Privacy Policy
Last updated: 06 July 2025 | Effective date: 06 July 2025
At StirTshirt we print each garment on demand and ship it straight to your door. To do that safely and efficiently we must collect and use certain personal information. This Privacy Policy explains — in plain English — what we collect, why we collect it, how long we keep it, and the choices you have.
1. Who We Are
StirTshirt
2974 Mansion Ave, Claymont, DE 19703, USA
Phone: +1 (302) 351-8942 | Email: [email protected]
Hours: Mon-Sat, 09:00 – 17:00 EST
2. What We Collect
| Category | Typical Data Points | How We Obtain It |
|---|---|---|
| Identity | Name, username, order number | Provided by you at checkout or account creation |
| Contact | Shipping address, billing address, email, phone | Provided by you |
| Payment | Card type, last 4 digits, PayPal transaction ID | Passed through PayPal; we never see full card numbers |
| Order Details | Product size, color, custom text, quantity, price | Generated during purchase |
| Usage | Pages visited, click paths, time on site | Cookies & analytics tools |
| Device | IP address, browser, device type | Cookies & log files |
| Marketing Preferences | Newsletter opt-in, SMS consent | Provided by you |
We do not intentionally collect sensitive data such as race, religion, or biometric identifiers.
3. Why We Collect Your Data
- Order Processing — print your garment, take payment, arrange shipping, email tracking.
- Customer Support — locate your order, verify identity, troubleshoot delivery.
- Fraud Prevention — detect suspicious activity and protect cardholders.
- Legal Compliance — maintain tax records, comply with consumer-protection laws.
- Marketing (with consent) — send product launches, discount codes, and style tips you actually want.
- Site Improvement — analyze traffic to fix bugs and design better collections.
We never sell your personal data.
4. Legal Bases (GDPR)
- Contractual necessity — processing orders, returns, and payments.
- Legitimate interests — fraud prevention, network security, personalized sizing advice.
- Consent — email newsletter or SMS promotions (you may withdraw anytime).
- Legal obligation — tax reporting, bookkeeping.
5. Cookies & Tracking
| Type | Purpose | Duration |
|---|---|---|
| Essential | Keep items in cart, stay logged-in | Session / 24 h |
| Analytics (Google Analytics 4) | Understand traffic patterns | 2 years |
| Marketing (Meta Pixel, Google Ads) | Measure ad performance | 90 days |
Opt-out: Use the cookie banner, browser settings, or Network Advertising Initiative tools to disable non-essential cookies.
6. Who We Share With
| Recipient | Why | Location | Safeguard |
|---|---|---|---|
| PayPal | Secure payment processing | USA/EU | PCI-DSS compliance |
| Print Facility Partners | Print your specific size/design | USA | Data-processing agreements |
| UPS / USPS / DHL | Deliver your parcel & updates | Global | Shipment contracts |
| Email Service (Brevo) | Order confirmations & newsletters | EU | Standard Contractual Clauses |
| Fraud-screening service | Prevent charge-backs | USA | Encryption, limited fields |
We release data to law-enforcement only when legally required.
7. Data Retention
| Data Set | Retention Period | Rationale |
|---|---|---|
| Completed orders | 7 years | U.S. tax & accounting rules |
| Abandoned carts | 30 days | Give you a chance to complete purchase |
| Marketing consent record | Until you unsubscribe + 30 days | Audit trail |
| Support tickets | 2 years | Quality assurance |
When retention expires we securely delete or anonymize the data.
8. Security Measures
- 256-bit SSL encryption on every page (HTTPS).
- Server firewalls, malware scans, least-privilege admin access.
- Hashing of account passwords (BCrypt).
- Annual PCI-DSS attestation via PayPal for payment flows.
No Internet transmission is 100 % secure, but we follow industry best practices to minimize risk.
9. Your Rights
| Region | Rights |
|---|---|
| EU / UK (GDPR) | Access, correction, deletion, restriction, portability, objection |
| California (CCPA/CPRA) | Know, delete, opt-out of sale/share, non-discrimination |
| Virginia, Colorado, Connecticut | Similar rights to California |
Exercising rights – Email [email protected] with “Privacy Request” in the subject. We will respond within 30 days (15 days for California opt-out).
10. Children’s Privacy
Our site is not directed to children under 13. We do not knowingly collect data from minors. If you believe a child has provided personal information, contact us and we will promptly delete it.
11. International Transfers
We are based in the United States. By using the Site, you acknowledge that your data may be processed in the U.S. and other countries. We rely on Standard Contractual Clauses and equivalent safeguards for cross-border transfers.
12. Changes to This Policy
If we make material changes, we will:
- Update the “Last updated” date above.
- Post a banner on the homepage for at least 7 days.
- Email account holders if the change impacts stored orders or consents.
Continued use of the Site after the effective date constitutes acceptance of the updates.
13. Contact
- Privacy Officer: Nguyen Huy (Data Protection Lead)
- Email: [email protected]
- Mail: StirTshirt, Attn: Privacy, 2974 Mansion Ave, Claymont, DE 19703, USA
- Phone: +1 (302) 351-8942
We take your privacy seriously. If you have any question, concern, or complaint, reach out — we will do our best to resolve it swiftly and transparently.