Our website address is: https://tipo.io.
Protecting your privacy is important to Tipo.io (“Tipo”)
Tipo provides services and develops software to help merchants sell better or more efficiently online through various platforms, such as Shopify. Tipo has adopted this Privacy Statement to guide you through the collection, use, retention, and disclosure of Personally Identifiable Information (“Personal Data”, as further described below) that you may provide while using Tipo websites, apps, and services in connection with these platforms (collectively referred to as “Services”). Tipo encourages you to read this Privacy Statement, as well as our Terms and Conditions of Use, in order to understand how we collect and process Personal Data in the course of providing the Services and your interaction with the Services.
By using the Services, you consent to the collection, use, retention, and disclosure of your Personal Data for processing as described in, and subject to the limitations set out in, this Privacy Statement.
Note to Residents of the European Union: In order to comply with the requirements of the European General Data Protection Regulation (GDPR) for our European users, this Privacy Statement outlines the legal basis on which we process your Personal Data and provides other information required by the GDPR.
Personal Data is any information that would identify a person directly, or indirectly in combination with data from other sources. For example, a full name, home or work address, phone number, national identification number (SSN, SIN, etc.), email address, banking details, IP address, biometric data, usage data, or any information that may individually identify a person.
Tipo may collect Personal Data including without limitation your name, shipping and billing addresses, phone number, email address, payment information, IP address, and device identifiers and/or geolocation information, in the course of its Services, and may use or disclose that Personal Data as described with this Privacy Statement.
Tipo may also create de-identified or anonymized data from Personal Data by excluding data components (such as your name, email address, etc.) that makes the data able to personally identify you, through obfuscation, or through other means. In addition, Tipo may collect and use aggregated, anonymous information to provide data about the Services to advertisers, potential business partners and other unaffiliated entities. As this information does not identify a person, and is therefore not Personal Data, Tipo’s use of such aggregated, anonymized and/or de-identified data is not subject to this Privacy Statement.
If you use a Tipo website, or conduct a transaction through a Tipo Service where Personal Data is essential, your consent is implied to collect and use your Personal Data to facilitate that use or complete that transaction requested or initiated by you only. Examples of instances in which Personal Data may be collected by Tipo are, but are not limited to:
During these instances, we may collect data such as, but not restricted to: areas of the Services or Tipo websites you visit, transaction type(s) you engage in or request (and amounts thereof), content you view, your IP address, data downloaded or submitted by you, payment information provided by you, shipping and billing information entered by you, as well as the nature, quantity and price of the goods or services you exchange and the individuals or entities with whom you communicate or transact business using the Services.
In the event Tipo requests Personal Data for scenarios independent of the above, such as marketing-related questions via questionnaires, surveys, and profile data, it will include a specific consent request. The consent request will include a clear purpose and goal for the collection of Personal Data, along with a means of withdrawing consent. In these scenarios, we may ask for data such as, but not limited to: your contact information (name, telephone numbers, email address, mailing address), date of birth, product and/or cosmetic concerns, which brands and products you use, user authentication and security information (e.g. username and password).
If at any point you wish to withdraw consent to Personal Data collection, please contact the Tipo Privacy Officer via the Contact & Questions area at the bottom of this Privacy Statement. Please note that certain Services may only be able to be offered or provided to you if you disclose the Personal Data necessary to facilitate those Services, and therefore Tipo may not be able to provide you with certain Services in the event that you choose not to disclose that Personal Data to Tipo.
The Services offered by Tipo are directed towards and designed for the use of persons above the age of majority in your province, state, or country. Persons under the age of majority are not permitted to use the Services on their own, and Tipo will not approve applications of, or establish, or maintain accounts or memberships for, any persons below their respective region’s age of majority.
Tipo does not solicit or knowingly collect Personal Data from persons below the age of majority of their region. If we discover we have received Personal Data of a person below the age of majority, we will delete such information from our systems. Additionally, if a parent or legal guardian believes that Personal Data regarding a minor in their care has been provided to Tipo, they may request the minor’s information be corrected or deleted by contacting the Tipo Privacy Officer via the Contact & Questions area at the bottom of this Privacy Statement.
When you interact with a Tipo Service, similar to most other websites, apps, and online services, certain anonymous technical information about your visit is automatically logged and collected by Tipo. This may include information about the type of browser you use, operating system, the date and time you access the Service, the links you accessed while using the Service, and the internet address of the website, if any, which linked directly to the Tipo Service. This information is used for system administration purposes such as diagnosing problems with Tipo’s Services, servers and websites, compiling aggregated and statistical information, and to improve the operation and content of Tipo’s websites and Services. It is not personally identifiable, and is not considered Personal Data and subject to this Privacy Statement.
Tipo may use collected Personal Data for such purposes as:
Personal Data will only be retained by Tipo for the length of time required to fulfill the purpose or complete the transaction for which it was collected, or as may be required by law. Beyond that point, Personal Data in the possession or control of Tipo will be anonymized or securely destroyed.
On this website, the controller has integrated components of the enterprise Facebook. Facebook is a social network.
A social network is a place for social meetings on the Internet, an online community, which usually allows users to communicate with each other and interact in a virtual space. A social network may serve as a platform for the exchange of opinions and experiences, or enable the Internet community to provide personal or business-related information. Facebook allows social network users to include the creation of private profiles, upload photos, and network through friend requests.
The operating company of Facebook is Facebook, Inc., 1 Hacker Way, Menlo Park, CA 94025, United States. If a person lives outside of the United States or Canada, the controller is the Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.
With each call-up to one of the individual pages of this Internet website, which is operated by the controller and into which a Facebook component (Facebook plug-ins) was integrated, the web browser on the information technology system of the data subject is automatically prompted to download display of the corresponding Facebook component from Facebook through the Facebook component. An overview of all the Facebook Plug-ins may be accessed under https://developers.facebook.com/docs/plugins/. During the course of this technical procedure, Facebook is made aware of what specific sub-site of our website was visited by the data subject.
If the data subject is logged in at the same time on Facebook, Facebook detects with every call-up to our website by the data subject—and for the entire duration of their stay on our Internet site—which specific sub-site of our Internet page was visited by the data subject. This information is collected through the Facebook component and associated with the respective Facebook account of the data subject. If the data subject clicks on one of the Facebook buttons integrated into our website, e.g. the “Like” button, or if the data subject submits a comment, then Facebook matches this information with the personal Facebook user account of the data subject and stores the personal data.
Facebook always receives, through the Facebook component, information about a visit to our website by the data subject, whenever the data subject is logged in at the same time on Facebook during the time of the call-up to our website. This occurs regardless of whether the data subject clicks on the Facebook component or not. If such a transmission of information to Facebook is not desirable for the data subject, then he or she may prevent this by logging off from their Facebook account before a call-up to our website is made.
The data protection guideline published by Facebook, which is available at https://facebook.com/about/privacy/, provides information about the collection, processing and use of personal data by Facebook. In addition, it is explained there what setting options Facebook offers to protect the privacy of the data subject. In addition, different configuration options are made available to allow the elimination of data transmission to Facebook, e.g. the Facebook blocker of the provider Webgraph, which may be obtained under http://webgraph.com/resources/facebookblocker/. These applications may be used by the data subject to eliminate a data transmission to Facebook.
On this website, the controller has integrated the component of Google Analytics. Google Analytics is a web analytics service. Web analytics is the collection, gathering, and analysis of data about the behavior of visitors to websites. A web analysis service collects, inter alia, data about the website from which a person has come (the so-called referrer), which sub-pages were visited, or how often and for what duration a sub-page was viewed. Web analytics are mainly used for the optimization of a website and in order to carry out a cost-benefit analysis of Internet advertising.
The operator of the Google Analytics component is Google Inc., 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, United States.
The purpose of the Google Analytics component is to analyze the traffic on our website. Google uses the collected data and information, inter alia, to evaluate the use of our website and to provide online reports, which show the activities on our websites, and to provide other services concerning the use of our Internet site for us.
Google Analytics places a cookie on the information technology system of the data subject. The definition of cookies is explained above. With the setting of the cookie, Google is enabled to analyze the use of our website. With each call-up to one of the individual pages of this Internet site, which is operated by the controller and into which a Google Analytics component was integrated, the Internet browser on the information technology system of the data subject will automatically submit data through the Google Analytics component for the purpose of online advertising and the settlement of commissions to Google. During the course of this technical procedure, the enterprise Google gains knowledge of personal information, such as the IP address of the data subject, which serves Google, inter alia, to understand the origin of visitors and clicks, and subsequently create commission settlements.
The cookie is used to store personal information, such as the access time, the location from which the access was made, and the frequency of visits of our website by the data subject. With each visit to our Internet site, such personal data, including the IP address of the Internet access used by the data subject, will be transmitted to Google in the United States of America. These personal data are stored by Google in the United States of America. Google may pass these personal data collected through the technical procedure to third parties.
The data subject may, as stated above, prevent the setting of cookies through our website at any time by means of a corresponding adjustment of the web browser used and thus permanently deny the setting of cookies. Such an adjustment to the Internet browser used would also prevent Google Analytics from setting a cookie on the information technology system of the data subject. In addition, cookies already in use by Google Analytics may be deleted at any time via a web browser or other software programs.
Further information and the applicable data protection provisions of Google may be retrieved under https://www.google.com/intl/en/policies/privacy/ and under http://www.google.com/analytics/terms/us.html. Google Analytics is further explained under the following Link https://www.google.com/analytics/.
Data protection law in the European Union requires a “lawful basis” for collecting and retaining Personal Data from citizens or residents of the European Economic Area. Tipo collects and processes your Personal Data for a variety of purposes outlined in this Privacy Statement. In certain cases, separate consent to this processing is not required, including:
In some cases, Tipo will ask for your consent to process your Personal Data. You may indicate your consent in a number of ways, including, as may be presented by Tipo and permitted by law, ticking a box (or equivalent action) to indicate your consent when providing us with your Personal Data through our Services or a form, or registering or creating an account with us. Note that certain country/region-specific rules regarding consent may also apply, depending upon the jurisdiction in which you reside.
Tipo maintains reasonable physical, technical, and administrative security measures to minimize the risk of unauthorized loss, theft, copying, misuse, access, disclosure, alteration, or destruction of your Personal Data.
If transactions are offered as part of a Tipo Service, transaction information is transmitted to and from Tipo in encrypted form using industry-standard Secure Socket Layer (SSL) connections to help protect such information, including Personal Data transmitted in the course of these transactions, from interception.
Tipo also restricts access to your Personal Information to only those persons who have a legitimate business need or legal requirement to view it in connection with the Services. You, as a Personal Data owner, may also authorize any persons you may choose to have access to your Personal Data.
Although Tipo does utilize security measures appropriate to the level of risk, no method of data transfer or storage on the internet is 100% secure and security risks cannot be eliminated entirely. As such, Tipo cannot guarantee perfect security, integrity, or confidentiality of Personal Data.
Tipo maintains a security incident response protocol to be put in place in the event that the security of your Personal Data in the possession or control of Tipo is compromised. In the event of a data breach or security incident involving the Services, Tipo will apply this protocol to enable Tipo to effectively and efficiently respond to, and contain, the breach or incident. Tipo may also seek to notify you in such event. If notification is appropriate or required, Tipo may notify you by email, messaging to your device, or other reasonable means.
Tipo does not provide Personal Data to unaffiliated third parties for their use in marketing directly to you. We may use unaffiliated companies, or trusted third party service providers, to help maintain and operate our Services for reasons related to our business operations and to better serve you, and those companies may receive your Personal Data for that purpose. For example, Tipo may use third party payment processor services in connection with the Services and its websites, and the payment information that you provide to Tipo may be disclosed to and used by these payment processors for the purposes of completing and executing transactions requested or initiated by you. When Tipo shares Personal Data with third-party services that support our delivery of the Services, we require that they use your Personal Data only for the purposes we’ve authorized, and that they protect your Personal Data to at least the same standards used by Tipo.
As part of agreements with merchants who have installed Tipo Apps and the execution of transactions on behalf of merchants that make use of Tipo Apps in connection with their online stores, we may disclose Personal Data which has been collected by us that is specific to that merchant’s store and your transactions in connection therewith.
Tipo may also disclose Personal Data about you in connection with legal requirements, such as in response to an authorized subpoena, governmental request or investigation, or as otherwise permitted by applicable law (including, without limitation, to prevent fraud or abuse, or to protect Tipo’s legal rights, property, or the safety of Tipo, its employees, users or others).
Finally, as Tipo’s business develops, it may sell or buy corporate assets, and in such transactions Personal Data may be one of the transferred business assets. If Tipo, its internet businesses, or substantially all of its shares or assets, is acquired or an acquisition is contemplated, Personal Data may be one of the assets assessed or transferred in connection with that transaction.
A list of Data Processors engaged by Tipo who may receive Personal Data is available here. New processors will be added to this list 30 days prior to being integrated into our Services. If you are subject to the GDPR and have objections to a Data Processor addition please contact the Tipo Privacy Officer via the Contact & Questions area at the bottom of this Privacy Statement. Objections to Data Processors may impact the Services which can be offered or provided to you by Tipo.
If you believe your Personal Data has been disclosed other than as described in this Privacy Statement, please contact the Tipo Privacy Officer via the Contact & Questions area at the bottom of this Privacy Statement.
The Personal Data Tipo processes, and associated Services and systems, may be housed on servers in various locations where Tipo maintains servers or facilities, the United States, and the EU. Please be aware that Personal Data we collect may be processed and stored in one or more of these locations. The data protection and privacy laws in these locations may offer a different level of protection than in your country/region, however, as noted earlier in this Privacy Statement, Tipo takes steps, including through contracts, intended to ensure that the Personal Data it collects continues to be protected wherever it is located in a manner consistent with the standards of protection required under applicable law.
Where Personal Data is transferred from the European Economic Area to a country that has not received an adequacy decision by the European Commission, Tipo relies on appropriate safeguards, such as for example the European Commission-approved Standard Contractual Clauses and EU-U.S. Privacy Shield Frameworks, to transfer the Personal Data. By using our Services and submitting your Personal Data, you agree to the transfer, storage, and/or processing of your Personal Data in the locations contemplated above. Where and as required, we will seek your explicit consent as outlined in this Privacy Statement.
The Tipo websites, or the third party companies used to host, operate, or maintain these websites, may place a “cookie” on your computer in order to allow you to use these websites and to personalize your experience.
A “cookie” is a small piece of data, or an alphanumeric identifier, that can be sent by a web server to your computer or device, which then may be stored by your browser on your computer or device. Cookies allow Tipo to recognize your computer or device while you are on our websites and help customize your online experience and make it more convenient for you. Cookies are also useful in allowing more efficient log-in for users, tracking transaction histories, and preserving information between browsing sessions. The information collected from cookies may also be used to improve website functionality.
Most web browsers have features that can notify you when you receive a cookie or prevent cookies from being sent. If you disable cookies, however, you may not be able to use certain personalized functions of Tipo websites.
Tipo is committed to ensuring you retain full access to and control of your Personal Data. To that end, we endeavor to respect your right to be informed regarding the collection, use and disclosure of Personal Data, and your right of correction and access to it, via this Privacy Statement.
If you would like to access, correct, remove, request a copy of, withdraw consent to collection of your Personal Data, or are looking for any additional information on how your Personal Data may be collected, used or disclosed by Tipo, please contact the Tipo Privacy Officer via the Contact & Questions area at the bottom of this Privacy Statement. Subject to certain exceptions and limitations that may be prescribed by applicable law, you will be provided with reasonable access to your Personal Data, and will be entitled to have it amended or corrected as appropriate.
In certain circumstances, you may have the right to have your Personal Data, or certain components of your Personal Data, erased by Tipo, to have your Personal Data moved, copy or transmitted from Tipo’s systems to other systems, or to object to or restrict certain processing of your Personal Data by Tipo. In the event that you wish to inquire about, or seek to exercise any of these rights (as they may be applicable), please contact Tipo’s Privacy Officer.
Tipo Services may contain links to other websites, apps, or services, including those of advertisers or third party content providers who offer downloads as part of a Tipo Service. Tipo is not responsible for the privacy practices or the content of other websites, apps, or services. We encourage you to read the privacy statements published by such third parties before divulging your Personal Data to them.
Tipo reserves the right to modify or supplement this Privacy Statement in its discretion, at any time. If a material change to the terms of this Privacy Statement is made, we will post a notice to our Blog and a link to the new or amended Privacy Statement. The collection, use and disclosure of your Personal Data by Tipo will be governed by the version of this Privacy Statement in effect at that time. Your continued use of Tipo’s websites and/or Services subsequent to any changes to this Privacy Statement will indicate your consent to the collection, use and disclosure of your Personal Data in accordance with the amended Privacy Statement.
If you have any questions or comments regarding this Privacy Statement or any aspects of Tipo Services, please contact the Tipo Privacy Officer at firstname.lastname@example.org
Subject to applicable law, if you are a citizen or resident of the European Economic Area, you also have the right to (i) object to Tipo’s use of your Personal Data and (ii) lodge a complaint with your local data protection authority.