Privacy Policy

INTRODUCTION

ChanX.com, Inc dba Quipt, located at 950 Glenn Drive Suite 285 Folsom, CA 95630, United States of America (“Quipt”, “we”, “us”, or “our”) is a trusted partner to the clients we serve to help them power their engines of e-commerce, and we value that trust. This privacy policy (the “Policy”) describes how we collect and use information, and the choices we provide with respect to our collection and use of information. This Policy applies to information collected (1) through the services we provide; (2) through our client portals; (3) through any other websites, applications, widgets, services, and interactive properties linking to this Policy or on which this Policy appears (each, a “Property“), regardless of how accessed or used; (4) and through email, electronic newsletters and other online means.

For the purposes of this Policy, “personal information” means information that personally identifies a data subject. In addition to other types of information, Quipt collects business contact information from users of its Properties, products and services. To the greatest extent permitted by applicable law, business contact information does not constitute personal information.

Please read this Policy carefully. To the greatest extent permitted by applicable law, your use of this Property and/or Quipt’s services and technology indicates your consent to this Policy and to Quipt’s use, collection, transmission and processing of data and information you or others provide to Quipt, in each case, in the manner described herein. If you disagree with the way we collect and process information, do not use this Property.

PERSONAL INFORMATION WE COLLECT

Information Provided by You – We collect personal information provided to us by visitors to and users of our Properties, including but not limited to through the use of our client portals; through requests to receive information from us; by completing a registration through a Property such as for a webinar; through comments on our blogs; and through contact with customer service. Examples of the type of personal information we collect include but are not limited to name, e-mail address, company address, and phone number. You are responsible for ensuring the accuracy of all personal information you provide to us. We use third-party tools to collect information from current and prospective users of our services, which may include personal information, but primarily consists of business contact information.

Order Data – Our retailer and merchant clients and their suppliers, and the marketplaces, carriers, marketing channels, and other third-party providers with whom they work (each, a “Participant”) use our services to establish connections for the exchange and analysis of information relating to their e-commerce operations and transactions. Participants provide us with information regarding orders transmitted to or received from or for their customers and trading partners, including sufficient personal information to ship orders to customers (“Order Data”). We organize that Order Data and transmit it to other Participants so they can fulfill or process those orders (including returns and order cancellations). Examples of the type of personal information in an Order Data record include, but are not limited to, a consumer’s name, e-mail address, physical address, phone number and items ordered.

Quipt acts as a service provider to Participants, and is neither the seller of record, merchant of record, nor fulfiller of products sold to consumers. Quipt does not process consumer payments or handle any consumer payment account information.

Information from Third-party Services – We use third-party services to update or supplement personal information in our systems, such as to validate or update address information. We may also receive information from our service providers engaged to collect and/or process information on our behalf; for more information, see the “Service Providers and Onward Transfer” section below.

INFORMATION COLLECTED THROUGH ACCESS AND USE OF OUR PROPERTIES

We, our Participants, and our third-party service providers use cookies, tracking pixels (also known as web beacons), embedded scripts, and similar web technologies (collectively, “Web Technologies“). These Web Technologies are used to provide our services and operate our Properties; to associate traffic to or from a Participant’s website with an order sent through our systems; and to analyze the use of, and to improve, our Properties and services. The type of non-personal information we collect through Web Technologies includes the areas of our Property visited, the services and functionality accessed, duration of such access and information about the web browser and/or device used.

Web Browser or Device Information – We and our service providers collect information sent by your web browser or device, including your IP address, geolocation, browser and operating system type, domain names, access times and referring website addresses. The information received depends on the settings on your web browser or device. Please review the settings of your web browser or device if you want to learn and change what information is sent by your browser or device. If you access a Property through a mobile device or application, certain of your information may be shared with the mobile carrier or application provider.

“Do Not Track” Headers – “Do Not Track” (DNT) is a web browser setting which lets the websites you visit know that you do not want them collecting information about you. We do not respond to DNT settings or signals.

Analytics Providers – We may use analytics information collected through third-party services, such as Google Analytics, to better understand the manner in which Participants and their users access and use our Properties, including without limitation for reporting, maintenance and development/enhancement purposes. You can manage how Google Analytics collects information about you as described in the “Your Choices” section of this Policy.

Cookies –We may place one or more cookies or other similar tracking technology on your computer. A cookie is a small text file placed on your computer’s hard drive by a web server. Some cookies are used to assist you with your session on our Property. Depending on the cookie, the cookie may expire at the end of your browser session or may stay (or “persist”) on your computer until the expiration date specified in the cookie. Cookies cannot be used to run programs or deliver viruses to your computer. Cookies can only be accessed or read by the Internet domain (generally a web site) that placed them. You have the ability to accept or decline cookies as further described in the “Your Choices” section below. Most web browsers automatically accept cookies, but you can usually modify your browser setting to decline cookies if you prefer. If you choose to decline cookies, you may not be able to sign in or use certain features of our Property that depend on your web browser accepting cookies.

Embedded Scripts – We use embedded scripts, which is programming code designed to collect information about how visitors interact with a Property, such as identifying the website that referred and linked the visitor to a Property and the manner in which they use a Property. Embedded scripts are downloaded onto your device’s cache from our web server or a third-party service provider and are deactivated or deleted following the end of your session once your browser cache is cleared.

HOW WE USE AND SHARE INFORMATION YOU PROVIDE AND WE COLLECT

To Provide Our Services and Related Information – Quipt uses information collected through our Properties and services for purposes such as the following:

  • to operate and provide users with access to our Properties and services;
  • to personalize and support your use of a Property, our products and services, and/or the products and services of our Participants and partners;
  • to provide you with information on our products and services (note that, when you provide us with your contact information, you expressly consent to our communicating with you about our products or services);
  • to measure and improve our Properties, products and services;
  • for any other lawful purposes as disclosed to you at the time you provide your information, with your consent, and as disclosed to you in this Policy.

We do not sell, rent or lease personal information provided by website visitors to third parties.

To Process Order Data – We receive Order Data from Participants on our network, organize that Order Data and transmit it to other Participants so they can process and/or fulfill those orders. We do not disclose or transmit Order Data to third parties other than our service providers (as described below), the Participants associated with that order, or as necessary to provide our services or to comply with legal requirements or to protect you, Quipt or others (as described below).

In addition, we use personal information (including Order Data) to generate anonymous data, by either (a) using it to generate anonymous transaction and performance data, or (b) “de-identifying” it to remove any information that identifies a person specifically, and use the resulting anonymous data and information (“Anonymized Data”) for the purposes set forth above.

To Comply with Legal Requirements and Protect You, Quipt and Others – To the extent permitted by applicable law, we may disclose information when we, in good faith, believe disclosure is appropriate to comply with local or national security, law enforcement, or regulatory processes, requirements or orders; to cooperate formally or informally with law enforcement or other governmental investigations; to prevent or investigate a possible crime, such as fraud or identity theft; to enforce a contract; to protect the legal rights, property, or safety of Quipt, its corporate affiliates, and their respective employees, clients, partners and agents, other users or the public in general; to protect the security of Quipt’s systems, and the data and information we process or control; or to protect your vital interests if determined necessary by us. In addition, from time to time we may review our server logs for security purposes, such as detecting intrusions into our network. If we suspect criminal activity, we may share our server logs – which may contain visitors’ IP addresses – with the appropriate investigative authorities who use that information to trace and identify individuals. We also reserve the right, without notice, to report to appropriate law enforcement or government agencies any activities that we, in good faith, believe are in violation of applicable laws, rules or regulations.

In Connection with Corporate Events. If one of our corporate affiliates or a third party has acquired all or part of our business, specific assets or the business of one of our operating divisions through which you have provided information to us, e.g., as the result of a sale, merger, reorganization, insolvency, dissolution, liquidation or distribution, ownership of our records and data (including your personal information within them) will be transferred to that successor company. In that event, the acquiring company’s use of your personal information will still be governed by this Policy and any privacy preferences you have expressed to us.

OPTIONS

  • Information on our Products and Services – If you decide you no longer want to receive marketing information from us on our products and services, such as marketing materials or promotional e-mails, click the “unsubscribe” link in the electronic marketing message you received. Alternatively, you can e-mail us at privacy@getquipt.com and specify in your e-mail which materials or communications you would no longer like to receive. These communications choices do not apply to mandatory service communications that are considered part of our services, which a user receives periodically until he/she is no longer an active user of our services.
  • Google Analytics – You can install Google Analytics’ opt-out browser add-on by visiting http://tools.google.com/dlpage/gaoptout. You can opt out of receiving interest-based Google advertisements, or customize the ads you receive from Google, by visiting http://www.google.com/settings/ads.
  • Cookies – If you accept a cookie, you can delete it at any time (e.g., as soon as you leave our Property) through your web browser. If you do not wish to receive cookies or wish to manage when you accept cookies in general, you can set your browser to reject cookies or to alert you when a cookie is placed on your computer. Your use of the features and functionality of this Property will be limited if you set your browser to reject cookies.

If you are a consumer whose Order Data is processed through Quipt’s services, please contact the Participant to which you originally provided your personal information.

SERVICE PROVIDERS AND ONWARD TRANSFER

We use third-party service providers to perform and provide certain services in connection with our business, such as but not limited to verifying and validating information, hosting all or part of Properties, providing usage analytics, sending communications, customer support, log storage, providing marketing assistance and data analysis, and providing other administrative services. We provide service providers access to information only for the purpose of carrying out services on our behalf. Information provided through a portion of a Property that is hosted by a Quipt service provider may be stored on the systems of our service provider and processed by that service provider in accordance with our agreement with that services provider.

We may provide personal information to service providers that act as our agent, consultant, or contractor to perform tasks on behalf of and under our instructions. For example, we may store personal information in the facilities operated by a service provider or use a third-party provider to perform data analysis. Such service providers must agree to use such personal information only for the purposes for which they have been engaged by Quipt, and they must either:

  • comply with the Privacy Shield principles or another mechanism permitted by the applicable EU data protection law(s) for transfers and processing of Personal Data, or
  • agree to provide adequate protections for the personal information that are no less protective than those set out in this Policy.

THIRD-PARTY CONTENT AND LINKS

A link on one of our Properties to a third-party website does not imply our endorsement of that website, advertiser or product. We do not control the websites to which we may link, including without limitation Participant websites, and we assume no responsibility for their content or privacy policies. Any information that you provide to linked websites or other third parties is provided directly to such third party and is subject to that third party’s privacy policy. Therefore, you should carefully review the privacy policies that apply to any websites you access.

DATA INTEGRITY AND SECURITY

We take reasonable steps to ensure that we collect only personal information that is relevant to our provision of our services, and we process your personal information in a manner that is compatible with the purposes for which it was collected or provided to us. To the extent necessary for those purposes, we take reasonable steps to ensure your personal information is usable for its intended purpose and remains accurate, complete and current.

We keep personal information for the purposes for which it was originally collected (or to which you have subsequently consented) and for other legitimate purposes (such as regulatory compliance), as permitted or required by applicable law.

We have implemented reasonable and appropriate safeguards, security technologies and procedures designed to protect personal information from unauthorized loss, misuse, and unauthorized access, disclosure, alteration and destruction. It is important that you understand, however, that no website, application, database or system is completely secure or “hacker proof.”

NOTICE TO CERTAIN RESIDENTS

Persons in the European Union or European Economic Area

Your Rights. To the extent any European data protection laws apply to us and your Information, and we hold any of your “personal data” as defined in such laws (which may include some or all of your Information as defined in this Privacy Policy), and we hold such personal data in our capacity as a data controller as defined under those laws, you may request that we:

  • Restrict the way that we process and share your personal data;
  • Transfer your personal data to a third party;
  • Revoke your consent for processing of your personal data;
  • Provide you with access to your personal data;
  • Remove your personal data if no longer necessary for the purposes collected;
  • Update your personal data so it is correct and not out of date; and/or
  • Object to our processing of your personal data.

If you wish to object to the use and processing of your personal data or withdraw consent to this Privacy Policy, you can contact us by email, post or telephone using the contact information set forth in the “QUESTIONS REGARDING THIS PRIVACY POLICY” section below. The requests above will be considered and responded to in the time-period stated by applicable law. Note, certain Information may be exempt from such requests. We may require additional Information from you to confirm your identity in responding to such requests. You have the right to lodge a complaint with the supervisory authorities applicable to you and your situation, although we invite you to contact us with any concern as we would be happy to try and resolve it directly.

Lawful Basis for Processing Your Information. As described throughout this Policy, we believe the foregoing handling of your Information, which may include your personal data, furthers our legitimate interests in commercial activities that are not overridden by the interest or fundamental rights and freedoms of the individuals at issue. Depending on what personal data we collect from you and how we collect it, we rely on various grounds for processing your personal data, including the following reasons:

  • In order for us to administer our contractual relationship, including setting up any services you may request;
  • Because it is in our legitimate interest to effectively and efficiently operate our business and provide you with the services offered through the Services and other useful content and for other marketing, design, and advertising purposes;
  • In order for us to process employee data, prevent against fraud, provide technology security, and other necessary company operational matters;
  • In order to fulfill any legal obligations, we may have to collect this Information from you; and/or
  • Because you have provided your consent for us to do so.

California Residents

To the extent any California data privacy law applies, we will provide California residents with certain information upon request (“Data Subject Request”). This Privacy Policy outlines how California residents can receive the information and what you can receive.

If you would like to submit a Data Subject Request, you can call us, toll-free, at 888-982-4269. If you choose to submit a Data Subject Request, you must provide us with enough information to identify you and enough specificity on the requested data. We will only use the information we receive for verification. We will not be able to disclose information if we cannot verify that the person making the Data Subject Request is the person about whom we collected Information, or someone authorized to act on such person’s behalf.
If you are a California resident, you may submit a Data Subject Request to receive information about our data collection practices as it relates to your data. By submitting this request, you are declaring that you are a California resident availing yourself of the rights afforded to you under the California Consumer Privacy Act (CCPA)

You may request information on the categories of personal information (as defined by California law) we have collected about you; the categories of data collection sources; any business or commercial purpose for collecting or selling personal information; the categories of third parties with whom we share personal information, if any; and the specific pieces of personal information we have collected about you. If you would like to also receive information about our data disclosure for business purposes, then please include that in the Data Subject Request. We will clarify whether the Information was collected and disclosed or simply collected and kept internally.

California residents may also utilize the “CONTACT” hyperlink located on our website to facilitate their opt-out of the sale of certain personal information.

Please note that the categories of personal information and sources will not exceed what is contained in this Privacy Policy. We are also not required to reidentify personal information if it is not stored in that manner already, nor is it required to provide the personal information to you more than twice in a twelve-month period.

You may request that we delete your personal information. Your deletion request should be submitted through a Data Subject Request. Subject to certain exceptions set out below we will, on receipt of a verifiable Data Subject Request, delete your personal information from our records and direct any service providers to do the same.

Please note that we reserve the right to not delete your personal information if it is necessary to:

  • complete the transaction for which the personal information was collected;
  • provide a good or service requested by you, or reasonably anticipated within the context of our ongoing business relationship with you, or otherwise perform a contract between you and us;
  • detect security incidents, protect against malicious, deceptive activity, and take all necessary and appropriate steps to mitigate current and future risk;
  • debug and repair internal information technology as necessary;
  • undertake internal research for technological development and demonstration;
  • exercise free speech, ensure the right of another consumer to exercise his or her right of free speech, or exercise another right provided for by law;
  • comply with the California Electronic Communications Privacy Act;
  • engage in public or peer-reviewed scientific, historical, or statistical research in the public interest that adheres to all other applicable ethics and privacy laws, when our deletion of the Information is likely to render impossible or seriously impair the achievement of such research, provided we have obtained your informed consent;
  • enable solely internal uses that are reasonably aligned with your expectations based on your relationship with us;
  • comply with an existing legal obligation; or
  • otherwise use your personal information, internally, in a lawful manner that is compatible with the context in which you provided the Information.

We may not, and will not, treat you differently because of your Data Subject Request activity. As a result of your Data Subject Request activity, we may not and will not deny goods or services to you, charge different rates for goods or services, provide a different level quality of goods or services, or suggest any of the preceding will occur. However, we can and may charge you a different rate, or provide a different level of quality, if the difference is reasonably related to the value provided by your personal information.

In addition, if you are a California resident under the age of 18 and are a registered user, you or your parent or legal guardian may request us to remove content or information posted on our websites or stored on our servers by (a) submitting a request in writing to privacy@getquipt.com and (b) clearly identifying the content or information you wish to have removed and providing sufficient information to allow us to locate the content or Information to be removed. However, please note that we are not required to erase or otherwise eliminate content or Information if (i) other state or federal laws require us or a third party to maintain the content or Information; (ii) the content or Information was posted, stored, or republished by another user; (iii) the content or Information is anonymized so that the minor cannot be individually identified; (iv) the minor or its parent or legal guardian does not follow the instructions posted in this Policy on how to request removal of such content or Information; and (v) the minor has received compensation or other consideration for providing the content. Further, nothing in this provision shall be construed to limit the authority of a law enforcement agency to obtain such content or Information.

ACCESSING AND CORRECTING YOUR PERSONAL INFORMATION

If you provided personal information through one of our Properties, or your personal information has been sent through our services as Order Data, you may access and correct your personal information by sending us a request that identifies the Property you visited or website through which you purchased a product, and other relevant information deemed necessary to retrieve the information. We will work with you to facilitate this review. If you contact us with a request for access to your personal information we will endeavor to respond within 30 calendar days. Your request should be sent by email to privacy@getquipt.com or by postal mail to ChanX.com, Inc, Attn: Legal – Privacy, 950 Glenn Drive Suite 285, Folsom, CA 95630, United States of America. We reserve the right, however, to limit or deny your request to the extent permitted by applicable law if the disclosure could lead to a breach of applicable law and regulation, such as in case of any legal obligation to retain certain data, or if you have failed to provide the necessary details act on your request or have failed to verify your identity to our satisfaction.

CHILDREN’S PRIVACY

We do not and have no intention of collecting personal information from children under 13. For more information about privacy and the Internet, please visit the Federal Trade Commission’s website at http://www.ftc.gov/bcp.

CHANGES TO THIS PRIVACY POLICY

We expect that this Policy will be updated from time to time to reflect, among other things, changes in applicable laws, rules or regulations, changes in our data collection practices, and/or changes to our business or services. We will make an updated version of this Policy accessible through the Property with a revised effective date, to let you know that we updated the Policy.

The revised Policy will apply to information collected or provided to us on and after the effective date of the revised Policy. If revisions to the Policy materially expand how we use your personal information collected prior to the effective date of the revised Policy, we will request that you opt-in to the revised Policy. We encourage you to review our privacy policy regularly.

QUESTIONS REGARDING THIS PRIVACY POLICY

If you have any questions about our company or service, please visit our corporate website which includes links to company information, answers to frequently asked questions, and our current policies.

If you have any questions or concerns about this Policy, please contact us.

By email: privacy@getquipt.com

By mail:
ChanX.com, Inc
950 Glenn Drive
Suite 285
Folsom, CA 95630
United States of America

Privacy Policy

INTRODUCTION

ChanX.com, Inc dba Quipt, located at 950 Glenn Drive Suite 285 Folsom, CA 95630, United States of America (“Quipt”, “we”, “us”, or “our”) is a trusted partner to the clients we serve to help them power their engines of e-commerce, and we value that trust. This privacy policy (the “Policy”) describes how we collect and use information, and the choices we provide with respect to our collection and use of information. This Policy applies to information collected (1) through the services we provide; (2) through our client portals; (3) through any other websites, applications, widgets, services, and interactive properties linking to this Policy or on which this Policy appears (each, a “Property“), regardless of how accessed or used; (4) and through email, electronic newsletters and other online means.

For the purposes of this Policy, “personal information” means information that personally identifies a data subject. In addition to other types of information, Quipt collects business contact information from users of its Properties, products and services. To the greatest extent permitted by applicable law, business contact information does not constitute personal information.

Please read this Policy carefully. To the greatest extent permitted by applicable law, your use of this Property and/or Quipt’s services and technology indicates your consent to this Policy and to Quipt’s use, collection, transmission and processing of data and information you or others provide to Quipt, in each case, in the manner described herein. If you disagree with the way we collect and process information, do not use this Property.

PERSONAL INFORMATION WE COLLECT

Information Provided by You – We collect personal information provided to us by visitors to and users of our Properties, including but not limited to through the use of our client portals; through requests to receive information from us; by completing a registration through a Property such as for a webinar; through comments on our blogs; and through contact with customer service. Examples of the type of personal information we collect include but are not limited to name, e-mail address, company address, and phone number. You are responsible for ensuring the accuracy of all personal information you provide to us. We use third-party tools to collect information from current and prospective users of our services, which may include personal information, but primarily consists of business contact information.

Order Data – Our retailer and merchant clients and their suppliers, and the marketplaces, carriers, marketing channels, and other third-party providers with whom they work (each, a “Participant”) use our services to establish connections for the exchange and analysis of information relating to their e-commerce operations and transactions. Participants provide us with information regarding orders transmitted to or received from or for their customers and trading partners, including sufficient personal information to ship orders to customers (“Order Data”). We organize that Order Data and transmit it to other Participants so they can fulfill or process those orders (including returns and order cancellations). Examples of the type of personal information in an Order Data record include, but are not limited to, a consumer’s name, e-mail address, physical address, phone number and items ordered.

Quipt acts as a service provider to Participants, and is neither the seller of record, merchant of record, nor fulfiller of products sold to consumers. Quipt does not process consumer payments or handle any consumer payment account information.

Information from Third-party Services – We use third-party services to update or supplement personal information in our systems, such as to validate or update address information. We may also receive information from our service providers engaged to collect and/or process information on our behalf; for more information, see the “Service Providers and Onward Transfer” section below.

INFORMATION COLLECTED THROUGH ACCESS AND USE OF OUR PROPERTIES

We, our Participants, and our third-party service providers use cookies, tracking pixels (also known as web beacons), embedded scripts, and similar web technologies (collectively, “Web Technologies“). These Web Technologies are used to provide our services and operate our Properties; to associate traffic to or from a Participant’s website with an order sent through our systems; and to analyze the use of, and to improve, our Properties and services. The type of non-personal information we collect through Web Technologies includes the areas of our Property visited, the services and functionality accessed, duration of such access and information about the web browser and/or device used.

Web Browser or Device Information – We and our service providers collect information sent by your web browser or device, including your IP address, geolocation, browser and operating system type, domain names, access times and referring website addresses. The information received depends on the settings on your web browser or device. Please review the settings of your web browser or device if you want to learn and change what information is sent by your browser or device. If you access a Property through a mobile device or application, certain of your information may be shared with the mobile carrier or application provider.

“Do Not Track” Headers – “Do Not Track” (DNT) is a web browser setting which lets the websites you visit know that you do not want them collecting information about you. We do not respond to DNT settings or signals.

Analytics Providers – We may use analytics information collected through third-party services, such as Google Analytics, to better understand the manner in which Participants and their users access and use our Properties, including without limitation for reporting, maintenance and development/enhancement purposes. You can manage how Google Analytics collects information about you as described in the “Your Choices” section of this Policy.

Cookies –We may place one or more cookies or other similar tracking technology on your computer. A cookie is a small text file placed on your computer’s hard drive by a web server. Some cookies are used to assist you with your session on our Property. Depending on the cookie, the cookie may expire at the end of your browser session or may stay (or “persist”) on your computer until the expiration date specified in the cookie. Cookies cannot be used to run programs or deliver viruses to your computer. Cookies can only be accessed or read by the Internet domain (generally a web site) that placed them. You have the ability to accept or decline cookies as further described in the “Your Choices” section below. Most web browsers automatically accept cookies, but you can usually modify your browser setting to decline cookies if you prefer. If you choose to decline cookies, you may not be able to sign in or use certain features of our Property that depend on your web browser accepting cookies.

Embedded Scripts – We use embedded scripts, which is programming code designed to collect information about how visitors interact with a Property, such as identifying the website that referred and linked the visitor to a Property and the manner in which they use a Property. Embedded scripts are downloaded onto your device’s cache from our web server or a third-party service provider and are deactivated or deleted following the end of your session once your browser cache is cleared.

HOW WE USE AND SHARE INFORMATION YOU PROVIDE AND WE COLLECT

To Provide Our Services and Related Information – Quipt uses information collected through our Properties and services for purposes such as the following:

  • to operate and provide users with access to our Properties and services;
  • to personalize and support your use of a Property, our products and services, and/or the products and services of our Participants and partners;
  • to provide you with information on our products and services (note that, when you provide us with your contact information, you expressly consent to our communicating with you about our products or services);
  • to measure and improve our Properties, products and services;
  • for any other lawful purposes as disclosed to you at the time you provide your information, with your consent, and as disclosed to you in this Policy.

We do not sell, rent or lease personal information provided by website visitors to third parties.

To Process Order Data – We receive Order Data from Participants on our network, organize that Order Data and transmit it to other Participants so they can process and/or fulfill those orders. We do not disclose or transmit Order Data to third parties other than our service providers (as described below), the Participants associated with that order, or as necessary to provide our services or to comply with legal requirements or to protect you, Quipt or others (as described below).

In addition, we use personal information (including Order Data) to generate anonymous data, by either (a) using it to generate anonymous transaction and performance data, or (b) “de-identifying” it to remove any information that identifies a person specifically, and use the resulting anonymous data and information (“Anonymized Data”) for the purposes set forth above.

To Comply with Legal Requirements and Protect You, Quipt and Others – To the extent permitted by applicable law, we may disclose information when we, in good faith, believe disclosure is appropriate to comply with local or national security, law enforcement, or regulatory processes, requirements or orders; to cooperate formally or informally with law enforcement or other governmental investigations; to prevent or investigate a possible crime, such as fraud or identity theft; to enforce a contract; to protect the legal rights, property, or safety of Quipt, its corporate affiliates, and their respective employees, clients, partners and agents, other users or the public in general; to protect the security of Quipt’s systems, and the data and information we process or control; or to protect your vital interests if determined necessary by us. In addition, from time to time we may review our server logs for security purposes, such as detecting intrusions into our network. If we suspect criminal activity, we may share our server logs – which may contain visitors’ IP addresses – with the appropriate investigative authorities who use that information to trace and identify individuals. We also reserve the right, without notice, to report to appropriate law enforcement or government agencies any activities that we, in good faith, believe are in violation of applicable laws, rules or regulations.

In Connection with Corporate Events. If one of our corporate affiliates or a third party has acquired all or part of our business, specific assets or the business of one of our operating divisions through which you have provided information to us, e.g., as the result of a sale, merger, reorganization, insolvency, dissolution, liquidation or distribution, ownership of our records and data (including your personal information within them) will be transferred to that successor company. In that event, the acquiring company’s use of your personal information will still be governed by this Policy and any privacy preferences you have expressed to us.

OPTIONS

  • Information on our Products and Services – If you decide you no longer want to receive marketing information from us on our products and services, such as marketing materials or promotional e-mails, click the “unsubscribe” link in the electronic marketing message you received. Alternatively, you can e-mail us at privacy@getquipt.com and specify in your e-mail which materials or communications you would no longer like to receive. These communications choices do not apply to mandatory service communications that are considered part of our services, which a user receives periodically until he/she is no longer an active user of our services.
  • Google Analytics – You can install Google Analytics’ opt-out browser add-on by visiting http://tools.google.com/dlpage/gaoptout. You can opt out of receiving interest-based Google advertisements, or customize the ads you receive from Google, by visiting http://www.google.com/settings/ads.
  • Cookies – If you accept a cookie, you can delete it at any time (e.g., as soon as you leave our Property) through your web browser. If you do not wish to receive cookies or wish to manage when you accept cookies in general, you can set your browser to reject cookies or to alert you when a cookie is placed on your computer. Your use of the features and functionality of this Property will be limited if you set your browser to reject cookies.

If you are a consumer whose Order Data is processed through Quipt’s services, please contact the Participant to which you originally provided your personal information.

SERVICE PROVIDERS AND ONWARD TRANSFER

We use third-party service providers to perform and provide certain services in connection with our business, such as but not limited to verifying and validating information, hosting all or part of Properties, providing usage analytics, sending communications, customer support, log storage, providing marketing assistance and data analysis, and providing other administrative services. We provide service providers access to information only for the purpose of carrying out services on our behalf. Information provided through a portion of a Property that is hosted by a Quipt service provider may be stored on the systems of our service provider and processed by that service provider in accordance with our agreement with that services provider.

We may provide personal information to service providers that act as our agent, consultant, or contractor to perform tasks on behalf of and under our instructions. For example, we may store personal information in the facilities operated by a service provider or use a third-party provider to perform data analysis. Such service providers must agree to use such personal information only for the purposes for which they have been engaged by Quipt, and they must either:

  • comply with the Privacy Shield principles or another mechanism permitted by the applicable EU data protection law(s) for transfers and processing of Personal Data, or
  • agree to provide adequate protections for the personal information that are no less protective than those set out in this Policy.

THIRD-PARTY CONTENT AND LINKS

A link on one of our Properties to a third-party website does not imply our endorsement of that website, advertiser or product. We do not control the websites to which we may link, including without limitation Participant websites, and we assume no responsibility for their content or privacy policies. Any information that you provide to linked websites or other third parties is provided directly to such third party and is subject to that third party’s privacy policy. Therefore, you should carefully review the privacy policies that apply to any websites you access.

DATA INTEGRITY AND SECURITY

We take reasonable steps to ensure that we collect only personal information that is relevant to our provision of our services, and we process your personal information in a manner that is compatible with the purposes for which it was collected or provided to us. To the extent necessary for those purposes, we take reasonable steps to ensure your personal information is usable for its intended purpose and remains accurate, complete and current.

We keep personal information for the purposes for which it was originally collected (or to which you have subsequently consented) and for other legitimate purposes (such as regulatory compliance), as permitted or required by applicable law.

We have implemented reasonable and appropriate safeguards, security technologies and procedures designed to protect personal information from unauthorized loss, misuse, and unauthorized access, disclosure, alteration and destruction. It is important that you understand, however, that no website, application, database or system is completely secure or “hacker proof.”

NOTICE TO CERTAIN RESIDENTS

Persons in the European Union or European Economic Area

Your Rights. To the extent any European data protection laws apply to us and your Information, and we hold any of your “personal data” as defined in such laws (which may include some or all of your Information as defined in this Privacy Policy), and we hold such personal data in our capacity as a data controller as defined under those laws, you may request that we:

  • Restrict the way that we process and share your personal data;
  • Transfer your personal data to a third party;
  • Revoke your consent for processing of your personal data;
  • Provide you with access to your personal data;
  • Remove your personal data if no longer necessary for the purposes collected;
  • Update your personal data so it is correct and not out of date; and/or
  • Object to our processing of your personal data.

If you wish to object to the use and processing of your personal data or withdraw consent to this Privacy Policy, you can contact us by email, post or telephone using the contact information set forth in the “QUESTIONS REGARDING THIS PRIVACY POLICY” section below. The requests above will be considered and responded to in the time-period stated by applicable law. Note, certain Information may be exempt from such requests. We may require additional Information from you to confirm your identity in responding to such requests. You have the right to lodge a complaint with the supervisory authorities applicable to you and your situation, although we invite you to contact us with any concern as we would be happy to try and resolve it directly.

Lawful Basis for Processing Your Information. As described throughout this Policy, we believe the foregoing handling of your Information, which may include your personal data, furthers our legitimate interests in commercial activities that are not overridden by the interest or fundamental rights and freedoms of the individuals at issue. Depending on what personal data we collect from you and how we collect it, we rely on various grounds for processing your personal data, including the following reasons:

  • In order for us to administer our contractual relationship, including setting up any services you may request;
  • Because it is in our legitimate interest to effectively and efficiently operate our business and provide you with the services offered through the Services and other useful content and for other marketing, design, and advertising purposes;
  • In order for us to process employee data, prevent against fraud, provide technology security, and other necessary company operational matters;
  • In order to fulfill any legal obligations, we may have to collect this Information from you; and/or
  • Because you have provided your consent for us to do so.

California Residents

To the extent any California data privacy law applies, we will provide California residents with certain information upon request (“Data Subject Request”). This Privacy Policy outlines how California residents can receive the information and what you can receive.

If you would like to submit a Data Subject Request, you can call us, toll-free, at 888-982-4269. If you choose to submit a Data Subject Request, you must provide us with enough information to identify you and enough specificity on the requested data. We will only use the information we receive for verification. We will not be able to disclose information if we cannot verify that the person making the Data Subject Request is the person about whom we collected Information, or someone authorized to act on such person’s behalf.
If you are a California resident, you may submit a Data Subject Request to receive information about our data collection practices as it relates to your data. By submitting this request, you are declaring that you are a California resident availing yourself of the rights afforded to you under the California Consumer Privacy Act (CCPA)

You may request information on the categories of personal information (as defined by California law) we have collected about you; the categories of data collection sources; any business or commercial purpose for collecting or selling personal information; the categories of third parties with whom we share personal information, if any; and the specific pieces of personal information we have collected about you. If you would like to also receive information about our data disclosure for business purposes, then please include that in the Data Subject Request. We will clarify whether the Information was collected and disclosed or simply collected and kept internally.

California residents may also utilize the “CONTACT” hyperlink located on our website to facilitate their opt-out of the sale of certain personal information.

Please note that the categories of personal information and sources will not exceed what is contained in this Privacy Policy. We are also not required to reidentify personal information if it is not stored in that manner already, nor is it required to provide the personal information to you more than twice in a twelve-month period.

You may request that we delete your personal information. Your deletion request should be submitted through a Data Subject Request. Subject to certain exceptions set out below we will, on receipt of a verifiable Data Subject Request, delete your personal information from our records and direct any service providers to do the same.

Please note that we reserve the right to not delete your personal information if it is necessary to:

  • complete the transaction for which the personal information was collected;
  • provide a good or service requested by you, or reasonably anticipated within the context of our ongoing business relationship with you, or otherwise perform a contract between you and us;
  • detect security incidents, protect against malicious, deceptive activity, and take all necessary and appropriate steps to mitigate current and future risk;
  • debug and repair internal information technology as necessary;
  • undertake internal research for technological development and demonstration;
  • exercise free speech, ensure the right of another consumer to exercise his or her right of free speech, or exercise another right provided for by law;
  • comply with the California Electronic Communications Privacy Act;
  • engage in public or peer-reviewed scientific, historical, or statistical research in the public interest that adheres to all other applicable ethics and privacy laws, when our deletion of the Information is likely to render impossible or seriously impair the achievement of such research, provided we have obtained your informed consent;
  • enable solely internal uses that are reasonably aligned with your expectations based on your relationship with us;
  • comply with an existing legal obligation; or
  • otherwise use your personal information, internally, in a lawful manner that is compatible with the context in which you provided the Information.

We may not, and will not, treat you differently because of your Data Subject Request activity. As a result of your Data Subject Request activity, we may not and will not deny goods or services to you, charge different rates for goods or services, provide a different level quality of goods or services, or suggest any of the preceding will occur. However, we can and may charge you a different rate, or provide a different level of quality, if the difference is reasonably related to the value provided by your personal information.

In addition, if you are a California resident under the age of 18 and are a registered user, you or your parent or legal guardian may request us to remove content or information posted on our websites or stored on our servers by (a) submitting a request in writing to privacy@getquipt.com and (b) clearly identifying the content or information you wish to have removed and providing sufficient information to allow us to locate the content or Information to be removed. However, please note that we are not required to erase or otherwise eliminate content or Information if (i) other state or federal laws require us or a third party to maintain the content or Information; (ii) the content or Information was posted, stored, or republished by another user; (iii) the content or Information is anonymized so that the minor cannot be individually identified; (iv) the minor or its parent or legal guardian does not follow the instructions posted in this Policy on how to request removal of such content or Information; and (v) the minor has received compensation or other consideration for providing the content. Further, nothing in this provision shall be construed to limit the authority of a law enforcement agency to obtain such content or Information.

ACCESSING AND CORRECTING YOUR PERSONAL INFORMATION

If you provided personal information through one of our Properties, or your personal information has been sent through our services as Order Data, you may access and correct your personal information by sending us a request that identifies the Property you visited or website through which you purchased a product, and other relevant information deemed necessary to retrieve the information. We will work with you to facilitate this review. If you contact us with a request for access to your personal information we will endeavor to respond within 30 calendar days. Your request should be sent by email to privacy@getquipt.com or by postal mail to ChanX.com, Inc, Attn: Legal – Privacy, 950 Glenn Drive Suite 285, Folsom, CA 95630, United States of America. We reserve the right, however, to limit or deny your request to the extent permitted by applicable law if the disclosure could lead to a breach of applicable law and regulation, such as in case of any legal obligation to retain certain data, or if you have failed to provide the necessary details act on your request or have failed to verify your identity to our satisfaction.

CHILDREN’S PRIVACY

We do not and have no intention of collecting personal information from children under 13. For more information about privacy and the Internet, please visit the Federal Trade Commission’s website at http://www.ftc.gov/bcp.

CHANGES TO THIS PRIVACY POLICY

We expect that this Policy will be updated from time to time to reflect, among other things, changes in applicable laws, rules or regulations, changes in our data collection practices, and/or changes to our business or services. We will make an updated version of this Policy accessible through the Property with a revised effective date, to let you know that we updated the Policy.

The revised Policy will apply to information collected or provided to us on and after the effective date of the revised Policy. If revisions to the Policy materially expand how we use your personal information collected prior to the effective date of the revised Policy, we will request that you opt-in to the revised Policy. We encourage you to review our privacy policy regularly.

QUESTIONS REGARDING THIS PRIVACY POLICY

If you have any questions about our company or service, please visit our corporate website which includes links to company information, answers to frequently asked questions, and our current policies.

If you have any questions or concerns about this Policy, please contact us.

By email: privacy@getquipt.com

By mail:
ChanX.com, Inc
950 Glenn Drive
Suite 285
Folsom, CA 95630
United States of America