The Custom Product Builder Privacy Policy (GDPR)

 

Introduction

This Privacy Policy sets forth our policy in relation to personal and other non-identifiable information collected from visitors to our website and users of our services. This website and related services are owned and operated by Custom Product Builder, Inc or ‘CPB’.

We are committed to upholding a high standard in order to protect personal data of our users and keep it safe and confidential. For this purpose we share you with this Privacy Policy to explain how we collect, use and protect your personal data.

By browsing, accessing and using our website and services, you agree to proceed on the basis of this Privacy Policy and you agree with the conditions of processing the user’s personal data contained in this document.

This Privacy Policy discloses the privacy practices for Custom Product Builder, or ‘CPB’. This Privacy Policy governs the use and collection of information collected from every party using our application. This Privacy Policy may be modified at any time and the most recent version will be published on this page. Your use of the CPB is subject to this Privacy Policy as then in effect. Ongoing access to CPB by you following any modification in this Privacy Policy will constitute your acceptance of the updated policy.

You must not use CPB if you do not agree to this Privacy Policy.

Information Collected

When you interact with us through the website or use our services, we may collect personal data and other information from you. We may receive the following personal data:

* information provided by the user during account registration, including, without limitation, personal details, user name, address, phone number and email address;

* information about your company;

* information connected with the user’s browsing activities, statistical information, information on visits and use of the website and services;

* other information about the user stored for the use of the website or information received from third parties providers.

When you interact with our website or use our services, we receive and store certain personally non-identifiable information. Such information, collected passively through various technologies, cannot be used to identify you personally. We may store such information in our own databases or in databases owned and maintained by our affiliates, agents and service providers. We may use such information and pool it with other information to track, for example, numbers of visitors to our website and particular pages in it, domain names of our visitors’ internet providers, and how our users interact with our services. To better understand and serve clients, we also conduct ongoing research on customer demographics, interests and behavior based on personal data and other information we receive from you. We may compile and analyze such material on an aggregate basis. We may share information as described here–none of which can identify you personally–with affiliates, agents and partners. We may also disclose aggregated user statistics for describing our services to current and prospective clients, providers, partners and other parties for lawful purposes.

By voluntarily providing us with the personal data, you agree to permit us or our authorized parties to use and store it as described in this Privacy Policy.

Personally Identifiable Information (PII)

General:

CPB installed in a store accesses and modifies product related order information. Although CPB requests access to personally identifiable information in order data, such as name, email and billing / shipping addresses, CPB app doesn’t access, modify or store this data.

The store owner who uses the app is responsible for deleting the information of the users whenever requested. CPB doesn’t store or modify any such data.

You can request the store owner to delete personal data at any time from their store and CPB will lose access to such data.

CPB does not store any personal data.

The personal information collected on checkout order forms is passed directly to the website owner. The site owner is the data controller.

Any personal information accessed by CPB app will not be shared with any other third party.

CPB stores user uploaded images, files and user generated content in a secure multi-region Google Cloud Storage Bucket in the United States.

Uploaded files are stored with randomized alphanumeric titles.

Files are stored for 5 years or until removal is requested.

Security is our top priority for the storage.

No other information is being requested or stored, for example, via cross referencing with other databases or IP addresses.

You may request that your personal information is deleted at any time.

If you have any questions about your personal data, please contact support@buildateam.io

For Merchants: 

The information related to subscriptions for the Custom Product Builder Shopify app is stored in Shopify and billing information is not accessible by Custom Product Builder App

For Magento 2 and other platforms we use Stripe to manage subscriptions. Stripe is a 3rd party data controller and it has its own Privacy Policy as well.

Neither CPB app nor CPB personnel has access to Credit Card Numbers.

Every person that has access to account information has signed an NDA that protects personally identifiable information and has gone through a training on handling Personal Identifiable Information (PII). 

CPB app collects data for its newsletters. CPB doesn’t store the newsletter information directly.

A third-party email marketing service called Mailchimp is used for this purpose. You can read the Mailchimp GDPR FAQ here https://mailchimp.com/help/gdpr-faq/

The personal information collected by stores and Mailchimp is not stored in any CPB database. CPB acts as a data processor.

Cookies, Logs and 3rd party scripts.

Like many websites, we use “cookies”. A cookie is a small data file that we transfer to your device to enable our systems to recognize your device and to provide certain features. These data files may be cookies, pixel tags, e-tags, “Flash cookies”, or other local storage provided by your browser or associated applications (“cookies”).

Cookies allow your browsing choices to be remembered and make you recognized when you return to the website. We also use cookies to ensure that our services work properly.

You may change your web browser’s settings to stop accepting cookies, to enable your browser notify when you receive new cookies, or to prompt you before accepting a cookie from a website you visit. However, because cookies allow you to take advantage of some of our essential features, we recommend that you leave them turned on. For instance, if you block or otherwise reject our cookies, you may not be able to use our custom product builder app or services entirely.

The servers that host CPB have log files that gather various technical information about the site usage. These logs collect IP addresses, anonymous browser types and errors or notices that app generates.

When admin user launches the product page preview using the button ‘Preview’ a cookie is created that allows to bypass the caching of the page and see the latest version of the customization.

Name	Provider	Description	Domain	Duration (days)
no_cpb_json_cache	CPB	If the site isn’t opened in admin panel then this cookie is applied, product gets from non-cdn server and you can view changes in real time	.myshopify.com	3,5
dont_show_help_modal_again	CPB	This cookie was disabled. It was controlled help modal in admin panel	.myshopify.com	no limits
Other shopify cookies

No other cookies are created.

Information Protection

We use reasonable administrative, technical, personnel and physical measures to safeguard all PII collected on this website against misuse or loss.  However, CPB, like any website, cannot guarantee that information that you supply will not be intercepted while being transmitted to us. Also, we do not control the security measures used by third parties like store owners, hosting companies scripts.

Use of Your Personal Data and Other Information

We use your personal data solely as described in this Privacy Policy. We process your personal data in order to identify you, process registration, log in to the website, facilitate our communication, contact you and process any requests and applications, improve our services and website, resolve your problems, deliver services, monitor your use, target advertisements, carry out statistical analysis based on anonymized data.

We have no control over and are not responsible for processing of the information by third party websites, which the user may access by hyperlinks on the website.

Disclosure of Your Personal Data and Other Information

The protection of your personal data is important to us. We will never sell your personal data or use it in any illegal way. We will share your personal data with third parties in circumstances described below.

Business Transfers

From time to time, we may decide to buy or sell assets. In these types of transactions, such as sale, merger, liquidation or transfer of assets, your data may be one of the business assets that is transferred.

Service Providers

We may engage third party companies and individuals such as marketing and research companies, security providers, payment processors to help provide part of our services. These service providers have limited access to your personal data and are obliged to perform these tasks on our behalf and not to disclose or use your personal data for other purposes. We may also share your personal data with our related companies for purposes consistent with this Policy.

Our employees

The user understands that the personal data is available and accessible by our employees who we believe reasonably need to come into contact with that personal data to provide services to you or in order to do their jobs.

Legal and Other Compelling Requirements

We may disclose the personal data to a third-party in order to protect, establish, or exercise our legal rights or defend against legal claims, or when we believe in good faith that such disclosure is necessary to comply with the law, prevent imminent physical harm or financial loss, or investigate, prevent, or take action regarding illegal activities, suspected fraud, threats to our property, or violations of applicable law.

Your Choice

You can use our website without providing any personal data. If you choose not to provide personal data, you may not be able to use certain services and make transactions on our website.

Children

Our services are not targeted to those under the age of 13 and we do not intend to sell our services to minors. However, we have no way of distinguishing the age of individuals who access our services via online stores our plugin is run in. If you think that a child under age 13 may have provided personal data through our s, please contact us and we will request the responsible data controller to erase it.

Security

The security of the personal data is vital to us. We use latest tech to secure sensitive information (such as Сredit Сard number). We follow generally accepted industry standards to protect your personal data, both during transmission and once we receive it.

However, no method of transmission over the Internet, or method of electronic storage, is completely secure. Therefore, while we strive to use commercially acceptable means to protect your personal data, we cannot guarantee its absolute security and you should take special care in deciding what information you send us.

Liability Limitation and Disclaimers

Commitments, norms and standards set out in this Policy do not constitute representations, promises or warranties. To the fullest extent legally allowable, we hereby exclude all liability for damages arising out of or in connection with your use of our website or services, including failures to comply with this Policy. This exclusion covers, without limitation, direct loss, loss of business or profits (even if foreseeable, arising in the normal course of events or conveyed to us as a possibility) and damage to your computers, software, systems, programs and data, as well as indirect, consequential and incidental damages.

Notifications

From time to time we may send you messages that are service-related and required for our users, including newsletters and other alerts. We may also send you email relating to your personal transactions, about special promotions, featured investments and other news of the website and services. We may also send you news and updates about changes to our website and services. Such messages may be sent internally, by email or by push notifications. You may choose to subscribe or unsubscribe from such news.

Modifications

We may revise the Privacy Policy at any time and in our sole discretion by posting the relevant revised Privacy Policy on the website. By continuing to use our website and services, you agree to be bound by the revised Privacy Policy.

Updating Information; Contacting Us

To keep your personal data accurate, current, and complete, please contact us as specified below. We will take reasonable steps to update or correct personal data that you have previously submitted via our website or in using our services. Please contact us with your questions about this Policy or the information practices of our website.

If you have any queries or recommendations you may contact us as at hello@buildateam.io