Privacy Policy

At ThinkGeek, we celebrate geek culture while respecting your privacy. This Privacy Policy explains how we collect, use, share, and protect your personal information when you visit our website. We are committed to transparency and compliance with all applicable privacy laws, including the General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), California Privacy Rights Act (CPRA), and state privacy laws in Virginia, Colorado, Connecticut, and Utah.

1. Information We Collect

Information You Provide Directly

We collect information you voluntarily provide when you interact with ThinkGeek:

• Contact Information: Name and email address when you submit our contact form or subscribe to our newsletter
• Communication Content: Messages, questions, or feedback you send through our contact forms
• Newsletter Preferences: Your subscription choices and communication preferences

Information Collected Automatically

When you visit ThinkGeek, we automatically collect certain technical information:

• Device Information: Device type, operating system, browser type and version, screen resolution
• Usage Data: Pages visited, time spent on pages, navigation paths, click behavior, scroll depth
• Location Data: Approximate geographic location based on IP address (city and country level)
• IP Address: Your internet protocol address for security and analytics purposes
• Referral Information: The website or search engine that referred you to ThinkGeek
• Date and Time: Timestamps of your visits and interactions

Information from Third Parties

We receive information through our partnerships and service providers:

• Amazon Associates Program: When you click our affiliate links and make purchases on Amazon, we receive aggregated data about sales performance but do not receive your personal purchase information or Amazon account details
• Analytics Providers: Google Analytics provides us with anonymized data about website traffic and user behavior patterns
• Advertising Networks: Cookie-based data from advertising partners to understand campaign effectiveness

2. How We Use Your Information

ThinkGeek uses your information for the following purposes:

Website Operation and Improvement

• Delivering and maintaining our website functionality
• Analyzing how visitors interact with our content to improve user experience
• Identifying and fixing technical issues
• Optimizing website performance and loading speeds
• Testing new features and content formats

Communication

• Responding to your inquiries, questions, and support requests
• Sending newsletters about new products and geek culture content (with your consent)
• Notifying you about important updates to our policies or services
• Communicating about your rights and our legal obligations

Analytics and Business Intelligence

• Understanding which products and content categories interest our visitors most
• Measuring the effectiveness of our content and marketing efforts
• Identifying trends in geek culture interests and product preferences
• Generating aggregated statistics and reports for business planning

Marketing and Personalization

• Displaying relevant product recommendations based on browsing patterns
• Customizing content to match visitor interests in gaming, sci-fi, fantasy, or tech
• Improving our product selection and curation
• Measuring affiliate marketing campaign performance

Security and Legal Compliance

• Protecting against fraud, spam, and abuse
• Enforcing our Terms and Conditions
• Complying with legal obligations and responding to lawful requests
• Protecting ThinkGeek’s rights, property, and safety
• Preventing unauthorized access and security incidents

3. Cookies and Tracking Technologies

ThinkGeek uses cookies and similar tracking technologies to enhance your browsing experience and gather analytics data.

What Are Cookies?

Cookies are small text files stored on your device when you visit our website. They help us remember your preferences and understand how you use our site.

Types of Cookies We Use

Essential Cookies (Always Active):

• Enable core website functionality and navigation
• Remember your cookie consent preferences
• Maintain security and prevent fraud
• These cookies are necessary for the website to function and cannot be disabled

Analytics Cookies:

• Google Analytics cookies track visitor behavior, popular content, and traffic sources
• Help us understand which products and categories interest our visitors
• Measure page performance and identify areas for improvement
• Generate anonymized reports about website usage patterns

Advertising and Affiliate Cookies:

• Amazon Associates cookies track when you click our affiliate links
• Enable us to earn commissions on qualifying purchases
• Help measure the effectiveness of our product recommendations
• Support advertising partners in delivering relevant ads

Managing Your Cookie Preferences

You can control cookies through your browser settings:

• Block All Cookies: Configure your browser to reject all cookies (may affect website functionality)
• Delete Cookies: Clear existing cookies from your browser history
• Third-Party Cookies: Block cookies from external domains while allowing first-party cookies
• Browser Privacy Settings: Use incognito/private browsing mode for cookieless sessions

Common browser cookie management:

• Chrome: Settings → Privacy and Security → Cookies and Other Site Data
• Firefox: Settings → Privacy & Security → Cookies and Site Data
• Safari: Preferences → Privacy → Cookies and Website Data
• Edge: Settings → Cookies and Site Permissions

4. How We Share Your Information

ThinkGeek shares your information only in the following limited circumstances:

Service Providers

We work with trusted third-party companies that help us operate our website:

• Web Hosting: Companies that host our website servers and content delivery networks
• Email Services: Newsletter platforms that manage our subscriber communications
• Analytics Providers: Google Analytics and similar services that process usage data on our behalf
• Security Services: Providers that help protect against malware, DDoS attacks, and spam

These service providers are contractually obligated to protect your information and use it only for the services they provide to ThinkGeek.

Affiliate Partners

As a participant in the Amazon Associates Program:

• When you click our affiliate links to Amazon, cookies track the referral
• We receive commission data but not your personal purchase details or payment information
• Amazon’s privacy policy governs any information you provide directly to Amazon
• We do not control or access Amazon’s customer databases

Legal Requirements

We may disclose your information when required by law or to protect our rights:

• Complying with valid legal processes such as subpoenas, court orders, or search warrants
• Responding to requests from law enforcement or government agencies
• Protecting against fraud, illegal activity, or security threats
• Enforcing our Terms and Conditions or investigating violations
• Defending legal claims or protecting ThinkGeek’s legal rights

Business Transfers

If ThinkGeek is involved in a merger, acquisition, sale of assets, or bankruptcy:

• Your information may be transferred to the successor entity
• We will provide notice before your information is transferred and becomes subject to a different privacy policy
• You will have the opportunity to delete your information before any such transfer

Aggregated or Anonymized Data

We may share aggregated or anonymized information that cannot identify you individually:

• Industry reports about geek culture trends and product interests
• Traffic statistics and demographic insights
• Research about content performance and user engagement

5. Data Security

ThinkGeek implements industry-standard security measures to protect your personal information from unauthorized access, alteration, disclosure, or destruction.

Security Measures We Use

• SSL/TLS Encryption: All data transmitted between your browser and our servers is encrypted using Secure Socket Layer (SSL) technology
• Secure Hosting: Our website is hosted on secure servers with firewall protection and intrusion detection systems
• Access Controls: Limited employee access to personal information on a need-to-know basis
• Regular Updates: We keep our software, plugins, and security systems up to date with the latest patches
• Data Minimization: We collect only the information necessary for our stated purposes
• Secure Backups: Regular encrypted backups of our data with restricted access

Important Security Limitations

While we strive to protect your information, no method of internet transmission or electronic storage is 100% secure:

• We cannot guarantee absolute security of data transmitted over the internet
• You are responsible for maintaining the confidentiality of any passwords or login credentials
• Please notify us immediately if you suspect unauthorized access to your information
• We are not responsible for the security practices of third-party websites you access through our links

6. Your Privacy Rights

Additional Rights for European Union Users (GDPR)

If you are located in the European Economic Area, United Kingdom, or Switzerland, you have additional rights under GDPR:

• Right to Access: Obtain a copy of your personal data and information about how we process it
• Right to Rectification: Correct inaccurate or incomplete personal data
• Right to Erasure (“Right to be Forgotten”): Request deletion of your personal data when it’s no longer necessary for our purposes
• Right to Restrict Processing: Limit how we use your data in certain circumstances
• Right to Data Portability: Receive your personal data in a structured, machine-readable format
• Right to Object: Object to processing based on legitimate interests or for direct marketing purposes
• Right to Withdraw Consent: Withdraw consent for processing at any time (doesn’t affect past processing)
• Right to Lodge a Complaint: File a complaint with your local data protection authority

Additional Rights for California Residents (CCPA/CPRA)

California consumers have specific rights under the California Consumer Privacy Act and California Privacy Rights Act:

• Right to Know: Request details about the personal information we’ve collected, including categories, sources, purposes, and third parties with whom we share it
• Right to Know (Specific Pieces): Request the specific pieces of personal information we’ve collected about you
• Right to Delete: Request deletion of personal information we’ve collected (subject to exceptions)
• Right to Correct: Request correction of inaccurate personal information
• Right to Opt-Out of Sale/Sharing: We do not sell personal information, but you can opt out of data sharing for cross-context behavioral advertising
• Right to Limit Sensitive Personal Information: Request limits on our use of sensitive personal information
• Right to Non-Discrimination: Exercise your privacy rights without receiving discriminatory treatment

California “Shine the Light” Law: California residents can request information about personal information disclosed to third parties for their direct marketing purposes (we do not share personal information for third-party marketing).

Additional Rights for Other U.S. State Residents

Residents of Virginia, Colorado, Connecticut, and Utah have similar rights under their state privacy laws:

• Virginia (VCDPA): Rights to access, correct, delete, obtain a copy of data, and opt out of targeted advertising and profiling
• Colorado (CPA): Rights to access, correct, delete, obtain a copy of data, and opt out of targeted advertising and profiling
• Connecticut (CTDPA): Rights to access, correct, delete, obtain a copy of data, and opt out of targeted advertising and profiling
• Utah (UCPA): Rights to access, delete, obtain a copy of data, and opt out of targeted advertising

How to Exercise Your Privacy Rights

To exercise any of your privacy rights, please contact us using one of the following methods:

• Email: Send your request to privacy@thethinkgeek.com with “Privacy Rights Request” in the subject line
• Contact Form: Submit a request through our Contact Page and select “Privacy Request” as the topic
• Written Request: Mail your request to the address provided in the Contact section below

Verification Process: To protect your privacy and security, we will verify your identity before processing your request. We may ask you to:

• Provide the email address associated with your request
• Confirm details about your recent interactions with ThinkGeek
• Respond to a verification email sent to your registered address

Response Timeline: We will respond to verified requests within:

• 30 days for most requests (may extend to 60 days for complex requests with notice)
• 45 days for GDPR requests (may extend to 90 days with notice)
• We will notify you if we need additional time and explain the reason for the delay

Authorized Agents: California residents may designate an authorized agent to submit requests on their behalf. Authorized agents must provide written proof of authorization.

7. Children’s Privacy

ThinkGeek is committed to protecting the privacy of children. Our website is not directed to individuals under the age of 13, and we do not knowingly collect personal information from children under 13.

COPPA Compliance: In accordance with the Children’s Online Privacy Protection Act (COPPA):

• We do not knowingly collect, use, or disclose personal information from children under 13
• We do not knowingly allow children under 13 to subscribe to our newsletter or submit contact forms
• If we discover we have inadvertently collected information from a child under 13, we will delete it promptly

Parental Notice: If you are a parent or guardian and believe your child under 13 has provided personal information to ThinkGeek, please contact us immediately at privacy@thethinkgeek.com. We will take steps to delete the information as soon as possible.

Age-Appropriate Content: While many ThinkGeek products appeal to all ages, we recommend parental guidance for purchases and browsing decisions involving minors.

8. Third-Party Links and Services

ThinkGeek contains links to third-party websites and services, including Amazon, social media platforms, and product manufacturers’ websites. This Privacy Policy applies only to information collected by ThinkGeek.

Amazon and External Retailers

• When you click affiliate links to Amazon or other retailers, you leave ThinkGeek and are subject to those sites’ privacy policies
• We are not responsible for the privacy practices or content of external websites
• Amazon’s collection and use of your information is governed by Amazon’s Privacy Notice
• Any purchases, returns, or customer service issues are handled directly by Amazon

Social Media and Content Platforms

• Links to social media platforms (Twitter, Instagram, Reddit) are governed by those platforms’ privacy policies
• We do not control what information these platforms collect when you visit them from our links
• Social media platforms may use cookies and trackers even if you don’t have an account with them

Our Recommendation

Before providing personal information to any third-party website, we encourage you to:

• Read their privacy policy and terms of service
• Understand what information they collect and how they use it
• Check their cookie policies and opt-out options
• Verify the site’s security (look for HTTPS and security certificates)

9. Data Retention

ThinkGeek retains your personal information only as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

Retention Periods by Data Type

• Contact Form Submissions: Retained for 2 years after your last communication or until you request deletion
• Newsletter Subscriptions: Maintained until you unsubscribe or request deletion
• Analytics Data: Google Analytics data is automatically deleted after 26 months
• Cookie Data: Most cookies expire after 30-90 days; some analytics cookies persist for up to 2 years
• Server Logs: Automatically deleted after 90 days
• Security Incident Records: Retained for 5 years for legal compliance and prevention purposes

Factors Affecting Retention

When determining retention periods, we consider:

• The nature and sensitivity of the information
• Legal, regulatory, and contractual requirements
• The purposes for which we collected the information
• Whether we can achieve those purposes through other means
• Potential risks from continued data retention

Deletion Process

When we delete personal information:

• We permanently remove it from our active databases and systems
• We delete or anonymize data in backups according to our backup schedule
• Some anonymized data may be retained for analytical purposes (with no way to identify you)
• Certain information may be retained in archived records where required by law

10. International Data Transfers

ThinkGeek operates primarily in the United States. If you access our website from outside the United States, please be aware that your information may be transferred to, stored, and processed in the United States and other countries where our service providers operate.

Data Protection Standards

• The United States and other countries may have data protection laws that differ from your country of residence
• We implement appropriate safeguards to protect your information regardless of where it is processed
• For EU/EEA users, we ensure adequate protections for data transfers through standard contractual clauses or other approved mechanisms

Your Consent

By using ThinkGeek and providing your information, you consent to the transfer of your information to the United States and other countries where we operate. If you do not consent to such transfers, please do not use our website.

11. Email Communications and Marketing

Newsletter Subscriptions

When you subscribe to the ThinkGeek newsletter, you will receive:

• Updates about new geek gifts, collectibles, and apparel
• Featured product highlights from gaming, sci-fi, fantasy, and tech categories
• Special content about geek culture and fandom
• Occasional information about ThinkGeek updates and announcements

Frequency and Content

• We typically send newsletters 1-4 times per month
• All marketing emails include clear unsubscribe links
• We never sell or rent our email list to third parties
• You can update your preferences or unsubscribe at any time

How to Unsubscribe

You can stop receiving marketing emails by:

• Clicking the “Unsubscribe” link at the bottom of any newsletter
• Sending an email to hello@thethinkgeek.com with “Unsubscribe” in the subject
• Contacting us through our Contact Page

Please allow up to 5 business days to process your unsubscribe request. You may still receive transactional emails (like responses to your inquiries) even after unsubscribing from marketing.

Transactional Emails

We may send you non-marketing emails related to:

• Responses to your contact form submissions and questions
• Important updates to our Privacy Policy or Terms and Conditions
• Privacy rights requests and account-related communications
• Legal notices or security alerts affecting your data

You cannot opt out of transactional emails, as they contain important information about your relationship with ThinkGeek.

12. Do Not Track Signals

Some web browsers offer a “Do Not Track” (DNT) signal that tells websites you prefer not to be tracked. Currently, there is no universal standard for how websites should respond to DNT signals.

Our DNT Approach:

• ThinkGeek’s website currently does not respond to DNT signals
• We continue to collect analytics data and use cookies as described in this Privacy Policy
• You can manage tracking through your browser’s cookie settings or by using privacy browser extensions
• We will update this policy if we implement DNT signal recognition in the future

Alternative Privacy Controls: Instead of relying on DNT signals, you can:

• Block third-party cookies in your browser settings
• Use browser privacy extensions that block trackers
• Opt out of Google Analytics tracking at https://tools.google.com/dlpage/gaoptout
• Use private/incognito browsing mode

13. Changes to This Privacy Policy

ThinkGeek reserves the right to modify this Privacy Policy at any time to reflect changes in our practices, technology, legal requirements, or business operations.

How We Notify You of Changes

• Last Updated Date: We will update the “Last Updated” date at the top of this Privacy Policy
• Material Changes: For significant changes that affect your rights, we will provide prominent notice on our homepage
• Email Notification: If you’re subscribed to our newsletter, we may send an email alert about major privacy policy updates
• Continued Use: Your continued use of ThinkGeek after changes become effective constitutes acceptance of the updated Privacy Policy

Your Options

If you disagree with changes to our Privacy Policy:

• You can request deletion of your personal information before the changes take effect
• You can stop using ThinkGeek and unsubscribe from our communications
• For EU/EEA users, you have the right to withdraw consent for processing

Version History

We maintain a record of previous Privacy Policy versions. To request information about past versions or specific changes, contact us at privacy@thethinkgeek.com.

This Privacy Policy was last updated on January 15, 2025. ThinkGeek celebrates geek culture through innovative gifts, collectibles, and apparel. We design products for fans who embrace their passions—from gaming and sci-fi to fantasy and tech. Every item reflects our commitment to creativity, quality, and the vibrant community we serve.