Privacy Policy
Effective Date
This Privacy Policy is effective and last updated as of August 17, 2022. To see the prior version, click here.
This Privacy Policy (“Privacy Policy”) applies to Cart2Cart developed by MagneticOne. Cart2Cart is committed to ensuring that your privacy is protected. We recognize the importance of protecting all the information provided by Cart2Cart users, newsletter subscribers, and all Cart2Cart customers. All our customers and users are encouraged to read this Privacy Policy prior to submitting any personal information or using the Website in any other manner.
This Privacy Policy is an integral part of the Terms of Service of Cart2Cart. The GDPR Compliance and the Security Policy are the integral parts of this Privacy Policy.
By using the Website and/or the Service, you irrevocably agree to this Privacy Policy. If you do not agree to this Privacy Policy, you may not use the Website or the Service.
Our Website is not intended for children and you must be an adult to use the Website.
- Information Collection and Usage
- Information Security
- Information Sharing
- Data Integrity
- Retention of Personal Data
- How to Withdraw Your Consent
- Enforcement
- Communication
- GDPR Compliance
- Notification of Changes
- Servers Location
- Additional Terms for California Consumers
- How to Contact Us
1. Information Collection and Usage
1.1. When signing up for the Cart2Cart account (“Account”), you are asked to provide the following information:
- name;
- e-mail address;
- password;
- phone number.
The data collected will be used by the Service to identify the user and guarantee the security of the eCommerce information they transfer while performing either Demo or Full migration.
1.2. When you visit Cart2Cart website (“Website”), our server records the information sent from your browser:
- web request (e.g. date, time, etc.);
- IP address;
- browser type;
- browser language;
- one or more cookies identifying your browser.
Once you visit the Website we send a cookie banner informing you how we use cookies and give you an opportunity either to accept all cookies or read more about cookies. The data we receive at this stage are used to monitor and analyze Website visitor flow in Google Analytics.
1.3. When migrating the shopping cart, you are asked to upload the bridge file to provide Cart2Cart access to your store. You may also be asked to provide your direct database connection to speed up the process. This information is only used to fulfill your specific request unless you give us permission to use it in another manner.
1.4. We may use the information we collect about you (including personal information) for a variety of purposes, including: 1) enable you to access and use our Service; 2) provide, operate, maintain and improve our Service; 3) send transactional messages, including responses to your inquiries and questions; 4) provide customer service and support; 5) send you technical notices, updates, security alerts.
1.5. The information you provide is secured by GDPR and a person visiting a Website, registering an Account or performing Demo/Full migration should give Cart2Cart permission to collect, store and process their personal data. Any time a client can:
- Inquire what type of information MagneticOne collects and how it will use it.
- Request to correct, amend or delete personal information.
- Withdraw the consent for personal data processing.
2. Information Security
2.1. We take appropriate security measures to protect against unauthorized access to or unauthorized alteration, disclosure, or destruction of data. These include internal reviews of our data collection, storage, and processing practices and security measures, as well as physical security measures to guard against unauthorized access to systems where we store personal data. More details regarding security measures can be found in the Cart2Cart Security Policy.
2.2. We restrict access to personal information to Cart2Cart employees, contractors, and agents who need to know that information in order to operate, develop or improve our Services. These individuals are bound by confidentiality obligations and may be subject to disciplinary action, including termination and criminal prosecution, if they fail to meet these obligations.
We use 256-bit TLS encryption and create daily backups.
2.4. Cart2Cart script transfers data from your eCommerce platform directly to another eCommerce platform, chosen by you. You have the right to choose what type of data to migrate from your eCommerce platform to the other eCommerce platform. You may choose to migrate only the product's data without customer's data migration.
2.5. We never disclose any personal data to third parties without your prior written permission, unless otherwise requested by law, or agreed between the parties, or needed for the Services provision.
3. Information Sharing
3.1. We do not share, sell or rent any kind of personal information provided by our users, customers, or Website visitors to third-parties. We ensure the confidentiality of your private data.
3.2. Certain pieces of aggregated, non-personal information, which does not identify your personality, may be shared with third-parties to optimize Cart2Cart Service. This may include the number of users that migrated to a particular shopping cart, the number of clicks on a certain ad, etc.
4. Data Integrity
4.1. Cart2Cart processes personal information for the specific purposes it was collected for and in accordance with this Privacy Policy or any applicable service-specific privacy statement. Data collection, storage, and processing practices are constantly analyzed to ensure proper information adherence.
4.2. All the procedures involving your store information are performed on highly secured servers. Only authorized staff has access to monitoring the migration process.
4.3. We take reasonable steps to ensure that the personal information we process is accurate, complete, and current. We count on our users to update or correct their personal information whenever necessary.
5. Retention of Personal Data
5.1. We retain personal data that you provide us as long as we consider it potentially useful in contacting you about the Service. If you wish to inquire about your personal data that may have been collected by Cart2Cart, contact us by emailing to [email protected] or [email protected].
6. How to Withdraw Your Consent
6.1. At any time, you may withdraw consent you have provided to Cart2Cart for processing of your personal data.
6.2. You may withdraw your consent by submitting a request to [email protected] or [email protected], and following the instructions in our communication to you.
6.3. Please note that your withdrawal of consent to process certain personal data about you may limit our ability to deliver Services to you.
7. Enforcement
7.1. Cart2Cart ensures constant compliance with this Privacy Policy. Please address your questions or concerns about this Privacy Policy to [email protected].
7.2. As soon as any written complaint is received, Cart2Cart takes the responsibility to contact the complaining user with the necessary solutions.
7.3. We will cooperate with the appropriate regulatory authorities to resolve any complaints regarding the transfer of personal data that cannot be resolved between Cart2Cart and an individual.
8. Communication
8.1. Through contact forms or similar submissions available on the Website, users can submit any type of information to Cart2Cart. It will never be made public or accessible to third-parties. Requests for Service, support, or additional information may be forwarded as needed to the appropriate departments in the company. These kinds of notifications are retained for internal administrative purposes and are not disclosed to outside sources.
8.2. Data collection forms include a consent confirmation checkbox. With your explicit consent, we may use contact information you provide for the following purposes: 1) send follow-up emails from the Cart2Cart team to see if we can help you further with shopping cart migration; 2) send special offers we think you'll find valuable; 3) contact you regarding functionality changes to our Service; 4) send occasional product updates and promotions; 5) send regular monthly product updates.
8.3. You can choose to “opt out” of these communications anytime. To opt out of any email communications from us, please click the ‘unsubscribe’ link at the foot of the email in question.
8.4. Cart2Cart doesn't sell or rent your personal data to third parties.
9. GDPR Compliance
9.1. Cart2Cart is strongly committed to privacy, security, compliance, and transparency. The set of updates were introduced to the way Cart2Cart collects, stores, and processes personal information due to the General Data Protection Regulation (GDPR), which becomes enforceable on May 25, 2018.
9.2. Cart2Cart users are free to submit personal data requests at [email protected] and to inquire on personal data collected and demand its partial or full extraction from the database
9.3. For more information on rules applied to Cart2Cart company check the dedicated page on GDPR changes.
10. Notification of Changes
10.1. Cart2Cart reserves the right to modify this Privacy Policy at any time and at its own discretion.
10.2. If we change our Privacy Policy, we will post those changes on this page so our users are aware of what information we collect, how we use it, and under which circumstances, if any, we disclose it.
10.3. Users should check this Privacy Policy frequently to keep abreast of any changes.
11. Servers Location
11.1. Depending on the location of the ecommerce platform the migrations can be carried out by Cart2Cart on Hetzner servers located in Germany according to Hetzner Terms and Conditions or on Amazon Web Services (AWS) servers located in the United States of America or in any other country in which AWS maintains facilities according to AWS Customer Agreement.
11.2. Due to para 5.1. of Hetzner Terms and Conditions, Hetzner's data protection policies are in accordance with the GDPR (European Union's General Data Protection Regulation).
11.3. Due to the European Economic Area section of the AWS Privacy Notice, when Amazon Web Services EMEA SARL is the provider of an AWS Offering, Amazon Web Services EMEA SARL, 38 Avenue John F. Kennedy, L-1855, Luxembourg, is the data controller of personal information collected or processed through the AWS Offering. Amazon Web Services EMEA SARL is also the authorized representative of Amazon Web Services, Inc. in the EEA.
Also Amazon Web Services, Inc. participates in the EU-US and Swiss-US Privacy Shield frameworks. Click here to learn more.
12. Additional Terms for California Consumers
The information below is required due to the “The California Consumer Privacy Act of 2018” (the “CCPA”). The terms below apply to the State of California residents additionally to the rest terms of this Privacy Policy.
12.1. CCPA REQUESTS
12.1.1. Due to the CCPA California residents are provided with the following rights: 1) to know about their personal information collected, disclosed by Cart2Cart; 2) to request the deletion of their personal information collected by Cart2Cart; 3) to correct inaccurate personal information; 4) other rights prescribed by the CCPA.
12.1.2. California residents may apply to us with verifiable consumer requests to know, or to delete, etc. as detailed below by contacting us by submitting contact us form or by emailing to [email protected].
12.1.3. The consumer shall provide the following information in the verifiable consumer request: your name, surname; email; subject; purpose of the request and country (state) of residence in the message.
12.1.4. General rules regarding verification of the consumer request are as follows:
- Whenever feasible, Cart2Cart will match the identifying information provided by the consumer to the personal information of the consumer already maintained by Cart2Cart.
- Cart2Cart shall avoid collecting the sensitive personal information, unless necessary for the purpose of verifying the consumer.
- Cart2Cart shall consider the following factors: (a) the type, sensitivity, and value of the personal information collected and maintained about the consumer; (b) the risk of harm to the consumer posed by any unauthorized access or deletion; (c) likelihood that fraudulent or malicious actors would seek the personal information.
- Cart2Cart shall generally avoid requesting additional information from the consumer for purposes of verification. If, however, Cart2Cart cannot verify the identity of the consumer from the information already maintained by Cart2Cart, then Cart2Cart may request additional information from the consumer, which shall only be used for the purposes of verifying the identity of the consumer seeking to exercise their rights under the CCPA, security, or fraud-prevention. Cart2Cart shall delete any new personal information collected for the purposes of verification as soon as practical after processing the consumer's request, except as required to comply with CCPA.
12.1.5. No Discrimination. We will not discriminate against any consumer for exercising their rights under the CCPA.
12.1.6. CCPA Information Request Rights
12.1.6.1. You have the right to request the provision of the following information about our collection and use of your personal information.
12.1.6.2. If upon receipt of a verifiable consumer request has been confirmed through our review of the information you provide in your request, we will disclose to you:
- The categories of personal information we have collected about you.
- The categories of sources from which the personal information is collected.
- The business or commercial purpose for collecting that personal information.
- The categories of third parties with whom we share or have shared that personal information (if any).
- The specific pieces of personal information we collected about you.
12.1.6.3. The section 1 of this Privacy Policy describes the categories of personal information that Cart2Cart collects, the categories of sources from which the personal information is collected, and the purposes for collecting such personal information.
12.1.7. CCPA Deletion Request Rights
12.1.7.1. You have the right to submit the verifiable consumer request that we delete any of the personal information collected from you and retained, subject to certain exceptions and your verification.
12.1.7.2. Your request to delete the personal information collected may be denied if it is necessary for us to retain your information under one or more exceptions listed in the CCPA.
12.2. WE DO NOT SELL YOUR PERSONAL INFORMATION
12.2.1. We do not sell personal information collected about you to third parties.
12.2.2. We do not share your personal information with outside third parties without your consent, unless instructed by you for the purpose of providing you the Services.
12.3. WE DO NOT COLLECT YOUR SENSITIVE PERSONAL INFORMATION
How to Contact Us
13.1. Please address your questions or concerns about this Privacy Policy to [email protected].