Privacy Center
Privacy Policy

Last Updated: 2024-11-25

CITCON USA LLC. (“Citon,” "Company," “we,”) respects your privacy and is committed to protecting it through our compliance with this policy.

Scope

This privacy policy covers individuals who have a business partner relationship with Citcon, such as vendors, corporates, and platforms, when they are using our Service, and also individuals who interact with us in a non-business context, such as browsing our Website at https://citcon.com/ on their own time (Collectively “Services”).

What’s in this policy?

For the individuals described above, this notice explains how we collect, use, and share information from your use of our Services.

Please note that this policy does not apply to information collected through any other website operated by any third party. Additionally, any third-party application or content (including advertisements) that may link to or be accessible from this website is also not covered by this policy. This policy is not intended to override the terms of any contract you have with us, nor any rights you may have under other applicable data privacy laws.

Please carefully review our policy to understand how we handle your information and our corresponding practices. If you do not agree with our policies, you have the option not to use our website. By accessing or using our website, you are indicating your agreement to this privacy policy. If you still have any questions or concerns, please contact us at privacy@citcon-inc.com

What Personal Information We Collect and How We Collect

Personal information, also known as personal data, refers to any information that can be used to identify an individual, either directly or indirectly. Personal information does not include data that has been anonymized or aggregated in such a way that it can no longer be used to identify a specific individual, known as anonymous data. We collect information through different methods, as outlined below.

When you use our Website

We collect information you provide when you interact with our Website. We collect information about you, including:

  • Information you provide to us. We collect information such as name, company name, job title, and business email address from you when you request information (such as through the “Contact Us” page), customer or technical support, or communicate with us in any other way. The contents of your messages or attachments, along with any additional information you provide, may also be associated with your communications and collected by us. We may also reach out to you to participate in surveys, and if you choose to participate, you may be asked to provide certain information, including contact information and other personal details.
  • Through automatic technologies. As you explore and engage with our website, we may utilize automatic data collection technologies to gather specific details about your equipment, browsing behavior, and tendencies, which may include:
    • Usage Information. We collect information regarding your visits to our website, such as traffic data, approximate location data, logs, communication data, and the resources you utilize and access on the website.
    • Device Information. We collect information regarding your computer and internet connection, such as your browser type, operating system, and IP address.
    • For more information about cookies, see our Cookie Policy.

When You Use Our Service as a merchant

When you and your business decide to be a citcon merchant, we might collect your personal information during the following stage:

  • When you apply or sign up for a Citcon account:

    We may collect Identification Information to assign you a merchant account, such as your name, email address, mailing address, phone number, photograph, birthdate, passport, driver’s license, Social Security, taxpayer identification, or other information as required to on-board you and meet applicable legal requirements. We might also gather financial information, including bank account and card numbers, to process payments based on your request. We might also collect your tax Information, including withholding allowances and tax filing status. Some other Information we may collect consists of historical, contact, demographic information, or other details based on fraud and risk assessments.

  • When you upload or send information through our Services:

    After successfully registering as a merchant, you will be asked to provide Products and Services Information about the products and services you sell, including inventory, pricing, and other data. We might gather business-related information about your business, such as appointment schedules and contact data. Compliance information, some of which is required to meet applicable laws and regulations like anti-money laundering laws, will also be part of our collection process. Additionally, we may obtain marketing and communication data through information you provide during communication, promotions, surveys, or other interactions with us. We do not collect information related to communication with third parties, and sensitive data like sexual, genetic, health, religious, racial or ethnic information, or union memberships.

When you use our Services as a shopper

If you are a shopper making a payment to a merchant using our Services to process your payment, we may, through a merchant using our payment processing service, collect, store and process financial and transaction-related personal data about you and your transaction. This may include names, descriptions, amounts, billing, shipping details, devices, and payment methods (including credit card information) involved in transactions. We may also use automatic technology to collect your approximate location information for security purposes. Additionally, we obtain device information, including details such as your device’s hardware model, operating system, unique identifier, mobile network information, interactions with our Services, and identification of other software for anti-fraud and malware-prevention purposes (excluding content from that software). We also track usage information, capturing specifics about how you utilize our Services, such as access time, browser type and language, and your IP address.

How We Use the Information We Collect

We may use information we collect:

  • To provide, maintain, improve, and enhance our Services.
  • To communicate with you, provide you with updates and other information relating to our Services, provide information that you request, respond to comments and questions, and otherwise provide customer support or alerts.
  • To process or record payment transactions or money transfers.
  • To display historical transaction or appointment information.
  • To protect our business and customers from risk and fraud.
  • To personalize your experience on our Services.
  • To protect our rights or property, or the security or integrity of our Services.
  • To enforce the terms of our Terms & Conditions or other applicable agreements or policies.
  • To verify your identity (e.g., some of the government-issued identification numbers we collect are used for this purpose).
  • To investigate, detect, and prevent fraud, security breaches, and other potentially prohibited or illegal activities.
  • For compliance purposes, including enforcing our legal rights, or as may be required by applicable laws and regulations or requested by any judicial process or governmental agency; and
  • For other purposes for which we provide specific notice at the time the information is collected.

How We Share the Information We Collect

We may disclose or share your information in the following ways:

  • With third-party contractors, service providers, and other vendors that support our business. They are bound by confidentiality agreements and may only use personal information for the purposes for which we disclosed it to them.
  • With our subsidiaries and affiliates.
  • With third parties that run advertising campaigns, contests, special offers, or other events or activities in connection with our Services;
  • With other users of our Services with whom you interact through your own use of our Services. For example, we may share information when you make or accept a payment, appointment or money transfer using our Services;
  • To fulfill the purpose for which you provided the information.
  • For any other purpose, we disclosed to you when you provided the information.
  • In connection with a sale, merger, liquidation or other business transfer.
  • With your consent.

We may also disclose your personal information:

  • To comply with any court order, law, or legal process, including government or regulatory requests.
  • If we believe that disclosure is necessary to protect the rights, property, or safety of our company, our customers, or others. This may include exchanging information with other companies and organizations for fraud protection and credit risk reduction.
  • To enforce our terms of use and other agreements, including for billing and collection purposes.

The categories of personal information that we may disclose include information you provide to us, the information we collect automatically, and the information obtained from other sources.

For EU/EEA Users

In such cases where the General Data Protection Regulation (GDPR) is applicable to Citcon in accordance with the law, the information and the rights specified in this section are available to users residing in the EU/EEA region.

The GDPR distinguishes between a “controller” and a “processor” (or similar terms). We are a “controller” for those Services where we make decisions on how personal information is used in connection with our Services, and we are a “processor” for those Services where we only use personal information as allowed by our customers.

Purposes For Which We Will Use Your Personal Data

Below, we describe how we plan to use your personal data and which legal bases we rely on. We have also identified what our legitimate interests are where appropriate.

Note that we may process your personal data for more than one lawful ground depending on the specific purpose for which we are using your data. Please contact us if you need details about the specific legal ground, we are relying on to process your personal data where more than one ground has been set out below:

Purpose/Activity: To contact you directly upon your request.

Type of data: (a) Identity (b) Contact (c) Profile

Lawful basis for processing (including basis of legitimate interest): Necessary for your legitimate interest (to be informed about our product and services.)

Purpose/Activity: To log in to your portal.

Type of data: (a) Identity (b) Contact

Lawful basis for processing (including basis of legitimate interest): (a) Performance of a contract with you; (b) Necessary to comply with a legal obligation; (c)Necessary for your legitimate interests (to login to our portal and use our service)

Purpose/Activity: To manage our relationship with you, which will include: (a) Notifying you about changes to our terms or Privacy Policy, (b) Asking you to leave a review or take a survey.

Type of data: (a) Identity (b) Contact (c) Profile

Lawful basis for processing (including basis of legitimate interest): Performance of a contract with you; Necessary to comply with a legal obligation; Necessary for our legitimate interests (to keep our records updated and to study how customers use our products/services)

Purpose/Activity: To administer and protect our business and this website (including troubleshooting, data analysis, testing, system maintenance, support, reporting and hosting of data).

Type of data: (a) Identity (b) Contact (c) Technical

Lawful basis for processing (including basis of legitimate interest): Necessary for our legitimate interests (for running our business, provision of administration and IT services, network security, to prevent fraud and in the context of a business reorganization or group restructuring exercise); Necessary to comply with a legal obligation.

Purpose/Activity: To use data analytics to improve our website, products/services, marketing, customer relationships, and experiences.

Type of data: (a) Technical (b) Usage

Lawful basis for processing (including basis of legitimate interest): Necessary for our legitimate interests (to define types of customers for our products and services, to keep our website updated and relevant, to develop our business, and to inform our marketing strategy)

Your Rights and Choices

The GDPR provides consumers (EU/EEA residents) with specific rights regarding their personal information. This section describes your GDPR rights. To exercise any of these rights, please contact us at privacy@citcon-inc.com.

  • Access to Personal Information — You have the right to obtain confirmation from us that we process your personal information and, if so, you may have the right to request access to your personal information.
  • Rectification of Personal Information — You have the right to request that we rectify inaccurate personal information concerning you. Depending on the purposes of the processing, you may have the right to have incomplete personal information completed.
  • Erasure/Deletion — You have the right to request us to erase some or all of the personal information concerning you.
  • Restriction of Processing — You have the right to request us to restrict the further processing of your personal information. In such cases, the respective information will be marked as restricted, and may only be processed by us for certain purposes.
  • Object to Processing — You have the right to object, on grounds relating to your particular situation, to the processing of your personal information by us. We may be required to no longer process some or all of your personal information.
  • Object to Direct Marketing — You have the right to object to the processing of personal information for direct marketing purposes.
  • Object to Decision Based Solely on Automated Processing — You have the right not to be subject to a decision based solely on automated processing where the decision has a significant legal impact on you.
  • Data Portability — You have the right to receive a copy of your personal information which you have provided to us, in a structured, commonly used, and machine-readable format, and you have the right to request the transfer of that personal information to another entity without hindrance from us.
  • Withdraw Consent — You have the right to withdraw consent you have provided to us where we rely solely on your consent to process your personal information. You can always provide your consent to us again at a later time. Please note that the withdrawal will not affect the processing of data based on prior consent.
  • Right to Complain — You have the right to lodge a complaint to an applicable supervisory authority or other regulators if you are not satisfied with our responses to your requests or how we manage your personal information. A list of and more information about the EU/EEA Data Protection Authorities can be found here:http://ec.europa.eu/justice/data-protection/bodies/authorities/index_en.htm. We encourage you to first or also reach out to us at privacy@citcon-inc.com, so we have an opportunity to address your concerns directly.

For California Consumers

In such cases where the California Consumer Privacy Act of 2018 (CCPA) and California Privacy Rights Act (CPRA) are applicable to Metafoodx in accordance with the law, the information and the rights specified in this section are available to users residing in California.

We collected the following categories of personal information from consumers within the last twelve (12) months: Identifiers; Personal information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e)); Internet or other similar network activity; Sensory data; and Professional or employment-related information.

The CCPA provides consumers (California residents) with specific rights regarding their personal information. This section describes your CCPA rights. To exercise any of these rights or to appeal a decision regarding a consumer rights request, please contact privacy@sitcon-inc.com, or send a regular mail to:

Attn: Chief Privacy Officer

Citcon USA LLC

2055 Gateway Place, Suite 500

San Jose CA 95110

Access to Specific Information and Data Portability Rights

You have the right to request that the Company disclose certain information to you about our collection and use of your personal information over the past 12 months. Once we receive and confirm your verifiable consumer request, we will disclose to you:

  • The categories of personal information we collected about you.
  • The categories of sources for the personal information we collected about you.
  • Our business or commercial purpose for collecting or sharing that personal information.
  • The categories of third parties with whom we share that personal information.
  • The specific pieces of personal information we collected about you (also called a data portability request).
  • If we disclose your personal information for a business purpose, we will identify the personal information categories that each category of recipient obtained.

Deletion Request Rights

You have the right to request that the Company delete any of your personal information that we collected from you and retained, subject to certain exceptions. Once we receive and confirm your verifiable consumer request, we will delete (and direct our service providers to delete) your personal information from our records, unless an exception applies.

Rights to Opt-out of Selling and Sharing Personal Information

We do not knowingly sell your personal information. Yet, our use of tracking technologies may be considered a “sale”/“sharing” under California law. To opt-out of sale on this website, please send an email to privacy@sitcon-inc.com.

Rights to Limit the Processing of Sensitive Data

In the case we collect sensitive information, you can send an email to privacy@sitcon-inc.com for information on what exact information we have collected from you and how you can exercise your rights on the website.

Non-Discrimination

We will not discriminate against you for exercising any of your CCPA rights. Unless permitted by the CCPA, we will not:

  • Deny you goods or services.
  • Charge you different prices or rates for like-goods or services, including through granting discounts or other benefits, or imposing penalties.
  • Provide you with a different level or quality of like-goods or services.
  • Suggest that you may receive a different price or rate for like-goods or services or a different level or quality of like-goods or services.

Other California Privacy Rights

California’s "Shine the Light" law (Civil Code Section § 1798.83) permits users of our websites, other products, services, and platforms that are California residents to request certain information regarding our disclosure of personal information to third parties for their direct marketing purposes.

Do Not Track

We do not respond to web browser signals and other mechanisms that enable consumers to exercise choice about behavioral tracking (Do-Not-Track).

Data Retention and Security

We will retain your personal data, including any correspondence you have with us, only for as long as necessary for the purpose of this policy, including retaining personal data in order to comply with our legal obligations, to resolve disputes, for information security purposes, and to enforce our legal rights, terms, and policies.

If we do not have a valid reason to continue processing your personal information, we will take one of the following actions: delete or anonymize the information. In cases where deletion or anonymization is not possible, such as when personal information is stored in backup archives, we will store your information securely and isolate it from any further processing until it can be deleted.

We have implemented measures designed to secure your personal information from accidental loss and unauthorized access, use, alteration, and disclosure. In the event that any information under our control is compromised as a result of a breach of security, we will take reasonable steps to investigate the situation and, where appropriate, notify those individuals whose information may have been compromised and take other steps in accordance with any applicable laws and regulations.

Children’s Privacy

Our website is not intended for children under 18 years of age. We do not knowingly collect personal information from children under 18. If you are under 18, do not use or provide any information on this Website. If we learn that we have collected or received personal information from a child under 18, we will delete that information. If you believe we might have any information from or about a child under 18, please contact us at privacy@sitcon-inc.com.

International Transfer

Our Services are hosted in the United States. If you are located in the European Union, please note that we may transfer your data to organizations based in countries that have not been granted an adequacy decision under the General Data Protection Regulation. Where data is transferred to such countries, we shall ensure specific safeguards, such as Standard Contractual Clauses, according to Article 46 of the GDPR. If you are located in the U.S., we may transfer your data from the U.S. to other countries or regions in connection with the storage and processing of data, fulfilling your requests, and operating our Services. By providing any information, including information from or about you or your devices, on or to our Services, you consent to such transfer, storage, and processing.

Changes to This Privacy Policy

This Privacy Policy may be revised from time to time. We will post any adjustments to the Privacy Policy on this page, and the revised version will be effective as of the last updated date. If we materially change the ways in which we use or share information from or about you or your devices previously collected from you through our Services, we will make reasonable efforts to notify you of the changes through our Services, by email, or other communication. The date the privacy policy was last revised is identified at the top of the page.

Contact Information

Please contact our Privacy Department with any questions or concerns regarding this Privacy Policy.

CITCON USA LLC

Address: 2055 Gateway Place, Suite 500, San Jose CA 95110

Email: privacy@citcon-inc.com

Phone: +1-888-254-4887