← Back to GrailGuard

Do Not Sell or Share My Personal Information

Your rights under California's CCPA/CPRA and similar state laws.

Our commitment

GrailGuard does not sell personal information as defined by any state privacy law, and does not share it for cross-context behavioral advertising. This page lets you formally record that preference anyway, and exercise your other state privacy rights.

Split-payment recipients (feature not yet live): If we later let a person other than the account holder pay part of a booking's cost, we will process that payer's card payment and record their acceptance of our terms solely to complete that transaction. We do not and will not sell or share a split-payment recipient's personal information for advertising, and any receipt they receive will state plainly why they received it. This feature is disabled today; it is disclosed here in advance so the commitment on this page covers it if it launches.

Global Privacy Control

Checking browser signal…

The GPC browser signal automatically tells every website you visit not to sell or share your personal information. We honor it silently with no banner required.

Submit a privacy request

Use this form to submit a formal request under CCPA/CPRA, CPA (CO), CTDPA (CT), VCDPA (VA), or any equivalent state law.

Got it. We'll verify your identity and respond within 45 days per state law requirements.

Categories of information we collect

Name, email, phone, shipping addresses, payment tokens (via Stripe — we never store card numbers), device identifiers, IP address, usage analytics, and — only when you opt in — location data during active shipments.

We do not collect precise geolocation outside active shipments. We do not infer sensitive characteristics. We retain booking records for 7 years for legal/coverage purposes.