Privacy Policy

Last updated. This policy was last updated on the date shown above. Material changes will be communicated via email to subscribers and posted on this page.

1. Who we are

This Privacy Policy applies to Uncaged Kings (the "Company", "we", "us"), operated by [PLACEHOLDER LEGAL ENTITY] with a registered address at [PLACEHOLDER ADDRESS]. Contact us at any time via the contact page.

2. Information we collect

We collect information you provide directly (name, email, shipping address, phone number, payment details) when you place an order, join the Brotherhood, subscribe to drop alerts, or contact us. We also automatically collect device information (IP address, browser, pages viewed) and use cookies as described in our Cookie Policy.

We do not store payment card numbers on our servers. All payments are processed by Stripe, a PCI-DSS Level 1 certified processor.

3. How we use your information

• Process and ship your orders
• Send order confirmations, shipping updates, and customer-service replies
• Send marketing communications (drop alerts, Vault posts) — only if you opt in
• Improve the site, products, and customer experience
• Detect, prevent, and respond to fraud or abuse
• Comply with legal obligations

4. How we share your information

We share information only with service providers that help us run the business, including:

• Stripe — payment processing
• Supabase — database and authentication
• Shipping carriers (USPS, UPS, DHL, etc.)
• Email service providers for transactional and marketing email

We never sell your personal information.

5. Cookies and tracking

See our Cookie Policy for details on what we use and how to opt out.

6. Your rights

Depending on where you live, you may have the right to:

• Access the personal information we hold about you
• Correct inaccurate information
• Delete your information
• Opt out of marketing emails (every email has an unsubscribe link)
• Object to certain processing
• Data portability

To exercise any of these rights, contact us through the contact page. We will respond within 30 days.

California residents have additional rights under the CCPA, including the right to know what categories of personal information we collect and to opt out of any "sale" of information (we do not sell information).

EU/UK residents have rights under the GDPR/UK GDPR, including the lawful bases on which we process your data: contract performance, legitimate interests, consent, and legal obligation.

7. Data retention

We retain order information for 7 years to comply with tax and accounting laws. Marketing subscriber data is retained until you unsubscribe. Contact-form messages are retained for 2 years to handle follow-up support.

8. Security

We use industry-standard encryption (TLS in transit, AES-256 at rest) and follow the principle of least privilege internally. No system is perfectly secure — if we ever experience a breach affecting your data, we will notify you within 72 hours as required by law.

9. Children

Our site is not directed to children under 13. We do not knowingly collect information from children. If you believe we have, contact us and we will delete it.

10. Changes to this policy

We may update this policy from time to time. The "Last updated" date at the top reflects the most recent revision.

11. Governing law

This policy is governed by the laws of [PLACEHOLDER JURISDICTION].