Privacy Policy
Who We Are
Driven2Parts ("we," "us," or "our") operates the website driven2parts.com and sells automotive performance parts and accessories online. This Privacy Policy explains what information we collect from visitors and customers, how we use it, who we share it with, and what rights you have over your data.
By using our website or making a purchase, you agree to the terms of this Privacy Policy. If you don't agree, please don't use our site.
Business Information:
Driven2Parts
3960 West Point Loma Blvd, Suite H
San Diego, CA 92110
United States
What Information We Collect
We collect only what we need to process your orders, run our business, and improve your experience. Here's the breakdown:
| Category | What We Collect |
|---|---|
| Identity & Contact | Name, email address, phone number, billing address, shipping address |
| Order & Transaction | Order history, items purchased, prices paid, payment method type (we never see or store your card number) |
| Vehicle Information | Year, Make, Model, Trim, Engine — used to verify part fitment |
| Account Information | Username, password (encrypted), saved vehicles in your Garage, communication preferences |
| Technical & Device | IP address, browser type, device type, operating system, referring URL, pages visited, time spent |
| Communications | Emails, phone calls, chat messages, and support tickets you send us |
How We Get This Information
- Directly from you: When you create an account, place an order, fill out a contact form, sign up for emails, or call us
- Automatically: Through cookies, analytics tools, and standard web server logs when you browse our site
- From third parties: Payment processors confirm transactions, shipping carriers provide tracking updates, and analytics providers share aggregate site usage
We never see or store your full credit card number, CVV, or bank account details. Payment information is collected and processed directly by our PCI-compliant payment processors (Stripe, PayPal, etc.). We only receive a transaction confirmation and the last 4 digits of your card for receipt purposes.
How We Use Your Information
We use your information only for the following purposes:
- Fulfilling orders: Processing payments, shipping parts, sending confirmation and tracking emails, handling returns
- Customer service: Responding to your questions, resolving issues, processing warranty claims
- Account management: Maintaining your account, your Garage, your order history, your saved addresses
- Fitment verification: Matching your saved vehicle(s) to compatible parts using ACES-certified fitment data
- Marketing (with your consent): Sending you product updates, promotions, and newsletters — you can opt out anytime
- Site improvement: Understanding how visitors use our site, fixing bugs, improving navigation and search
- Fraud prevention: Detecting suspicious activity, preventing chargebacks, protecting our customers and ourselves
- Legal compliance: Meeting tax reporting requirements, responding to lawful legal requests, enforcing our Terms of Service
We do not use your information for automated decision-making that produces legal effects (we don't auto-deny orders based on profiles), and we don't sell or rent your data to advertisers or data brokers.
Cookies & Tracking
Our website uses cookies and similar technologies (pixels, web beacons, local storage) to make the site work, understand how it's used, and improve your experience.
Types of Cookies We Use
- Strictly necessary cookies: Required for the site to work — shopping cart, login session, security. Cannot be disabled.
- Functional cookies: Remember your preferences and settings — your saved vehicle, currency, language.
- Analytics cookies: Help us understand which pages are visited, where visitors come from, what works and what doesn't. We use tools like Google Analytics that aggregate this data anonymously.
- Marketing cookies: Used for retargeting and measuring ad campaign effectiveness if you've seen our ads elsewhere. Includes pixels from Meta (Facebook/Instagram) and Google Ads, where applicable.
Managing Cookies
You can control cookies through your browser settings. Most browsers let you block or delete cookies, though doing so may break some site functionality (e.g. you may not be able to log in or check out).
We honor Global Privacy Control (GPC) signals — if your browser sends a GPC opt-out signal, we treat it as an opt-out of the sale or sharing of your personal information.
Who We Share Your Information With
We share your information only with trusted service providers who help us run our business. We don't sell your data to anyone, and we don't share it for any purpose other than what's listed below.
| Service Provider | What They Get / Why |
|---|---|
| Payment processors | Stripe, PayPal, Affirm, Shop Pay — to process your payment. They see your name, billing address, and card data (we don't). |
| Shipping carriers | UPS, FedEx, USPS, DHL via Pirate Ship — to deliver your order. They see your name, shipping address, phone, and order weight. |
| Hosting & infrastructure | Our web host stores the website and your account data. Data centers are SOC 2 certified. |
| Email service providers | Sending transactional emails (order confirmation, shipping notifications) and marketing emails (if you opted in). |
| Analytics providers | Google Analytics — aggregate, anonymized usage data. |
| Customer support tools | If you contact us, your conversation history is stored in our help desk software. |
| Tax & accounting | Aggregate sales data shared with our accountants and tax authorities as required by law. |
Legal Disclosures
We may disclose your information if required by law, court order, or government request — but only to the extent legally required. We may also share information in the event of a business transfer (merger, acquisition, or sale of assets), in which case the receiving party will be bound by the same privacy obligations.
How We Protect Your Data
We take data security seriously. Our protections include:
- SSL/TLS encryption on every page (look for the lock icon in your browser)
- PCI-DSS compliance via our payment processors — your card data is never stored on our servers
- Password hashing with industry-standard algorithms — even we can't see your password
- Access controls — only authorized employees with a business need can access customer data
- Regular security audits and software updates to patch known vulnerabilities
- Limited data retention — we don't keep data longer than necessary
That said, no system is 100% secure. If a data breach affects your information, we'll notify you and the appropriate authorities within the timeframes required by law (typically within 72 hours of discovery for serious breaches).
How Long We Keep Your Data
We keep different types of data for different lengths of time, based on what's needed and what the law requires:
| Data Type | Retention Period |
|---|---|
| Account information | Until you delete your account (then deleted within 30 days) |
| Order & transaction records | 7 years (required for tax and warranty purposes) |
| Marketing email lists | Until you unsubscribe (then removed within 7 days) |
| Customer support tickets | 3 years after case closure |
| Analytics & site usage | 26 months (aggregate, anonymized) |
| Server logs | 90 days |
After the retention period ends, we either delete the data or anonymize it so it can no longer be linked back to you.
Your Rights
Regardless of where you live, you have the following rights regarding your personal information:
- Access: Request a copy of the personal information we hold about you
- Correction: Ask us to fix inaccurate or incomplete information
- Deletion: Request that we delete your personal information (with some legal exceptions, like order records we must keep for tax purposes)
- Portability: Receive your data in a structured, machine-readable format
- Opt out of marketing: Unsubscribe from marketing emails anytime (link at the bottom of every marketing email)
- Restrict processing: Ask us to temporarily stop processing your data while we resolve a dispute
- Object: Object to specific uses of your data, like marketing
To exercise any of these rights, contact us at privacy@driven2parts.com with your request. We'll respond within 30 days (45 days for complex requests).
We won't discriminate against you for exercising these rights — you won't be denied service, charged different prices, or receive worse service for asking.
California Residents
If you live in California, the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA) give you additional rights:
Your CCPA/CPRA Rights
- Right to Know: What personal information we collect, where it comes from, why we collect it, and who we share it with
- Right to Delete: Request deletion of your personal information (with legal exceptions)
- Right to Correct: Fix inaccurate information
- Right to Opt Out: Opt out of the "sale" or "sharing" of your personal information
- Right to Limit Use of Sensitive Information: Restrict how we use sensitive categories of data
- Right to Non-Discrimination: Equal service and pricing regardless of whether you exercise your rights
We do not sell your personal information in the traditional sense (we never have, we never will). However, the CCPA broadly defines "sharing" to include certain advertising activities. If we share data with advertising partners for retargeting purposes, California residents can opt out by emailing privacy@driven2parts.com or enabling the Global Privacy Control (GPC) signal in your browser.
How to Exercise Your California Rights
Email us at privacy@driven2parts.com with:
- Your full name and email associated with your account
- The specific right you're exercising (access, delete, correct, opt out)
- Enough detail for us to identify you and respond appropriately
We'll verify your identity before processing requests to protect your information from unauthorized access. You may also designate an authorized agent to make requests on your behalf — we'll need written permission and proof of identity for both you and the agent.
For more on California privacy law, visit the California Attorney General's CCPA page.
Children Under 13
Driven2Parts is not intended for children under the age of 13. We do not knowingly collect personal information from anyone under 13.
If you're a parent or guardian and believe your child has provided us with personal information, contact us at privacy@driven2parts.com immediately. We'll delete the information within 30 days.
For users aged 13–17, we recommend reviewing this Privacy Policy with a parent or guardian before using our site or making a purchase.
Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, the law, or new services. When we make changes:
- Minor changes: We'll update the "Last Updated" date at the top of this page
- Material changes: We'll email you (if we have your email) and post a prominent notice on our website at least 30 days before the changes take effect
Continuing to use our site after changes take effect means you accept the updated policy. If you don't agree with changes, you can close your account or stop using the site.
Contact Us
Questions about this Privacy Policy or your data? We're easy to reach.
Privacy Inquiries
For any privacy-related questions, data requests, or concerns about how we handle your information, contact our privacy team directly.
Attn: Privacy Team
3960 West Point Loma Blvd, Suite H
San Diego, CA 92110
(45 for complex requests)
Policies.
Our full set of policies governs your use of Driven2Parts. Read all of them — they're written to be understandable, not lawyered-up.