Template notice: This page uses a general-purpose template. Before launch, have a licensed attorney review and adapt it to your actual business entity, jurisdiction (state + country), payment processor terms, and applicable consumer-protection regulations (FTC, FDA if health claims are made, GDPR/CCPA for privacy, state-level sales tax, etc.). UPSTEP Fitness Co. is a placeholder brand; replace with your legal entity name, registered address, and contact details.
Summary
We collect the minimum personal information necessary to fulfill your order, communicate with you, and improve our products. We do not sell your data. We never share your personal information with third parties except as required to deliver your order (for example, shipping carriers and payment processors).
What we collect
- Order information: name, shipping address, email, phone number, order history.
- Payment information: payment card details are processed directly by our payment processor (Stripe). UPSTEP never stores full card numbers on its own servers.
- Account information: if you create an account, the email and password you provide.
- Usage data: anonymized page analytics including IP address, browser type, device type, and pages visited.
- Marketing opt-ins: email and SMS subscription preferences, including the review widget and checkout flow.
How we use it
- To process, fulfill, and ship your orders.
- To send transactional emails (order confirmations, shipping updates, delivery notifications).
- To send marketing emails and SMS — only if you have explicitly opted in. You can unsubscribe from any email with the link at the bottom. You can stop SMS at any time by replying STOP.
- To respond to customer support inquiries.
- To improve our website and products using aggregated, anonymized analytics.
Third-party services
We use the following categories of third parties, each governed by their own privacy policies:
- Payment processing: Stripe.
- Email marketing: Klaviyo (or similar, if enabled).
- SMS marketing: Postscript or Attentive (or similar, if enabled).
- Analytics: Google Analytics (or similar, if enabled).
- Shipping carriers: UPS, FedEx, USPS.
Your rights (CCPA / GDPR)
If you are a resident of California, the European Economic Area, the UK, or another jurisdiction with similar privacy laws, you have the right to request a copy of the personal information we hold about you, to correct inaccurate information, to delete your information, and to opt out of sale of personal information (we do not sell personal information). To exercise these rights, email privacy@upstep.example.
Cookies
We use cookies to keep you logged in, remember your cart, and measure anonymized usage. You can disable cookies in your browser settings, but some site features may not function without them.
Children
UPSTEP is not intended for children under 16. We do not knowingly collect information from children under 16. If we learn we have collected information from a child under 16, we will delete it.
Changes to this policy
We may update this policy. When we do, we will post the updated version here with a new “last updated” date. Material changes will be communicated by email to customers on our mailing list.
Contact
Privacy questions: privacy@upstep.example.
