Privacy Policy

Thank you for visiting the Opus One website. At Opus One, we recognize and respect our customers’ right to privacy. We have developed this Privacy Policy to ensure you that the information we collect is only what we need to conduct business and to outline the steps we take to protect the trust you have placed in us. Please read the following information carefully as it defines when this notice is effective, what information we collect, how we might use it, how you can review or change your personal information, how we may change this notice, and the steps we take to ensure that your personal information is protected.

If you have a specific question, please click on the appropriate section below:

  1. What information is collected?
  2. How do we use this information?
  3. How does our site interact with third-party services and content?
  4. What information do we share with third parties (or what information may they access because of the services they provide to us)?
  5. What choices do you have over how your information is used?
  6. California Consumer Privacy Act Rights and How to Exercise Them
  7. Fraudulent Requests
  8. Additional options to edit or delete your information
  9. Does our site respond to do-not-track signals?
  10. What if I access this site from my mobile device?
  11. How do we secure and retain your information on site?
  12. What age do you have to be to use this site?
  13. What governing law applies?
  14. What if I live outside the United States?
  15. Changes to this Privacy Policy
  16. No Third-Party Rights
  17. Whom should I contact with questions, concerns, or to exercise a privacy, right?

1. What information is collected?

We collect two types of information: Identifying Information and Non-Identifying Information. The following is information collected by us in the preceding 12 months. This policy contains information specifically related to the rights of California residents, please see that section below.

Types of Identifying Information we collect

When you create a profile, or when you enter such information on this Site, we may collect personal information from you including your:

  • Salutation
  • First and last name
  • Email address
  • Phone number
  • Billing and shipping addresses
  • Payment information
  • Date of birth
  • Order history
  • Winery visit history
  • Profile name and password

We may also collect information that you provide about people you know. For example, we collect your gift recipient’s contact information and date of birth to process your gift  orders, or that of the guests that will be accompanying you on a visit to the winery.

Types of Non-Identifying Information we collect

We may also collect general information resulting from your activity on the site, including your preferences, insights, and other tendencies. This may include anonymous “traffic data” or tracking information provided by the website’s host or similar provider of such information (e.g., Forter, Google Analytics, Fullsteam) that does not personally identify you, but may be helpful for fraud analysis, marketing purposes or for improving the services we offer. Fraud analysis includes tracking the behavior of visitors and comparing their actions to known and tested behavioral trends. At purchase, the model reviews the numerous attributes associated with the transaction to assess the validity of the transaction.

Analytics is the process of collecting, analyzing, and reporting aggregate data. This information may include which pages visitors visit, how long visitors stay on a particular page, and where visitors are located. It may also provide information about what browser, network, or device is used to visit our site. To learn more about Google Analytics and how to opt out, please visit https://tools.google.com/dlpage/gaoptout. In addition, when you visit our site, we may also log your IP address, and a unique identifier for your computer or other access device. This helps us diagnose problems with our server, to administer our site, or to display the content according to your preferences.

We also use cookies and web beacons

Cookies are used by many websites. A cookie is a string of information that the website you visit transfers to your computer for identification purposes. Cookies can be used to follow your activity on the website and that information helps websites to understand your preferences and improve your website experience. Cookies are also used for such activities as remembering your username and password, if you use such a feature on this site. Based on the software you are using to access the website; you can turn off all cookies in the event you prefer not to receive them. You can also have your computer warn you whenever cookies are being used. There are also software products available that can manage cookies for you. Please be aware, however, that when you choose to reject cookies, this choice may limit the functionality of the Opus One website, and you may lose access to some of its features.

Another tool used by many websites is web beacons. A web beacon is an invisible pixel-sized graphic image on a web page, web-based document or e-mail message. It helps us view the URL of the page on which the beacon appears and can provide the time when the site, a document or an email is viewed. They can be used to confirm the receipt of, and response to our emails, including those that you forward to friends and family; and they help deliver a more personalized online experience.

Location Information

We may also receive and collect location-based information including your geolocation.  If your device and software allow for the collection of location information, we will collect information about the Wi-Fi routers closest to you, cell IDs of the cell towers closest to you, and the strength of your Wi-Fi or cell signal. We use this information to return an estimated location. Please be aware, however, that when you decline to provide location information (see §5 below), this choice may limit the functionality of the Opus One website, and you may lose access to some of its features.

Sources of Information

We obtain the categories of personal information listed above from the following categories of sources.

  • Directly from our customers and users;
  • Indirectly from our customers and users through website usage details collected automatically; and
  • From our service providers.

2. How do we use this information?

We primarily use the personal information you provide and any general information we receive from you to perform the following activities:

  • Create and manage your profile.
  • Process your online orders.
  • Personalize your online experience.
  • Book visits to our winery.
  • Provide customer service, whether it’s responding to a request or following up on an
  • Improve our services and the interactions you have with our site.
  • Market products and services that may be of interest to you – for instance, we may add you to the Opus One email list and newsletter when you make an online purchase or sign up; and
  • Comply with and enforce applicable legal requirements, relevant industry standards and our policies.

Opus One does not disclose, sell, exchange, or transfer the personal information you provide on this website except as specifically noted in this privacy policy. We do not engage in (1) targeted or cross contextual advertising, or (2) profiling of consumers, as such terms are defined by applicable privacy laws.

Sensitive Information

Except as outlined in this privacy policy, we do not use or disclose any sensitive information on you except to perform services or provide the goods reasonably expected by you, for fraud detection purposes, and to detect security incidents–for example, we collect your age, and our service providers collect credit card information when you are making a purchase from us.

3. How does our site interact with third-party services and content?

We may link to third party sites and services or otherwise display third-party content through our site. Here are some examples of third-party content and services available through or via our site:

  1. Google Maps – We may facilitate easy access to the online maps of content providers like Google. There you can get quick location, driving, and contact information for our winery.
  2. YouTube or Vimeo – We may embed content on our site from other online services, such as a recorded video that is stored and delivered by the third-party website.
  3. Social Media – We may facilitate easy access to third-party sites and online services, like social networks and other services that host user-generated content such as, but not limited to, Facebook, LinkedIn and Instagram.
  4. Payment Processing – We work with service providers to process payments. These include, but are not limited to: FullSteam, Apple Pay, and GooglePay.
  5. Delivery and Compliance – We work with third-party vendors to deliver our products. These include but are not limited to: FedEx and ShipCompliant.
  6. Detection of Fraudulent Activity – We engage a third-party vendor to assist with detecting fraudulent activity. For example, every transaction is submitted for real time, automated assessment of fraud. Vendors include but are not limited to: Forter.

These links take you off our site and are beyond our control. Please note that these other sites may send their own cookies to users, collect data, or solicit personal information. We urge you to review the data protection, privacy, and cookie policies available on their websites. While our goal is to work with reputable services, we do not accept any responsibility or liability for the data protection of privacy practices of third parties in relation to such websites. Your use of third-party websites is entirely at your own risk.

For your convenience, the following are links to the privacy policy of several key service providers:

4. What information do we share with third parties (or what information may they access because of the services they provide to us)?

We will not sell or share your personal information or general information to third parties without informing you in advance (such as via this privacy policy). However, we provide some of our services through contractual arrangements with affiliates and service providers. Our service providers may use your personal information to operate the Opus One website and deliver our services. We use these service providers to help handle parts of our business. They help us do things like fulfill orders, process payments, provide analytics, assist with marketing, monitor activity, maintain databases, and administer and monitor emails. These parties will only use your data for the purpose of carrying out the work as agreed with us.

Disclosure of your information for security purposes.

Opus One fully cooperates with law enforcement agencies in identifying those who use our site for illegal activities. We will release personal or general information without your consent for security purposes, when required by law, or to prevent imminent harm to any person or entity. We will disclose personal or general information on receipt of a court order or subpoena, or to cooperate with a law enforcement investigation, which may include responding to requests and court orders from jurisdictions outside the United States. We reserve the right to report to law enforcement agencies any activities that we in good faith believe to be unlawful, as determined in our sole discretion.

5. What choices do you have over how your information is used?

For all users:

  1. Email – Those who wish to opt-out from receiving email offers will have their email address removed within 30 days of receipt of their request to opt-out or to unsubscribe at ecommerce@opusonewinery.com. If you have multiple email addresses, you will need to opt-out for each address to be removed from our active
  2. Location information – You may have the ability to turn location-based services on and off by adjusting the settings of your Internet browser or mobile device or, for some devices, by revoking permission for our mobile apps to access your location
  3. Newsletter – If you would like to specify your preferences for our postal mail you can let us know by emailing ecommerce@opusonewinery.com.
  4. Cookies and web beacons – Your browser may offer the ability to block or delete cookies from your device. Simply follow your browser’s instructions on how to block and clear cookies.

6. California Consumer Privacy Act Rights and How to Exercise Them

For California residents, the California Consumer Privacy Act (“CCPA”) gives you certain additional rights

  1. The right to know about the personal information we collect about you and how it is used and shared;
  2. The right to delete personal information collected from you (with some exceptions);
  3. The right to correct inaccurate personal information that we have about you;
  4. The right to limit the use and disclosure of your sensitive personal information;
  5. The right to opt-out of the sale or sharing of your personal information; and
  6. The right to non-discrimination for exercising your CCPA rights.

Requests to Know – How They Work

How

You may submit a Request to Know through email or by calling us via the contact information below. A Request to Know covers personal information about you that a business has in its possession, including : (1) specific pieces of personal information that a business has collected about the consumer; (2) categories of personal information it has collected about the consumer; (3) categories of sources from which the personal information is collected; (4) categories of personal information that the business sold or disclosed for a business purpose about the consumer; (5) categories of third parties to whom the personal information was sold or disclosed for a business purpose; and (6) the business or commercial purpose for collecting or selling personal information.

When

We endeavor to respond to a verifiable consumer request within 45 days of its receipt. If we require more time (up to 90 days), we will inform you of the reason and extension period in writing. You may only make a verifiable consumer request for access twice within a 12-month period. We will confirm your request and inform you of any information required to verify the request.

Requests to Delete – How They Work

How  

You may submit a Request to Delete through email or by calling us via the contact information below. We will confirm your request and inform you of any information required to verify the request.

When

 We endeavor to respond to a verifiable consumer request within 45 days of its receipt. If we require more time (up to 90 days), we will inform you of the reason and extension period in writing.

Requests to Correct – How They Work

How

You may submit a Request to Correct through email or by calling us via the contact information below. We will confirm your request and inform you of any information required to verify the request. Where Opus One believes you will not be negatively impacted by the deletion of the data you wish corrected, we will simply delete the inaccurate data in response to Requests to Correct.

When

We endeavor to respond to a verifiable consumer request within 45 days of its receipt. If we require more time (up to 90 days), we will inform you of the reason and extension period in writing.

Requests to Limit Sensitive Information – How They Work

How

You may submit a Request to Limit the Use and Disclosure of your Sensitive Information through email or by calling us with a request via the contact information below. We will confirm your request and inform you of any information required to verify the request.

When

We endeavor to respond to a verifiable consumer request to limit sensitive information within 15 days of its receipt.

Requests to Opt-Out (Do Not Sell Information) – How They Work

How

You may submit a Request to Opt-Out through our form, email or calling us with a request via the contact information below. We will comply with your request and, where necessary, inform you of any information required to verify the request. If Opus One, however, has a good-faith, reasonable, and documented belief that a request to opt-out is fraudulent, Opus One may deny the request. In instances of denial for suspected fraud, Opus One shall inform the requestor that it will not comply with the request and shall provide an explanation why it believes the request is fraudulent.

When    

For most requests, we endeavor to respond to a verifiable consumer opt-out request within 15 days of its receipt.

Additional Request Details

Third Parties

Requests from an authorized agent must include proof of a signed consumer authorization subject to verification from the consumer.

Denial of Requests

We cannot respond to your request or provide you with personal information if we cannot verify your identity or authority to make the request and confirm the personal information relates to you. We may need additional information to verify your identity. We will only use personal information provided in a verifiable consumer request to verify the requestor’s identity or authority to make the request. In addition, we reserve the right to deny your request for any basis provided for under state or federal law.

Disclaimer

We will process your request to disclose information regarding information collected and/or shared pursuant to applicable privacy law as to the name submitted by you. Please note that our search will be limited to the name provided, if there are other variations of this name (e.g., spelling, initials, suffix) they must be specified, otherwise they will not necessarily be captured in our search.

Non-Discrimination

You have the right to not be discriminated against or receive discriminatory treatment for exercising your rights under applicable privacy law. We will not discriminate against you for exercising any of your rights under applicable privacy law.

7. Fraudulent Requests

Opus One takes consumer requests seriously, and endeavors to protect your privacy and comply with your requests. However, if Opus One has a good-faith, reasonable, and documented belief that a consumer request is fraudulent, Opus One may deny such a request. This basis for denial applies to all consumer requests and may be subject to the limitations and requirements of applicable state privacy laws with which Opus One will always comply.

Examples of fraudulent requests include, but are not limited to:

  • Impersonating another person. If you make a request, you must do so in your own name, or as an authorized agent of another person. If you are an authorized agent of another person, you must disclose that fact and provide proof of the consumer’s authorization. Impersonating another person is fraud.
  • Obscuring your identity as a consumer making a request. Knowing who is making a request about their information is foundational to the process of completing those requests.

Examples of this include forging headers, using a virtual private network (VPN) to obscure your IP address, or otherwise obscuring or anonymizing your email or IP address. Opus One is happy to comply with your request, but it is essential that we know you are a real person and that you are who you claim to be.

Using automated means to send multiple unverified requests or requests without proof of authorization.

Opus One will work with third party authorized agents to process bulk consumer requests. Using automated means to submit multiple or bulk unverified requests, or requests without any proof of authorization, to Opus One is against our Terms and Conditions, puts a disproportionate load on our systems, and interferes with our processing of legitimate consumer requests.

8. Additional options to edit or delete your information

By logging into your profile, you can delete credit card information, billing and shipping address information, your phone number, and email address. You can change your name; however, you cannot delete it. If you would like to permanently delete your profile, you can email us at ecommerce@opusonewinery.com. Please note that your name, order history, and reservation history cannot be deleted from our system.

9. Does our site respond to do-not-track signals?

The Opus One Site is compatible with Global Privacy Control (https://globalprivacycontrol.org/), and will respect opt-out signals from California residents.

Otherwise, Opus One does not recognize automated browser signals regarding tracking mechanisms, which may include ‘do-not-track’ instructions. However, in most Internet browsers, you can change your privacy preferences regarding the use of cookies and similar technologies. You may set your browser to accept all cookies, block certain cookies, require your consent before a cookie is placed in your browser, or block all cookies. Please note, blocking all cookies will affect your online experience and may prevent you from enjoying the full features offered by our website.

10. What if I access this site from my mobile device?

We collect and use information about you in the same way and for the same purposes if you access the Opus One site from your mobile device, as we do when you use our website.

11. How do we secure and retain your information on site?

To protect both the personal information and the general information that we receive from you through the website, we have implemented various security measures. We will take all steps that are reasonably necessary to ensure that your data is treated securely. All information you provide to us is stored in secure managed servers. We are compliant with the Payment Card Industry Data Security Standard (PCI-DSS). In addition, our third-party payment processing vendors are also PCI compliant. Where we have given you, or where you have chosen, a password which enables you to access certain parts of the site, you are responsible for keeping this password confidential. We ask that you never share your password with anyone. If you believe the confidentiality of your password has been compromised, you may change your password via your profile or the “forgot password?” feature.

While we implement the above security measures on our site, you should be aware that 100% security is not possible. Whenever you give out personal information online there is a risk that third parties may intercept and use that information. While we strive to protect your personal information and privacy, we cannot guarantee the security of any information you disclose online. By using this site, you expressly acknowledge and agree that we cannot guarantee the security of any data provided to or received by us through this site and that any personal information, general information, or other data or information received from you through the site is provided at your own risk. We are not liable for any damages arising out of, or in any way connected with, a third party’s unauthorized access to your information. 

We will retain your personal information only for as long as is necessary for the purposes set out in this Privacy Policy. We will retain and use your personal information to the extent necessary to comply with our legal obligations (for example, if we are required to retain your data to comply with applicable laws), resolve disputes, and enforce our legal agreements and policies.

12. What age do you have to be to use this site?

This site is not intended for use by people under the legal drinking age (21 years old in the United States and many other countries). If you are not certain that you are over the legal drinking age in your jurisdiction, do not use this website. You may also send an email to ecommerce@opusonewinery.com to inquire about the age restriction for your jurisdiction. We will not knowingly collect information from minors in the United States or elsewhere. Personal registration information submitted by a person under the age of 21 will not be accepted. Any general information provided by a person under the age of 21 and gathered (for example, through the use of cookies) during his or her visit may be used as indicated in this privacy notice.

13. What governing law applies?

This notice and our privacy practices will be subject exclusively to the laws of the State of California within the United States of America, without regard to its conflict of laws doctrine. By using our site, you hereby irrevocably submit to the exclusive jurisdiction of the competent courts of California for any claim or matter arising under or in connection with the site.

14. What if I live outside the United States?

The Opus One site is hosted and operated entirely in the United States and is subject to United States law. Any personal information that you provide to Opus One is being transferred to us for use solely in the United States and will be hosted on United States servers. By using our site, you understand that your information will be transferred to our servers and those with whom we share it as described in this Notice. If you are accessing the Opus One Site from outside the United States, please be advised that United States law may not offer the same privacy protections as the law of your jurisdiction.

To the extent we are required and capable, we maintain our site and information collection practices in a way that conforms with the laws of other jurisdictions. If you are from a jurisdiction whose information collection practices differ from ours, please notify us so that we may take necessary action. This may include terminating your account and deleting your information.

We are committed to resolving any concerns you may have. If you have any questions, or would like to terminate your account profile, please email us

at ecommerce@opusonewinery.com.

15. Changes to this Privacy Policy

We may update our Privacy Policy from time to time. Thus, we advise you to review this page periodically for any changes. We will notify you of any changes by posting the new Privacy Policy on this page, or as otherwise required by applicable laws and regulations. These changes are effective immediately, after they are posted on this page.

16. No Third-Party Rights

This Privacy Policy does not create rights enforceable by third parties.

17. Whom should I contact with questions, concerns, or to exercise a privacy, right?

If you have any questions or concerns relating to the Opus One site or this Privacy Notice, send an email to ecommerce@opusonewinery.com or call (707) 944-9442.

Please email ecommcerce@opusonewinery.com or call (707) 944-9442 if you need to:

  • Access your personal information
  • Make any changes to your personal information
  • Erase or forget your personal data*
  • For California residents, to exercise your rights under CCPA

*Please note that in some instances for record-keeping or transactions, we may need to hold on to information when required by law

When was this notice last updated?

Last updated March 24th, 2026