Privacy Policy

Last updated: 1/1/2026

This Privacy Policy describes how The Stillman Hat ("we," "us," or "our") collects, uses, and discloses your personal information when you visit or make a purchase from https://thestillmanhat.com (the "Site").

1. Information We Collect

1.1 Personal Information You Provide

When you visit the Site or make a purchase, we may collect the following information:

  • Name

  • Billing address

  • Shipping address

  • Email address

  • Phone number

  • Payment information (processed securely by third-party payment processors; we do not store full payment card details)

  • Account information (if you create an account)

  • Any information you voluntarily provide through contact forms or customer support

1.2 Automatically Collected Information

When you access the Site, we may automatically collect certain information, including:

  • IP address

  • Browser type and version

  • Device information

  • Time zone

  • Pages viewed and interactions with the Site

  • Referring websites or search terms

This information is collected using cookies, log files, pixels, and similar technologies.

2. Cookies and Tracking Technologies

We use cookies and similar technologies to:

  • Operate and improve the Site

  • Remember your preferences

  • Analyze traffic and usage patterns

  • Support marketing and advertising efforts

You can control or disable cookies through your browser settings. Note that disabling cookies may affect Site functionality.

Cookie Management
This Site uses Squarespace’s built-in cookie banner and consent management tools to manage the use of cookies and similar technologies in accordance with applicable laws.

3. How We Use Your Information

We use your personal information to:

  • Fulfill and manage orders, payments, shipping, and returns

  • Communicate with you about orders, products, or customer service inquiries

  • Send marketing or promotional communications (where permitted by law)

  • Improve and optimize our Site

  • Detect and prevent fraud or misuse

  • Comply with legal obligations

4. Sharing Your Information

We may share your information with trusted third parties to help us operate our business, including:

  • Payment processors

  • Shipping and fulfillment providers

  • Website hosting and e-commerce platforms

  • Analytics and marketing services

We may also disclose information if required by law, regulation, legal process, or to protect our rights.

Third-Party Services
We use the following third-party services to operate our business:

  • Squarespace (website hosting and e-commerce platform)

  • Squarespace Payments and/or Stripe (payment processing)

  • Shipping and fulfillment service providers

  • Google Analytics (website analytics)

5. Behavioral Advertising

We use Google Analytics to help us understand how customers use the Site. Google Analytics collects information such as how often users visit the Site, what pages they visit, and what other sites they used prior to coming to the Site.

You can learn how Google uses data collected from sites that use its services by visiting Google’s privacy resources. You may opt out of Google Analytics tracking by using the Google Analytics Opt-out Browser Add-on.

We do not use targeted advertising platforms that sell personal data in the traditional sense. However, certain data sharing through analytics and cookies may be considered "sharing" under some privacy laws.

6. Your Rights

Depending on your location, you may have certain rights regarding your personal information. These rights are described below in more detail.

6.1 General Rights

All users may have the right to:

  • Request access to the personal information we hold about you

  • Request correction of inaccurate or incomplete information

  • Opt out of receiving marketing or promotional communications at any time

6.2 Rights Under the GDPR (European Economic Area, United Kingdom)

If you are located in the European Economic Area (EEA) or the United Kingdom, you have the following rights under the General Data Protection Regulation (GDPR):

  • Right of access: You may request a copy of the personal data we hold about you

  • Right to rectification: You may request correction of inaccurate or incomplete data

  • Right to erasure ("right to be forgotten"): You may request deletion of your personal data, subject to legal obligations

  • Right to restrict processing: You may request that we limit how your data is processed in certain circumstances

  • Right to data portability: You may request that we transfer your personal data to you or another service provider

  • Right to object: You may object to processing based on legitimate interests or for direct marketing

  • Right to withdraw consent: Where processing is based on consent, you may withdraw it at any time

You also have the right to lodge a complaint with your local data protection authority.

6.3 Rights Under U.S. State Privacy Laws (Including California)

If you are a resident of California or another U.S. state with privacy laws such as the California Consumer Privacy Act (CCPA) or California Privacy Rights Act (CPRA), you may have the right to:

  • Know what categories of personal information we collect, use, disclose, and sell or share

  • Request access to the specific pieces of personal information we have collected about you

  • Request deletion of your personal information, subject to certain exceptions

  • Request correction of inaccurate personal information

  • Opt out of the sale or sharing of personal information (if applicable)

  • Limit the use and disclosure of sensitive personal information (if applicable)

  • Not be discriminated against for exercising your privacy rights

We do not sell personal information in the traditional sense. However, some data sharing for advertising or analytics purposes may be considered a "sale" or "sharing" under certain laws.

6.4 Exercising Your Rights

To exercise any of the rights described above, please contact us using the information provided in the Contact Information section below. We may need to verify your identity before processing your request.

Authorized agents may submit requests on your behalf where permitted by law.

We will respond to verifiable requests within the timeframes required by applicable law.

7. Data Retention

We retain your personal information only as long as necessary to fulfill the purposes described in this Privacy Policy, comply with legal obligations, resolve disputes, and enforce our agreements.

8. Data Security

We implement reasonable administrative, technical, and physical safeguards to protect your personal information. However, no method of transmission over the internet is 100% secure.

9. Children's Privacy

The Site is not intended for individuals under the age of 13. We do not knowingly collect personal information from children.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for legal reasons. Updates will be posted on this page with a revised "Last updated" date.

11. Contact Information

If you have questions or concerns about this Privacy Policy or our data practices, contact us at:

Business Name: The Stillman Hat
Email: David@TheStillmanHat.com
Mailing Address: The Stillman Hat, 65 High Ridge Road, Stamford, CT 06905