Revised December 16, 2022
Your privacy is of the utmost importance to Commerce7 Platform Inc., ("Company", "we", "us", or "our"). Because we gather certain types of information about our users through our websites, we want you (“you” or “your”) to fully understand our Privacy Policy. Accordingly, this Privacy Policy statement explains what information we gather, how we gather it and how we use it.
Please note that we may update this statement without notice from time to time by posting the updated terms on our websites. You are responsible for periodically reading this statement. If you use our websites after we have updated this statement, you acknowledge that you have read the updated terms and consent to our revised privacy practices.
By becoming registered or otherwise using our websites, you acknowledge that you have read this privacy policy statement and consent to our privacy practices as described in this statement, including our use and disclosure of personally identifiable information for the purposes described below.
If you or your customers are residents of a country in the European Union, Iceland, Lichtenstein, Norway or the United Kingdom, please read this Privacy Policy to understand additional rights you or your customers may have pursuant to the General Data Protection Regulation (GDPR).
If you are a resident of the State of California, please also read Your California Privacy Rights below to understand additional rights you may have pursuant to California Civil Code Section 1798.83.
We collect two types of information from you and registered users of our websites: (1) "personally identifiable information" and (2) “non-personally identifiable information”.
"Personally identifiable information" is information that identifies you personally, such as your name, address, telephone number, email address, company name, credit card information or any other personal information which you might provide.
"Non-personally identifiable information" can be technical information, such as aggregated tracking information derived mainly by tallying page views throughout our site, or it can be demographic information. Non-personally identifiable information does not identify you personally. If you do provide us with non-personally identifiable information, we may use it for the purposes described in this statement or for any other legal purpose.
We do not offer services directed to children. Should an individual whom we know to be a child under age 18 send personally identifiable information to us, we will take measures to remove that user's personal information from our databases.
We collect information through various technologies, including sending cookies to your computer or mobile device. We may also collect information using web beacons. Web beacons are electronic images that may be used in our services or emails. We may use web beacons to deliver cookies, count visits, understand usage and campaign effectiveness, and determine whether an email has been opened and acted upon.
Log Files. As is true of most web sites, we gather certain information automatically and store it in log files. This information includes Internet protocol (IP) addresses, browser type, Internet service provider (ISP), referring/exit pages, operating system, date/time stamp and clickstream
When one of our applications is open on your mobile device, we periodically receive information about the location of the device. We collect device-specific information when you access our services, including your hardware model, operating system and version, unique device identifiers, mobile network information, and information about the devices interaction with our services.
We may also collect non-personally identifiable information about your use of the services, such as your access times, domains, browser type, version and language, operating system, and Internet Protocol (“IP”) addresses (together, “Use Data”).
We may share, as controller or as processor providing services at the direction of our clients, your personal data to third parties (within or outside your country of residence) who perform services on our behalf, including our technology providers, payment card processor, administrative personnel and providers and professional advisors.
We may disclose aggregated information about our website to third parties, including informing our advertisers whether their advertisement was effective.
We display personal testimonials of satisfied customers on our site in addition to other endorsements. With your consent we may post your testimonial along with your name.
We use a credit card processing company to bill you for services and for point of sale functionality. We cannot guarantee that there won’t be a security breach of the credit card processing company.
We may disclose information (within or outside your country of residence) if we have a good faith belief that disclosure is necessary by law or the legal process, to protect and defend our, your or others’ interests or property, or to enforce agreements you or our clients enter into with us. Your information may be transferred to another entity (within or outside your country of residence) in connection with a merger or reorganization or, when we are acting as a data processor at the direction of our client (data controller), in which case such other entity will be informed of its obligations with respect to your information under this Privacy Policy.
We may obtain your written consent from time-to-time in electronic form by using online agreements or other acknowledgements through our application, including for any other contemplated uses of your personal data not addressed in this Privacy Policy. Please read all online agreements carefully before accepting them.
In the event Company goes through a business transition, such as a merger, acquisition by another company, or sale of all or substantial portion of its assets, your personally identifiable information will likely be among the assets transferred.
We follow generally accepted industry standards to protect the personally identifiable information as well as the financial data submitted to us, both during transmission and once we receive it. No method of transmission over the Internet, or method of electronic storage, is 100% secure, however. Therefore, while we strive to use commercially acceptable means to protect your information, we cannot guarantee its absolute security.
If we learn of a breach of our security system or processes, we may attempt to notify you electronically so that you can take appropriate protective steps. By using our websites, or providing personally identifiable information to us through them, you agree that we can communicate with you electronically regarding security, privacy, and administrative issues relating to your use of our websites. In the event of a breach, we may post a notice on our websites or send you an email at the email address you provided.
YOU MAY HAVE ADDITIONAL RIGHTS TO RECEIVE WRITTEN NOTICE OF SECURITY BREACHES UNDER APPLICABLE LAW OF YOUR JURISDICTION.
You can also help us protect information about you by:
We retain the personal data we collect for so long as reasonably necessary to fulfill the purposes for which the data was collected, to perform our contractual and legal obligations, and for any applicable statute of limitations periods for the purposes of bringing and defending claims.
We rely on the following legal grounds to process your personal information:
Consent.We may use your personal data as described in this Privacy Policy subject to your consent.
Performance of a contract.We may need to collect and use your personal information and the personal information of your customers, as applicable, to perform our contractual obligations. When we process personal data on behalf of third parties, we do so pursuant to agreements with such third parties.
Legitimate Interests.We may use your personal information for our legitimate interests to provide our services and to improve our services and the content on our application. We process information on behalf of third parties who have legitimate interests in operating their businesses. We may use technical information as described in this Privacy Policy and use personal information for our marketing purposes consistent with our legitimate interests and any choices that we offer or consents that may be required under applicable law.
We communicate with our registered users on a regular basis via email. For example, we may use your email address to confirm your request, to send you notice of payments, to send you information about changes to our products and services, and to send notices and other disclosures as required by law. Users can opt-out of all email communications from us. You may opt-out of receiving such emails by clicking on the "unsubscribe" link within the text of the applicable email. We will process your unsubscribe request as soon as possible, but please be aware that in some circumstances you may receive a few more messages until your request is processed. If you opt out of marketing communications, we may still send you non-promotional communications, such as digital receipts and messages about your account or our ongoing business relations.
You may contact us to request information about the personal data we have collected from you and to request the correction, modification or deletion of such personal information, which requests we will do our best to honor subject to any legal and contractual obligations. Our Director for Compliance is responsible for our privacy programs.
For information about the personal data we have collected from you and to request the correction, modification or deletion of such personal information, please email Compliance.PC41@fullsteam.com or request by mail addressed to:
Fullsteam Operations LLC
Attn. Compliance
540 Devall Drive, Suite 301
Auburn, AL 36832
Subject to local law, you may have additional rights under the laws of your jurisdiction regarding your personal data, such as the right to complain to your local data protection authority.
Data processed: Company provides online tools that our customers use to operate their services businesses, including by providing access to certain of those tools to their own customers. In providing these tools, Company processes data our customers and our customers’ customers submit to our web services or instruct us to process on their behaves. While Company’s customers and their customers’ customers decide what data to submit, it typically includes information about their customers, sales prospects, point of sale services, inventory management, and goods ordering.
Purposes of data processing: Company processes data submitted by our customers and our customers’ customers for the purpose of providing Company’s online services to them. To fulfill these purposes, Company may access the data to provide the services, to correct and address technical or service problems, or to follow instructions of the customer who submitted the data, or in response to contractual requirements.
Inquiries and complaints: If you believe Company maintains your personal data in the Company web services within the scope of the GDPR or applicable law of another jurisdiction, you may direct any inquiries or complaints concerning our compliance to our address noted above. Company will respond within 45 days. We are committed to respond to complaints and to provide appropriate recourse at no cost to you.
Third parties who may receive personal data: Company uses a limited number of third-party service providers to assist us in providing our services to customers. These third-party providers assist with the transmission of data and provide data storage services. These third parties may access, process, or store personal data in the course of providing their services. Company maintains contracts with these third parties restricting their access, use and disclosure of personal data in compliance with our obligations, and Company may be liable if they fail to meet those obligations and we are responsible for the event giving rise to the damage
Your rights to access, to limit use, and to limit disclosure: Residents of the EU, Iceland, Lichtenstein and Norway and certain other jurisdictions have rights to access personal data about them, and to limit use and disclosure of their personal data. Company has committed to respect those rights. Because Company personnel have limited ability to access data our customers submit to our services, if you wish to request access, to limit use, or to limit disclosure, please provide the name of the Company customer who submitted your data to our services. We will refer your request to that customer, and will support them as needed in responding to your request.
Compelled disclosure: Company may be required to disclose personal information in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.
Our websites may contain links to third-party websites. While we endeavor to work with third parties that share our respect for user privacy, we are not responsible for the websites or privacy practices of such third parties. We may also use third-party advertisers, ad networks, and other advertising, marketing, and promotional companies, to serve advertisements on our websites. Such third parties may gather information about your visit to our websites or other websites, monitor your access to or market products or services to you, monitor the ads you view, click-on, or interact with, when they were delivered, and the screens and pages that they are on.
You are responsible for knowing when you are leaving our website to visit a third-party website, and for reading and understanding the terms of use and privacy policy statements for each such third party.
To notify us regarding an alleged copyright violation, you must provide us with all of the following information: (i) a physical or electronic signature of a person authorized to act on behalf of the owner of the exclusive right that is allegedly infringed; (ii) identification of the copyrighted work(s) claimed to have been infringed, and information reasonably sufficient to permit us to locate the material; (iii) information reasonably sufficient to permit us to contact you, such as an address, telephone number, and if available, an electronic mail address at which you may be contacted; (iv) a statement that you have a good faith belief that use of the material in the manner complained of is not authorized by the copyright owner, its agent, or the law; and (v) a statement that the information in the notification is accurate, and under penalty of perjury, that you are authorized to act on behalf of the owner of an exclusive right that is allegedly infringed. For this notification to be effective, you must provide it to our designated agent at:
Commerce7 Platform Inc.
C/O Fullsteam Operations
Attn: Ed Graf
540 Devall Drive, Suite 301
Auburn, AL 36832
(As provided by California Civil Code Section 1798.83)
A California resident who has provided personal information to a business with whom he/she has established a business relationship for personal, family, or household purposes ("California customer") is entitled to request information about whether the business has disclosed personal information to any third parties for the third parties' direct marketing purposes. In general, if the business has made such a disclosure of personal information, upon receipt of a request by a California customer, the business is required to provide a list of all third parties to whom personal information was disclosed in the preceding calendar year, as well as a list of the categories of personal information that were disclosed.
However, under the law, a business is not required to provide the above-described lists if the business adopts and discloses to the public (in its privacy policy statement) a policy of not disclosing customer's personal information to third parties for their direct marketing purposes unless the customer first affirmatively agrees to the disclosure, as long as the business maintains and discloses this policy. Rather, the business may comply with the law by notifying the customer of his or her right to prevent disclosure of personal information and providing a cost free means to exercise that right.
As stated in our privacy policy statement, we do not share information with third parties for their direct marketing purposes unless you affirmatively agree to such disclosure -- typically by opting-in to receive information from a third party. To prevent disclosure of your personal information for use in direct marketing by a third party, do not opt-in to such use when you provide personal information on our website. Please note that whenever you opt-in to receive future communications from a third party, your information will be subject to the third-party's privacy policies and practices. If you later decide that you do not want that third party to use your information, you will need to contact the third party directly, as we have no control over how third parties use information. You should always review the privacy policies and practices of any party that collects your information to determine how that entity will handle your information.
California customers may request further information about our compliance with this law by e-mailing Compliance.PC41@fullsteam.com. Please note that we are only required to respond to one request per customer each year, and we are not required to respond to requests made by means other than through this e-mail address.
Our websites do not respond to “do not track” browser signals. Depending on the browser you are using, you may be able to choose to block third party cookies or browse in a private browsing mode. Our websites are accessible even when private browsing is turned on. The information we collect is governed by this Privacy Policy.
You will not receive discriminatory treatment by us for exercising your privacy rights conferred on you by the CCPA.
You have certain additional rights regarding your personal information, pursuant to California law. These include the rights to:
Please submit your request for information or deletion of information concerning you as noted below.In order to provide you with your requested information or to delete the information which we have concerning you, we must be able to verify that you are the person requesting the information or deletion. With your request please provide at least two items of information which you have previously provided to us for us to use for verification of your identity. If this is not sufficient, we will contact you for additional means of verification.
You may designate an authorized agent to make a request for you. If your agent has a power of attorney pursuant to California Probate Code sections 4000 to 4465, please provide proof to the same. If your agent does not have a power of attorney pursuant to California Probate Code sections 4000 to 4465, we will require you to provide the authorized agent written permission to make the request, verify your own identity directly with us and require your agent to submit proof that they are authorized by you to act on your behalf.
For information concerning you or for deletion of information concerning you, please email Compliance.PC41@fullsteam.com or request by mail addressed to:
Fullsteam Operations LLC
Attn. Compliance PC41
540 Devall Drive, Suite 301
Auburn, AL 36832
Jurisdiction and Contact Information
Commerce7 Platform Inc. is a British Columbia, Canada corporation. Our websites are controlled and operated from Canada. If you are an individual from the United Kingdom, European Union, Iceland, Lichtenstein, Norway or any other jurisdiction with laws or regulations governing personal data collection, use, and disclosure that differ from Canadian laws, please be advised that we may store the information we collect in Canada or in other countries where we or our third-party service providers have operations. Personal data may also be transferred from the country of your residence to other countries, including Canada and the United States.
VeraSafe has been appointed as Commerce7 Platform Inc.’s representative in the United Kingdom for data protection matters, pursuant to Article 27 of the United Kingdom General Data Protection Regulation. If you are located within the United Kingdom, VeraSafe can be contacted in addition to or instead of Compliance.PC41@fullsteam.com , only on matters related to the processing of personal data. To make such an inquiry, please contact VeraSafe using this contact form: https://verasafe.com/public-resources/contact-data-protection-representative or via telephone at: +44 (20) 4532 2003. Alternatively, VeraSafe can be contacted at:
VeraSafe United Kingdom Ltd.
37 Albert Embankment
London SE1 7TL
United Kingdom
VeraSafe has been appointed as Commerce7 Platform Inc.’s representative in the European Union for data protection matters, pursuant to Article 27 of the General Data Protection Regulation of the European Union. If you are in the European Economic Area, VeraSafe can be contacted in addition to Compliance.PC41@fullsteam.com, only on matters related to the processing of personal data. To make such an inquiry, please contact VeraSafe using this contact form: https://verasafe.com/public- resources/contact- data-protection-representative or via telephone at: +420 228 881 031. Alternatively, VeraSafe can be contacted at:
VeraSafe Ireland Ltd.
Unit 3D North Point House
North Point Business Park
New Mallow Road
Cork T23AT2P
Ireland
If you have any questions or suggestions regarding our Privacy Policy, please contact us:
By mail:
Fullsteam Operations LLC
Attn. Compliance PC41
540 Devall Drive, Suite 301
Auburn, AL 36832
By email: Compliance.PC41@fullsteam.com