StoreRobo Privacy Policy

Thank you for choosing StoreRobo (hereafter called the “App”). We are committed to protecting your personal data and your right to privacy.

We appreciate your decision to use our App and to trust us with your valuable personal data. In this document, we seek to explain in the clearest terms possible our privacy practices. We strongly encourage you to read this document (and any other related documents) carefully before using the App. If there are any terms or conditions in this document that you do not agree with, please do not use the App, or in case you are already using it, please discontinue the use immediately. We also advise you to check this document from time to time for any changes that we may bring to be in line with the law and our privacy practices.

By using the App, you are accepting and consenting to the practices described in this Privacy Policy.

1. Legal basis for processing

We will only use your personal data when the law allows us to do so. We will be using your personal data in the following circumstances.

To fulfil any contractual obligations that we have with you.
Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests.
To fulfil any legal obligation

To the extent we process your personal data for any other purposes, we ask for your consent in advance or require that our partners obtain such consent.

2. Data that we may collect about you

We may collect and process personal data about you. Personal data, or personally identifiable data, is any piece of data that can be used to identify a natural person. It does not include any data where the identity has been removed (also called anonymous data or de-identified data). We collect, store and use various personal data that can be found in the following table. For your convenience, we have also added the purpose of such data.

Purpose	Type of data	Lawful basis
Used to identify the Store and the Merchant, and provide data and services provided by us	Store name and URL	To perform contractual obligations we have with the customer
To able to send notifications	Email	To perform contractual obligations we have with the customer
The users may need to review the history and use any of the historical files to analyse their actions or restore previously exported files – as a backup restore procedure.	Imported and exported data files	To perform contractual obligations we have with the customer
The support team may need to review the history and use of the historical files while solving an issue of the App user, when the App user rise the issue by contacting the support, or when our when our monitoring system proactively issues an alert that App User has repeated problems with the specific import or export	Imported and exported data files	To perform contractual obligations we have with the customer
To show App user their import/export history	Import/export job history, settings, App user emails	To perform contractual obligations we have with the customer
To ensure the security of the app, detect and address technical issues	IP addresses	To perform contractual obligations we have with the customer
For the functioning of the app	A list of the products in excel format	To perform contractual obligations we have with the customer
For providing support for the customers	Name and email address	To perform contractual obligations we have with the customer

We may also collect data that is not mentioned here. However, before doing the same, we will be getting your consent. Only after getting your consent, we will collect and process your personal data.

3. How do we collect the data?

We use different methods to collect the data including the following ways:

Direct interactions: You may provide us with the list of products that your shop has.
From third parties: we may collect data such as IP address, store name, URL, email address from third party, that is shopify partner account.

4. Special categories of data

We do not collect, store or use any special categories of data about you. This means details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health, and genetic and biometric data are not collected, used or stored.

5. Cookies

We do not use cookies or other technologies.

6. Third party sites and services

We use third party vendors to store the information that we collect from you. As a result they may have access to the data they store with them. For more detailed information, please read their legal documents linked below.

Amazon Web Services: https://d1.awsstatic.com/legal/aws-gdpr/AWS_GDPR_DPA.pdf

Digital Ocean: https://www.digitalocean.com/legal/data-processing-agreement

7. Disclosure to third parties

We may share your data with third parties for the purposes set out in this privacy policy. This may include the following:

Any member of our group, which means our subsidiaries, our ultimate holding company and its subsidiaries.
Business partners, suppliers and sub-contractors for the performance of any contract we enter into with them or you to provide services such as hosting services.
Professional advisors acting as service providers to us in relation to the Site or Services – including lawyers, bankers, auditors, and insurers who provide consultancy, banking, legal, insurance and accounting services.
Tax authorities, regulators and other authorities who require reporting of processing activities in certain circumstances.

8. International transfers

Our Services are global and your personal data may be stored and processed in any country where we have operations, our staff are located or where we engage service providers engaged in, among other things, the fulfilment of your order or the provision of support services. This will involve a transfer of your personal data to countries outside of your country of residence, where data protection rules are different from those of your country of residence.

Processing or your personal data will involve a transfer of data to countries outside the European Economic Area (“EEA”), Switzerland or the UK.

We will take all steps reasonably necessary to ensure that your personal data is treated securely and in accordance with this Privacy Policy. In particular this means that your personal data will only be transferred to a country that provides an adequate level of protection (for example, where the European Commission or the UK Data Protection Authority, (“ICO”) has determined that a country provides an adequate level of protection) or where the recipient is bound by standard contractual clauses according to conditions provided by the European Commission or ICO.

9. Data Security

We have taken appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. We limit access to your personal data to those employees, agents, contractors and other third parties who have a business need to know.

Unfortunately, the transmission of information via the Internet is not completely secure. Although we will endeavour to protect your personal data, we cannot guarantee the security of your personal data transmitted to our Site or the Services. Any transmission is at your own risk. Once we have received your personal data, we will use strict procedures and security features to try to prevent unauthorised access.

We also engage with third parties to store the data that we collect from you or third parties. Please note that their privacy and security policies may differ from that of ours. Please refer to the links that is mentioned in “Third party sites and services” for more information.

10. Data retention

We retain the data that we collect from you for as long as it is necessary for us to fulfil the purposes for which it was collected or provided including for the purposes of satisfying any legal, regulatory, tax, accounting or reporting requirements. We may retain your personal data for a longer period in the event of a complaint, if we reasonably believe there is a prospect of litigation in respect to our relationship with you, to comply with law enforcement requests, maintain security, prevent fraud and abuse, resolve disputes, enforce our legal agreements, or fulfil your request to “unsubscribe” from further messages from us.

We will retain the data for as long as we provide access to the Site or Services to you, your account with us remains open or any period set out in any relevant contract you have with us. After you have closed your account or deleted our app for a period of 48 hours, we usually delete personal data.

11. Your rights

Depending on the privacy law of your country you have the following rights.

Right to be informed: you have the right to be informed of the collection and use of your personal data
Right to access: you have the right to view and request for copies of the personal data that you have provided us
Right to rectification: You have the right to request inaccurate or outdated information be corrected or updated
Right to be forgotten/right to erasure: You have the right to ask your personal data be deleted. You have to note that this right is not absolute and may be subject to exemptions under certain laws.
Right to data portability: You have the right to ask for your data to be transferred to another controller or provide to you, in a machine readable, electronic format
Right to restrict processing: you have the right to restrict processing of your personal data
Right to withdraw consent: you have the right to withdraw consent to processing of your personal data. Please note that this may make us unable to serve you with our services.
Right to object to processing: You have the right to object to processing of your personal data. Exercising this right may affect our ability to provide you with our services.
Right to object to automated processing: You have Right to object to automated processing. This may also affect our ability to provide you with our services.

If you wish to exercise any of the above rights, please contact us as set out at the end of this Privacy Policy. We will respond to such queries within 30 days and deal with requests we receive from you, in accordance with the provisions of the applicable Data Protection Law. Occasionally it could take us longer, if your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you updated.

You will not have to pay a fee to access your personal data (or to exercise any of the other rights). However, we may charge a reasonable fee if your request is clearly unfounded, repetitive or excessive. Alternatively, we could refuse to comply with your request in these circumstances.

We may need to request specific information from you to help us confirm your identity and ensure your right to access your personal data (or to exercise any of your other rights). This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it. We may also contact you to ask you for further information in relation to your request to speed up our response.

12. Complaints

If you have any complaints about our use of your personal data, please contact us as set out at the end of this Privacy Policy or contact your local data protection supervisory authority.

13. Appropriate age

Our app and services are intended for the use of people who are major in accordance with the applicable laws and may not be used by anybody who does not meet this criteria.

14. Changes to this privacy policy

Any changes we may make to our Privacy Policy in the future will be posted here and, where appropriate, notified to you by email. Please check back frequently to see any updates or changes to our Privacy Policy.

This Privacy Policy was last updated on 02 March 2023 and this version replaces any other Privacy Policy previously applicable from this date.

15. Contact

If you have any questions, comments, requests or complaints regarding our privacy policy or our privacy practices, kindly reach out to us using the following:

By post: Mozilor Limited, 3 Warren Yard Warren Park, Wolverton Mill, Milton Keynes, MK12 5NW, United Kingdom.

By email: support@webtoffee.com

Cookie	Description
__cfruid	Cloudflare sets this cookie to identify trusted web traffic.
__stripe_mid	Stripe sets this cookie cookie to process payments.
__stripe_sid	Stripe sets this cookie cookie to process payments.
cookielawinfo-checkbox-advertisement	Set by the GDPR Cookie Consent plugin, this cookie is used to record the user consent for the cookies in the "Advertisement" category .
cookielawinfo-checkbox-analytics	Set by the GDPR Cookie Consent plugin, this cookie is used to record the user consent for the cookies in the "Analytics" category .
cookielawinfo-checkbox-necessary	Set by the GDPR Cookie Consent plugin, this cookie is used to record the user consent for the cookies in the "Necessary" category .
cookielawinfo-checkbox-preferences	This cookie is set by the GDPR Cookie Consent plugin to check if the user has given consent to use cookies under the "Preferences" category.
CookieLawInfoConsent	Records the default button state of the corresponding category & the status of CCPA. It works only in coordination with the primary cookie.
PHPSESSID	This cookie is native to PHP applications. The cookie is used to store and identify a users' unique session ID for the purpose of managing user sessions on the website. The cookie is a session cookie and is deleted when all the browser windows are closed.
viewed_cookie_policy	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not a user has consented to the use of cookies. It does not store any personal data.

Cookie	Description
_ga	This cookie is installed by Google Analytics. The cookie is used to calculate visitor, session, campaign data and keep track of site usage for the site's analytics report. The cookies store information anonymously and assigns a randomly generated number to identify unique visitors.
_ga_BQH8MSKD4M	This cookie is installed by Google Analytics.
_gat_gtag	Identification code of website for tracking visits.
_gid	This cookie is installed by Google Analytics. The cookie is used to store information on how visitors use a website and helps in creating an analytics report of how the website is doing. The data collected including the number visitors, the source where they have come from, and the pages visited in an anonymous form.
_hjAbsoluteSessionInProgress	Hotjar sets this cookie to detect the first pageview session of a user. This is a True/False flag set by the cookie.
_hjFirstSeen	Hotjar sets this cookie to identify a new user’s first session. It stores a true/false value, indicating whether it was the first time Hotjar saw this user.
_hjid	Hotjar cookie. This cookie is set when the customer first lands on a page with the Hotjar script. It is used to persist the random user ID, unique to that site on the browser. This ensures that behavior in subsequent visits to the same site will be attributed to the same user ID.
_hjIncludedInPageviewSample	Hotjar sets this cookie to know whether a user is included in the data sampling defined by the site's pageview limit.
_hjIncludedInSample	This cookie is set to let Hotjar know whether that visitor is included in the sample which is used to generate heatmaps, funnels, recordings, etc.
_hjIncludedInSessionSample	Hotjar sets this cookie to know whether a user is included in the data sampling defined by the site's daily session limit.
_hjTLDTest	To determine the most generic cookie path that has to be used instead of the page hostname, Hotjar sets the _hjTLDTest cookie to store different URL substring alternatives until it fails.
CONSENT	YouTube sets this cookie via embedded youtube-videos and registers anonymous statistical data.
has_recent_activity	This cookie is used to signal to the code repository website if the user has browsed other website resources during the current session.
tk_ai	Gathers information for our own first-party analytics tool about how our services are used. A collection of internal metrics for user activity and is used to improve user experience.
tk_lr	This cookie is set by the JetPack plugin on sites using WooCommerce. This is a referral cookie used for analyzing referrer behavior for Jetpack.
tk_or	This cookie is set by the JetPack plugin on sites using WooCommerce. This is a referral cookie used for analyzing referrer behavior for Jetpack.
tk_qs	Gathers information for our own first-party analytics tool about how our services are used. A collection of internal metrics for user activity and is used to improve user experience.
tk_r3d	The cookie is installed by JetPack. Used for the internal metrics for user activities to improve user experience.

Cookie	Description
_fbp	This cookie is set by Facebook to deliver advertisements when they are on Facebook or on a digital platform powered by Facebook advertising after visiting this website.
fr	The cookie is set by Facebook to show relevant advertisements to the users and measure and improve the advertisements. The cookie also tracks the behavior of the user across the web on sites that have Facebook Pixel or Facebook social plugin.
VISITOR_INFO1_LIVE	A cookie set by YouTube to measure bandwidth that determines whether the user gets the new or old player interface.
YSC	YSC cookie is set by Youtube and is used to track the views of embedded videos on Youtube pages.
yt-remote-connected-devices	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt-remote-device-id	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.

Cookie	Duration	Description
_hjSession_1376571	30 minutes	No description
_hjSessionUser_1376571	1 year	No description
_octo	1 year	No description available.
_zendesk_authenticated	past	No description
_zendesk_session	session	No description available.
_zendesk_shared_session	session	No description available.
edd_wp_session	12 hours	No description available.
logged_in	1 year	No description available.
m	2 years	No description available.