Privacy Policy

Last updated: May 17, 2026

The Short Version

Outlaws & Gents Grooming Co. ("we," "us," "our") respects your privacy. This Privacy Policy explains what information we collect when you visit outlawsandgents.com (the "Site") or buy our products, how we use it, who we share it with, and what rights you have over it.

In plain English: we collect the information we need to fulfill your orders and run our business. We don't sell your personal information. We comply with applicable privacy laws including the California Consumer Privacy Act (CCPA/CPRA), the Texas Data Privacy and Security Act (TDPSA), and the EU/UK General Data Protection Regulation (GDPR) for visitors from those regions.

If you have questions about this policy or your data, email us at orders@outlawsandgents.com.

1. Information We Collect

1.1 Information you give us

When you place an order, create an account, sign up for email or SMS, contact us, or apply for a wholesale account, you give us information that may include:

  • Name
  • Email address
  • Postal address (billing and shipping)
  • Phone number
  • Payment information (handled by our payment processors — we don't store full card numbers)
  • Business information (for wholesale applications)
  • Communications you send us
  • Account credentials (username, password)

1.2 Information we collect automatically

When you visit the Site, we automatically collect:

  • Device information (browser type, operating system, screen size)
  • IP address and approximate location (derived from IP)
  • Pages you view and how you navigate the Site
  • Referring URLs and search terms that brought you to us
  • Cookies and similar tracking technologies (see Section 7)

1.3 Information from third parties

We may receive information about you from:

  • Payment processors (transaction confirmations)
  • Shipping carriers (delivery status)
  • Marketing platforms (analytics about email/SMS engagement)
  • Social media platforms (if you interact with our content there)
  • Wholesale partners and barbershops (for partner program management)
  • Public sources (for fraud prevention)

2. How We Use Your Information

We use your information to:

  • Fulfill your orders. Process payments, ship products, send order confirmations and tracking, handle returns and refunds.
  • Run your account. Provide customer support, recover passwords, save your preferences.
  • Communicate with you. Respond to inquiries, send transactional emails (order receipts, shipping notifications), and — with your consent — send marketing emails or SMS messages.
  • Improve the Site and our products. Analyze usage patterns, develop new products, troubleshoot technical issues, and personalize content.
  • Protect against fraud and abuse. Verify identity, detect suspicious transactions, and enforce our Terms of Service.
  • Comply with the law. Meet our legal obligations and respond to lawful requests from authorities.

We process this data under the following legal bases (relevant primarily for GDPR/UK GDPR):

  • Contract performance — to fulfill orders and provide our services
  • Legitimate interest — to run, secure, and improve our business
  • Consent — for marketing communications and certain cookies
  • Legal obligation — for tax records, fraud prevention, and regulatory compliance

3. How We Share Your Information

We do not sell your personal information for money. We share information only with:

3.1 Service providers

Companies that help us operate the Site and fulfill your orders, including:

  • Shopify — our e-commerce platform (hosting, checkout, customer accounts)
  • Payment processors — Shopify Payments, PayPal, and other authorized processors
  • Shipping carriers — USPS, UPS, FedEx, DHL, and others as needed
  • Email and SMS providers — for transactional and marketing messages
  • Analytics providers — Google Analytics, Shopify Analytics
  • Customer support tools — help-desk and chat platforms
  • Marketing platforms — Meta (Facebook/Instagram), Google, TikTok, and others (for advertising)
  • Fraud prevention services — to detect and block fraudulent orders

These providers are authorized to use your information only as needed to provide their services to us and must keep it confidential.

3.2 Legal disclosures

We may disclose your information if required by law, subpoena, court order, or other legal process; to enforce our Terms of Service; to protect our rights, property, or safety, or that of our users or others; or in connection with a merger, acquisition, financing, or sale of business assets.

3.3 With your consent

We may share your information for any other purpose with your consent.

4. Cross-Context Behavioral Advertising / "Sale" or "Sharing" Under CCPA

Some advertising and analytics partners use cookies and tracking technologies that, under California's CCPA/CPRA, may be considered a "sale" or "sharing" of personal information for cross-context behavioral advertising purposes.

You have the right to opt out. See Section 8 (Your Privacy Rights) for how to exercise this right.

5. Data Retention

We retain your personal information for as long as needed to:

  • Provide our products and services to you
  • Comply with our legal, accounting, and tax obligations
  • Resolve disputes and enforce our agreements
  • Maintain business records

Typically:

  • Order and transaction records: 7 years (for tax purposes)
  • Customer account data: until you ask us to delete it or the account becomes inactive (typically 5+ years)
  • Marketing data: until you unsubscribe, then we retain unsubscribe records indefinitely to honor your choice
  • Website analytics: typically up to 26 months at the individual level, then aggregated

When we no longer need your information, we securely delete or anonymize it.

6. Data Security

We take reasonable physical, technical, and administrative measures to protect your information:

  • All Site traffic is encrypted in transit using SSL/TLS
  • Payment information is handled by PCI-DSS compliant payment processors — we don't store full card numbers
  • Account passwords are hashed and salted
  • Access to customer data is limited to employees and contractors who need it
  • We maintain incident response procedures for security breaches

No method of transmission or storage is 100% secure. While we work hard to protect your information, we can't guarantee absolute security. If we become aware of a security breach that affects your personal information, we'll notify you in accordance with applicable law.

7. Cookies and Tracking Technologies

We use cookies and similar technologies (web beacons, pixels, local storage) to operate the Site, remember your preferences, analyze usage, and serve relevant advertising.

Types of cookies we use:

  • Strictly necessary — required for the Site to function (shopping cart, checkout, login). These cannot be disabled.
  • Performance / analytics — help us understand how visitors use the Site so we can improve it (Google Analytics, Shopify Analytics).
  • Functional — remember your preferences (language, region, recently viewed products).
  • Advertising / targeting — used by us and our advertising partners (Meta, Google, TikTok) to show you relevant ads on other sites and measure ad performance.

Managing cookies

You can control cookies through your browser settings, but disabling cookies may limit Site functionality. For advertising cookies specifically, you can opt out at:

For Google Analytics specifically, you can install the Google Analytics Opt-out Browser Add-on.

"Do Not Track" signals

Some browsers send "Do Not Track" (DNT) signals. We currently treat Global Privacy Control (GPC) signals as a valid opt-out request for the "sale" or "sharing" of personal information for California residents.

8. Your Privacy Rights

Your rights depend on where you live. We provide all consumers with the following rights regardless of location:

  • Access — request a copy of the personal information we hold about you
  • Correct — ask us to fix inaccurate or incomplete information
  • Delete — ask us to delete your personal information (subject to legal retention requirements)
  • Opt out of marketing — unsubscribe from emails or reply STOP to SMS at any time
  • Opt out of advertising cookies — see Section 7

8.1 California residents (CCPA / CPRA)

In addition to the rights above, California residents have the right to:

  • Know what categories of personal information we collect, the sources, the business purpose for collecting it, and the categories of third parties we share it with
  • Opt out of the "sale" or "sharing" of personal information for cross-context behavioral advertising (see Section 4)
  • Limit the use of sensitive personal information
  • Non-discrimination for exercising your privacy rights

To exercise your rights, email orders@outlawsandgents.com with the subject line "California Privacy Request." We'll respond within the timeframes required by law (generally 45 days, with one 45-day extension if needed).

8.2 Texas residents (TDPSA)

The Texas Data Privacy and Security Act gives Texas consumers the right to:

  • Confirm whether we process your personal data and access that data
  • Correct inaccuracies
  • Delete personal data
  • Obtain a portable copy of personal data
  • Opt out of the sale of personal data, targeted advertising, and certain profiling

To exercise your rights, email orders@outlawsandgents.com with the subject line "Texas Privacy Request." We'll respond within 45 days. If we deny your request, you may appeal by replying to our response within 60 days.

8.3 EU and UK residents (GDPR / UK GDPR)

Visitors from the EU and UK have the rights described above plus the right to:

  • Withdraw consent (where processing is based on consent)
  • Object to processing based on legitimate interest
  • Restrict processing in certain circumstances
  • Data portability
  • Lodge a complaint with your local supervisory authority

Our lawful bases for processing are described in Section 2. Email orders@outlawsandgents.com to exercise your GDPR rights.

8.4 Other states

Residents of Virginia, Colorado, Connecticut, Utah, Oregon, Montana, and other states with comprehensive privacy laws have rights similar to those described above. Email us to exercise them — we'll handle each request in accordance with the applicable state law.

8.5 Verifying your identity

For security and to prevent fraud, we'll verify your identity before fulfilling a privacy request. We may ask you to confirm information already on file (for example, the email address used to place an order). We won't ask for more information than necessary.

8.6 Authorized agents

You may designate an authorized agent to make requests on your behalf. We'll require proof of authorization (for example, a signed letter or power of attorney).

9. SMS / Text Message Marketing (TCPA Compliance)

If you opt in to receive SMS messages from us, you consent to receive recurring automated promotional and transactional messages from Outlaws & Gents. Consent is not a condition of purchase. Message frequency varies. Message and data rates may apply.

To opt out, reply STOP to any SMS message. For help, reply HELP or contact orders@outlawsandgents.com.

Your phone number and SMS consent will not be shared with third parties or affiliates for their marketing purposes.

10. Email Marketing (CAN-SPAM Compliance)

We send promotional emails to subscribers who opt in. Every promotional email includes an unsubscribe link in the footer. You can also email orders@outlawsandgents.com to be removed from our mailing list. Transactional emails (order confirmations, shipping notifications) are sent to all customers and are not subject to unsubscribe.

11. Children's Privacy (COPPA)

The Site is not directed to children under 13, and we do not knowingly collect personal information from children under 13. We do not knowingly sell or share personal information about consumers under 16 for cross-context behavioral advertising without affirmative authorization.

If you believe we've collected information from a child under 13, contact us at orders@outlawsandgents.com and we'll delete it.

12. International Data Transfers

Outlaws & Gents is based in the United States. If you access the Site or place an order from outside the U.S., your information will be transferred to, stored in, and processed in the U.S. By using the Site, you consent to this transfer. We rely on appropriate safeguards (including Standard Contractual Clauses where required) for transfers from the EU/UK.

13. Links to Other Sites

The Site may contain links to third-party websites and services. We are not responsible for their privacy practices. Review their privacy policies before providing personal information.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we do, we'll post the updated policy on this page and update the "Last updated" date at the top. For material changes, we'll provide additional notice (for example, by email or a Site banner) where required by law.

15. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our handling of your personal information:

Outlaws & Gents Grooming Co. Attn: Privacy San Antonio, Texas, USA Email: orders@outlawsandgents.com Website: outlawsandgents.com

For privacy-specific requests, use the subject line that matches your jurisdiction (for example, "California Privacy Request," "Texas Privacy Request," or "GDPR Request").

Dark grey and cream colored icon of a skeleton bird

Free shipping

Orders $50+ Ship Free

Dark grey and cream colored icon of a skeleton hands and dagger

Secure payment

Shop confidently with our guaranteed secure payment system.