Loading...
Menu
0 Cart

WarmLife Supply
  • Menu
  • Home
  •  
  • Privacy Policy

Privacy Policy for TrailKit Supply

Effective Date: October 22, 2025

This Privacy Policy explains how TrailKit Supply ("we," "us," or "our") collects, uses, stores, shares, and protects personal information obtained from users ("you" or "your") of our website (https://www.trailkitsupply.com, or "the Site") and our services (collectively, "Services"). We are committed to complying with applicable data protection laws, including the General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679), the California Consumer Privacy Act (CCPA) (Cal. Civ. Code § 1798.100 et seq.), and other regional privacy laws. By accessing or using the Site or Services, you acknowledge that you have read, understood, and agree to the practices described in this Policy.

1. Types of Personal Information We Collect

We collect personal information that you provide directly to us, as well as information automatically generated when you use our Site or Services. We categorize this information as follows:

1.1 Information You Provide Voluntarily
  • Personal Identifiable Information (PII): This includes information you share when creating an account (e.g., full name, email address, phone number), placing an order (e.g., shipping address, billing address), or contacting customer support (e.g., message content, order references).
  • Payment Information: When you make a purchase, we collect payment details such as credit/debit card numbers (processed via third-party payment providers—we do not store full card details) or PayPal account information, to process transactions and issue refunds.
  • User Preferences: Information about your preferences, such as communication opt-ins (e.g., marketing emails), size preferences for gear, or saved shipping addresses (stored securely in your account).
  • Feedback & Communications: Any information you provide in surveys, reviews, or feedback forms, as well as content from your communications with our team (e.g., support tickets, chat messages).
1.2 Automatically Collected Information
  • Browsing & Device Data: We collect data about how you interact with the Site, including your IP address, browser type (e.g., Chrome, Safari), operating system (e.g., iOS, Windows), device model (e.g., iPhone 15, Dell Laptop), screen resolution, and the pages you visit, time spent on each page, and links clicked.
  • Location Data: We may collect approximate geographic location based on your IP address (e.g., city or region) to optimize shipping options, display relevant local promotions, or comply with regional legal requirements (you can disable location services via your device settings).
  • Cookies & Similar Technologies: We use cookies, web beacons, and pixel tags to track Site usage, remember your account preferences (e.g., logged-in status), and deliver personalized content. For more details, see Section 6 ("Cookies and Similar Technologies").
2. How We Use Your Personal Information

We use your personal information only for legitimate purposes, as permitted by law, and in ways that are consistent with the following:

2.1 To Process and Fulfill Orders
  • Verify your identity and payment details to complete transactions.
  • Arrange shipping and delivery (e.g., share your address with logistics providers like DHL or USPS).
  • Send order confirmations, shipping updates, and invoices via email or SMS.
  • Process returns, exchanges, or refunds (e.g., use your payment information to issue refunds).
2.2 To Manage Your Account
  • Create and maintain your user account (e.g., store your name, email, and preferences).
  • Allow you to access order history, track shipments, or save favorite products.
  • Ensure account security (e.g., verify login attempts, detect unauthorized access).
2.3 To Provide Customer Support
  • Respond to your inquiries, resolve issues (e.g., gear defects, shipping delays), and provide technical assistance.
  • Reference past communications or order history to deliver personalized support.
2.4 To Improve Our Site and Services
  • Analyze browsing data to identify trends (e.g., popular products, user flow) and optimize Site performance (e.g., fix broken links, improve load times).
  • Test new features or product categories based on user behavior (e.g., adding a "Youth Gear" section if many users search for teen-sized ice axes).
2.5 To Send Marketing Communications
  • Share promotions, new product launches, or exclusive offers (e.g., seasonal discounts on trail ropes) via email, SMS, or push notifications—only if you have opted in to receive marketing content.
  • Personalize marketing messages (e.g., recommend hiking gloves if you previously purchased a waterproof gear bag).
  • You can unsubscribe from marketing communications at any time (see Section 5.6 for details).
2.6 To Comply with Legal Obligations
  • Maintain records for tax, accounting, or regulatory purposes (e.g., retain order data for 7 years to comply with tax laws).
  • Respond to lawful requests from government authorities (e.g., court subpoenas, regulatory investigations) or enforce our Terms of Service (e.g., address fraud or misuse of the Site).
3. How We Store and Protect Your Personal Information

We take the security of your data seriously and implement industry-standard measures to prevent unauthorized access, disclosure, or loss:

3.1 Data Storage
  • Personal information is stored on secure servers hosted by trusted third-party providers (e.g., AWS, Google Cloud) that comply with GDPR, CCPA, and ISO 27001 (information security) standards.
  • We retain your data only for as long as necessary to fulfill the purposes outlined in this Policy, or as required by law:
    • Order and payment data: Retained for 7 years (to comply with tax and accounting laws).
    • Browsing data (e.g., IP address, cookie data): Retained for 12 months, unless you request deletion.
    • Account data: Retained for as long as your account is active; if you delete your account, we erase all personal data (except for data needed to comply with legal obligations).
3.2 Security Measures
  • Encryption: All data transmitted between your device and our Site is encrypted using TLS 1.3 (Transport Layer Security), and stored data (e.g., account passwords) is hashed using bcrypt (a secure password-hashing algorithm).
  • Access Controls: Only authorized employees (e.g., customer support, order processing teams) have access to personal data, and access is limited to what is necessary for their role (e.g., support staff can view your order history but not full payment details).
  • Regular Audits: We conduct annual security audits and penetration testing to identify and fix vulnerabilities (e.g., testing for unauthorized access to user databases).
  • Incident Response: If a data breach occurs, we will notify you and relevant regulatory authorities within 72 hours (as required by GDPR) and take steps to mitigate harm (e.g., resetting account passwords, offering identity theft protection if needed).
4. Who We Share Your Personal Information With

We do not sell, rent, or trade your personal information to third parties for marketing purposes. We only share data with trusted partners who assist us in providing our Services, and these partners are required to comply with this Privacy Policy and applicable laws:

4.1 Third-Party Service Providers
  • Payment Processors: Companies like PayPal, Stripe, or Square process payments and handle sensitive payment data (we do not store full credit card numbers—these are stored by the payment processor in compliance with PCI DSS, a global standard for payment security).
  • Logistics Providers: Shipping companies (e.g., DHL, USPS, UPS) receive your shipping address to deliver orders and provide tracking updates.
  • Analytics Tools: Services like Google Analytics or Hotjar collect browsing data to help us improve the Site (you can opt out of Google Analytics via their Opt-Out Browser Add-on).
  • Customer Support Tools: Platforms like Zendesk store support tickets and communications to help us resolve your inquiries.
4.2 Legal and Regulatory Authorities

We share data if required by law, such as:

  • Responding to a court order, subpoena, or request from a government agency (e.g., tax authorities, data protection regulators).
  • Protecting our rights, property, or safety, or the rights of other users (e.g., sharing data to investigate fraud or unauthorized account access).
4.3 Business Transfers

If we are acquired, merged, or sell all or part of our business, your personal information may be transferred to the new owner—but only if the new owner agrees to comply with this Privacy Policy (or a similar policy that protects your rights). We will notify you of such a transfer via email or a prominent notice on the Site.

5. Your Rights Regarding Your Personal Information

Under GDPR, CCPA, and other privacy laws, you have the following rights regarding your personal data. To exercise these rights, contact us at earl30817@gmail.com (see Section 8 for full contact details):

5.1 Right to Access

You can request a copy of the personal information we hold about you (e.g., your order history, account details) free of charge. We will provide this information within 30 days of your request.

5.2 Right to Correct Inaccurate Data

If your personal information is incorrect or incomplete (e.g., an outdated shipping address), you can request to update it. You can also edit most account details directly via your "Account Settings" page on the Site.

5.3 Right to Delete (Right to Be Forgotten)

You can request that we delete your personal information, provided we are not required by law to retain it (e.g., we cannot delete order data needed for tax compliance). If you delete your account, we will erase all data associated with it (except for legally required records).

5.4 Right to Restrict Processing

You can ask us to stop processing your data (e.g., if you dispute the accuracy of your data, or if processing is unnecessary). For example, you can request that we stop using your browsing data to improve the Site.

5.5 Right to Data Portability

You can request a copy of your personal data in a structured, machine-readable format (e.g., CSV file) so you can transfer it to another service provider (e.g., export your order history to another outdoor gear site).

5.6 Right to Opt Out of Marketing

You can unsubscribe from marketing emails or SMS at any time by clicking the "Unsubscribe" link in our emails, replying "STOP" to SMS messages, or updating your communication preferences in your account settings. Opting out will not affect non-marketing communications (e.g., order confirmations).

5.7 Right to Object to Processing

You can object to certain types of processing, such as using your data for direct marketing or analytics. We will stop processing your data unless we have a compelling legal reason to continue (e.g., complying with a court order).

We will not charge you for exercising these rights, unless your request is excessive, repetitive, or unfounded (in which case we may charge a reasonable fee or decline the request).

6. Cookies and Similar Technologies

We use cookies (small text files stored on your device) and similar technologies (e.g., web beacons, pixel tags) to enhance your Site experience. Below is a breakdown of the cookies we use:

6.1 Types of Cookies
  • Necessary Cookies: Required for the Site to function (e.g., cookies that keep you logged in, or remember your cart items). You cannot disable these cookies (they are essential for basic functionality).
  • Performance Cookies: Collect data about how you use the Site (e.g., which pages load slowly) to improve performance. These do not identify you personally (e.g., Google Analytics cookies).
  • Functional Cookies: Remember your preferences (e.g., saved shipping addresses, language settings) to personalize your experience.
  • Marketing Cookies: Used to deliver personalized ads (e.g., showing you discounts on ice axes if you viewed them previously) or track the effectiveness of marketing campaigns.
6.2 How to Manage Cookies
  • You can control cookies via your browser settings:
    • Chrome: Settings > Privacy and security > Cookies and other site data.
    • Safari: Preferences > Privacy > Manage Website Data.
    • Firefox: Settings > Privacy & Security > Cookies and Site Data.
  • Disabling non-necessary cookies may affect your Site experience (e.g., you may have to re-enter your shipping address for each order).
7. Children’s Privacy

Our Site is not intended for children under the age of 13 (or 16 in the EU, under GDPR). We do not knowingly collect personal information from children under these ages. If we discover that we have collected data from a child without parental consent, we will delete it immediately. Parents or guardians who believe their child has provided data to us can contact us at earl30817@gmail.com to request deletion.

8. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in laws, our business practices, or new features. When we make updates:

  • We will revise the "Last Updated" date at the top of the Policy.
  • We will notify you via email (if you have an account) or a prominent notice on the Site (for non-account users) if the changes are significant (e.g., new ways we use your data).

We encourage you to review this Policy periodically to stay informed about how we protect your data.

9. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or your personal information, please contact us:

  • Email: earl30817@gmail.com

You may also lodge a complaint with a data protection authority if you believe we have violated your privacy rights (e.g., the ICO in the UK, CNIL in France, or the CCPA in California).