Privacy Policy

We collect information you provide directly to us when you create an account, place an order, subscribe to our newsletter, or contact us. This includes:

Personal Information: Name, email address, phone number, shipping address, billing address, and date of birth (for age verification).

Payment Information: Credit card numbers, debit card numbers, and billing details. Payment data is processed by our PCI-compliant third-party payment processors and is never stored on our servers.

Age Verification Data: Date of birth and government-issued ID information as required by the PACT Act for age verification at purchase and delivery.

Account Information: Username, password (encrypted), order history, and rewards program data.

When you visit our Site, we automatically collect certain information about your device and browsing activity, including:

Device Data: IP address, browser type and version, operating system, device type, and screen resolution.

Usage Data: Pages viewed, time spent on pages, links clicked, referring URLs, and search queries used on our Site.

Cookies & Tracking: We use cookies, pixel tags, and similar technologies to enhance your experience, remember your preferences, and analyze Site traffic. See Section 7 for details on cookies.

We use the information we collect for the following purposes:

- Order Processing: To process and fulfill your orders, send confirmations, and provide tracking information
- Age Verification: To verify that customers meet the minimum age requirement (21+) as required by law
- Customer Service: To respond to your inquiries, resolve disputes, and provide support
- Legal Compliance: To comply with the PACT Act, FDA regulations, state tax reporting, and other applicable laws
- Communication: To send order updates, shipping notifications, and (with your consent) promotional emails
- Site Improvement: To analyze usage patterns, improve our website, and optimize the shopping experience
- Fraud Prevention: To detect and prevent fraudulent transactions and unauthorized access
- Rewards Program: To manage your points balance and reward tier status

We do not sell, rent, or trade your personal information to third parties for marketing purposes. We share your information only in the following circumstances:

Service Providers: We share data with trusted third-party companies that help us operate our business, including payment processors, shipping carriers, age verification services, email service providers, and analytics platforms. These providers are contractually obligated to protect your data.

Legal Requirements: We may disclose your information when required by law, including PACT Act reporting to the ATF and state agencies, tax reporting to state and federal authorities, and in response to valid legal processes (subpoenas, court orders).

Business Transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of the transaction. We will notify you of any such change.

With Your Consent: We may share information with other parties when you explicitly consent to the sharing.

We take the security of your personal information seriously. We implement industry-standard security measures to protect your data, including:

- SSL Encryption: All data transmitted between your browser and our servers is encrypted using 256-bit SSL/TLS encryption
- PCI Compliance: Payment processing is handled by PCI DSS-compliant processors
- Access Controls: Employee access to personal data is restricted on a need-to-know basis
- Encrypted Storage: Sensitive data is encrypted at rest on our servers
- Regular Audits: We conduct regular security reviews and vulnerability assessments

While we implement strong security measures, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security of your information.

We retain your personal information for as long as necessary to fulfill the purposes outlined in this policy, including:

- Account Data: Retained for as long as your account is active, plus 2 years after account closure
- Order Records: Retained for a minimum of 7 years to comply with tax and regulatory requirements
- Age Verification Records: Retained as required by the PACT Act and applicable state laws
- Marketing Preferences: Retained until you unsubscribe or request deletion

When data is no longer needed, we securely delete or anonymize it in accordance with our data retention schedule.

We use cookies and similar technologies to enhance your browsing experience. Types of cookies we use:

Essential Cookies: Required for the Site to function properly (shopping cart, authentication, security). These cannot be disabled.

Analytics Cookies: Help us understand how visitors use our Site (page views, traffic sources, user behavior). We use Google Analytics and similar tools.

Marketing Cookies: Used to deliver relevant advertisements and track campaign effectiveness. These are only placed with your consent.

Preference Cookies: Remember your settings and preferences (language, region, display options).

You can manage cookie preferences through your browser settings. Disabling certain cookies may affect Site functionality.

Depending on your jurisdiction, you may have the following rights regarding your personal data:

- Access: Request a copy of the personal data we hold about you
- Correction: Request correction of inaccurate or incomplete data
- Deletion: Request deletion of your personal data (subject to legal retention requirements)
- Opt-Out: Unsubscribe from marketing emails at any time using the link in any email
- Data Portability: Request your data in a machine-readable format
- Restriction: Request that we limit how we use your data

To exercise any of these rights, please contact us at our Contact Page. We will respond to all requests within 30 days.

If you are a California resident, the California Consumer Privacy Act (CCPA) provides you with additional rights:

- Right to Know: You can request details about the categories and specific pieces of personal information we have collected about you
- Right to Delete: You can request deletion of your personal information, subject to certain exceptions
- Right to Opt-Out: You can opt out of the sale of your personal information (note: we do not sell personal information)
- Non-Discrimination: We will not discriminate against you for exercising your CCPA rights

To submit a CCPA request, contact us through our Contact Page or email us directly. We may need to verify your identity before processing your request.

Our Site may contain links to third-party websites, services, or applications. We are not responsible for the privacy practices or content of these external sites. We encourage you to read the privacy policies of any third-party site you visit.

Third-party services we integrate with (payment processors, shipping carriers, analytics) have their own privacy policies governing how they handle your data.

Our Site is intended exclusively for adults aged 21 and older. We do not knowingly collect personal information from anyone under the age of 21. If we become aware that we have collected data from a minor, we will delete that information immediately.

If you believe a minor has provided us with personal information, please contact us immediately so we can take appropriate action.

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make changes, we will update the "Last Updated" date at the top of this page.

For material changes, we will provide notice through a prominent notification on our Site or by sending you an email. Your continued use of the Site after changes are posted constitutes acceptance of the updated policy.

If you have any questions, concerns, or requests regarding this Privacy Policy or how we handle your personal data, please contact us using the button below. We take all privacy inquiries seriously and will respond within 30 days.