Privacy Policy

Effective date: April 10, 2026 | Last updated: April 10, 2026

Sierra Restaurants ("Sierra", "we", "our", or "us") is committed to protecting your privacy and handling your personal data transparently, lawfully, and securely. This Privacy Policy explains how we collect, use, disclose, retain, and protect information when you visit our websites, place orders, make reservations, attend our events, contact us, or otherwise interact with our services.

By using our services, you acknowledge this Privacy Policy. If you do not agree with this Policy, please discontinue use of our websites and services.

1. Scope of This Policy

This Policy applies to personal data collected through:

  • Our websites, landing pages, and online forms.
  • Reservation, ordering, event registration, and loyalty interactions.
  • Customer support communications (email, phone, and social channels).
  • Marketing communications and promotional campaigns.
  • In-person interactions that are later recorded in our systems.

2. Personal Data We Collect

2.1 Data you provide directly

  • Identity and contact details: name, email address, phone number.
  • Booking and order details: reservation preferences, special requests, order history, and delivery or pickup details.
  • Feedback and communications: inquiries, complaints, reviews, survey responses, and correspondence content.
  • Marketing preferences: consent choices and communication interests.
  • Event details: attendance confirmations and event-specific preferences where relevant.

2.2 Data collected automatically

  • Device and browser information, IP address, and approximate location.
  • Usage data such as pages viewed, interactions, referral sources, and session behavior.
  • Cookie and tracking data for analytics, performance, and advertising insights.

2.3 Data from third parties

  • Delivery, booking, and social media platforms where you interact with us.
  • Analytics and advertising partners that provide campaign and audience insights.
  • Payment processors, where applicable, for transaction confirmation metadata.

3. How We Use Personal Data

We use personal data only for defined business purposes, including to:

  • Operate, provide, and improve our restaurant services and digital experiences.
  • Process reservations, orders, requests, and customer communications.
  • Personalize service experiences and respond to preferences and inquiries.
  • Send transactional communications (e.g., confirmations, updates, and service messages).
  • Send marketing content where permitted by law or based on your consent.
  • Measure website performance, campaign effectiveness, and customer engagement.
  • Prevent fraud, abuse, and unauthorized access; maintain service integrity and security.
  • Comply with legal obligations, law enforcement requests, and regulatory requirements.

4. Legal Bases for Processing

Where applicable, we process personal data under one or more lawful bases:

  • Performance of a contract (e.g., reservations, orders, and customer service fulfillment).
  • Legitimate interests (e.g., service improvement, fraud prevention, and analytics).
  • Consent (e.g., certain marketing communications and optional tracking technologies).
  • Legal obligation (e.g., taxation, accounting, and mandatory compliance requirements).

5. Cookies and Tracking Technologies

We use cookies, pixels, and similar technologies to support site functionality, analytics, and advertising performance. These technologies may collect device identifiers, browsing activity, and engagement signals.

5.1 Categories of cookies

  • Essential cookies required for core website functionality.
  • Analytics cookies used to understand traffic and improve user experience.
  • Marketing cookies used for campaign measurement and audience relevance.

You may manage certain cookie preferences through your browser settings. Disabling some cookies may impact website functionality.

6. Sharing and Disclosure of Personal Data

We do not sell personal data. We may share personal data only in the following circumstances:

  • With service providers that process data on our behalf (e.g., hosting, analytics, communication, and operational support).
  • With booking, delivery, event, or payment partners as necessary to complete requested services.
  • Within affiliated entities under common ownership where operationally necessary.
  • With professional advisors (legal, compliance, audit) under confidentiality obligations.
  • With public authorities when required by law, court order, or enforceable legal process.
  • During corporate transactions (merger, restructuring, or asset transfer), subject to lawful safeguards.

7. Data Retention

We retain personal data only as long as necessary for the purposes described in this Policy, unless a longer period is required or permitted by law. Retention periods are determined by legal obligations, operational need, dispute resolution, and security considerations.

When data is no longer required, we securely delete, anonymize, or otherwise de-identify it in line with applicable standards.

8. International Data Transfers

Depending on the service provider and technical infrastructure used, personal data may be processed outside your country of residence. Where required, we implement appropriate safeguards for cross-border transfers, including contractual and technical protections.

9. Data Security

We implement administrative, technical, and organizational safeguards to protect personal data against unauthorized access, loss, misuse, alteration, and disclosure. Security measures include controlled access, secure hosting controls, and monitoring practices appropriate to the nature of processed data.

No system is completely risk-free; however, we continuously improve our controls to reduce risk and maintain service resilience.

10. Your Privacy Rights

Subject to applicable law, you may have rights to:

  • Access personal data we hold about you.
  • Request correction of inaccurate or incomplete data.
  • Request deletion of data where legal grounds apply.
  • Object to or restrict certain processing activities.
  • Withdraw consent where processing relies on consent.
  • Request portability of certain personal data where applicable.
  • Opt out of direct marketing communications at any time.

To exercise your rights, contact us using the details in Section 14. We may need to verify identity before processing requests.

11. Marketing Communications

You may receive promotional communications from us where legally permitted or based on your consent. You can opt out any time by using unsubscribe links or contacting us directly. Operational and transactional messages related to bookings, orders, or account/service activity may still be sent when necessary.

12. Children's Privacy

Our websites and services are not intentionally directed to children below the minimum age required by applicable law. We do not knowingly collect personal data from children without authorized consent where required. If you believe a child has provided personal data without proper authorization, contact us for prompt review and action.

13. Changes to This Privacy Policy

We may update this Policy periodically to reflect operational, legal, or regulatory changes. Material changes will be posted on this page with an updated "Last updated" date. Continued use of our services after updates constitutes acknowledgment of the revised Policy.

14. Contact Us

For privacy questions, rights requests, or data protection concerns, contact:

Sierra Restaurants is committed to transparent and responsible data stewardship.