Privacy Policy
Privacy Policy
Grumpy Dad Co
Last updated: May 19 2025
1. Scope
This Privacy Policy (“Policy”) explains what personal data we collect at grumpydadco.com (“Site”), how we use it, how we keep it safe, and what rights you have as a visitor or customer.
2. Information We Collect
| Category | Typical Data | How We Get It |
|---|---|---|
| Account Data | Name, e-mail, password | When you create an account |
| Order & Payment Data | Billing / shipping address, last 4 digits of card | During checkout via WooCommerce + payment gateway |
| Contact Data | Phone number, e-mail, support messages | “Contact Us” form, chat widgets |
| Marketing Preferences | Newsletter opt-ins, language | Signup forms, account settings |
| Technical Data | IP address, browser type, device ID, cookies | Automatically when you browse the Site |
3. Why We Use Your Data
Contract performance – process and deliver your orders.
Payment handling – verify and settle transactions through PCI-DSS–compliant processors.
Customer support – handle returns, warranty claims, and questions.
Marketing (with consent) – send product news, offers, and tips.
Site analytics & improvement – understand traffic via Google Analytics, Hotjar, etc.
Legal compliance & fraud prevention – bookkeeping, taxes, chargeback investigation.
4. Cookies & Similar Tech
We use session and persistent cookies to:
keep items in your cart;
remember you after log-in;
analyse traffic (GA4, Meta Pixel);
personalize content.
You can disable cookies in your browser, but some features (checkout, account) may not work.
5. Who Gets Your Data
| Recipient | Purpose | Safeguards |
|---|---|---|
| Stripe / PayPal | Secure payment processing | TLS 1.2, tokenization |
| UPS / USPS | Shipping & tracking | Only data needed for delivery |
| Mailchimp / SendGrid | E-mail marketing | Data Processing Agreements, 1-click unsubscribe |
| Google Analytics | Site analytics | IP anonymization, aggregated reports |
We never sell your data to third parties.
6. Retention Periods
Order records – 7 years (accounting rules).
Marketing data – until you unsubscribe.
Server logs – up to 12 months, then aggregated or deleted.
7. Security Measures
Full-site HTTPS (SSL/TLS).
Passwords hashed with bcrypt.
Access control on a strict “need-to-know” basis.
Daily off-site backups.
Regular updates of WordPress, WooCommerce, and plugins.
8. Your Rights
Where applicable (GDPR, CCPA, etc.) you may:
Request a copy of your personal data.
Correct inaccurate or incomplete data.
Ask for deletion (“right to be forgotten”) when data is no longer needed.
Restrict or object to processing.
Request data portability to another service.
We honor these rights for all users, regardless of location.
9. Children
The Site is not directed at anyone under 16. We do not knowingly collect data from children. If you believe a child has provided us personal information, let us know and we will delete it.
10. Policy Changes
We may update this Policy periodically. The latest version is always posted here; material changes will be announced via e-mail or an on-site banner.
11. Contact Us
Privacy questions, requests, or concerns:
Grumpy Dad Co
E-mail: privacy@grumpydadco.com
Mail: 1701 Harbor City Blvd, Melbourne, FL 32935, USA
Phone: +1 (321) 504-8122 (Mon–Fri 09:00–17:00 ET)
By using our Site, you acknowledge that you have read and understood this Policy and agree to its terms.
