This Privacy Notice describes how Krossroads, Inc. and our affiliates (collectively, “Krossroads,” “we,” and “us”) collect, use, disclose, transfer, store, retain or otherwise process your information when you (whether you are a person acting as a sole proprietor or on behalf of another business entity) apply or sign up for a Krossroads Seller account and other services through Krossroads’ website or applications (collectively, “Services”).
This Privacy Notice applies to information collected in connection with your access to and use of our Services. Please read this Privacy Notice carefully. By continuing to interact with our Services, you are consenting to the practices described in this Privacy Notice.
INFORMATION WE COLLECT ABOUT YOU
We use your data to make Krossroads’ products and services work better for you and for others. This describes what data we get about you (which can vary depending on where you live).
Information You Provide
We use data you put into our systems when you open and use an account or other systems, like financial or tax information, information that identifies who you are, transaction information, and any other data you give us.
We collect information you provide when you:
- Make a request to receive information about Krossroads or our products;
- Apply or sign up for a Krossroads account or other Services;
- Go through our identity or account verification process, authenticate into your account, communicate with us, answer our surveys, upload content, or otherwise interact with the Services.
We call this information Seller Account Data.
Specifically, we collect (and/or have collected during at least the 12-month period preceding the effective date of this Privacy Notice) the following categories of information:
- Financial information, such as bank account information and payment card numbers;
- Identification Information, such as:
- Name, email address, postal address, signature, and phone number;
- Passport number, driver’s license number, Taxpayer Identification number, or other government-issued identification number;
- Tax information, such as withholding allowances and tax filing status.
- Transaction Information, such as information about when and where payment transactions occur, the names of the transacting parties, a description of the transactions, the payment or transfer amounts, billing and shipping information, and the devices and payment methods used to complete the transactions.
- Other Information You Provide, such as information that you voluntarily provide to us, including your survey responses; participation in contests, promotions, or other prospective seller marketing forms or devices; suggestions for improvements; referrals; or any other actions you perform on the Services.
Information We Collect From Your Use of the Services
We also get data from the devices you use when you interact with our systems, like your location or information about the device you’re using. We need this data to do things like help protect your account from hackers, combat fraud, check if payments are being made or received legally and by you, and making our products and services better for you and others.
- Commercial information, such as information about the products and services you sell (e.g., inventory, pricing and other data) and information about your payment transactions (e.g., when and where the transactions occur, a description of the transactions, the payment or transfer amounts, billing and shipping information, and payment methods used to complete the transactions);
- Electronic information, such as web browser and device characteristics;
- Geolocation data, which includes the location of your device. For more information and to learn how to disable collection of location information from your mobile device, please see below;
- Internet or other electronic network activity information, which includes information about how you use and interact with our Services, including your access time, “log-in” and “log-out” information, browser type and language, the domain name of your internet service provider, other attributes about your browser, any specific page you visit on our platform, content you view, features you use, the date and time of your use of the Services, your search terms, and the website you visited before you visited or used the Services;
- Online identifiers (e.g., information you use to log in to your account), Internet Protocol (“IP”) address, and unique personal identifiers (including device identifier; cookies, beacons, pixel tags, mobile ad identifiers and similar technology; customer number; unique alias, and other identifiers);
- Professional or employment-related information, such as information you provide about your business (e.g., appointments, staffing availability, and contact data) and your employees (e.g., job titles, payroll information, and hours worked and other timecard data); and
- Inferences drawn from any of the information above to create a profile about you that may reflect, for example, your preferences, characteristics, and behavior, including for account security purposes or to enhance our Services to you.
Information We Collect From Other Sources
We also need to check that you are using our services legally, that you are eligible for the services you want to use, and we protect your data and our services from fraudsters who may put you and your money at risk. To do this, we may collect data about you from companies that help us verify your identity, do a credit check, prevent fraud or assess risk.
- Background check information, including credit report information, identity verification information, and information about any person or corporation with whom you have had, currently have, or may have a financial relationship;
- Credit, Compliance and Fraud. Information about you from third parties for any credit investigation, credit eligibility, identity or account verification process, fraud detection process, or collection procedure, or as may otherwise be required by applicable law. This includes, without limitation, the receipt and exchange of account or credit-related information with any credit reporting agency or credit bureau, where lawful, and any person or corporation with whom you have had, currently have, or may have a financial relationship, including without limitation past, present, and future places of employment, financial institutions, and personal reporting agencies.
INFORMATION WE MAY COLLECT ABOUT YOUR CUSTOMERS
We also obtain information about your customers on your behalf when they transact with you. We call this information Your Customers’ Data. We collect Your Customers’ Data when they transact with you through your use of Krossroads’ products, for instance when they make a payment at your establishment, or schedule an appointment, or receive an invoice from you. The particular Customer Data we collect will vary depending on how you use our products and services and which products and services you use. Your Customers’ Data may include:
- Device Information. Information about Your Customer’s device, including hardware model, operating system and version, device name, unique device identifier, mobile network information, and information about the device’s interaction with our Services.
- Financial Information. Bank account and payment card numbers.
- Identification Information. Your Customers’ name; email address; mailing address; phone number; government-issued identification; or other historical, contact, and demographic information, and signature.
- Location Information. The location of Your Customer’s device if they pay with Apple or Android Pay.
- Transaction Information. When Your Customers use Krossroads to make or record payments to you, we collect information about when and where the transactions occur, the names of the transacting parties, a description of the transactions which may include item-level data, the payment or transfer amounts, billing and shipping information, and the devices and payment methods used to complete the transactions.
- Use Information. Information about how Your Customers transact with you using our Services, including access time, “log-in” and “log-out” information, browser type and language, country and language setting on your device, IP address, the domain name of Your Customer’s Internet service provider, other attributes about Your Customer’s browser, mobile device and operating system, features Your Customer uses, and the date and time of use of the Services.
- Other Information You or Your Customers Provide. Information that Your Customers voluntarily provide you, or that you input into Krossroads’ systems about your Customers. For example, survey responses; participation in contests, promotions, or other prospective seller marketing forms or devices; suggestions for improvements; notes you take about your customers, or any other actions performed when they transact with you using Krossroads.
Information Your Customers May Provide Krossroads
- Identification information. Your customers’ name, email address, or telephone number, which we link to a tokenized version of their payment card number.
Privacy laws that apply in certain places, like California, treat “businesses” and “service providers” differently. Under those laws, a business is the company that decides why and how to process personal information. A service provider processes personal information on behalf of a business in order to provide services. When Krossroads processes Your Customers’ Data, we generally act as your service provider. In select cases, however, we may act as a business when we process Your Customers’ Data. For example, we act as a business when we use Your Customers’ Data to send Your Customers digital receipts directly from Krossroads, or when we allow you to use Customer Directory or Krossroads Marketing to contact your buyer using a masked email address (for example, firstname.lastname@example.org) that gets routed to them via Krossroads.
SOURCES OF INFORMATION WE COLLECT ABOUT YOU
We collect your information from you and the other sources listed below.
We collect (and/or have collected during at least the 12-month period preceding the effective date of this Privacy Notice) information about you from the following categories of sources:
- You directly, when you submit information to us or allow us to access information about you;
- Your devices and applications when you interact with our website or use our Services;
- Our group companies and affiliates;
- Other sources, including:
- Social media networks;
- Online advertising companies;
- Service providers who help us with third-party identity verification, credit confirmation and fraud detection;
- Credit bureaus and financial institutions;
- Mailing list providers; and
- Publicly available sources (such as public records of criminal convictions and arrest records).
HOW WE USE YOUR INFORMATION
We use your data to do things like make sure the products you are using work, help you log in to your account, verify who you are, secure your data, fight fraud, follow the law, enforce our agreements, figure out what new products we can build, and market products to you that we think could make it easier for you to run your business.
We may collect, use and share (or have collected, used or shared during at least the 12-month period preceding the effective date of this Privacy Notice), information about you for the following reasons:
Performing, Improving and Developing our Services
- Delivering the information and support you request, including technical notices, security alerts, and support and administrative messages such as to resolve disputes, collect fees, and provide assistance for problems with our Services or your Krossroads account;
- Determining whether the Services are available in your country;
- Developing new products and services;
- Displaying your historical transaction or appointment information;
- Improving, personalizing, and facilitating your use of our Services;
- Processing or recording payment transactions or money transfers;
- Providing, maintaining and improving our Services, including our website;
- Doing internal research, measuring, tracking, and analyzing trends and usage; and
- Otherwise providing you with the Krossroads products and features you choose to use.
Communicating with You About our Services
- Sending you surveys and getting your feedback about our Services;
- Providing information about and promoting our Services to you; and
- Sending you information we think you may find useful or which you have requested from us about our products and services.
Protecting our Services and Maintaining a Trusted Environment
- Conducting investigations, complying with and enforcing applicable laws, regulations, legal requirements and industry standards, and responding to lawful requests for information from the government or to valid legal process;
- Contacting you to resolve disputes, collect fees, and help you with our Services;
- Debugging to identify and fix errors that impair how our Services function;
- Making sure you follow our Terms of Service or other applicable agreements or policies;
- Investigating, detecting, preventing, recovering from or reporting fraud, misrepresentations, security breaches or incidents, other potentially prohibited, malicious, or illegal activities, or to otherwise help protect your account, including to dispute chargebacks on your behalf;
- Protecting your, our, our customers’, or your customers’ rights or property, or the security or integrity of our Services;
- Verifying or maintaining the quality and safety of our Services; and
- Verifying your identity (e.g., through government-issued identification numbers).
Advertising and Marketing
- Marketing our Services to you; and
- Communicating with you about opportunities, products, services, contests, promotions, discounts, incentives, surveys, and rewards offered by us and select partners.
If we send you marketing emails, each email will have instructions on how you can “opt out” of getting future marketing from us.
To learn about what choices you have about interest-based advertising and cross-device tracking, please see below.
- For any other reason we may tell you about from time to time.
WHEN AND WITH WHOM WE SHARE YOUR INFORMATION
We share your information with others in the circumstances described in this section. For example, with other people with whom you interact when you use our services; within our family of companies, who may offer services that we think could be useful to you; with service providers who help us run our services; with ad platforms that help us market and advertise our services to you; or if we need to share your information to comply with the law.
We may share the personal information described in the “Information We Collect About You” section with the following categories of service providers and third parties:
With other Users of our Services with Whom You Interact
- With other users of our Services with whom you interact through your own use of our Services. For example, we may share information with your customers when you make or accept a payment, appointment, or money transfer using our Services.
With our Affiliates and Group Companies
- With our group companies and corporate affiliates, for the reasons outlined above. For example, we may share your information internally to understand how you engage with Krossroads company products to help make our Services better for you and for everyone, and to help us build Services tailored to your preferences.
With our Service Providers
- With service providers who help us provide, maintain, and improve our Services (e.g., vendors who help us with fraud prevention, identity verification, and fee collection services), as well as financial institutions, payment networks, payment card associations, credit bureaus, partners and other entities that help us provide the Services;
- With service providers that help us run our advertising campaigns, contests, special offers, or other events or activities.
Business Transfers and Corporate Changes
- To a subsequent owner, co-owner, or operator of one or more of the Services; or
- If we do or try to do a corporate merger, consolidation, or restructuring (including during due diligence and negotiation of these); the sale of substantially all of our stock and/or assets; the financing, acquisition, divestiture, or dissolution of all or a portion of our business; or other corporate change.
Safety and Compliance with Law
- If we believe that disclosure is reasonably necessary (i) to comply with any applicable law, regulation, legal process or governmental request (e.g., from creditors, tax authorities, law enforcement agencies, in response to a garnishment, levy, or lien notice, etc.); (ii) to establish, exercise or defend our legal rights; (iii) to enforce or comply with our General Terms or other applicable agreements or policies; (iv) to protect our or our customers’ rights or property, or the security or integrity of our Services; (v) for an investigation of suspected or actual illegal activity; or (vi) to protect us, users of our Services or the public from harm, fraud, or potentially prohibited or illegal activities.
With Your Consent
- With your consent. For example:
- At your direction or as described at the time you agree to share; or
- When you authorize a third party application or website to access your information.
Aggregated and Anonymized Information
- We also may share (within our group of companies or affiliates, or with service providers or other third parties) aggregated and anonymized information that does not specifically identify you or any individual user of our Services.
COOKIES AND OTHER SIMILAR TECHNOLOGIES
Digital cookies and similar technologies help us make our services better to use by doing things like recognizing when you’ve signed in, analyzing how you use our services so we can make them more useful to you, giving you a more personalized experience, and making our ads to you work better.
When you interact with our online services, or open emails we send you, we obtain certain information using automated technologies, such as cookies, web server logs, web beacons and other technologies. A “cookie” is a text file that websites send to a visitor’s computer or other internet-connected device to uniquely identify the visitor’s browser or to store information or settings in the browser. A “web beacon,” also known as an internet tag, pixel tag, or clear GIF, is a tiny graphic image that may be used in our websites or emails.
We use these automated technologies to collect your device information, internet activity information, and inferences as described above. These technologies help us to:
- Remember your information so you do not have to re-enter it;
- Track and understand how you use and interact with our online services and emails;
- Tailor our online services to your preferences;
- Measure how useful and effective our services and communications are to you; and
- Otherwise manage and enhance our products and services.
We set some of these automated technologies ourselves, but others are set by third parties who deliver services on our behalf. For example, we may use other companies’ web analytics services (described in the “Third-Party Analytics Services” section), which use automated technologies to help us evaluate how customers use our websites.
Your browser can alert you when cookies are placed on your device, and how you can stop or disable them via your browser settings. Please note, however, that without cookies all of the features of our online services may not work properly. If you use a mobile device, you can manage how your device and browser share certain device data by changing the privacy and security settings on your mobile device. You can learn more about cookies and how to manage your preferences by visiting http://www.allaboutcookies.org.
THIRD-PARTY ANALYTICS SERVICES
We use other companies as service providers to help us analyze our site, track metrics, and advertise to you. These service providers generally promised us under contract to keep data private but have their own privacy policies that you should be aware of.
We may use third-party analytics service providers to help us with our online services, such as Google Analytics, Facebook and Firbase Crashlytics. The analytics providers that administer these services use technologies such as cookies, web beacons, and web server logs to help us analyze how you use our online services. We may disclose your site-use information (including IP address) to these analytics providers, and other service providers who use the information to help us figure out how you and others use our online services.
- To learn more about Google Analytics and how to opt out, please visit https://marketingplatform.google.com/about/ or https://support.google.com/analytics/answer/181881?hl=en.
- To learn more about how Facebook uses your data please visit https://www.facebook.com/help/325807937506242/ or log on to your Facebook account and access your settings. To understand more about Facebook advertising please see here https://www.facebook.com/about/ads.
ONLINE TRACKING AND INTEREST-BASED ADVERTISING
We and the service providers we use to advertise to you may collect information about your activities on Krossroads. We use this information to advertise to you and to tailor our products and services to your interests. You may see certain ads on other websites because we use third-party services to advertise our services to you. We use these services to target our ads to you and others based on your demographics, interests, and context. These third party ad services track your online activities over time and across multiple websites by collecting your information through automated technologies, including third-party cookies, web server logs, and web beacons. The ad services use this information to show you Krossroads ads that may be tailored to your individual interests. The information our ad services may collect on our behalf includes data about your visits to websites that serve Krossroads ads, such as the pages or ads you view and the actions you take on those websites. This data collection takes place both on our online services, and on third-party websites that serve our ads to you. This process also helps us figure out if our ads to you are effective.
Certain web browsers allow you to instruct your browser to respond to Do Not Track (“DNT”) signals to website you visit, informing those sites that you do not want your online activities to be tracked. At this time, our websites are not designed to respond to DNT signals or similar mechanisms from browsers.
HOW LONG WE KEEP YOUR INFORMATION
We keep your information as long as you keep using our products and services. After that, we keep it for as long as we need it to do things like fight fraud, collect fees you owe, resolve disputes with (or involving) you, follow the law, enforce our agreements and defend our rights in court.
We generally keep your information as long as reasonably necessary to provide you the Services or to comply with applicable law. However, even after you deactivate your account, we can retain copies of information about you and any transactions or Services in which you may have participated for a period of time that is consistent with applicable law, applicable statute of limitations or as we believe is reasonably necessary to comply with applicable law, regulation, legal process, or governmental request, to detect or prevent fraud, to collect fees owed, to resolve disputes, to address problems with our Services, to assist with investigations, to enforce our General Terms or other applicable agreements or policies, or to take any other actions consistent with applicable law.
You can see, change or fix information you gave us, ask us to deactivate your account, control your location information, or tell us to stop marketing to you by opting out.
If you live in California, you have additional rights, which we describe below.
You may access, change, or correct information that you have provided by logging into your Krossroads account at any time or by making a request to us using the contact details below. We will need to verify your identity before granting access or otherwise changing or correcting your information.
Deactivating Your Account
If you wish to deactivate your account, you can do so by logging into your Krossroads account or by emailing us using the contact details provided below.
In order to provide certain Services, we may request access to location information, including precise geolocation information collected from your device. If you do not consent to the collection of this information, certain Services will not function properly and you will not be able to use those Services. You can stop our collection of location information at any time by changing the preferences on your mobile device. If you do so, some of our mobile applications will no longer function. You also may stop our collection of location information via mobile application by following the standard uninstall process to remove all Krossroads mobile applications from your device.
You can opt out of receiving promotional messages from Krossroads by following the instructions in those messages, by informing the caller that you would not like to receive future promotional calls, or by changing your notification settings by logging into your Krossroads account. You may only opt out of text messages from Krossroads by replying STOP. Opting out of receiving communications may impact your use of the Services. If you decide to opt out, we may still send you non-promotional communications, such as digital receipts and messages about your account or our ongoing business relations.
ONLINE BEHAVIORAL OR INTEREST-BASED ADVERTISING
Third-Party Online Behavioral or Interest-Based Advertising Services on Websites (including Mobile Websites)
Some of the advertising platforms that we use to collect information from or about you in order to provide more relevant advertising to you on websites participate in the DAA Self-Regulatory Program for Online Behavioral Advertising. This program offers a centralized location where users can make choices about the use of their information for online behavioral advertising. To make choices about the use of your information for online behavioral advertising on websites, please visit the Digital Advertising Alliance Webchoices tool. If you opt out of online behavioral advertising using this method, this opt-out will only apply to the specific browser or device from which you opt out.
Some of the advertisers, advertising technology companies, and service providers that perform advertising-related services for us may be members of the Network Advertising Initiative (NAI), a cooperative of online marketing companies that offers a centralized tool for opting out of interest-based advertising delivered to each of its member companies. If you would like to opt out of the NAI’s members’ use of information from or about you on websites, please visit the NAI’s opt-out of interest-based advertising page. If you opt out of interest-based advertising using this method, this opt-out will only apply to the specific browser or device from which you opt out.
Third-Party Online Behavioral or Interest-Based Advertising Services Within Mobile Applications
Some of the advertising platforms that we use to collect information from or about you in order to provide our advertising to you within mobile applications participate in the DAA Self-Regulatory Program for Online Behavioral Advertising. This program offers a mobile application called the “AppChoices,” which provides a centralized location where you can make choices about the use of your information for online behavioral advertising within the mobile environment. The AppChoices application can be downloaded from your mobile device at www.aboutads.info/appchoices or from your device’s app store. If you opt out of online behavioral advertising using this method, this opt-out will only apply to the specific browser or device from which you opt out.
On your mobile device, you may also go to your device settings and select “Limit Ad Tracking” (for iOS devices), or “Opt out of Interest-Based Ads” (for Android devices), which will allow you to limit our use of information collected from or about your mobile device (such as precise location data) for the purposes of serving online behavioral advertising to you.
RIGHTS OF CALIFORNIA RESIDENTS
Even though you use our services while acting as an employee, owner, director, officer, or contractor of a company, partnership, sole proprietor of a business, nonprofit, or government agency, if you live in California, California law gives you the right to ask if we disclose your personal information to third parties for their direct marketing purposes (we do not disclose your personal information for others’ direct marketing purposes). It also gives you the right to ask if we sell your personal information to third parties (we do not sell your personal information and have not done so in the past), and if we did (which we don’t), you’d have the right to opt out of such sales.
Children’s Personal Information
If you are a kid under 13, please don’t use our services. If we collect your data and later learn you are a kid under 13, we will delete it.
Our Services are general audience services not directed at children under the age of 13. If we learn that any information we collect has been provided by a child under the age of 13, we will promptly delete that information.
We do a lot to keep your data safe. While we think we have strong defenses in place, no one can ever guarantee that hackers won’t be able to break into our sites or steal your data while it is stored or flowing from you to us or vice versa.
We take reasonable measures, including administrative, technical, and physical safeguards, to protect your information from loss, theft, and misuse, and unauthorized access, disclosure, alteration, and destruction. Nevertheless, the internet is not a 100% secure environment, and we cannot guarantee absolute security of the transmission or storage of your information. We hold information about you both at our own premises and with the assistance of third-party service providers.
For more information about our security practices, please visit http://help.krossroads.com/security.
STORAGE AND PROCESSING
We operate in many countries, and we (or our service providers) may move your data and process it outside the country where you live.
We may, and we may use third-party service providers to, process and store your information in the United States, Canada, Japan, the European Union, and other countries.
CHANGES TO THIS PRIVACY NOTICE
We can change this privacy notice. When the changes impact your rights or how we use your data in important ways, we’ll tell you first by email (if you’ve given us your email address).
We may amend this Privacy Notice from time to time by posting a revised version. The revised version will be effective on the date it is released . We will provide you with reasonable prior notice of material changes in how we use your information, including by email if you have provided one. If you disagree with these changes, you may cancel your account at any time. If you keep using our Services, you consent to any amendment of this Privacy Notice.
You can contact our privacy team with any questions or concerns at the address below.
Please contact our privacy team with any questions or concerns regarding this Privacy Notice:
If you have any questions or concerns regarding our privacy notice, or if you believe our privacy notice or applicable laws relating to the protection of your personal information have not been respected, you may file a complaint with our privacy team listed above. We will respond to let you know when you can expect a further response. We may request additional details from you regarding your concerns and may need to engage or consult with other parties in order to investigate and address your issue. We may keep records of your request and any resolution.