2Checkout.com Inc and its affiliate companies part of the Verifone Payments group of companies' dba 2Checkout ("2CO" or "2Checkout") values the privacy and security of the information that you share with us. This Privacy Statement applies to information collected by 2CO through www.2Checkout.com (the "website"). This Privacy Statement also applies to other information 2CO receives in the United States from Europe. This Statement describes how 2CO collects, uses, shares, protects, or otherwise processes your personal information. By using this website, you agree to the terms of this Privacy Statement.

2CO collects personal information to set up and manage accounts for our ecommerce services and to handle orders of goods and services from 2CO.

You may need to provide 2CO with personal information such as:

• names; phone numbers; mailing, billing, shipping, and email addresses;
• bank account information; credit and debit card information; dates of birth; and identification documents.

2CO uses such information for:

• website registration; enabling sales and other transactions; processing payments and settlement; sending payouts; handling orders; providing receipts;
• providing customer service; providing dispute resolution, chargebacks, refunds, or related issues;
• marketing and surveys; sending service update notices;
• recovering debt and collections; detecting and preventing fraud; detecting and preventing violations of our legal agreements;
• measuring, improving, and customizing our services; and
• fulfilling other technical, logistical, financial, tax, legal, compliance, administrative, or back office functions.

2CO may also collect background information and credit checks from third parties to verify your identity; deter, detect, and prevent fraud and illegal activity; make business decisions; and as a part of our legal obligations. 2CO retains such information for as long as reasonably required for business purposes or as reasonably required to comply with our legal obligations.

Community Information

2CO collects information from you to post entries to our community website or forums. Such information may include your email address, Internet Protocol address, user name, date and time of signup, and date and time of posts to the forum.

2CO uses this information for the secure and efficient functioning of our website, to provide you with access to our community site, to detect and prevent violations of our legal agreements, and as part of any legal obligations related to our community website.

Transaction Information

2CO collects information on each transaction conducted through our website. Such information may include the amount of the transaction; the goods purchased; the identity of the seller, affiliate, and customer; payment type; currency; location; Internet Protocol address; and websites visited.

2CO uses such information for refunds, for customer service, for website optimization, or for other administrative or business purposes. 2CO may share information related to the transactions you conduct through our website with sellers, affiliates, or customers for the purposes disclosed in this Privacy Statement. 2CO retains transaction information for as long as reasonably required for business purposes or as reasonably required to comply with our legal obligations.

Customer Service Correspondence

2CO also collects information involving customer service correspondence. This information may include emails, internet chats, faxes, or telephone calls directed to our customer service centers. 2CO processes this information to provide customer service, handle complaints or disputes, measure and improve our customer service, detect and prevent fraud, and detect and prevent violations of our legal agreements. 2CO retains customer service information for as long as reasonably required for business purposes or as reasonably required to comply with our legal obligations.

Cookies, Web Beacons, and Logs

2CO collects information related to your use of our website using cookies, web beacons, and log information.

Cookies are small files containing strings of text stored on your computer. 2CO uses cookies to authenticate you as a user when you log in, track your session, deliver content specific to your preferences and interests, store the contents of your shopping cart, provide features related to payment and customer service, and provide other functions.

Web beacons are objects embedded into web pages that allow us to determine whether and for how long users view web pages. We use web beacons for site traffic reporting, unique visitor counts, auditing and reporting, personalization, and other functions.

Log information may include web requests, Internet Protocol address, operating system, browser type, browser language, date and time of your request, and cookies that may uniquely identify your browser. 2CO uses this information to enhance the functionality of the website and to make your access more convenient, secure, and efficient.

2CO also uses information gathered from logs, cookies, and web beacons to monitor website performance; improve website design, functionality, and security; and assemble web analytics and activity trends. 2CO retains such information for as long as reasonably required for business purposes or as reasonably required to comply with our legal obligations.

You may stop your browser from accepting cookies or web beacons. The Help portion of your browser should explain how to configure your browser's cookie handling. Your browser may have add-ons that may help you block web beacons. You may have limited functionality if you block cookies or web beacons set by our website.

HotJar

2CO uses HotJar, a web analytics service. HotJar uses cookies, web beacons, and other means to help 2CO analyze how users use the site. You may find HotJar's Privacy Policy at https://www.hotjar.com/legal/compliance/gdpr-commitment.

Google AdWords

2CO uses Google AdWords, a web analytics and search engine advertising campaign management service. Google AdWords uses cookies, web beacons, and other means to help 2CO analyze how users use the site. You may find Google's Privacy Statement at http://www.google.com/intl/en/privacypolicy.html.

Google Analytics

2CO uses Google Analytics, a web analytics service. Google Analytics uses cookies, web beacons, and other means to help 2CO analyze how users use the site. You may find Google's Privacy Policy at https://www.hotjar.com/legal/compliance/gdpr-commitment.

Marketo

2CO uses Marketo, an email distribution and web analytics service. Marketo uses cookies, web beacons, and other means to help 2CO distribute emails analyze how users use the site. You may find Marketo's Privacy Statement at https://documents.marketo.com/legal/privacy/.

We will seek your consent prior to using your personal information in a manner incompatible with the purposes we described in our Privacy Statement at the time of collection. You may choose not to provide any personal information to 2CO, in which case we will be unable to provide services to you.

2CO only shares information as described in this Privacy Statement. 2CO shares information with the following categories of third parties. Such third parties are prohibited by law or by contract from processing personal information for purposes other than those disclosed in this Privacy Statement.

Organizations that Provide Services to Us

2CO discloses personal information to other organizations that perform services on our behalf. We require such organizations to use such information solely for the purposes of providing services to us and to protect the personal information with appropriate safeguards.

Such organizations include financial institutions; payment processors; money transfer service providers; acquirers; auditors; background and credit check organizations; fraud prevention service providers and anti-fraud networks; marketing service providers; database managers; customer service providers and representatives; debt collectors; and others who perform technical, logistical, financial, tax, legal, compliance, or administrative functions on our behalf.

These organizations may perform functions such as processing credit and debit card payments, sending wire transfers, providing background and credit checks, providing fraud checks, providing customer service, analyzing data, supplying marketing assistance, fulfilling orders, delivering packages, sending postal mail and email, debt collections, and providing other financial, technical, logistical, tax, legal, compliance, or administrative functions.

Financial institutions, payment processors, and acquirers may share the information that 2CO provides to them with other financial institutions or card networks in order to provide financial services, payment services, and to process payments. Fraud prevention service providers and anti-fraud networks may share the information 2CO discloses to them with other fraud prevention service providers and anti-fraud network participants in order to provide fraud checks.

Sellers

2CO discloses personal information to its sellers. 2CO provides payment processing services to sellers who make goods and services available to customers for purchase on those seller's websites. We have confidentiality agreements with these sellers. We share personal information with sellers to complete transactions, resolve customer comments or complaints, and for administrative and analytical purposes like accounting, billing and audits, information system management, and other uses.

Customers

2CO discloses personal information to its customers. 2CO provides payment processing services to sellers who make goods and services available to customers for purchase on those seller's websites. We may share personal information with customers to complete transactions, resolve customer comments or complaints, and for administrative purposes like accounting, billing and audits, and other uses.

Business Sale or Merger

2CO may share personal information in the event of a sale or merger of all or any portion of its business units. Such information remains subject to the promises made in any pre-existing Privacy Statement, unless an individual consents otherwise.

Other

2CO may disclose personal information where:

• required by law or by an order or requirement of a court, administrative agency, or other government entity, or by court rules concerning the production of records;
• 2CO has reasonable grounds to believe that use or disclosure is necessary to protect the rights, privacy, property, or safety of our users or others;
• 2CO has reasonable grounds to believe that the information relates to the breach of an agreement or violation of the law that has been, is being, or is about to be committed;
• it is necessary for fraud protection, risk reduction, or the establishment or collection of funds owed to us;
• it is necessary to enforce or apply our legal agreements, to pursue remedies, or to limit damages to 2CO;
• the information is public;
• you have provided consent or with your direction; or
• other reasons allow it or other laws require it.

When we are required or permitted to disclose information, we will not disclose more information than is necessary to fulfill the disclosure purpose.

2CO may disclose aggregate or statistical information to our business partners, for public relations purposes, or other purposes.

At your request, we will provide you with reasonable access to your personal information, so that you can review what we have stored and, if you choose, request corrections to it. You may request access by writing to us at the address listed in the Contact Information section below. After you request access, we will provide the personal information that you request as soon as practically possible and generally no later than thirty days following the request. If you wish to correct your personal information, please send us a written explanation of the particular information that you believe should be corrected. Where information will not or cannot be accessed or amended, we will tell you the reasons.

2CO stores, collects, and otherwise processes information mainly in Columbus, Ohio, U.S.A.

If you are residing in the European Union/ the European Economic Area, you have the right to:

• access your personal information, rectify it, restrict or object to its processing, or request its deletion,
• to receive the personal information you provided to 2CO or to transmit it to another company. More specifically, based on the European Union laws, you may request and receive copies of the personal information that you have provided to us in a structured, commonly used, and machine-readable format and/or request us to transmit this information to another service provider (where technically feasible).
• to withdraw any consent provided,
• to opt out of some collection or uses of your personal information, including the use of cookies and similar technologies, the use of your personal information for marketing purposes, and the use for data analyses,
• where applicable, to lodge a complaint with your supervisory authority.

We encourage to contact us and we will respond in due time to settle all your questions and requests to the extent permitted by law.

At 2Checkout we never monetize your information and we are informing you on our data processing purposes through this Privacy Policy. We will not share personal information we collect about you except to the extent permitted under California law.

If you are a California resident, we want to make sure you have everything you need to make informed decisions. Subject to certain limits under California law, You have the right to:

• know how your personal information is used;
• access, request and receive the personal information we have collected in a portable manner;
• object to having your data sold or shared, and request that we delete your personal data.

You can make requests about your privacy rights at dpo@2checkout.com or using other alternative contact details as per https://www.2co.com

2CO combines technical and physical safeguards with employee policies and procedures to protect your information. We work to protect your personal information during transmission by using Secure Sockets Layer software, which encrypts the information that you provide online at our website. We will use commercially reasonable efforts to protect your information. We will also continue to assess new technology for protecting information and upgrade our information security systems when appropriate.

Further, we permit only authorized 2CO employees and third parties to access any personal information. If an employee misuses personal information, we may take disciplinary action, up to and including termination of employment. If any third party individual or organization misuses personal information, we will take action, up to and including termination of any agreement between 2CO and that individual or organization.

2CO processes personal information only for the purposes it was originally collected and in accordance with this Privacy Statement. 2CO takes commercially reasonable steps to ensure that the personal data is relevant, reliable for its intended use, accurate, complete, and current for the purposes for which it is used. 2CO retains information for as long as reasonably required for business purposes or as reasonably required to comply with our legal obligations.

2CO does not sell products for purchase by children, but we do sell children's products for purchase by adults. We do not knowingly collect, maintain, or use personal information from children under age 13. If you are under age 13, do not share personal information with us.

In the European Union, the age limitation is 16. Thus, if this jurisdiction applies to you, 2CO will not knowingly collect, maintain, or use personal information from children under age 16.

When you click on a link on this website that takes you to a website operated by another company, you will be subject to that company's privacy practices.

We may send you information about our products and services. You may log into the Profile Center and update your Preferences to stop receiving this information. You may also opt out of 2CO's marketing list or update your information by notifying us at dpo@2checkout.com at any time.

2CO may amend this Privacy Statement on one or more occasions by posting a revised statement on this website or a similar website that replaces this website. 2CO will amend this Privacy Statement in a manner consistent with the Safe Harbor Principles.

Please contact us with any questions or concerns related to this Privacy Statement by using the address listed in the Contact Information section below. We will investigate and attempt to resolve complaints or disputes regarding personal information in accordance with this Privacy Statement. For complaints that have not been satisfactorily addressed, you may use the dispute resolution procedures established by the European Union data protection authorities (EU DPAs) for complaints concerning personal information from the EU and the Federal Data Protection and Information Commissioner of Switzerland (FDPIC) for complaints concerning personal information from Switzerland. The EU DPA panel may be contacted at ec-dppanel-secr@ec.europa.eu and the EU DPAs may be contacted directly via the information provided at: http://ec.europa.eu/justice/data-protection/bodies/authorities/eu/index_en.htm. The Swiss FDPIC may be contacted directly via the information provided at: http://www.edoeb.admin.ch/kontakt/index.html?lang=en.

If you have questions or concerns related to this Privacy Statement, you may contact us by email at dpo@2checkout.com or by writing to us at:

Attn: Privacy Officer
2Checkout.com, Inc.
855 Grandview Avenue
Suite 110
Columbus, OH 43215
USA

We have also designated a EU Representative, for all the individuals residing in the European Union / the European Economic Area:

Attn: Data Protection Officer
Email: dpo@2checkout.com
Avangate SRL
Dimitrie Pompei 10A, Conect 3,
020337 Bucharest, Romania