This Global Privacy Policy explains how MergeGuard ("we", "our", "us") collects, uses, stores, and protects personal data across our websites, applications, analytics tools, and services (collectively, the "Services").
1. Our Role in Data Processing
- Data Controller: For website visitors, merchant accounts, billing, support, marketing communications, and business operations.
- Data Processor: For end-customer personal data processed strictly on behalf of merchants using our Services.
2. Information We Collect
Information You Provide Directly
- Identity Data: Name, email address, company name
- Account Data: Login credentials (securely hashed)
- Financial Data: Billing details and transaction records
- Support Data: Information shared through support tickets
Information Collected Automatically
- Technical Data: IP address, device type, browser version
- Usage Data: Logs, page views, navigation paths
- Cookies & Tracking (see our Cookie Policy)
3. How We Use Information
Our Promise:
- We do not sell personal data.
- We do not use merchant customer data for independent advertising.
- We do not reuse data outside the purposes stated above.
4. Data Retention
- Customer Data (as Processor): Deleted within thirty (30) days of app uninstallation.
- Controller Data: Retained as long as your account is active.
5. Security Measures
- Encryption of data in transit (TLS/SSL) and at rest
- Strict authentication and role-based access controls
- Continuous monitoring, logging, and security reviews
6. Your Rights (GDPR / CCPA / DPDP)
You have the right to:
- Access your personal data
- Rectify inaccurate data
- Request erasure ("right to be forgotten")
- Restrict or object to processing
- Request data portability
Requests can be made at privacy@mergeguard.store.