Privacy Policy

1. Introduction

Heritage Boot Company ("we," "our," or "us") respects your privacy and is committed to protecting your personal data. This privacy policy explains how we collect, use, disclose, and safeguard your information when you visit our website or make a purchase from us.

This policy applies to all visitors of our website, regardless of location, and complies with applicable data protection laws including the EU General Data Protection Regulation (GDPR), UK GDPR, California Consumer Privacy Act (CCPA), and other US state privacy laws.

2. Information We Collect

Personal Information

We may collect the following personal information:

• Name and contact information (email, phone number, shipping/billing address)
• Payment information (processed securely through Stripe)
• Order history and preferences
• Account credentials (if you create an account)
• Communications with us (customer service inquiries, reviews)

Automatically Collected Information

When you visit our website, we automatically collect:

• IP address and approximate location
• Browser type and version
• Device information
• Pages visited and time spent
• Referring website
• Shopping behavior and preferences

3. How We Use Your Information

We use your information for the following purposes:

• Order Processing: To process and fulfill your orders, including shipping and customer service
• Communication: To send order confirmations, shipping updates, and respond to inquiries
• Marketing: To send promotional emails (with your consent)
• Improvement: To analyze website usage and improve our products and services
• Legal Compliance: To comply with legal obligations and protect our rights
• Fraud Prevention: To detect and prevent fraudulent transactions

4. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your browsing experience. These include:

• Essential Cookies: Required for website functionality
• Analytics Cookies: Help us understand how visitors use our site (PostHog)
• Marketing Cookies: Used to deliver relevant advertisements

You can manage your cookie preferences through our cookie banner or your browser settings. For more details, see our Cookie Policy.

5. Data Sharing and Disclosure

We share your information only in the following circumstances:

• Service Providers: With trusted third parties who assist in operating our website and business (e.g., Stripe for payments, shipping carriers)
• Legal Requirements: When required by law or to protect our rights
• Business Transfers: In connection with a merger, acquisition, or sale of assets
• Consent: With your explicit consent

We do not sell your personal information to third parties.

6. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These measures include:

• SSL encryption for data transmission
• Secure payment processing through PCI-compliant providers
• Regular security assessments
• Access controls and authentication

7. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this policy, unless a longer retention period is required by law. Typical retention periods include:

• Order information: 7 years for tax and accounting purposes
• Marketing communications: Until you opt-out
• Website analytics: 24 months

8. Your Rights

For EU/UK Residents (GDPR Rights)

If you are located in the EU or UK, you have the following rights:

• Access: Request a copy of your personal data
• Rectification: Request correction of inaccurate data
• Erasure: Request deletion of your data ("right to be forgotten")
• Restriction: Request limitation of processing
• Portability: Receive your data in a portable format
• Object: Object to certain processing activities
• Withdraw Consent: Withdraw consent at any time
• Complaint: Lodge a complaint with your supervisory authority

For California Residents (CCPA Rights)

If you are a California resident, you have the following rights:

• Know: Right to know what personal information we collect, use, and disclose
• Delete: Right to request deletion of your personal information
• Opt-Out: Right to opt-out of the sale of personal information (we do not sell personal information)
• Non-Discrimination: Right not to be discriminated against for exercising your rights

For Other US State Residents

Residents of Virginia, Colorado, Connecticut, and Utah have similar rights to access, delete, and opt-out of certain data processing activities.

To exercise any of these rights, please contact us at info@heritageboot.com or call us at (512) 326-8577.

9. International Data Transfers

Our website is operated from the United States. If you are located outside the US, please be aware that your information will be transferred to and processed in the US. For EU/UK residents, we ensure appropriate safeguards are in place for such transfers, including standard contractual clauses where applicable.

10. Children's Privacy

Our website is not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16. If you believe we have collected information from a child under 16, please contact us immediately.

11. Changes to This Policy

We may update this privacy policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last Updated" date. We encourage you to review this policy periodically.

12. Contact Us

If you have any questions about this privacy policy or our data practices, please contact us:

For EU/UK residents: You may also contact our EU representative at info@heritageboot.com