HIKING TO THE TOP

Back to Home

Privacy Policy

Last updated

This Privacy Policy explains what data Hiking To The Top collects, how we use it, and the choices you have. We aim to collect only what we genuinely need to run the Site and to be clear about why.

1. Information We Collect

We collect information in the following ways:

  • Information you give us. When you create an account we collect your name, email address, and password (stored as a one-way hash — we can never see it). You may optionally add a profile avatar, phone number, location, and short bio.
  • Contact form submissions. Messages you send via the contact form are stored alongside your name and email so we can reply.
  • Automatic data. When you visit pages we log the approximate time of the visit and the clicks you make on affiliate links ("Buy on Amazon" buttons) so we can improve the content. We do not track you across other websites.

2. How We Use the Information

  • To operate your account — signing you in, verifying your email via one-time password (OTP), and showing your profile.
  • To send you transactional email such as password resets and email-verification codes. Delivery is handled by our email provider, SendGrid.
  • To respond to contact-form messages.
  • To understand which gear reviews, trails, and blog posts are driving traffic to affiliate partners (aggregated click counts — not individual browsing history).
  • To comply with legal obligations and enforce our Terms of Service.

3. Cookies & Local Storage

We use a single authentication token stored in your browser’s local storage to keep you signed in. This is functionally similar to a cookie — clearing your browser data will sign you out. We do not use third-party advertising cookies or cross-site trackers.

Third-party services you explicitly interact with (for example clicking through to Amazon) may set their own cookies. Those are governed by their respective privacy policies.

4. Sharing Your Information

We do not sell your personal data. We share data only with the small number of service providers required to run the Site:

  • Hosting & database providers — where your account and content are stored.
  • SendGrid — to deliver transactional email (OTPs, password resets).
  • Amazon — if you click an affiliate link, your subsequent browsing on Amazon is governed by Amazon’s own privacy policy.

We will also disclose information if required to do so by law, court order, or to protect the rights, property, or safety of the Site, its users, or the public.

5. How Long We Keep Your Information

  • Account data is kept for as long as your account exists. If you delete your account we remove your personal data from our active systems within 30 days, except where retention is required by law (for example financial records related to affiliate commissions).
  • Contact-form submissions are kept for up to 24 months so we can refer back to prior conversations.
  • Aggregated, anonymised analytics (for example affiliate click counts with no personal identifiers) may be kept indefinitely.

6. Your Rights

Depending on where you live, you may have the right to:

  • access the personal data we hold about you;
  • correct inaccurate data (you can do this from your profile page for most fields);
  • delete your account and associated data;
  • object to certain processing or request a copy of your data in a portable format.

To exercise any of these rights, write to us via the contact form from the email address associated with your account.

7. Security

We apply reasonable technical and organisational measures to protect your data: passwords are hashed, auth tokens are scoped and revocable, the database is firewalled, and access is limited to the Site’s maintainer. No system is ever perfectly secure — please use a unique password for your account and let us know immediately if you suspect unauthorised access.

8. Children

The Site is not directed at children under 13 and we do not knowingly collect personal data from them. If you believe a child has provided us with personal information, please contact us and we will delete it.

9. International Users

The Site may be accessed from anywhere in the world. By using it you understand that your data may be processed in a country other than your own, subject to the protections described in this policy.

10. Changes to This Policy

We may update this Privacy Policy from time to time. The “Last updated” date at the bottom of this page reflects the most recent change. Material changes will be highlighted on the homepage or notified by email to account holders.

11. Contact

Questions about this policy? Reach us through the contact form on the Site.