account, place an order, sign up for our loyalty program, or contact us, we may collect:

  • Full name
  • Email address
  • Phone number
  • Billing and delivery address
  • Date of birth (for age verification and promotional purposes)
  • Username and password for account access
  • Payment information (processed securely through our payment processors)

3.2 Order and Transaction Information

When you place an order through our website or mobile platform, we collect:

  • Order history, including items purchased, quantities, and customizations
  • Order preferences and dietary restrictions you voluntarily provide
  • Payment method type (e.g., credit card, debit card, digital wallet)
  • Transaction amounts and timestamps
  • Delivery address and instructions
  • Special requests and notes attached to orders

3.3 Usage and Behavioral Data

When you interact with our website, we automatically collect certain information about your usage patterns, including:

  • Pages visited and time spent on each page
  • Clickstream data (links clicked, buttons pressed)
  • Search queries entered on our platform
  • Menu items browsed and added to cart
  • Frequency and timing of visits
  • Referring website or source that directed you to our site
  • Errors encountered and technical issues reported

3.4 Device and Technical Information

We may automatically collect technical information about the devices and systems used to access our website:

  • IP address and approximate geographic location derived from it
  • Device type (desktop, tablet, smartphone)
  • Operating system and version
  • Web browser type and version
  • Screen resolution and display settings
  • Unique device identifiers and advertising IDs
  • Network provider and connection type

3.5 Cookie and Tracking Data

Our website uses cookies, pixel tags, web beacons, and similar tracking technologies to collect information about your online activity. This data includes session identifiers, preferences stored between visits, and analytics metrics. Please refer to our Cookie Usage section (Section 9) for more details.

3.6 Communications and Customer Support Data

When you contact us for support, feedback, or other inquiries, we may collect:

  • The content of your messages, emails, or chat transcripts
  • Records of complaints or disputes
  • Survey responses and feedback submissions
  • Information you voluntarily disclose during customer support interactions

3.7 Information from Third Parties

We may receive information about you from third parties, including:

  • Social media platforms (if you connect your account or interact with our social pages)
  • Payment processors and financial institutions
  • Delivery partners and logistics providers
  • Analytics and advertising partners
  • Review and feedback platforms

4. How We Use Your Information

We use the personal information we collect for a variety of legitimate business purposes. Specifically, we use your data to:

4.1 Service Provision and Order Fulfillment

  • Process and fulfill your food orders and reservations
  • Manage your account and maintain your profile
  • Process payments and issue refunds or credits when applicable
  • Coordinate delivery or pickup services
  • Communicate order confirmations, updates, and delivery notifications
  • Provide customer support and resolve disputes

4.2 Personalization and User Experience

  • Customize the content, recommendations, and promotions we show you
  • Remember your preferences, dietary restrictions, and order history
  • Provide personalized menu suggestions based on past behavior
  • Improve the overall usability and functionality of our website

4.3 Marketing and Promotional Communications

  • Send you promotional emails, newsletters, and special offers (with your consent where required by law)
  • Notify you of new menu items, seasonal promotions, and loyalty rewards
  • Deliver targeted advertisements on our platform and third-party platforms
  • Administer contests, sweepstakes, and promotional events

You have the right to opt out of marketing communications at any time. Please see Section 7 for information about your rights and how to exercise them.

4.4 Analytics and Business Improvement

  • Analyze usage patterns and trends to understand how customers interact with our services
  • Conduct internal research and business intelligence
  • Evaluate the performance of our website, menu offerings, and marketing campaigns
  • Identify technical issues and improve platform reliability
  • Develop new products, features, and service offerings

4.5 Legal Compliance and Safety

  • Comply with applicable federal, state, and local laws and regulations
  • Respond to lawful requests from government authorities and law enforcement
  • Detect, investigate, and prevent fraudulent transactions and security threats
  • Enforce our Terms of Service and other applicable policies
  • Protect the rights, property, and safety of Chopt, our customers, and the public

5. Legal Basis for Processing

As a business operating in the United States, we process your personal information based on the following legal grounds:

  • Contractual Necessity: Processing your information is necessary to fulfill your orders and deliver the services you have requested from us.
  • Legitimate Interests: We process certain data to pursue our legitimate business interests, such as improving our services, preventing fraud, and conducting analytics, provided that these interests are not overridden by your rights.
  • Legal Obligation: We may process your data to comply with applicable federal and state laws, regulations, and court orders.
  • Consent: Where required by law, we will ask for your express consent before processing your information for specific purposes such as marketing communications.

6. Sharing Your Information with Third Parties

We do not sell, rent, or lease your personal information to third parties for their own independent marketing purposes. However, we may share your information in the following circumstances:

6.1 Service Providers and Business Partners

We engage trusted third-party service providers to assist us in operating our business and delivering services to you. These providers are authorized to use your information only as necessary to perform services on our behalf and are contractually obligated to protect your data. These service providers may include:

  • Payment processors and financial institutions
  • Food delivery and logistics partners
  • Cloud hosting and data storage providers
  • Email and communication service platforms
  • Customer relationship management (CRM) software providers
  • Analytics and business intelligence platforms
  • Advertising and marketing technology providers
  • Fraud detection and cybersecurity firms

6.2 Legal Requirements and Law Enforcement

We may disclose your personal information if we believe in good faith that such disclosure is necessary to:

  • Comply with a subpoena, court order, legal process, or other governmental request
  • Enforce our Terms of Service or investigate potential violations
  • Protect against fraud, security threats, or illegal activities
  • Protect the rights, property, or safety of Chopt, our users, employees, or the public

6.3 Business Transfers

In the event of a merger, acquisition, sale of assets, reorganization, or other corporate transaction, your personal information may be transferred as part of that transaction. We will notify you via email or a prominent notice on our website before your information becomes subject to a different privacy policy.

6.4 Aggregated and De-Identified Data

We may share aggregated, anonymized, or de-identified data with third parties for research, marketing, analytics, and other business purposes. This data cannot reasonably be used to identify individual users.

7. Your Privacy Rights

Depending on your state of residence, you may have specific privacy rights under applicable United States law. We are committed to honoring these rights and making it easy for you to exercise them.

7.1 Rights Under the California Consumer Privacy Act (CCPA/CPRA)

If you are a California resident, you have the following rights under the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA):

  • Right to Know: You have the right to request information about the categories and specific pieces of personal information we have collected about you, the purposes for which it was collected, and the third parties with whom we share it.
  • Right to Delete: You have the right to request that we delete personal information we have collected about you, subject to certain exceptions permitted by law.
  • Right to Correct: You have the right to request that we correct inaccurate personal information we maintain about you.
  • Right to Opt Out of Sale or Sharing: You have the right to opt out of the sale or sharing of your personal information for cross-context behavioral advertising.
  • Right to Limit Use of Sensitive Personal Information: You have the right to limit the use of sensitive personal information to certain permitted purposes.
  • Right to Non-Discrimination: You have the right not to receive discriminatory treatment for exercising your CCPA/CPRA privacy rights.

To submit a CCPA/CPRA request, please contact us at [email protected]. We will respond to verifiable requests within 45 days, with the option to extend by an additional 45 days when reasonably necessary.

7.2 General Privacy Rights for All US Users

Regardless of your state of residence, we provide all users with the following rights and options:

  • Access: You may request a copy of the personal information we hold about you.
  • Correction: You may request that we update or correct inaccurate information in your account.
  • Deletion: You may request the deletion of your account and associated personal data, subject to applicable legal retention requirements.
  • Opt-Out of Marketing: You may opt out of promotional emails by clicking the "unsubscribe" link in any marketing email or by contacting us directly.
  • Data Portability: Where technically feasible, you may request a copy of your data in a structured, machine-readable format.

7.3 How to Exercise Your Rights

To exercise any of the rights described above, please contact us using the following methods:

We may need to verify your identity before processing your request to protect your privacy and security. We will not discriminate against you for exercising your privacy rights.

8. Data Security Measures

We take the security of your personal information seriously and implement a comprehensive set of technical, administrative, and physical safeguards to protect your data from unauthorized access, disclosure, alteration, or destruction.

8.1 Technical Safeguards

  • Secure Sockets Layer (SSL) and Transport Layer Security (TLS) encryption for data in transit
  • Encryption of sensitive data at rest, including payment and financial information
  • Firewalls, intrusion detection systems, and network monitoring
  • Regular security vulnerability assessments and penetration testing
  • Multi-factor authentication for internal administrative access
  • Secure payment processing in compliance with PCI DSS standards

8.2 Administrative and Organizational Safeguards

  • Strict access controls limiting employee access to personal data on a need-to-know basis
  • Regular employee training on data privacy and security practices
  • Data processing agreements with all third-party service providers
  • Incident response procedures for detecting and responding to data breaches
  • Periodic review and update of privacy and security policies
Important Notice: While we implement industry-standard security measures, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security of your personal information and encourage you to take precautions to protect your own data, such as using strong passwords and keeping your account credentials confidential.

8.3 Data Breach Notification

In the event of a data breach that is likely to adversely affect your rights and freedoms, we will notify you and relevant authorities as required by applicable state laws. Notification will be provided promptly and will include information about the nature of the breach, the data affected, and the steps we are taking to address it.

9. Cookie Usage

Our website uses cookies and similar tracking technologies to enhance your experience and collect information about how you use our services. Cookies are small text files stored on your device that help us recognize you on return visits and customize your experience.

9.1 Types of Cookies We Use

Cookie Type Purpose Duration
Essential Cookies Required for the website to function properly, including shopping cart functionality, login sessions, and security features Session or up to 1 year
Performance Cookies Collect anonymized data about how visitors use our website to help us improve performance and user experience Up to 2 years
Functional Cookies Remember your preferences, language settings, and customizations between visits Up to 1 year
Marketing and Advertising Cookies Used to deliver relevant advertisements and track the effectiveness of our marketing campaigns Up to 2 years

9.2 Managing Cookie Preferences

You can control and manage cookies through your web browser settings. Most browsers allow you to block or delete cookies, though doing so may affect the functionality of our website. You can also opt out of certain advertising cookies through industry opt-out platforms such as the Digital Advertising Alliance (DAA) at aboutads.info or the Network Advertising Initiative (NAI) at networkadvertising.org.

For more detailed information about the cookies we use and how to manage your preferences, please refer to our full Cookie Policy available on our website.

10. Data Retention

We retain your personal information for as long as necessary to fulfill the purposes for which it was collected, comply with our legal obligations, resolve disputes, and enforce our agreements. The following general retention periods apply:

Data Category Retention Period
Account and registration information Duration of account plus 3 years after account closure
Order and transaction records 7 years (for tax and legal compliance purposes)
Customer support communications 3 years from the date of the interaction
Marketing and communication preferences Until you opt out or request deletion
Website usage and analytics data Up to 26 months
Cookie and tracking data Up to 2 years depending on cookie type
Legal compliance records As required by applicable law (typically 5–7 years)

After the applicable retention period has expired, we will securely delete or anonymize your personal information unless we are required by law to retain it for a longer period.

11. Children's Privacy

Age Restriction: Our website and services are intended for individuals who are 18 years of age or older. We do not knowingly collect personal information from children under the age of 18.

We are committed to protecting the privacy of minors. In compliance with the Children's Online Privacy Protection Act (COPPA) and our internal policies, we do not knowingly solicit or collect personal information from anyone under the age of 18. Our online ordering, account registration, and loyalty program features are designed for adult users only.

If you are a parent or guardian and believe that your child under the age of 18 has provided personal information to us without your consent, please contact us immediately at [email protected]. We will take prompt steps to review the situation and, where confirmed, delete any such information from our records as quickly as reasonably possible.

We reserve the right to terminate accounts or deny access to our services to any user we reasonably believe to be under the age of 18.

12. International Data Transfers

Chopt is based in the United States, and our primary data processing activities take place within the United States. However, some of our service providers and technology partners may be located in other countries, which means your personal information may be transferred to, stored in, or processed in jurisdictions outside the United States.

When transferring personal information internationally, we take steps to ensure that appropriate safeguards are in place to protect your data, including:

  • Entering into data processing agreements with third-party service providers that require them to maintain appropriate security standards
  • Ensuring that transfers comply with applicable US federal and state privacy laws
  • Reviewing the data protection practices of international service providers before engaging their services

By using our website and services, you acknowledge and consent to the potential transfer of your personal information to jurisdictions outside of your country of residence, including the United States, where privacy laws may differ from those in your home country.

13. Third-Party Links and Integrations

Our website may contain links to third-party websites, social media platforms, and integrated services (such as Google Maps, payment processors, or social login options). When you click on a third-party link or use a third-party integration, you will be subject to the privacy policies of that third party, not this Privacy Policy.

We have no control over and assume no responsibility for the content, privacy practices, or security measures of any third-party websites or services. We strongly encourage you to review the privacy policies of any third-party sites you visit through links on our website.

14. FTC Compliance and Consumer Protection

Chopt is committed to complying with the Federal Trade Commission (FTC) Act and related regulations governing unfair or deceptive trade practices. Our data collection, use, and sharing practices are designed to be transparent, fair, and consistent with consumer expectations. We do not engage in deceptive or misleading data practices and strive to provide accurate, clear disclosure of how we handle your personal information.

If you believe we have engaged in unfair or deceptive practices regarding your personal information, you have the right to file a complaint with the FTC. Please see Section 15 for information on how to file complaints with regulatory authorities.

15. Filing Complaints with Data Protection Authorities

If you are not satisfied with our response to your privacy inquiry or believe that we are processing your personal information in a manner inconsistent with applicable law, you have the right to lodge a complaint with the appropriate regulatory authority.

15.1 Federal Trade Commission (FTC)

The Federal Trade Commission is the primary US federal agency responsible for consumer protection and privacy enforcement. You may file a complaint with the FTC at:

  • Website: www.ftc.gov/complaint
  • Phone: 1-877-FTC-HELP (1-877-382-4357)
  • Address: Federal Trade Commission, 600 Pennsylvania Avenue NW, Washington, DC 20580

15.2 California Privacy Protection Agency (CPPA)

If you are a California resident, you may also file a complaint with the California Privacy Protection Agency (CPPA), which is responsible for enforcing the CCPA/CPRA:

15.3 State Attorney General Offices

Many US states have Attorney General offices that handle consumer privacy complaints. You may contact your state's Attorney General office for guidance and assistance with privacy-related complaints.

We encourage you to contact us first at [email protected] before filing a complaint with a regulatory authority, as we are committed to resolving your concerns promptly and fairly.

16. Changes to This Privacy Policy

We may update or revise this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes to this policy, we will:

  • Post the updated Privacy Policy on our website with a revised "Last Updated" date
  • Send an email notification to registered users (where we have your email address)
  • Display a prominent notice on our website homepage for a reasonable period following the update

Your continued use of our website and services after the effective date of any changes constitutes your acceptance of the updated Privacy Policy. We encourage you to review this policy periodically to stay informed about how we protect your personal information. If you do not agree with the updated policy, please discontinue use of our services and contact us to request deletion of your account and data.

17. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data handling practices, please do not hesitate to contact us. We are committed to responding to all privacy inquiries promptly and thoroughly.

Privacy Inquiries — Contact Information

Company: Chopt

Email: [email protected]

Website: chopt-new.click

Location: United States

When contacting us about a privacy matter, please include your full name, email address, the nature of your request, and any relevant details to help us process your inquiry efficiently. We aim to respond to all privacy-related requests within 30 days of receipt. For requests that are complex or numerous, we may require up to 45 days to respond and will notify you of the extension within the initial 30-day window.

Acknowledgment: By using our website and services, you acknowledge that you have read and understood this Privacy Policy and consent to the collection, use, and sharing of your personal information as described herein. This Privacy Policy was last updated on July 1, 2026, and is effective as of that date.