Privacy Policy

How we collect, use, and protect your information

Privacy Policy

Effective date: December 19, 2024
Who we are: A. Winston Outfitters ("A. Winston," "we," "our," "us")
Contact: [email protected]

This Privacy Policy explains how we collect, use, disclose, and protect your information when you use our website, shop, digital downloads, classes, or services. It applies to visitors globally, with additional disclosures for residents of certain regions (e.g., California, Colorado, Connecticut, Virginia, Utah, EU/EEA/UK).

1) Information We Collect

A. You provide:

  • • Contact details (name, email, phone, address).
  • • Account info (username, password).
  • • Purchase info (items, transaction totals; we receive tokens/last4 from payment processors, not full card numbers).
  • • Communications (support requests, reviews).
  • • Booking details (if you schedule classes/trips).

B. Collected automatically:

  • • Usage data (pages viewed, links clicked, approximate location via IP).
  • • Device and browser data (type, OS, referrer).
  • • Cookies/SDKs/pixels for analytics, preferences, and (if enabled) advertising.

C. From third parties:

  • • Payment processors (payment status, fraud signals).
  • • Analytics and marketing platforms (aggregate stats).
  • • Social sign‑ins (if used), consistent with your permissions.

2) How We Use Information

  • • To provide, secure, and improve the Services and your purchases.
  • • To process orders, payments, and deliveries of digital/physical goods.
  • • To send transactional messages (receipts, updates); with consent or as allowed by law, to send marketing/newsletters (you can opt out).
  • • To personalize content and measure performance.
  • • To comply with legal obligations and enforce our Terms.

3) Cookies & Similar Technologies

We use cookies and similar tools for site functionality, analytics, and—if you opt in—advertising. You can manage preferences via our Cookie Banner/Settings and your browser. Disabling certain cookies may affect the site.

4) Sharing & Disclosure

We share information with:

  • • Service providers/processors (hosting, payment, analytics, email, customer support) under contracts limiting use to our instructions.
  • • Business transfers (e.g., merger, acquisition).
  • • Legal compliance (lawful requests, safety, rights).

We do not sell your personal information for money. If we engage in "share" or "targeted advertising" as defined by certain laws, we will provide opt‑out mechanisms as required.

5) Data Retention

We retain information as long as necessary for the purposes above, to comply with legal obligations, resolve disputes, and enforce agreements. We apply criteria such as account activity, transaction history, and legal requirements.

6) Data Security

We use administrative, technical, and physical safeguards appropriate to the nature of the data and our business. No system is 100% secure.

7) Children's Privacy

Our Services are not directed to children under 13. We do not knowingly collect personal information from children under 13. If you believe a child provided information, contact us at [email protected].

8) Your Choices

  • • Marketing emails: Unsubscribe via links in the message or contact us.
  • • Cookies: Use our Cookie Preferences and your browser settings.
  • • Account info: You may update or delete certain info in your account or by contacting us.

9) Region‑Specific Rights

Depending on where you live, you may have the following rights (subject to legal limits):

California / Virginia / Colorado / Connecticut / Utah (U.S. state laws)

  • • Right to know/access, correct, delete, and obtain a portable copy of certain personal information.
  • • Right to opt out of certain processing (e.g., targeted advertising, sale/sharing as defined by law).
  • • Right to limit use of sensitive personal info (if applicable).

How to exercise: Email [email protected] with "Privacy Request" and your state. We will verify your identity. You may designate an authorized agent as allowed by law. Appeals (where applicable): If we deny a request, you can appeal by replying to our decision email.

EU/EEA/UK (GDPR)

Legal bases may include contract, consent, legitimate interests, legal obligations. Your rights include access, rectification, erasure, restriction, objection, and portability.
Cross‑border transfers occur under appropriate safeguards (e.g., Standard Contractual Clauses).
Contact [email protected] to exercise rights. You may lodge a complaint with your local supervisory authority.

10) Third‑Party Links

Our site may link to third‑party sites/services we don't control. Their privacy practices are governed by their own policies.

11) Changes to this Policy

We may update this Privacy Policy; when we do, we'll change the Effective date and post the new version.

12) Contact

Questions? Email [email protected].

← Back to Home