Skip to main content
Iconic Heritage - 10% Off Thousands of products
Motor Life Events Community Support

Holley Privacy Policy

  • Home /
  • Privacy Policy
Last Updated: January 31, 2025
This Policy describes how we collect, use, share, and protect personal data across holley.com, our apps, and related services.

1. Introduction & Scope

This Privacy Policy explains how Holley Performance Products Inc. and its affiliates (“Holley”, “we”, “us”, “our”) handle personal data from users of our websites, mobile applications, and related services (the “Services”).

We also use third-party analytics and behavior-tracking tools (including session-replay/heat-mapping such as Microsoft Clarity) configured to mask sensitive input fields and used in accordance with applicable data-protection laws.

2. What Personal Data We Process & How It’s Collected

2.1 Data you provide to us

Type of personal data Personal data includes
Contact Data Physical/billing/delivery address; email address; telephone numbers.
Identity Data First/last name; username; title; date of birth; gender; geolocation; government identifiers; employment details (where applicable); in some cases biometric information (e.g., voiceprint/fingerprint).
Financial Data Bank account; payment card details.
Vehicle Data VIN/registration; year/make/model; photos; activity logs.
Profile Data Username/password; purchases/orders; interests; preferences; feedback; survey responses; webpage visits; product views.
Transaction Data Payment details; purchases/orders.
Marketing & Communications Data Marketing preferences; communication preferences.
Behavioral Analytics Data Pseudonymous data (e.g., session ID, approximate geolocation, browser type, interaction events) via Microsoft Clarity. Configured to avoid keystrokes/form entries; IPs truncated or pseudonymized as required.

2.2 Data collected automatically

Type of personal data Personal data includes
Technical Data Cookies; IP address; login data; browser type/version; time zone and location; plug-ins; OS and platform; device technology.
Usage Data Information about how Services are used.
Mobile Application Data App/device telemetry (e.g., Crashlytics); phone type; new/returning; session length; wizard settings; crash details; and (if you create an account) name, phone, email, and vehicle information.

2.3 Cookie Policy (summary)

We use first- and third-party cookies and similar technologies to operate, analyze, and improve our Services. You can manage preferences via the “Your Privacy Rights” controls and your browser settings. See the dedicated Cookie Policy section on the site for details.

  • Strictly Necessary – required to operate core features.
  • Performance – aggregated analytics (e.g., page views, time on page).
  • Functional – remember settings (e.g., language, location).
  • Analytics – IP/device/browser/geolocation to analyze usage.
  • Marketing – measure ad effectiveness and frequency-capping.
  • Behavioral / Session-Replay – pseudonymized interaction recordings for usability improvements.
Manage cookies: use Your Privacy Rights → Manage Consent Preferences. Essential cookies can’t be disabled. You may also opt out of Google Analytics globally at tools.google.com/dlpage/gaoptout.

2.4 Special categories & children

We do not seek special category data. For contingency award claims, we may collect tax IDs where required by law. Our Services are not intended for children; we do not knowingly collect data from children under 13.

3. How We Use Personal Data

Purpose Type of data Lawful basis Details
Monitor use of Services Technical Legitimate interests; Consent Improve functionality and content.
Respond & provide products/services Identity; Contact; Financial; Transaction Legitimate interests; Legal obligation Deliver Services; process transactions (credit card data used only to process transactions; not stored on our systems).
Create user accounts Identity; Contact Legitimate interests; Consent Enable access to Services.
Manage & protect Services Identity; Contact; Technical Legitimate interests; Legal obligation Troubleshooting; maintenance; reporting; fraud prevention.
Identification & fraud prevention Identity; Contact Legitimate interests; Legal obligation Verify identity; detect/prevent fraud.
Analytics & improvements Technical; Usage Legitimate interests; Consent Keep Services updated and relevant; guide marketing strategy.
Marketing communications Identity; Contact; Marketing & Communications Consent / Legitimate interests (B2B) Send materials about products/services in accordance with your preferences.
Prize draws/competitions & surveys Identity; Contact; Profile; Usage Contract performance; Legitimate interests; Consent Run promotions; gather feedback.
Mobile applications Contact; Identity; Vehicle; Profile; Technical; Usage; Mobile App Data; Marketing & Communications Legitimate interests; Consent Provide app functionality; improve experience.

4. Sharing of Personal Data

Third party Description
Service Providers IT/hosting/administration and other business process services acting as processors.
Professional advisors Lawyers, accountants, bankers, auditors, insurers acting as processors or independent controllers.
Authorities Regulatory or governmental authorities, where required by law.
Analytics Vendors Pseudonymous behavioral analytics (e.g., Microsoft Clarity) under data-processing agreements.
Other third parties / corporate transactions Business partners; buyers/assignees in mergers, sales, transfers, restructurings, or insolvency events.

5. Marketing

You may receive marketing communications if you requested them or purchased goods/services and have not opted out. Session-replay insights (e.g., from Microsoft Clarity) may be used in aggregate to improve relevance; session-replay is not used for targeted ads without consent. We will obtain explicit consent before sharing personal data with companies outside our group for marketing. You can opt-out via the link in our emails or by contacting us.

6. International Transfers

Personal data collected in the UK/EEA/Australia will not be transferred outside those regions without appropriate safeguards authorized by the relevant authorities.

7. Security of Personal Data

  • Encryption in transit; compartmentalized access control; data minimization/purging.
  • Regular assessment of technical/organizational measures.
  • Behavioral analytics vendors apply encryption in transit and mask input fields.

No internet transmission is completely secure; please protect your credentials and devices.

8. Retention of Personal Data

We retain personal data only as long as necessary for the purposes described or as required by law, considering data sensitivity, risk, necessity, and legal obligations.

9. Legal Rights

You may have rights such as access, correction, erasure, objection, restriction, data portability, and withdrawal of consent (without affecting prior processing). To exercise rights, see How to Contact Us. We may request information to verify identity. Responses are generally provided within 45 days (extensions may apply for complex requests).

11. Additional U.S. State Privacy Disclosures

Residents of certain U.S. states (including CA, CO, CT, UT, NV, VA) may have additional rights. The table below summarizes categories of personal information collected, examples, purposes, sources, sharing, and recipients over the past 12 months.

Category Specific personal information Collected? Purpose Sources Shared? Recipients
Identifiers Name, mailing address, email, phone, IP, account info Yes Identify you; orders; subscriptions; warranty; support; account creation Order info; site/app interactions Yes Service providers; customer contact tools
Customer Records (Cal. Civ. Code §1798.80(e)) Name, address, phone, driver’s license/state ID, education, bank or other financial info Yes Same as above Order/support/account workflows Yes Service providers; contact tools
Commercial Information Contact info; transaction/order history Yes Order fulfillment; RMA; warranty; marketing (order info only) Order systems Yes Service providers
Internet/Network Activity IP, browser details, browsing history, interactions with site/ads Yes Fraud prevention; marketing analytics Website use; analytics tools Yes Service providers (analytics/marketing)
Geolocation Data Information that can identify precise location Yes Fraud prevention; marketing analytics Website use; analytics tools Yes Service providers
Professional/Employment Current/past job history; evaluations No
Inferences Profiles of preferences/characteristics No

Your Privacy Choices

  • Limit use/disclosure of sensitive information: Sensitive info we intentionally collect is only to provide requested services; unsolicited sensitive info isn’t further used.
  • Opt-out of sharing: Account holders can opt out at holley.com/account/edit/. Opt out per device/browser.
  • Access & data portability: Request categories, sources, purposes, recipients, and specific pieces of personal info.
  • Correct/rectify: We’ll correct inaccurate info within statutory timeframes (extensions may apply).
  • Delete: We’ll delete your info (and instruct providers) unless an exception applies (security, debugging, legal obligations, etc.).

12. Non-U.S. Users

Information may be processed in the United States. EEA/UK/Australia: behavioral analytics data collected only with consent under applicable laws.

13. SSL Certificates

Order/registration info is transmitted via SSL and encrypted in transit. Keep your browser updated for security and proper rendering.

14. YouTube Videos

Embedded YouTube content is subject to YouTube’s Terms of Service and Google’s Privacy Policy.

15. How to Contact Us

Address: 2445 Nashville Road, Suite B1, Bowling Green, KY 42101
Telephone: +1 (866) 464-6553

16. Amendments to this Policy

We may update this Policy and will indicate the “Last Updated” date above. Material changes to behavioral analytics practices will be communicated via a website notice before taking effect.