Coastal Outerwear Privacy Policy

Last Updated: February 23, 2026

At Coastal Outerwear, we value your trust and are committed to protecting your personal information. This Privacy Policy explains what data we collect, why we collect it, who we share it with, and how we keep it safe when you browse our website, place an order, or contact our team.

1. Information We Collect

We collect information you provide directly and information gathered automatically when you visit our site.

Information You Provide

  • Account & Contact Details: Name, email address, phone number, shipping and billing address when you create an account or check out.
  • Order Details: Product selections, customization choices (team names, numbers, colors), sizes, quantities, and purchase history.
  • Payment Information: Credit or debit card details submitted during checkout. Payment data is transmitted directly to our payment processor, Square. We do not store your full card number on our servers.
  • Communications: Messages you send through our contact forms or email, including any files or images attached.

Information Collected Automatically

  • Device & Browser Data: IP address, browser type and version, operating system, screen resolution, and referring URL.
  • Usage Data: Pages viewed, time spent on pages, products browsed, and interactions with site features.
  • Cookies & Similar Technologies: See Section 7 below for details on the specific cookies our site uses.

2. How We Use Your Information

Coastal Outerwear uses your information for the following purposes:

  • Processing and fulfilling your custom orders, including production, quality checks, and shipping.
  • Charging your payment method and issuing refunds or credits when applicable.
  • Sending transactional emails: order confirmations, production updates, shipping notifications, and delivery tracking.
  • Responding to customer service inquiries and resolving order issues.
  • Improving our website, product offerings, and customer experience.
  • Preventing fraud and securing our platform.
  • Complying with legal obligations, tax requirements, and regulatory requests.

We do not sell, rent, or share your personal information with third parties for their own marketing purposes.

3. Order & Communication Updates

By placing an order, you consent to receiving emails related to:

  • Order confirmations and receipts
  • Production status and estimated completion dates
  • Shipping confirmations with carrier tracking links
  • Correspondence about order issues, delays, or clarifications needed

These transactional emails are delivered through Mailgun, our email delivery service. You may opt out of non-essential promotional communications at any time, but transactional messages related to active orders cannot be disabled.

4. Third-Party Services & Data Sharing

We share your information only with the service providers necessary to operate our store and fulfill your orders. Each provider receives only the data required to perform its specific function.

  • Square (Payment Processing): Receives your payment card details, billing address, and order total to process transactions securely. Square is PCI-DSS compliant.
  • ShipStation (Order Fulfillment & Shipping): Receives your name, shipping address, and order details to generate shipping labels and provide tracking through carriers such as UPS and USPS.
  • Mailgun (Email Delivery): Receives your email address and name to deliver transactional order emails on our behalf.
  • Cloudways / DigitalOcean (Website Hosting): Our website and database are hosted on Cloudways-managed infrastructure. Your data is stored on their servers within the United States.
  • WooCommerce (E-Commerce Platform): Powers our online store. Order data, account details, and site activity are processed through WooCommerce and stored in our database.
  • Automated Tax Calculation: We use WooCommerce Tax services to calculate applicable sales tax based on your shipping address.

We may also disclose your information when required by law, subpoena, court order, or to protect the rights and safety of our business and customers.

5. Data Protection & Security

Coastal Outerwear uses industry-standard measures to protect your information:

  • SSL/TLS encryption on all pages to secure data in transit.
  • PCI-DSS compliant payment processing through Square.
  • Passwords stored using one-way hashing (never in plain text).
  • Database access restricted to authorized personnel only.
  • Regular software updates and security patches applied to our platform.

No method of electronic transmission or storage is 100% secure. While we take every reasonable precaution, we cannot guarantee absolute security.

6. Data Retention

We retain your information for as long as necessary to fulfill the purposes described in this policy:

  • Order records and transaction data are retained for a minimum of seven years to comply with tax and accounting requirements.
  • Customer account information is kept for as long as your account remains active. You may request account deletion at any time.
  • Email communication logs are retained for up to three years for customer service and dispute resolution purposes.
  • Server and access logs are automatically purged after 90 days.

7. Cookies & Tracking Technologies

Our website uses cookies and similar technologies for the following purposes:

Essential Cookies (Required)

  • WooCommerce Session & Cart: Stores your shopping cart contents and checkout session so your selections persist as you browse. These cookies are necessary for the store to function.
  • WordPress Authentication: If you create an account or log in, cookies are set to manage your session and keep you signed in.
  • Security Cookies: Help detect and prevent fraudulent activity and unauthorized access.

Performance Cookies

  • Breeze Cache: Stores a local cache identifier to serve pages faster and reduce load times. No personal data is collected.

You can control cookies through your browser settings. Disabling essential cookies will prevent the shopping cart and checkout from functioning properly.

8. Your Rights

Depending on your location, you may have certain rights regarding your personal data under applicable privacy laws (including CCPA for California residents and GDPR for EU/EEA residents):

  • Access: Request a copy of the personal information we hold about you.
  • Correction: Request that we update or correct inaccurate information.
  • Deletion: Request deletion of your personal data, subject to legal retention requirements.
  • Portability: Request your data in a commonly used, machine-readable format.
  • Opt-Out: Opt out of promotional communications at any time.
  • Do Not Sell: We do not sell your personal information. No opt-out action is required.

To exercise any of these rights, contact us at service@coastalouterwear.com. We will respond within 30 days of receiving a verified request.

9. Children's Privacy

Our website is not directed to children under 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided us with personal data, please contact us and we will promptly delete it.

10. Changes to This Policy

We may update this Privacy Policy to reflect changes in our practices, services, or legal requirements. When we make changes, the “Last Updated” date at the top of this page will be revised. We encourage you to review this policy periodically.

11. Contact Us

If you have questions or concerns about this Privacy Policy or how your information is handled, please contact Coastal Outerwear.

service@coastalouterwear.com