Updated November 2022

We are committed to protecting your privacy. Authorized employees within the company on a need to know basis only use any information collected from individual customers for the purposes of filling orders.  We might contact you via email or phone with questions about your order and we will use the shipping address you provided to ship your products to you. We will only contact you via email with sales or promotions if you opt in to our email newsletter on your own. We constantly review our systems and data to ensure the best possible service to our customers.

We will not sell, share, or rent your personal information to any third party or use your e-mail address for unsolicited mail. Any emails sent by Grace and Lace, Inc will only be in connection with the provision of agreed services and products. Grace and Lace, Inc takes reasonable measure to help protect information about you from loss, theft, misuse and unauthorized access, disclosure, alteration and destruction.

To fulfill your order, you must provide us with certain information (which you authorized Bigcommerce, our website host, to provide to us), such as your name, email address, postal address, payment information (which is stored and processed by one of our payment providers, Authorize.net or Paypal), and the details of the product that you’re ordering. You also may have chosen to provide us with additional personal information (for a custom order, for example) if you contacted us directly or added notes to your order during checkout.

When you access our website we may also automatically collect information about you (through a number of service providers, listed below under the section titled “Service Providers”).

Log information:  We collect log information about your use of the website, including your IP (Internet Protocol) address, web request, access times, pages viewed, web browser, links clicked and the page you visited before navigating to purchase a product.  We also collect whether or not you are on a desktop or mobile device.

Our store uses Facebook's Conversions API as well as the Facebook pixel. Data is shared using your web browser and from Shopify's servers, and is sent directly to Facebook's servers. Data sent from server to server can't be blocked by browser-based ad blockers. The information collected includes your name, location, email address and phone number, as well as your browsing behavior in our online store.

We rely on a number of legal bases to collect, use, and share your information, including:

- As needed to provide our services, such as when we use your information to fulfill your order, to settle disputes, or to provide customer support;

- To provide, maintain, improve and promote our products and services;

- To provide and deliver the information, products you request, process transaction and send you related information, including confirmations and receipts;

- To send you technical notices, updates, security alerts, and support and administrative messages;

- To respond to your comments, questions and requests, and provide customer service;

- To communicate with you about products, services, surveys, offers, promotions, rewards and events offered by Grace and Lace, Inc and others, and provide news and information we think will be of interest to you as our customer;

- To monitor and analyze trends, usage and activities in connection with our products and services;

- To personalize and improve our products and provide advertisements, content or features that match user profiles or interests;

- To facilitate contests, sweepstakes and promotions, and process and deliver entries and rewards;

- To link or combine with information we get from others to help understand your needs and provide you with better service; and

- To carry out any other purpose for which the information was collected with your consent.

We are based in the United States and the information we collect is governed by U.S. law.  By accessing or using the Services or otherwise providing information to us, you consent to the processing and transfer of information in and to the U.S. and other countries.

Information about our customers is important to our business. We share your personal information for very limited reasons and in limited circumstances, as follows:

Our Service Providers include (but are not limited to):  Shopify, SKUVault, Attentive, Zoho, Mailchimp, Klaviyo, Shipstation, USPS, FedEx, UPS, and Authorize.net, Paypal, AfterPay, Google (Google Analytics, Google AdWords), Facebook.

Our website offers social sharing features and other integrated tools (such as the Facebook™ "like" button and a Pinterest button), which let you share action you take on our webpages and products with other media, and vice versa.  Your use of such features enables the sharing of information with your friends or the public, depending on the settings you establish with the entity that provides the social sharing feature. For more information about the purpose and scope of data collection and processing in connection with social sharing features, please visit the privacy policies of the entities that provide these features.

We may allow others to serve advertisements on our behalf across the Internet and to provide analytics services.  These entities such as Google Analytics and Facebook Pixels, may use cookies, web beacons and other technologies to collect information about your use of our website and other websites, including your IP address web browser, pages viewed, time spent on pages, links clicked and conversion information.  This information may be used by Grace and Lace, Inc and others to, among other things, analyze and track data, determine the popularity of certain content, deliver advertising and content targeted to your interest on our website and other websites and better understand your online activity.

This website uses cookies. By using this website and agreeing to this policy, you consent to Grace and Lace’s use of cookies in accordance with the terms of this policy. Cookies are files sent by web servers to web browsers and stored by the web browsers. The information is then sent back to the server each time the browser requests a page from the server. This enables a web server to identify and track web browsers.

There are two main kinds of cookies: session cookies and persistent cookies. Session cookies are deleted from your computer when you close your browser, whereas persistent cookies remain stored on your computer until deleted, or until they reach their expiry date.

Google cookies

Grace and Lace uses Google Analytics to analyze the use of this website. Google Analytics generates statistical and other information about website use by means of cookies, which are stored on users’ computers. The information generated relating to our website is used to create reports about the use of the website. Google will store and use this information. Google’s privacy policy

Refusing cookies

Most browsers allow you to refuse to accept cookies.

In Internet Explorer, you can refuse all cookies by clicking “Tools”, “Internet Options”, “Privacy”, and selecting “Block all cookies” using the sliding selector.

In Firefox, you can adjust your cookies settings by clicking “Tools”, “Options” and “Privacy”.

Blocking cookies will have a negative impact upon the usability of some websites.

We use cookies on graceandlace.com ("our site") for a number of purposes.  They help us provide you with a good experience when you browse our website, and also allow us to improve our site.  By continuing to browse the site, you are agreeing to our use of cookies.

We keep your data for as long as you have an account with us. We also keep some data for security investigation. Most importantly, we have specific obligations for fraud detection and tax reasons. Therefore, we might need to retain certain data even if you ask to delete it.

We may store and process your information through third-party hosting services in the US and other jurisdictions. As a result, we may transfer your personal information to a jurisdiction with different data protection and government surveillance laws than your jurisdiction. If we are deemed to transfer information about you outside of the EU, we rely on Privacy Shield as the legal basis for the transfer.  As with existing law, the GDPR requires that certain safeguards be put in place when transferring personal data outside the EU. BigCommerce is based in the US and is a participant in the EU-US Privacy Shield Framework and committed to providing best-in-class service and data protection. You can check its participation in the Privacy Shield here on the official site of The International Trade Administration (ITA), U.S. Department of Commerce.

We use two payment processors at this time, Authorize.net and Paypal.

Authorize.net’s privacy policy can be found at their website, Authorize.net.

Paypal’s privacy policy can be found at their website, Paypal.com.

If you reside in certain territories, including the EU, you have a number of rights in relation to your personal information. While some of these rights apply generally, certain rights apply only in certain limited cases. We describe these rights below:

Access. You may have the right to access and receive a copy of the personal information we hold about you by contacting us using the contact information below.

Change, restrict, delete. You may also have rights to change, restrict my use of, or delete your personal information. Absent exceptional circumstances (like where we are required to store data for legal reasons) We will generally delete your personal information upon request.

Object. You can object to (i) our processing of some of your information based on legitimate interests and (ii) receiving marketing messages from us after providing your express consent to receive them. In such cases, we will delete your personal information unless we have compelling and legitimate grounds to continue using that information or if it is needed for legal reasons.

Complain. If you reside in the EU and wish to raise a concern about the use of your information (and without prejudice to any other rights you may have), you have the right to do so with your local data protection authority.

If you have any questions about our data privacy practices, you may contact us at datacontroller@graceandlace.com. Alternately, you may mail us at:

Grace and Lace, Inc - Attn: Data Controller

2000 Windy Terrace Rd, Ste 11A

Cedar Park, TX 78613

If you are a California resident, California law may provide you with additional rights regarding our use of your personal information. To learn more about your California privacy rights, visit https://oag.ca.gov/privacy/privacy-laws.

Please visit this link to see the Terms of Service for this site.

© 2012-2022 Grace and Lace All rights reserved. Grace and Lace