TW TrueWornGear
Cart

Legal

Privacy Policy

Effective May 13, 2026 · Last updated June 23, 2026

This Privacy Policy describes how TrueWornGear ("TrueWornGear", "we", "us"), a business based in South Carolina, United States, collects, uses, and shares information when you visit or make a purchase from trueworngear.com (the "Site").

1. Information we collect

We collect information you give us directly, information collected automatically, and information from third parties.

Information you give us

  • Account info (when you sign in with Google): your name, email address, profile picture, and Google account ID.
  • Order info: billing and shipping name, address, phone number (if provided), and email address. If you begin checkout and enter your email but do not complete the purchase, we may keep that email and name so we can follow up about your order.
  • Payment info: processed by our payment provider (Stripe). We do not see or store full card numbers, CVV codes, or bank account numbers.
  • Communications: messages you send us through our support form or by email, including your name, email address, the page you were on, and your browser user-agent. Support messages are handled in our own internal support and task-management tooling. We also record your IP address with the support request (to help prevent abuse), but keep it only in our own logs and do not pass it to that tooling.
  • Marketing preferences: if you opt in to drop notifications, we record your consent and email address.

Information collected automatically

  • IP address, browser type and user-agent, device and operating system, referring URL, the pages you view, and the HTTP status of each request.
  • Search terms and filters you use in the shop, so we can understand what shoppers are looking for.
  • How you arrived at the Site (for example, the referring site or a campaign link), for our own attribution analytics.
  • Cookies — see Section 5.

Information from third parties

  • Google: when you sign in with Google, Google shares your basic profile info with us per the scopes you approved (email, profile).
  • Stripe: Stripe shares transaction status, last-4 of the card used, and fraud signals.
  • Cloudflare: our CDN provider may collect security-related data (e.g. IP reputation, bot detection signals).

2. How we use information

  • To process and fulfill orders, including shipping and customer service.
  • To send transactional emails (order confirmations, shipping updates, account notifications).
  • To send marketing emails about new drops only if you have opted in. You can unsubscribe any time from the link in any marketing email.
  • To follow up if you leave items in your cart or begin a purchase without completing it, in case you would like to finish your order. These are occasional service messages about your own activity, not opt-in marketing.
  • To detect, investigate, and prevent fraud, abuse, and security incidents.
  • To comply with legal obligations (e.g. tax records, court orders).
  • To improve the Site (analytics, performance monitoring).

3. How we share information

We do not sell your personal information. We share information only with:

  • Service providers that help us run the business — payment processing (Stripe), shipping carriers (USPS, UPS, FedEx, etc.), hosting / CDN (Cloudflare), email delivery, and analytics. These providers may only use the information to perform services for us.
  • Authentication providers (Google) only as required to validate your sign-in.
  • Law enforcement or government when required by valid legal process, or to protect the rights, property, or safety of TrueWornGear, our customers, or the public.
  • Successors in the event of a merger, acquisition, or sale of all or part of the business.

4. Data retention

We retain order and tax records as long as required by applicable law (generally 7 years for tax purposes in the United States). Account info is retained for as long as your account is active; you may request deletion at any time (see Section 7). Marketing email lists are retained until you unsubscribe.

For analytics logs, we remove visitors' IP addresses after 30 days — this includes ordinary automated/crawler traffic. Where a request is flagged as suspected abusive, malicious, or fraudulent activity (for example a security scanner or injection attempt), we keep its IP address for up to 90 days so we can protect the Site, after which it too is removed. We retain failed sign-in security records, and IP addresses submitted with support requests, for up to 90 days.

5. Cookies and tracking

We use a small number of first-party cookies, all set by us (not by third-party advertisers):

  • a session cookie that keeps you signed in and protects forms against cross-site request forgery;
  • tw_cart (up to 30 days) — remembers which items are in your cart;
  • tw_vid (up to 12 months) — lets us count unique visitors and understand which pages and items are popular;
  • tw_attr (up to 90 days) — remembers how you first arrived at the Site, for our own attribution analytics;
  • tw_theme (about 1 year) — remembers your light or dark appearance preference;
  • dl_subscribed and dl_dismissed — remember whether you have signed up for, or dismissed, our drop-list announcements.

We do our analytics with our own server-side logging — we do not use Google Analytics or other third-party tracking scripts, we do not use third-party advertising cookies, and we do not sell behavioral data. Cloudflare may set cookies for security and bot detection. Your browser controls allow you to block or delete cookies, but doing so may affect site functionality (e.g. the cart and sign-in won't work without them).

6. Security

We use industry-standard practices to protect information, including TLS encryption for all traffic, hashed session identifiers, scoped database access, and offsite payment processing via Stripe. No system is perfectly secure; we cannot guarantee absolute security. If we become aware of a breach affecting your information, we will notify you as required by applicable law.

7. Your rights

Depending on your location, you may have the right to:

  • Access the personal information we hold about you.
  • Correct inaccurate information.
  • Delete your information (subject to legal retention obligations).
  • Object to or restrict certain processing.
  • Opt out of marketing communications at any time.
  • If you are a California resident, exercise rights under the CCPA/CPRA. If you are in the EEA or UK, exercise rights under GDPR/UK-GDPR.

To exercise these rights, email [email protected]. We respond within 30 days.

8. Children

The Site is not directed to children under 13, and we do not knowingly collect personal information from anyone under 13. Customers between 13 and 18 must have a parent or guardian's permission to use the Site or make a purchase. If you believe a minor has provided us information without consent, contact us and we will delete it.

9. International transfers

TrueWornGear operates from the United States. If you access the Site from outside the U.S., your information will be transferred to and processed in the U.S.

10. Changes to this policy

We may update this Privacy Policy from time to time. We will post the new effective date at the top of this page. For material changes, we will provide additional notice (e.g. an email or banner).

11. Contact

Questions about this Privacy Policy or our practices:

TrueWornGear
South Carolina, United States
Email: [email protected]
Need help? Send us a message. Questions about an item, sizing, an order, anything.

Get the drop list.

One-of-one gear sells once. Join the list and get first look at every drop before it goes public — a few emails a month, nothing else.

First look at every drop, before it's public.

Unsubscribe anytime · We never share your email