Privacy Policy

Privacy Policy for KortCart

Last Updated: 03/11/2025

1. Introduction

Welcome to KortCart ("we," "our," or "us"). We are committed to protecting your privacy and being transparent about how we collect, use, and protect your personal information. This Privacy Policy explains our practices regarding the collection, use, and disclosure of your information when you use our website and services.

By accessing or using KortCart, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

2.1 Personal Information

We collect personal information that you voluntarily provide to us, including:

Contact Information: Name, email address, phone number
Account Information: Username, password, profile preferences
Billing Information: Payment card details, billing address, transaction history
Communication Data: Messages, support tickets, feedback

2.2 Automatically Collected Information

When you visit our website, we automatically collect:

Device Information: IP address, browser type, device type, operating system
Usage Data: Pages visited, time spent, clickstream data, referring URLs
Location Data: General location based on IP address
Technical Data: Cookie data, error logs, performance metrics

2.3 Information from Third Parties

We may receive information from:

Payment processors (transaction status)
Social media platforms (when you connect accounts)
Marketing partners (campaign performance)
Fraud detection services

3. How We Use Your Information

We use the information we collect for the following purposes:

3.1 Service Delivery

Process and fulfill your orders
Deliver digital products and services
Provide customer support
Manage your account

3.2 Business Operations

Process payments and prevent fraud
Improve our website and services
Develop new products and features
Ensure platform security

3.3 Communication

Send order confirmations and updates
Respond to customer inquiries
Send marketing communications (with consent)
Notify about policy changes

3.4 Legal Compliance

Comply with legal obligations
Enforce our terms and conditions
Protect our rights and property
Prevent fraudulent activities

4. Legal Basis for Processing (GDPR)

If you are in the European Economic Area (EEA), we process your personal data based on:

Contractual necessity: To fulfill our services
Legal obligations: To comply with laws
Legitimate interests: Business operations and security
Consent: For marketing and specific data processing

5. Cookies and Tracking Technologies

5.1 Types of Cookies We Use

Essential Cookies (Required):

Session management
Shopping cart functionality
Security protection

Performance Cookies:

Google Analytics (_ga, _gid)
Site performance monitoring
User behavior analysis

Functional Cookies:

Language preferences
Currency settings
Display preferences

Targeting Cookies:

Facebook Pixel
Advertising optimization
Retargeting campaigns

5.2 Cookie Management

You can control cookies through:

Browser settings
Our cookie consent banner
Opt-out tools for specific services

6. Data Sharing and Disclosure

6.1 Service Providers

We share information with trusted third parties who assist us in:

Payment Processing: Stripe, PayPal, banking institutions
Cloud Services: Hosting, storage, and infrastructure
Analytics: Google Analytics, monitoring tools
Marketing: Email service providers, advertising platforms
Customer Support: Help desk and chat services

6.2 Legal Requirements

We may disclose your information:

To comply with legal obligations
To protect our rights and safety
In connection with business transfers
To prevent fraud or security issues

6.3 International Transfers

Your data may be transferred to and processed in countries outside your residence. We ensure appropriate safeguards through:

Standard contractual clauses
Privacy Shield certification (where applicable)
Adequacy decisions

7. Data Security

We implement comprehensive security measures:

7.1 Technical Measures

SSL/TLS encryption for data transmission
Secure servers with firewalls
Regular security assessments
Access controls and authentication

7.2 Organizational Measures

Employee training on data protection
Confidentiality agreements
Incident response procedures
Regular security audits

7.3 Data Breach Procedures

In the event of a data breach, we will:

Notify affected users within 72 hours
Inform relevant authorities as required
Take immediate steps to mitigate damage
Provide guidance on protective measures

8. Data Retention

We retain your personal data only as long as necessary:

8.1 Retention Periods

Account Data: While account is active + 3 years
Transaction Records: 7 years for tax purposes
Marketing Data: Until consent withdrawal
Support Communications: 3 years from resolution

8.2 Data Deletion

You can request data deletion through:

Account settings (self-service)
Direct request to our support team
GDPR right to erasure requests

9. Your Rights and Choices

9.1 Access and Control

You have the right to:

Access your personal data
Correct inaccurate information
Delete your personal data
Restrict or object to processing
Data portability
Withdraw consent

9.2 Marketing Communications

Opt-out of marketing emails (unsubscribe link)
Adjust notification preferences in account settings
Control cookie preferences through our banner

9.3 Account Settings

Update personal information
Manage communication preferences
Download your data
Deactivate your account

10. Children's Privacy

KortCart is not intended for children under 16:

We do not knowingly collect data from children under 16
Parents can request deletion of children's data
Accounts for minors require parental consent

11. International Users

11.1 GDPR Rights (EEA Users)

Right to access, rectify, and erase data
Right to data portability
Right to restrict processing
Right to object to processing
Right to lodge complaints with authorities

11.2 CCPA Rights (California Users)

Right to know what personal information is collected
Right to delete personal information
Right to opt-out of sale of personal information
Right to non-discrimination for exercising rights

11.3 Other Regions

We comply with privacy laws in all operating regions including:

PIPEDA (Canada)
APP (Australia)
LGPD (Brazil)
Other applicable regulations

12. Third-Party Links and Services

Our website may contain links to third-party sites:

We are not responsible for third-party privacy practices
Review privacy policies of linked sites
External services have their own terms and policies

13. Changes to This Policy

We may update this Privacy Policy:

Changes will be posted on this page with updated date
Significant changes will be notified via email or banner
Continued use after changes constitutes acceptance

14. Contact Information

For privacy-related inquiries, please contact us:

Data Protection Officer
Email: [email protected]
Phone: [Your Phone Number]
Address: [Your Company Address]

Response Time: We aim to respond within 30 days

15. Complaints

If you have concerns about our data practices, you can:

Contact our Data Protection Officer first
Lodge a complaint with your local data protection authority
Seek legal remedies as provided by law

16. Specific Provisions

16.1 Payment Information

Payment card details are processed by PCI-compliant providers
We store only limited payment information for verification
Secure tokenization used for recurring payments

16.2 Digital Product Delivery

Email delivery requires valid email address
Purchase history stored for customer support
Download links may have expiration dates

16.3 Fraud Prevention

We monitor transactions for suspicious activity
May require additional verification for high-risk transactions
Reserve right to cancel suspicious orders

Your Acceptance

By using KortCart, you signify your acceptance of this Privacy Policy. If you do not agree to this policy, please do not use our services.

This Privacy Policy was last updated on 03/11/2025.