Privacy Policy

Last Revised: April 21, 2026

Grreyl is committed to upholding the highest standards of data integrity and transparency. This Privacy Policy governs how we manage Personally Identifiable Information (PII) obtained through your interactions with our premium outdoor gear and accessory collections, including our Camping Equipment, Wear Accessories, and Daily Accessories.

1. Data Security & Encryption Standards

• Data Encryption: We use industry-standard Secure Socket Layer (SSL) protocols to encrypt all sensitive data transmissions.

• Restricted Access: Access to personal data is strictly limited to authorized personnel who are bound by strict confidentiality agreements.

• Payment Security: In compliance with PCI-DSS standards, we do not retain sensitive payment credentials after transactions are completed.

2. Types of Data Collected

To deliver an optimized shopping experience, we gather specific categories of data:

• Voluntarily Provided Information: This includes identity details (full name, shipping and billing addresses), electronic contact information (email address), and phone numbers provided during account registration or guest checkout.

• Financial Data: Transaction details are processed through encrypted third-party gateways; Grreyl does not store core payment information (such as full credit card numbers) on its internal servers.

• Automated Tracking Data: We use cookies and pixels to collect technical information, including IP addresses, browser specifications, and navigation patterns on our online store.

3. How We Use Your Information

The data we collect is used exclusively for the following operational purposes:

• Order Fulfillment: Handling logistics, processing payments, and providing shipment tracking for your outdoor gear purchases.

• Service Enhancement: Analyzing user interactions with our website to refine our product offerings and user interface.

• Necessary Communications: Sending important order updates and, only with your explicit consent, select brand announcements.

• Security Measures: Implementing anti-fraud protocols to protect our transactional environment.

4. Third-Party Data Disclosures

We do not sell, trade, or transfer your PII to external parties without authorization. Data is only shared with trusted service providers that are essential to our business operations and the optimization of our digital services.

Advertising & Analytical Partners: To provide a personalized shopping experience and measure ad performance, we cooperate with third-party platforms that use tracking technologies. You can review their respective privacy practices via the links below:

• AppLovin (Axon): For AI-driven ad personalization and attribution. https://legal.applovin.com/privacy

• Meta Platforms (Facebook/Instagram): For social integration and conversion tracking. https://www.facebook.com/privacy/policy

• Google Services (Analytics & Ads): For site performance monitoring and search relevance. https://policies.google.com/privacy

5. Cookies & Tracking Technologies

We use first-party and third-party cookies to:

• Maintain the stability of the shopping cart and checkout process.

• Monitor site performance through Shopify-integrated analytics tools.

• Deliver relevant promotional content in collaboration with AppLovin and other partners.

You may manage or disable cookies through your browser’s settings, though this may affect the functionality of certain site features.

6. Children’s Privacy Protection (COPPA)

Grreyl is an adult-focused marketplace. Our content and products are not designed for or targeted at children.

• We do not intentionally solicit or collect data from individuals under the age of 13.

• If we inadvertently collect data from a minor, Grreyl will immediately and permanently delete such records.

7. California Online Privacy Protection (CalOPPA)

In accordance with CalOPPA requirements:

• Our online store can be browsed anonymously.

• This policy is accessible via a prominent link in the footer of our homepage.

• We recognize and respect "Do Not Track" (DNT) browser signals.

8. EEA Data Subject Rights (GDPR)

Residents of the European Economic Area have comprehensive rights under the General Data Protection Regulation (GDPR). Grreyl supports your right to access, correct, or delete your personal data. To exercise these rights, please submit a formal request to support@grreyl.com.

9. California Consumer Privacy Rights (CCPA/CPRA)

In addition to CalOPPA, we comply with CCPA/CPRA standards for California residents:

• Disclosure Rights: You may request a detailed report on the categories of data we collect.

• Opt-Out Rights: While we do not sell data for profit, the sharing of identifiers with partners like AppLovin for cross-contextual advertising is subject to your right to opt out.

10. Data Breach Response & Notification

In the unlikely event of a data breach, Grreyl follows a proactive notification process:

• Direct Notification: Affected users will be notified via email within 7 business days.

• Public Notification: A formal announcement will be posted on our online store within the same timeframe.

11. Compliance with the CAN-SPAM Act

We maintain an ethical communication policy. All promotional messages will:

• Use honest, transparent subject lines.

• Include a functional and visible "Unsubscribe" option.

• Be processed promptly to remove opted-out users from all marketing lists.

12. Legal Inquiries & Corporate Information

For any questions regarding our data governance practices, please contact our legal support team:

• Brand Identity: Grreyl

• Legal Entity: 3422A POIPU, LLC

• Registered Address: Post Office Box 869, Eleele, Hawaii, 96705, United States

• Official Correspondence: support@grreyl.com

• Direct Line: +1 (978) 222-7695