Privacy
Policy

At GRIPTIE, we collect information you provide directly to us when placing an order, creating an account, subscribing to our communications, or contacting our atelier.

• Personal identifiers — name, email address, phone number, billing and shipping address
• Payment information — processed securely via encrypted payment gateways; we do not store card details
• Order history and preferences — products purchased, sizes, colour preferences, bespoke requests
• Communications — messages you send to our client relations team
• Device data — IP address, browser type, operating system, referring URLs collected automatically

The information we collect is used solely to deliver, improve, and personalise your GRIPTIE experience.

• Processing and fulfilling your orders, including shipping and delivery updates
• Providing customer support and responding to inquiries
• Sending transactional emails — order confirmations, invoices, tracking information
• With your consent, sending curated editorial content, new collection announcements, and exclusive offers
• Analysing purchasing patterns to improve our product offering and website experience
• Preventing fraud and ensuring the security of transactions
• Complying with legal obligations

We share your personal information only with trusted service partners essential to fulfilling your order and operating our business:

• Logistics and courier partners — to deliver your order
• Payment processors — Stripe, and other PCI-DSS compliant providers
• Email service providers — for transactional and marketing communications
• Cloud hosting and infrastructure providers
• Legal authorities — when required by applicable law, regulation, or legal process

All third parties are bound by data processing agreements and are prohibited from using your information for any purpose beyond the specific service they provide to us.

We use cookies and similar tracking technologies to enhance your browsing experience and understand how our website is used.

• Essential cookies — required for the website to function, including session management and checkout
• Analytics cookies — help us understand visitor behaviour (Google Analytics, anonymised)
• Preference cookies — remember your settings and currency selection
• Marketing cookies — used only with your explicit consent for targeted advertising

You may manage your cookie preferences through our consent banner or your browser settings at any time.

We retain your personal data only for as long as necessary to fulfil the purposes outlined in this policy, or as required by law.

• Order and transaction records are retained for 7 years for tax and accounting compliance
• Account information is retained while your account remains active
• Marketing preferences are retained until you unsubscribe or request deletion
• Server logs are retained for up to 90 days for security monitoring

Depending on your jurisdiction, you may have the following rights regarding your personal data:

• Access — request a copy of the personal data we hold about you
• Rectification — request correction of inaccurate or incomplete data
• Erasure — request deletion of your personal data (subject to legal retention obligations)
• Portability — receive your data in a structured, machine-readable format
• Restriction — request that we limit processing of your data
• Objection — object to processing based on legitimate interests or for direct marketing
• Withdraw consent — at any time, without affecting prior processing

To exercise any of these rights, please contact us at privacy@griptie.com. We will respond within 30 days.

We implement industry-standard security measures to protect your personal information against unauthorised access, alteration, disclosure, or destruction.

• SSL/TLS encryption for all data transmitted between your browser and our servers
• PCI-DSS compliant payment processing — we never store raw card details
• Regular security audits and vulnerability assessments
• Access controls limiting employee access to personal data on a need-to-know basis

Our services are not directed to individuals under the age of 16. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us immediately at privacy@griptie.com and we will promptly delete such information.

For any questions regarding this Privacy Policy or to exercise your data rights, please contact our Data Protection Officer:

• Email — privacy@griptie.com
• Address — GRIPTIE Atelier, Main Boulevard, Lahore, Punjab, Pakistan
• Response time — within 30 business days

If you are located in the European Economic Area, you also have the right to lodge a complaint with your local data protection supervisory authority.