Mon–Fri 9am–6pm, Sat 10am–4pm

Privacy Policy

Effective Date: July 16, 2026  |  Last Updated: July 16, 2026

This Privacy Policy describes how Chopt ("we," "us," or "our") collects, uses, discloses, and protects your personal information when you visit our website at chopt-tasty.click, place orders, use our services, or otherwise interact with us. We are committed to protecting your privacy and handling your personal data with transparency, integrity, and respect for your rights under applicable United States law, including the California Consumer Privacy Act (CCPA), the California Privacy Rights Act (CPRA), and the Federal Trade Commission Act (FTC Act).

Please read this Privacy Policy carefully before using our services. By accessing or using our website and services, you acknowledge that you have read, understood, and agree to the practices described in this Privacy Policy. If you do not agree with any part of this policy, please discontinue use of our services immediately.

For any questions, concerns, or requests related to your privacy, you may contact us at:

Chopt
Email: [email protected]
Website: chopt-tasty.click

1. Scope of This Privacy Policy

This Privacy Policy applies to all personal information collected through our website (chopt-tasty.click), our online ordering platform, mobile-optimized pages, email communications, social media interactions, customer service channels, and any other digital or physical touchpoints through which you engage with Chopt.

This policy applies to all users of our services located in the United States. If you are a resident of California, additional rights and disclosures specific to California law apply to you, as described in the dedicated California Privacy Rights section of this policy.

This Privacy Policy does not apply to third-party websites, platforms, or services that may be linked from our website. We encourage you to review the privacy policies of any third-party services before providing your personal information to them.


2. Information We Collect

We collect various categories of personal information to provide our food services, improve your experience, comply with legal obligations, and operate our business effectively. The categories of information we collect include:

2.1 Personal Identification Information

When you create an account, place an order, subscribe to our newsletter, participate in promotions, or contact our customer support team, we may collect:

  • Full name
  • Email address
  • Phone number
  • Mailing address and delivery address
  • Date of birth (for age verification and promotional purposes)
  • Username and password (for account holders)
  • Profile photo (if provided voluntarily)

2.2 Financial and Payment Information

When you make a purchase through our platform, we collect payment-related information necessary to process your transaction. This may include:

  • Credit or debit card type and last four digits
  • Billing address
  • Transaction history and order records
  • Gift card or promotional code information

Full payment card details are processed by our secure third-party payment processors and are not stored on our servers. Our payment processors comply with Payment Card Industry Data Security Standards (PCI DSS).

2.3 Order and Transaction Information

We collect information about the products you purchase, your order history, customization preferences, dietary preferences, and any special instructions you provide when placing an order. This data helps us improve our menu offerings and personalize your experience.

2.4 Usage and Behavioral Data

As you navigate and interact with our website and digital platforms, we automatically collect certain information about your usage patterns, including:

  • Pages visited and content viewed
  • Time and duration of visits
  • Links clicked and navigation paths
  • Search queries made on our website
  • Items added to cart and abandoned
  • Referral URLs (the website or source that led you to our site)
  • Interaction with promotional banners or email campaigns

2.5 Device and Technical Information

We collect technical information about the device and software you use to access our services, including:

  • IP address
  • Browser type and version
  • Operating system and device type
  • Screen resolution and language settings
  • Mobile device identifiers (where applicable)
  • Internet service provider
  • General geographic location based on IP address

2.6 Location Information

With your permission, we may collect precise geolocation data to help you find nearby Chopt locations, facilitate delivery services, or provide location-relevant promotions. You may control location permissions through your device or browser settings at any time.

2.7 Communications and Customer Support Data

When you contact us via email, web form, social media, or any other communication channel, we collect the contents of your messages, your contact details, and records of our correspondence. This helps us address your inquiries and improve our customer service.

2.8 Cookie and Tracking Technology Data

We use cookies, web beacons, pixel tags, and similar tracking technologies to collect information about your interactions with our website. For full details on our use of cookies, please refer to Section 8 (Cookie Policy Summary) of this document.

2.9 Information from Third Parties

We may receive information about you from third-party sources, including social media platforms (if you connect your account or log in using a social account), marketing partners, analytics providers, and delivery service partners. We combine this data with information we collect directly to enhance our services and improve accuracy.


3. How We Use Your Information

We use the personal information we collect for a variety of legitimate business purposes. The specific uses depend on the nature of the information and the context in which it was collected.

3.1 Service Provision and Order Fulfillment

  • Processing your food orders, payments, and delivery or pickup arrangements
  • Sending order confirmations, receipts, and status updates
  • Managing your account and providing account-related support
  • Communicating with you about your orders, reservations, or inquiries
  • Facilitating loyalty programs, rewards, and promotional offers

3.2 Personalization and User Experience

  • Customizing content, menu recommendations, and offers based on your preferences and history
  • Remembering your dietary preferences, past orders, and saved addresses
  • Improving navigation and usability of our digital platforms

3.3 Analytics and Business Intelligence

  • Analyzing website traffic patterns and usage trends
  • Monitoring platform performance and identifying technical issues
  • Conducting market research and understanding customer preferences
  • Evaluating the effectiveness of our menu items and promotions

3.4 Marketing and Communications

  • Sending promotional emails, newsletters, and special offers (with your consent where required)
  • Displaying targeted advertisements on our platforms and third-party websites
  • Notifying you about new menu items, seasonal offerings, and events
  • Conducting surveys, contests, and sweepstakes

You may opt out of marketing communications at any time by clicking the "unsubscribe" link in any email we send or by contacting us at [email protected].

3.5 Safety, Security, and Fraud Prevention

  • Verifying your identity and preventing unauthorized account access
  • Detecting and preventing fraudulent transactions and suspicious activity
  • Protecting the security and integrity of our systems and data
  • Enforcing our Terms of Service and other agreements

3.6 Legal Compliance

  • Complying with applicable federal and state laws and regulations
  • Responding to lawful requests from government authorities or courts
  • Maintaining records required by law, including tax and financial records
  • Establishing, exercising, or defending legal claims

4. How We Share Your Information

We do not sell your personal information to third parties for monetary compensation. However, we may share your information with certain categories of recipients for the purposes described in this Privacy Policy.

4.1 Service Providers and Business Partners

We work with trusted third-party service providers who assist us in operating our business and delivering our services. These include:

  • Payment processors — to securely process transactions
  • Delivery and logistics partners — to fulfill delivery orders
  • Cloud hosting and IT providers — to store and manage data infrastructure
  • Email and marketing platforms — to manage and send communications
  • Analytics providers — to analyze website performance and user behavior (e.g., Google Analytics)
  • Customer support software — to manage customer service communications

All service providers are bound by contractual obligations to handle your data securely, confidentially, and only for the specific purposes for which they are engaged. They are prohibited from using your data for their own independent purposes.

4.2 Advertising and Marketing Partners

We may share limited non-sensitive data (such as hashed email addresses or behavioral data) with advertising networks and social media platforms to display relevant advertisements about Chopt. You have the right to opt out of targeted advertising practices.

4.3 Legal and Regulatory Disclosures

We may disclose your personal information when required to do so by law, regulation, court order, or other legal process, or when we believe in good faith that disclosure is necessary to:

  • Comply with applicable law or respond to legal process
  • Protect the rights, property, or safety of Chopt, our customers, or the public
  • Detect, prevent, or investigate fraud, security breaches, or illegal activity
  • Cooperate with law enforcement authorities

4.4 Business Transfers

In the event of a merger, acquisition, reorganization, sale of assets, or bankruptcy, your personal information may be transferred to a successor entity as part of the transaction. We will notify you via email or prominent notice on our website if such a transfer occurs and your information becomes subject to a different privacy policy.

4.5 With Your Consent

We may share your information with other third parties when you have provided your explicit consent to do so. You may withdraw your consent at any time by contacting us at the details provided in this policy.


5. Data Security

We take the security of your personal information seriously and implement a range of technical, administrative, and physical safeguards to protect your data from unauthorized access, use, disclosure, alteration, or destruction.

5.1 Technical Measures

  • Secure Sockets Layer (SSL) / Transport Layer Security (TLS) encryption for data transmitted between your browser and our servers
  • Encryption of sensitive data stored in our databases
  • Firewalls and intrusion detection systems
  • Regular security audits and vulnerability assessments
  • Two-factor authentication options for user accounts

5.2 Administrative Measures

  • Access controls limiting employee access to personal data on a need-to-know basis
  • Employee training on data privacy and security best practices
  • Confidentiality agreements with employees and contractors
  • Incident response procedures in the event of a data breach

5.3 Data Breach Notification

In the event of a data breach that poses a risk to your rights and freedoms, we will notify affected individuals and relevant regulatory authorities in accordance with applicable law. Where required by law, notification will be provided without undue delay.

While we implement robust security measures, no system is completely secure, and we cannot guarantee the absolute security of your information. You are encouraged to use strong, unique passwords, keep your account credentials confidential, and notify us immediately if you suspect unauthorized access to your account.


6. Your Privacy Rights

Depending on your location, you may have specific rights regarding your personal information. We are committed to honoring these rights in accordance with applicable law.

6.1 Right to Access

You have the right to request a copy of the personal information we hold about you, including the categories of data collected, the purposes for which it is used, and the third parties with whom it has been shared.

6.2 Right to Correction

You have the right to request that we correct any inaccurate or incomplete personal information we hold about you. You may also update certain information directly through your account settings on our website.

6.3 Right to Deletion

You have the right to request the deletion of your personal information, subject to certain exceptions (such as where we are required to retain data to comply with a legal obligation, complete a transaction, or resolve disputes).

6.4 Right to Data Portability

You have the right to request a copy of your personal data in a structured, commonly used, and machine-readable format, and to request that we transmit your data to another controller where technically feasible.

6.5 Right to Opt Out of Marketing

You may opt out of receiving marketing communications from us at any time by following the unsubscribe instructions in our emails or by contacting us at [email protected]. Please note that even after opting out of marketing communications, we may still send you transactional and service-related communications.

6.6 Right to Non-Discrimination

We will not discriminate against you for exercising any of your privacy rights. This means we will not deny you services, charge you different prices, or provide a different quality of service based on your exercise of privacy rights.

6.7 California Residents — Additional Rights Under CCPA/CPRA

If you are a California resident, you have the following additional rights under the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA):

  • Right to Know: The right to know what personal information is collected, used, shared, or sold.
  • Right to Delete: The right to request deletion of personal information collected from you, subject to certain exceptions.
  • Right to Correct: The right to request correction of inaccurate personal information.
  • Right to Opt Out of Sale/Sharing: The right to opt out of the sale or sharing of your personal information. You may exercise this right by contacting us at [email protected].
  • Right to Limit Use of Sensitive Personal Information: The right to limit our use of sensitive personal information to specific permitted purposes.
  • Right to Non-Discrimination: The right not to receive discriminatory treatment for exercising your CCPA/CPRA rights.

California residents may submit a verifiable consumer request by emailing [email protected]. We will respond to verifiable requests within 45 days, with the possibility of a 45-day extension where reasonably necessary.

6.8 How to Submit a Privacy Rights Request

To exercise any of your privacy rights, please contact us using the following method:

Email: [email protected]
Subject Line: Privacy Rights Request

We may need to verify your identity before processing your request. We will respond to your request within the timeframes required by applicable law. We will not charge a fee for processing your request unless it is manifestly unfounded, excessive, or repetitive.


7. Data Retention

We retain your personal information for as long as necessary to fulfill the purposes for which it was collected, including for the purpose of satisfying any legal, accounting, or reporting requirements.

Category of Data Retention Period
Account information Duration of account existence plus 3 years after account closure
Order and transaction records 7 years (for tax and financial compliance purposes)
Payment information Retained by payment processor per PCI DSS requirements
Marketing preferences and consent records Until opt-out plus 3 years
Customer support communications 3 years from date of last interaction
Website usage and analytics data Up to 26 months (as configured in analytics tools)
Cookie and tracking data Per individual cookie lifespan (see Cookie Policy Summary)
Legal hold data Until the conclusion of the relevant legal matter

When personal data is no longer required for its intended purpose and retention is not required by law, we will securely delete, anonymize, or aggregate the data so that it can no longer be associated with any individual.


8. Cookie Policy Summary

Our website uses cookies and similar tracking technologies to enhance your browsing experience, analyze site traffic, and support our marketing activities. Cookies are small text files placed on your device when you visit a website.

8.1 Types of Cookies We Use

  • Strictly Necessary Cookies: Essential for the website to function properly. These cannot be disabled.
  • Performance and Analytics Cookies: Help us understand how visitors interact with our website by collecting and reporting information anonymously.
  • Functional Cookies: Enable enhanced functionality and personalization, such as remembering your preferences.
  • Targeting and Advertising Cookies: Used to deliver relevant advertisements and track the effectiveness of marketing campaigns.

8.2 Managing Your Cookie Preferences

You can manage or disable cookies through your browser settings. Please note that disabling certain cookies may impact the functionality of our website. Most web browsers allow you to refuse or accept cookies, delete existing cookies, and set preferences for certain websites.

For more detailed information about the specific cookies we use and how to manage your preferences, please refer to our full Cookie Policy.


9. Children's Privacy

Our services are intended for individuals who are 18 years of age or older. We do not knowingly collect, use, or disclose personal information from children under the age of 18. Our website and digital services are not directed at children, and we do not intentionally market our services to minors.

If you are a parent or guardian and believe that your child under the age of 18 has provided us with personal information without your consent, please contact us immediately at [email protected]. Upon verification, we will take prompt steps to delete the information from our records.

In compliance with the Children's Online Privacy Protection Act (COPPA), we do not knowingly collect personal information from children under the age of 13. If we become aware that we have collected such information, we will delete it immediately.


10. International Data Transfers

Chopt is a United States-based business, and our primary data processing activities take place within the United States. If you are accessing our services from outside the United States, please be aware that your information may be transferred to, stored, and processed in the United States, where data protection laws may differ from those in your country of residence.

By using our services from outside the United States, you consent to the transfer of your information to the United States and acknowledge that your data will be processed in accordance with this Privacy Policy and applicable U.S. law.

Where required, we implement appropriate safeguards to protect international data transfers, including contractual arrangements with our service providers that require them to protect personal data to standards consistent with applicable law.


11. Third-Party Links and Services

Our website may contain links to third-party websites, social media platforms, or integrated third-party services (such as delivery apps or payment platforms). This Privacy Policy does not apply to those third-party services, and we are not responsible for their privacy practices.

We encourage you to review the privacy policies of any third-party services you access through links on our website. The inclusion of a link to a third-party site does not imply our endorsement of that site or its privacy practices.


12. Do Not Track Signals

Some browsers include a "Do Not Track" (DNT) feature that signals to websites that you do not want your online activity tracked. Currently, our website does not respond to DNT signals because there is no universally accepted standard for how websites should respond to such signals. We continue to monitor developments in this area and may update our practices accordingly.

You may limit tracking through your browser settings, by disabling cookies, or by using browser extensions designed to block tracking technologies.


13. Automated Decision-Making and Profiling

We may use automated processes to personalize your experience, such as recommending menu items based on your order history or delivering targeted promotions based on your preferences. These automated processes are designed to enhance your experience and are not used to make decisions that significantly affect your rights or interests without human oversight.

If you have concerns about automated decision-making as it relates to your personal data, please contact us at [email protected] and we will provide clarification and, where applicable, offer manual review alternatives.


14. Filing a Complaint with a Data Protection Authority

If you are not satisfied with our response to your privacy request or believe we have not handled your personal data in accordance with applicable law, you have the right to file a complaint with the appropriate regulatory authority.

14.1 Federal Trade Commission (FTC)

The Federal Trade Commission enforces consumer protection laws in the United States, including protections against unfair or deceptive practices related to privacy. You may file a complaint with the FTC at:

Federal Trade Commission
Website: www.ftc.gov
Phone: 1-877-382-4357
Mailing Address: Federal Trade Commission, 600 Pennsylvania Avenue NW, Washington, DC 20580

14.2 California Residents — California Privacy Protection Agency (CPPA)

California residents may file complaints with the California Privacy Protection Agency (CPPA), which was established under the CPRA to enforce California privacy law:

California Privacy Protection Agency
Website: cppa.ca.gov
Mailing Address: California Privacy Protection Agency, 2101 Arena Blvd, Sacramento, CA 95834

14.3 State Attorneys General

In addition to federal authorities, you may also have the right to file complaints with your state's Attorney General office regarding violations of state consumer protection or privacy laws.

We encourage you to contact us first at [email protected] so that we have the opportunity to resolve your concern directly before escalating to regulatory authorities.


15. Changes to This Privacy Policy

We reserve the right to update or modify this Privacy Policy at any time to reflect changes in our practices, services, legal requirements, or for other operational reasons. When we make material changes to this policy, we will:

  • Update the "Last Updated" date at the top of this page
  • Post a prominent notice on our website informing you of the changes
  • Where required by law, send you a direct notification via email

We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information. Your continued use of our services after any changes to this Privacy Policy constitutes your acceptance of those changes.


16. Contact Us

If you have any questions, concerns, comments, or requests regarding this Privacy Policy or our data practices, please do not hesitate to contact us using the following details:

Chopt — Privacy Inquiries

Email: [email protected]

Website: chopt-tasty.click

Subject Line: Privacy Policy Inquiry

We are committed to resolving privacy concerns promptly and fairly. Upon receiving your inquiry or request, we will acknowledge receipt and aim to respond fully within the timeframes required by applicable law — typically within 30 to 45 days, depending on the nature of your request and your jurisdiction.

Thank you for trusting Chopt with your personal information. We are dedicated to maintaining the highest standards of privacy and data protection in all aspects of our business.

Chopt | chopt-tasty.click | [email protected] | Privacy Policy — Effective July 16, 2026