Build Your Own Bag
Travel Sized
Set it & Get It
Bum Club Members: Get Double Bananas on All Orders
Last Date Updated: July 21, 2025
This policy describes how we treat personal information gathered from our website (sunbum.com). It applies to practices on the websites or apps where it appears. It does not apply in other circumstances. That includes not applying to our employees or contractors.
The type of information depends on your relationship with us. It also depends on how you interact with us.
California, Colorado and potentially other state laws require us to tell you if we share categories of information for targeted advertising such as cross-contextual behavioral advertising. For each category below we have indicated if we do this. (To modify your preferences, read the Notice of Right to Opt-out of Sharing for Cross-Contextual Behavioral Advertising below.)
We use information as disclosed and described here.
We do not use or disclose sensitive personal information, as defined by California law, for inferring characteristics or for purposes other than those permitted by law. In the event we do collect such information for any limited reason, we keep these categories of personal information as long as necessary or relevant for the purposes for which it was collected. We also keep information as required by law.
We keep these categories of information as long as necessary or relevant. We also keep information as required by law.
Please read the rest of this policy for more information about our practices.
We collect information directly from you. For example, we collect information when you contact us. This includes in our “live chat” area of the website. It also includes when you inquire about a job opportunity. We also collect information directly from you when you sign up for our newsletter or purchase product from us.
We collect information indirectly. We may receive information about you from our third-party vendors or partners.
We collect information passively. We collect information about users over time and across different websites and apps. Our vendors may also collect information this way. We may use common tracking tools. These include cookies and web beacons. We may do this on our platforms and in our emails.
We combine information that we have collected offline with information we collect online. We also combine information collected across devices. This might include information collected from computers with that collected on mobile devices. We also combine information that we get from others with information we already have. We may combine information that we have collected over time.
Below are times when we may disclose your personal information. We have also indicated the categories of entities to whom we may disclose your personal information:
Additional information for residents in certain states. California, Nevada, and Virginia law require that we tell you if we sell personal information with a third party for monetary or (in California) other valuable consideration. We do not do this. We also do not do this with information of minors under the age of 16.
When you browse or shop on the Sun Bum website (www.sunbum.com), certain features and functions are powered by Shopify, a third-party ecommerce platform. This section explains how Shopify may collect and use your personal information, and how that relates to our use of cookies and your privacy rights.
When you interact with our site, Shopify may act as either a data processor (service provider) or a data controller, depending on the feature.
1. Shopify as Our Service Provider (Processor)
In most cases—such as when you make a purchase, use the shopping cart, or check out—Shopify acts as a service provider to Sun Bum. That means it processes your personal information (like your name, email, shipping address, and payment info) only on our instructions, to:
Sun Bum remains responsible for this data in these cases.
2. Shopify as an Independent Data Controller for Enhanced Services
Starting July 25, 2025, Shopify may also use some of your data collected on SunBum.com for its own purposes—like improving how products are recommended or preventing fraud. These “Enhanced Services” are powered by Shopify Network Intelligence, which uses information from across Shopify’s platform to:
In this context, Shopify acts as a data controller and determines how that data is used. You can read more here: Shopify Privacy Policy - Shopify
3. Shopify as a Controller for Shopify Account Information
If you choose to create or log into a Shopify account (used across different Shopify-powered stores), Shopify independently controls and manages that account information—including your order history, login credentials, and account preferences.
How to Opt Out of Shopify’s Use of Your Data
If you’d like to opt out of Shopify using your personal data for Enhanced Services like personalized ads or platform-wide analytics, you can:
You may opt out of receiving marketing emails you receive from us. To do so follow the instructions in the message you receive. You will still receive our transactional communications.
Loyalty Program - The Bum Club
With respect to our loyalty program, if you ask us to delete your information or opt out of the use of your information, we will comply with your request, but you may lose some or all the benefits associated with the incentive program. For example, if you ask us to delete your personal information, you will lose any accumulated loyalty program points (known as “bananas”).
We collect personal information over time and across different websites. We also serve content based on your behaviors and interests. This may be on our platform or third party platforms. We also have vendors that do this. To do this, we use common tracking tools. These may include browser cookies or web beacons. We may also use flash cookies and similar technologies.
Options you make are browser and device specific.
If you are a consumer who lives in the EU, the UK, California, Colorado, Connecticut, Virginia, Utah, or jurisdictions with similar laws, you may have additional rights. Those rights depend on our relationship. The rights are subject to certain limitations and are not absolute. This might include if a legal exception applies. If that is the case, we will not be able to process your request.
Nevada residents. You may opt out of the future sale of your information to a third party so that they may license or sell that information. To do this, email us at the contact information listed at the end of this privacy statement.
To exercise your rights, submit the form here. You may also contact hey@sunbum.com. For verification purposes, we may request information you may have already given us. This might include your first and last name. It might also include your email address or physical address. We may also ask for a copy of your government-issued ID. We will let you know when or if a right does not apply to you. If you disagree with our decision, you can contact us as described at the end of this statement. We will not discriminate against you because you exercised your rights.
If you are submitting on someone else’s behalf, we may ask for additional verification. This may include a signed letter verifying your right to make this request.
California and Colorado require that we provide you with information about financial incentives. You can read this at our Notice of Financial Incentives.
Our Sites and Apps are meant for adults. We do not knowingly collect personally identifiable information from children under thirteen. Contact us if you are a parent or legal guardian and think your child under 13 has given us information. You can contact us at the email or address provided at the end of this policy. Please mark your inquiries “COPPA Information Request.” Parents, you can learn more about how to protect children’s privacy on-line here.
We use reasonable security measures as required by relevant law. The Internet is not 100% secure. We cannot promise that your use of our Sites or Apps will be completely safe. We encourage you to use caution when using the Internet. This includes not sharing your passwords.
Information we collect may be stored in the United States. If you live outside of the United States and choose to use our platforms, you understand that it is at your own risk. You also understand that your information will be sent to the United States. The United States may not afford the same level of protection as laws in your own country.
We may link to third-party sites or apps. Our Sites may also include third party content that collects information. We do not control these third parties. This policy does not apply to the privacy practices of these third-party websites or apps. Please read the privacy policies of other websites carefully. We are not responsible for the practices of these third-party sites or apps.
In addition, you agree to our Messaging Terms and Messaging Privacy Policy.
If you have any questions about this Policy or our privacy practices, please email us at hey@sunbum.com.
You can also write to us or call us at:
444 S. Coast Highway 101, Encinitas, California 92024.
1-877-978-6286
From time to time, we may change our privacy policies. We will notify you of any material changes to our Policy as required by law. We will also post an updated copy on the sites where this appears. Please check our site periodically for updates.