Privacy policy
Privacy Policy
Last updated: December 13, 2025
Here at Grip It Fit we value your privacy and are committed to ensuring your personal information stays protected. This Privacy Policy explains how we collect, use, safeguard, and disclose your information when you visit our website (gripitfit.com.au or gripitfit.com) or make a purchase from us (collectively, the "Services").
If there is a conflict between our Terms of Service and this Privacy Policy, this Privacy Policy controls with respect to the collection, processing, and disclosure of your personal information.
Please read this Privacy Policy carefully. By using and accessing any of the Services, you acknowledge that you have read this Privacy Policy and understand the collection, use, and disclosure of your information as described in this Privacy Policy.
1. Personal Information We Collect or Process
When we use the term "personal information," we are referring to information that identifies or can reasonably be linked to you or another person. Personal information does not include information that is collected anonymously or that has been de-identified. We may collect or process the following categories of personal information:
- Contact details: Name, address, billing address, shipping address, phone number, and email address.
- Financial information: Credit card, debit card, and financial account numbers (processed securely via our payment providers), transaction details, form of payment, payment confirmation, and other payment details.
- Account information: Username, password, security questions, preferences, and settings.
- Transaction information: Items you view, add to cart/wish list, purchase, return, exchange, or cancel, and your past transaction history.
- Communications with us: Information included in customer support inquiries or other correspondence.
- Device and Usage information: Information about your device, browser, network connection, IP address, unique identifiers, and how you interact with the Services (how and when you navigate our site).
2. Personal Information Sources
We collect personal information from the following sources:
- Directly from you: When you create an account, visit or use the Services, communicate with us, or otherwise provide us with your personal information during checkout.
- Automatically through the Services: From your device when you use our website, through the use of cookies and similar technologies (analytics, tracking).
- From our service providers: Including our e-commerce platform (Shopify), payment processors, and fulfillment partners (HyperSKU) when they process data on our behalf.
- From our partners or other third parties: Such as marketing partners or social media platforms if you interact with us through those channels.
3. How We Use Your Personal Information (Legal Basis for UK/EU Customers)
We use your personal information to operate our business. For customers in the UK and European Union, we rely on specific legal bases to process your information as required by the GDPR:
| Purpose of Use | Example of Use | Legal Basis (UK/EU Only) |
|---|---|---|
| Provide & Improve Services | Fulfilling orders, processing payments, arranging shipping, managing your account, recommending products. | Contractual Necessity |
| Marketing & Advertising | Sending promotional emails, showing you relevant online ads based on browsing activity. | Consent (Opt-in Required) or Legitimate Interest (Existing Customers) |
| Security & Fraud Prevention | Authenticating accounts, detecting fraudulent activity, securing our services. | Legitimate Interest (Protecting our business/customers) & Legal Obligation |
| Communicating with You | Providing customer support, responding to inquiries. | Contractual Necessity & Legitimate Interest |
| Legal Reasons | Complying with law, responding to subpoenas, enforcing terms/policies. | Legal Obligation |
4. How We Disclose Personal Information and International Data Transfers
In certain circumstances, we may disclose your personal information to third parties for legitimate purposes. We ensure these third parties are obligated to protect your information.
- Service Providers: We share information with vendors who perform services on our behalf (e.g., IT management, payment processing, data analytics, customer support, cloud storage, fulfillment, and shipping services like HyperSKU, YunExpress, 4PX, etc.).
- Business & Marketing Partners: To provide marketing services and advertise to you (e.g., using data for targeted advertising). Our partners use your information in accordance with their own privacy policies.
- Business Transactions: In connection with a merger, bankruptcy, or asset sale.
- Legal Obligations: To comply with applicable laws, respond to requests from law enforcement, and protect our rights or the rights of our users.
International Transfers (For Australian & UK/EU Customers): As an Australian business selling globally, your data is transferred internationally. Information you submit will be transmitted to and shared with our e-commerce platform (Shopify), fulfillment partners in China (HyperSKU), and cloud storage servers located primarily in the United States and other countries. We take appropriate measures to ensure your data remains protected according to Australian Privacy Principles (APPs) and GDPR standards (e.g., standard contractual clauses).
5. Relationship with Shopify
Our Services are hosted by Shopify. Shopify collects and processes personal information about your access to and use of the Services to provide and improve their services for us. To learn more about how Shopify uses your personal information, please review the Shopify Privacy Policy here.
6. Data Security and Retention
We implement reasonable security measures designed to protect your personal information. We retain personal information for as long as your account is active, as needed to provide you Services, or for up to 7 years to comply with legal, tax, or accounting requirements.
7. Your Rights Over Your Personal Information
Depending on where you reside (Australia, EU, UK, Canada, USA), you may have specific rights regarding your data.
For all customers: You have the right to access the personal information we hold about you and to ask that your personal information be corrected, updated, or erased. If you would like to exercise this right, please contact us using the contact details below.
Specific Rights for UK/EU Residents (GDPR): You have the right to:
- Access your data (Right of Access).
- Rectify inaccurate data (Right to Rectification).
- Erase your data in certain circumstances (Right to be Forgotten/Erasure).
- Restrict processing of your data.
- Portability of your data (receive an electronic copy).
- Object to processing (e.g., for marketing purposes).
- Lodge a complaint with your local data protection supervisory authority.
Specific Rights for California Residents (CCPA/CPRA): You have specific rights regarding access and deletion, and the right to opt-out of the "sale" or "sharing" of your personal information for targeted advertising. Grip It Fit does not "sell" your personal information in the traditional sense, but our use of advertising cookies may be considered "sharing" under California law. You can manage cookie preferences via your browser settings.
8. Contact Us
For more information about our privacy practices, if you have questions, or if you would like to exercise any of your rights, please contact us by e-mail at hello@gripitfit.com.au or by mail using the details below:
Grip It Fit
Sydney, NSW
62 256 985 682
Sydney, NSW
62 256 985 682