FREE U.S. SHIPPING · 30-NIGHT TRIAL · NIGHT-SWEAT WEAVE COVER
CCrestline Rest
Shop Care Contact
Legal & Information

Privacy Policy

How we collect, use, and protect your information when you visit crestlinerest.com or order a pillow. Plain English; one paragraph for a data-deletion request; the same standards we'd want for our own families.

Last updated · May 21, 2026

The short version

We're a small Vermont-based sleep-products company. We don't sell, rent, or trade your information. We collect the minimum we need to ship a pillow, talk to you about your fit, and run a tiny analytics setup so we know which ads are bringing visitors to the site.

Deletion request

Email privacy@crestlinerest.com with the email address you used at checkout, and we'll delete everything we have within 30 days and send written confirmation.

1. Who we are

Crestline Rest is a sleep-products company designed and operated from Burlington, Vermont. Our registered address is 412 Pine Street, Suite 200, Burlington, VT 05401.

2. What we collect

At checkout

From your visit

3. What we do not collect

We are not a medical provider. We do not collect, request, or retain medical records, diagnoses, prescriptions, doctor's names, insurance details (beyond what an FSA / HSA card needs to charge), or any clinical history. If you mention a sleep condition in a support email, we use that context to recommend a fit — we don't store, index, or share it.

4. Cookies

First-party cookies hold your cart and remember your cookie-banner choice. One analytics service sets its own cookie to count return visits. We do not use third-party advertising cookies on the site itself.

5. Who we share data with

We do not sell, rent, or trade your information. If we ever change ownership through a merger or sale, you'll be notified before any data is transferred.

6. How long we keep it

Order records: kept indefinitely so you don't lose your purchase record for warranty purposes. Server logs and analytics: 90 days, then rotated.

7. Your rights (CCPA / state privacy laws)

U.S. residents have the right to ask what personal information we hold, to get a copy, to correct it, and to delete it. We respond within 45 days. Exercising these rights does not penalize you in any way.

8. Do Not Sell My Personal Information

We do not sell or share your personal information for cross-context behavioral advertising. There is no opt-out to set; the answer is permanently "no." For written confirmation, email privacy@crestlinerest.com.

9. EU / UK residents (GDPR / UK-GDPR)

You have the same access, correction, and deletion rights as U.S. customers, plus portability, restriction, and the right to lodge a complaint with your national supervisory authority. Our lawful basis is contractual necessity for order data and legitimate interest for analytics.

10. Children

The site is not directed at children under 13 and we do not knowingly collect data from anyone under 13.

11. Security

HTTPS everywhere. PCI-DSS-certified payment processor. Order records in controlled-access storage with encrypted backups. Breach notifications within 72 hours of confirmation.

12. International transfers

The company and our hosting are based in the United States. For orders outside the U.S., your information will be transferred to the U.S. for fulfillment. For EU / UK customers, we rely on the Standard Contractual Clauses.

13. Accessibility statement

We aim for WCAG 2.1 AA on crestlinerest.com — semantic HTML, sufficient color contrast, keyboard-navigable controls, descriptive image alt text. If you find a part of the site you can't use comfortably, email accessibility@crestlinerest.com with the page and a brief description. We acknowledge accessibility reports within one business day and aim to fix issues within 30 days.

14. Changes to this policy

If we make a meaningful change, we update the date at the top and post a notice on the home page for 30 days.

15. How to reach us

Email privacy@crestlinerest.com · Mail: Crestline Rest, Attn: Privacy, 412 Pine Street, Suite 200, Burlington, VT 05401.