Privacy Policy

Last updated: September 16, 2025

1. Introduction

stoneee ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our e-commerce financial intelligence platform.

By using stoneee, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

Personal Information

  • Name and email address
  • Company/organization information
  • Billing and payment information
  • Phone number (optional)
  • IP address and device information

Business Information

  • Shopify store data (orders, products, customers)
  • Bank transaction data (when uploaded)
  • Supplier invoices and cost data
  • Financial analytics and reports generated

Technical Information

  • Browser type and version
  • Time zone and location settings
  • Operating system and platform
  • Usage data and analytics

3. How We Use Your Information

We use the collected information for:

  • Providing and maintaining our service
  • Processing your transactions and managing subscriptions
  • Analyzing and predicting costs for your business
  • Sending important updates and notifications
  • Improving our platform and developing new features
  • Providing customer support
  • Detecting and preventing fraud
  • Complying with legal obligations

4. Data Sharing and Disclosure

We do not sell your personal information. We may share your information only in the following situations:

Service Providers

We work with trusted third-party services including:

  • Stripe for payment processing
  • Shopify for store data synchronization
  • Amazon Web Services for hosting
  • SendGrid for email communications

Legal Requirements

We may disclose your information if required by law or in response to valid requests by public authorities.

Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction.

5. Data Security

We implement appropriate technical and organizational measures to protect your data:

  • 256-bit SSL encryption for all data transmissions
  • Encrypted storage of sensitive information
  • Regular security audits and penetration testing
  • Two-factor authentication for all accounts
  • Strict access controls and employee training
  • Regular backups and disaster recovery procedures

6. Data Retention

We retain your information for as long as necessary to provide our services and comply with legal obligations:

  • Active account data: Retained while account is active
  • Financial records: 7 years for tax compliance
  • Backup data: 90 days after deletion
  • Analytics data: 2 years

7. Your Rights

You have the following rights regarding your personal information:

Access and Portability

Request a copy of your personal data in a structured, machine-readable format.

Correction

Request correction of inaccurate or incomplete personal information.

Deletion

Request deletion of your personal information, subject to legal requirements.

Objection

Object to processing of your personal information for marketing purposes.

8. GDPR Compliance

For users in the European Economic Area (EEA), we process personal data based on:

  • Contract: Processing necessary to provide our services
  • Legitimate Interests: Improving our services and preventing fraud
  • Consent: For marketing communications
  • Legal Obligation: Compliance with applicable laws

9. CCPA Compliance

California residents have additional rights under the California Consumer Privacy Act (CCPA):

  • Right to know what personal information is collected
  • Right to delete personal information
  • Right to opt-out of the sale of personal information (we do not sell data)
  • Right to non-discrimination for exercising privacy rights

10. Cookies and Tracking

We use cookies and similar tracking technologies to:

  • Maintain your session and preferences
  • Analyze usage patterns and improve our service
  • Provide security features
  • Remember your login status

You can control cookies through your browser settings. Note that disabling cookies may affect functionality.

11. Children's Privacy

Our service is not intended for users under 18 years of age. We do not knowingly collect information from children under 18.

12. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place for such transfers, including standard contractual clauses approved by the European Commission.

13. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by:

  • Posting the new Privacy Policy on this page
  • Updating the "Last updated" date
  • Sending an email notification for significant changes

14. Contact Us

If you have questions about this Privacy Policy or your personal information, please contact us:

Email: privacy@stoneee.com
Support: support@stoneee.com
Address: stoneee Operations
Data Protection Officer
[Address to be added]

15. Data Protection Officer

For GDPR-related inquiries, you may contact our Data Protection Officer at dpo@stoneee.com