Information we collect for ShopFox’s own business purposes
ShopFox collects information about the users of our system (e.g. name, business name, email, mailing address) for two purposes:
1. In order to be able to manage the access security for a closed user-group with special options the user is authorised to use (such as our clients and employees of our clients);
2. In order to inform users about new features and special offers
The personal information is collected exclusively to the extent necessary to fulfil the above specific purpose. The information will not be re-used for an incompatible purpose; we may aggregate and/or de-identify any information that we collect, such that the information no longer identifies any specific individual. We may use, disclose and otherwise process such information for our own legitimate business purposes – including historical and statistical analysis and business planning – without restriction.
ShopFox will only disclose information to third parties if necessary for the fulfilment of the purpose(s) identified above. ShopFox will not divulge your personal data for direct marketing purposes;
As a data subject you also have the right to object to the processing of your personal data on legitimate compelling grounds except when it is collected in order to comply with a legal obligation, or is necessary for the performance of a contract to which you are a party, or is to be used for a purpose for which you have given your unambiguous consent; the personal data collected in this system about you as a user is needed to guarantee protection against unauthorised access to the system and is therefore a sine qua non for access; removing your data from the system can be executed at any time at your request (to be sent to email@example.com) but will result in no longer having access to the system facilities. Retrieval and modification of your personal data can be done on-line through the available system utilities or via the same contact persons referred to above;
ShopFox only keeps the data for the time necessary to fulfil the purpose of collection or further processing as described above;
Please contact us via e-mail at firstname.lastname@example.org if you have queries or complaints.
Information we collect from or on behalf of our clients
We may collect information about individual consumers from our clients or – at clients’ request – from their service providers (such as Shopify, for example). Our clients determine the scope of the information transferred to us, and the information we receive may vary by client. Typically, we may collect the following information from our clients’ consumers:
- Order data (e.g. products ordered)
- Contact data (e.g. first and last name, email address, phone number, shipping and billing address)
We collect the data mentioned above to display this data on our apps’ back-end to you (e.g. on the order details screen within the app).
Proofer: The customer’s email address and/or phone number is used to send them a “Your proof is ready” notification when you add a new proof to an order within the app. If you’ve configured automatic reminders within the app’s settings, they may receive up to three reminders. If you’ve set up a print-on-demand integration, we process your customers’ shipping and billing addresses to facilitate the fulfillment of the ordered products. In addition, the products ordered by your customers are stored by us to enable filtering orders on the dashboard according to the ordered products.
FraudBlock: We process your customers’ order data (names, email addresses, shipping addresses, billing addresses, IP addresses) whenever you receive a new order to be able to evaluate the order against a stored black-list/white-list and custom rules you may have set up with us (e.g. “block all orders where the billing address is different from the shipping address”).
Callback Request: We store the information provided by your customers via the Callback Request popup (such as names and phone numbers) to be able to display them to you in the app’s backend.
Smart Price Match Popup and AutoSync do not collect any information on your customers.
We do not share or sell your customers’ data. Customers can request that their information be deleted at any time by sending an email to email@example.com.
General Objections to the Processing of Personal Information
To the extent provided by applicable law, you may withdraw any consent you previously provided to us, or object at any time on legitimate grounds, to the processing of your personal information. We will apply your preferences going forward. In some circumstances, withdrawing your consent to ShopFox’s use or disclosure of your personal information will mean that ShopFox will not be able to provide products or services to you or to otherwise engage with you.
Access to Personal Information
You may request access to correct, amend, or delete the personal information that we maintain about you. If we grant your request, we will provide you with a copy of the personal information we maintain about you in the ordinary course of business, in a commonly used format. You may request to correct any errors in your personal information. We may reject your request to access or correct your information, as permitted by applicable law. If we reject your request, we will notify you of the reasons for the rejection. If you wish to exercise this right please contact us at firstname.lastname@example.org.
We will also provide all individuals with opt-out or opt-in choice before we share their data with third parties other than our agents, or before we use it for a purpose other than which it was originally collected or subsequently authorized.
Portability of Personal Information
You may request that we transfer your personal information to another data controller. We may reject your request, as permitted by applicable law. If we reject your request, we will notify you of the reasons for the rejection.
Deletion of Personal Information
You may request that we delete your personal information. We may reject your request, as permitted by applicable law. If we reject your request, we will notify you of the reasons for the rejection.
International Data Transfers
We may transfer personal information to countries other than the country in which the data was originally collected for the purposes described in this privacy notice. For example, if you are located outside of the United States, we typically transfer your personal information to the United States, where the majority of our IT infrastructure is located. The countries to which we transfer personal information may not have the same data protection laws as the country in which you initially provided the information.
How we protect information
We maintain reasonable administrative, technical, and physical safeguards designed to protect the personal information we maintain against accidental, unlawful, or unauthorized access, disclosure, alteration, use, loss, or destruction. However, we cannot guarantee that the safeguards we maintain will ensure the security of the personal information.
Links to other websites and third-party content
We may provide links to websites and other third-party content that is not owned or operated by ShopFox. The websites and third-party content to which we link may have separate privacy notices or policies. ShopFox is not responsible for the privacy practices of any entity that it does not own or control.
We will retain personal information only for as long as necessary to fulfill the purpose(s) for which the information was collected, depending on the purpose(s) for which the information was collected, the nature of the information, any contractual relationship that may govern the retention of the data, and our legal or regulatory obligations. We will then destroy the personal information or anonymize the information, in accordance with applicable law.