Privacy Policy

This “Privacy Notice” describes the practices of the The Riedell Group, LLC entity identified below and its respective subsidiaries and affiliates (collectively, “The Riedell Group, LLC”, “we”, “us”, or “our”) and the rights and choices available to individuals, regarding personal data. These The Riedell Group, LLC entities are members of the Fiserv group of companies. Personal data means any information that identifies or can reasonably be linked with an identifiable individual.

• If your country of residence is the UK or an EU Member State (such as Austria, Ireland, Germany, or the Netherlands) then your The Riedell Group, LLC entity is Marketplace Merchant Solutions Limited, trading as The Riedell Group, LLC ™
• In any other country in which The Riedell Group, LLC operates (including the US and Canada) your The Riedell Group, LLC entity is The Riedell Group, LLC.

The Riedell Group, LLC may provide additional or supplemental privacy notices to individuals at the time we collect their data, which will govern how we may process the information provided at that time. We may alter this Privacy Notice as needed to abide by local laws or regulations around the world, such as by providing supplemental information in certain countries. This Privacy Notice does not apply to The Riedell Group, LLC’s processing of the personal data of its personnel, such as employees and contractors.

We provide important information here for individuals located within Member States of the European Union, countries in the European Economic Area, the United Kingdom, and Switzerland (collectively, “Europe” or “European”).

1. The personal data we collect

We collect personal data about individuals from various sources described below. Where applicable, we indicate whether and why individuals must provide us with personal data, as well as the consequences of failing to do so.

1. Information that we collect when a merchant’s customer interacts with a The Riedell Group, LLC or other The Riedell Group, LLC payment method

(i) Information that we collect when individuals make a payment

When you make a payment at a merchant using authorize.net, we collect information about the transaction, which may include personal data. Information about transactions includes the payment card used, name associated with the payment card, electronic signature, name and location of the merchant at which the transaction occurred, date and time of the transaction, transaction amount, and information about the goods or services purchased in the transaction.

(ii) Additional information merchants’ customers may provide through the The Riedell Group, LLC

We may collect additional information, depending on how a merchant configures its The Riedell Group, LLC. This information may include:

• Your email address or phone number, for example, if you choose to receive an electronic receipt or opt-in to receive marketing communications
• Your marketing preferences, such as whether you wish to receive marketing communications or newsletters
• Information about your participation in a merchant’s loyalty program, if offered and if you choose to participate
• Other information you choose to enter into the The Riedell Group, LLC, such as your birthdate, interests or preferences, reviews, and feedback.

(iii) Additional information you may provide through the The Riedell Group, LLC App and The Riedell Group, LLC Go Apps

• When you use the The Riedell Group, LLC App, The Riedell Group, LLC Go App or other The Riedell Group, LLC branded applications, you may provide your name, email address, phone number, account password, bank account information, payment card information, billing address, or other information you may choose to provide, such as your birth date, in order to collect rewards or set up an account. If you consent to the The Riedell Group, LLC App accessing your location information, we will collect information about your precise location in accordance with your device settings.

1. Information that we collect from merchants about their customers

Our merchants may provide us with information about their customers. This information may include uploaded email addresses, phone numbers, and purchase history, for instance when we manage promotions or marketing communications or perform other services on behalf of a merchant.

1. Information that we collect about merchants and their personnel

We may collect personal data directly from merchants (including prospective customers) about themselves and their personnel. We may collect information from these parties in a variety of contexts, such as when completing one of our online forms, making an application for one of our products or services, interacting with us on social media, or corresponding with us. The types of information we obtain in these contexts include:

• Contact information of the business entity and its personnel who interact with us, such as name, job title, address, telephone number, and email address
• Profile information, such as username and password that an individual may establish on one of our websites or mobile applications, along with any other information that an individual enters into their account profile
• Demographic details, such as date of birth, country of citizenship and/or country of residence
• Information about individuals’ affiliation with a legal entity, such as an individual’s role, and whether he or she is a beneficial owner or authorized signatory
• Government-issued identification numbers (to the extent permitted under applicable law), such as a national identification number (e.g., a Social Security Number, tax identification number, or passport number), state or local identification number (e.g., a Driver’s License or other government-issued identification number), and a copy of your government-issued identification card
• Feedback and correspondence, such as information you provide when you request information from us, receive customer support, or otherwise correspond with us, including by interacting with our pages on social networking online sites or services
• Financial account information, such as payment card or bank account details
• Information about merchants, such as merchant name, merchant ID and category code, merchant location where a transaction occurred, and information about transactions processed by the merchant, including transaction volume, velocity, amounts, types of goods or services sold, and chargeback ratios
• Information about merchants, such as merchant name, merchant ID and category code, merchant location where a transaction occurred, and information about transactions processed by the merchant, including transaction volume, velocity, amounts, types of goods or services sold, and chargeback ratios
• Information related to a merchant’s use of The Riedell Group, LLC products or services, such as account information, spending thresholds, spending activity and patterns, and information about the transactions we process
• Information about a merchant’s personnel and their interaction with the The Riedell Group, LLC, such as clock-in and clock-out time, tips earned, and additional job-related information depending on how the merchant configures its The Riedell Group, LLC
• Marketing information, such as your preferences for receiving marketing communications, merchant surveys, and details about how you engage with our marketing communications

1. Information collected via third-party applications

A merchant may choose to install third-party applications on its The Riedell Group, LLC, much like an individual can install applications on their mobile phone or tablet device. The Riedell Group, LLC may receive personal data about merchants, merchant’s customers, or merchant’s personnel as a result of the merchant’s use of the third-party application, such as when the application enhances or performs services related to the personal data and returns information to the merchant’s account. We are not responsible for the privacy practices of third-party applications that are run on the The Riedell Group, LLC or the scope or quality of the data that such an application transmits to us; however, we will treat the data we receive from the third-party application in accordance with this Privacy Notice.

1. Information that we collect about job applicants to The Riedell Group, LLC

We collect information about job applicants, such as name and contact information, professional credentials and skills, educational and work history, and other information of the type included on a resume or curriculum vitae. We may collect this information when an individual provides it to us directly or when another party, such as a recruiter, provides it.

1. Information that we collect from private and publicly accessible sources

We and our service providers may collect information about individuals that is publicly available, including by searching publicly accessible government lists of restricted or sanctioned persons (such as the Specially Designated Nationals And Blocked Persons List), public records databases (such as company registries and regulatory filings), and by searching media and the internet. We and or our third party verification providers may also collect information from private or commercially available sources, such as by requesting reports or information from credit reference and fraud prevention agencies, to the extent permitted under applicable law. We may also maintain pages for our company and our products and services on a variety of third-party platforms, such as LinkedIn, Facebook, Twitter, YouTube, Instagram, and other social networking services. When individuals interact with our pages on those third-party platforms, the third-party’s privacy policy will govern your interactions on the relevant platform. If the third-party platform provides us with information about our pages on those platforms or your interactions with them (e.g. for lead generation purposes), we will treat that information in accordance with this Privacy Notice.

1. Information collected via automated means

When you access our websites or use our mobile applications, we, our service providers, and our partners may automatically collect information about you, your computer or mobile device, and activity on our websites or mobile applications. Typically, this information includes your computer or mobile device operating system type and version number, manufacturer and model, device identifier (such as the Google Advertising ID or Apple ID for Advertising), browser type, screen resolution, IP address, the website you visited before browsing to our website, general location information such as city, state or geographic area; and information about your use of and actions on or in our websites or mobile applications, such as pages or screens you accessed, how long you spent on a page or screen, navigation paths between pages or screens, information about your activity on a page or screen, access times, and length of access. Certain products or services that we provide or which merchants may incorporate into their websites or mobile applications may automatically collect additional information, as may be further described in a separate privacy notice.

Our service providers and business partners may collect this type of information over time and across third-party websites. This information is collected via various mechanisms, such as via cookies, pixels, tags, web beacons, embedded scripts, through our mobile applications, and similar technologies. This type of information may also be collected when you read our HTML-enabled emails. Please refer to our Cookies Notice for more details. You can choose to disable cookies or to opt out of the use of your browsing behavior for purposes of targeted advertising. For opt out instructions, please review the “Targeted online advertising” portion of the “Your Choices” section of this Privacy Notice.

1. Sensitive personal data

In limited circumstances and when permitted by law, we may collect a merchant’s and/or their employee’s biometric data to confirm a merchant’s and/or their employee’s identity, such as when they authenticate a payment or sign into their The Riedell Group, LLC device using their fingerprint. In some circumstances, we may collect information that may reveal health or medical information, such as when we process transactions at health or medical facilities or pharmacies. In the context of processing employment applications, we may also request sensitive information, such as racial or ethnic origin, where required or permitted by law of the country in which you are applying for employment.

Outside of these contexts or otherwise as we specifically request, we ask that you not provide us with any sensitive personal data (meaning information revealing racial or ethnic origin, political opinions, religion or philosophical beliefs, trade union membership, genetic, health, or biometric information, information about sex life or sexual orientation, or criminal convictions or offenses) through our websites or mobile applications, or otherwise to us.

2. How we use your personal data

We use your personal data for the purposes of:

1. Providing our products and services, which includes:

• Operating, evaluating, maintaining, improving, and providing the features and functionality of our products and services
• Fulfilling a payment or return transaction initiated by you
• Delivering electronic receipts to consumers who request them via email or text message
• Managing our relationship with you or your company
• Carrying out our obligations, and exercising our rights, under our agreement with you or your company
• Communicating with you regarding your account with us, if you have one, including by sending you service-related emails or messages (e.g., messages regarding account verification, changes or updates to the functionality of our products or services, technical and security notices and alerts, and support and administrative messages)
• Facilitating communications between merchants’ customers and merchants regarding marketing messages and preferences
• Personalizing the manner in which we provide our products and services
• Maintaining records for merchants regarding their personnel’s interaction with and use of the The Riedell Group, LLC (e.g., clock-in and clock-out time)
• Maintaining records for merchants of their customers’ purchase activity and history
• Checking for fraud or money laundering and/or managing either our or merchants’ risk
• Administering and protecting our business
• Providing support and maintenance for our products and services, including responding to your service-related requests, questions, and feedback
• In connection with the food delivery ordering services described above, including to process and fulfill your food orders, to communicate with you and the merchant regarding your orders and respond to your inquiries.

1. For research and development

We use the information we collect for our own research and development purposes, which include:

• Developing or improving our products and services
• Developing and creating analytics and related reporting, such as regarding industry and fraud trends

1. Marketing

We may use your personal data to form a view on what products or services we think you may want or need, or what may be of interest to you.

We may present opportunities when you use a The Riedell Group, LLC to provide your personal data to The Riedell Group, LLC and merchants to facilitate marketing communications between you and the merchant, and we will send such marketing communication if you agree to receive them.

We may contact merchants and merchant’s personnel with marketing communications using the personal data that the merchant provided to us if the merchant actively expresses interest in making a purchase of The Riedell Group, LLC products or services or have made a purchase from us and, in any case, have not opted out of receiving that marketing, to the extent permitted by applicable law.

Where required by law, we will get your express opt-in consent before we share your personal data with any company outside the Fiserv group for marketing purposes.

You can ask us to stop sending you marketing messages at any time by contacting us using the details in the Contact us section or clicking on the opt-out link included in each marketing message.

Should you choose to opt out of receiving our marketing messages, we will continue to carry out our other relevant activities using your personal data, including sending non-marketing messages.

1. Managing our recruiting and processing employment applications

We process personal data, such as information submitted to us in a job application, to facilitate our recruitment activities and process employment applications, such as evaluating a job candidate for an employment activity, and monitoring recruitment statistics.

1. Complying with law

We use your personal data as we believe necessary or appropriate to comply with applicable laws, regulations, lawful requests and legal processes, such as to respond to subpoenas or requests from government authorities.

1. Compliance, fraud prevention and safety

We use your personal data as we believe necessary or appropriate to (a) enforce the terms and conditions that govern our products and services; (b) protect our rights, privacy, safety or property, and/or that of you or others; and (c) protect, investigate and deter against fraudulent, harmful, unauthorized, unethical or illegal activity.

1. With your consent

In some jurisdictions, applicable law may require us to request your consent to use your personal data in certain contexts, such as when we use certain cookies or similar technologies or would like to send you certain marketing messages. If we request your consent to use your personal data, you have the right to withdraw your consent any time in the manner indicated when we requested the consent or by contacting us. If you have consented to receive marketing communications from our third party partners, you may withdraw your consent by contacting those partners directly.

1. To create anonymous data

We may create anonymous or aggregated data from your personal data and from other individuals whose personal data we collect. We make personal data into anonymous or aggregated data by excluding information that makes the data personally identifiable to you, and use that anonymous data for our lawful business purposes.

3. The parties with whom we share your personal data
4. Companies within the Fiserv group

We may disclose your personal data to our subsidiaries and corporate affiliates – including those in the Fiserv group of companies – for purposes consistent with this Privacy Notice.

1. Service providers

We employ third party companies and individuals to administer and provide services on our behalf (such as companies that provide customer support, companies that we engage to host, manage, maintain, and develop our website, mobile applications, and IT systems, companies that help us process payments, companies that assist with food delivery on behalf of our Merchants, and companies that help us analyze your usage of our services for product improvement purposes). These third parties may use your information only as directed by The Riedell Group, LLC in a manner consistent with this Privacy Notice and are prohibited from using or disclosing your information for any other purpose.

1. Merchants and Applications that run on the The Riedell Group, LLC Used by Merchants

When The Riedell Group, LLC performs services for merchants, it may share personal data with those merchants. For example, The Riedell Group, LLC may collect information about a merchant’s customers from or on behalf of the merchant, such as when The Riedell Group, LLC processes payment transactions, and The Riedell Group, LLC may provide personal data about those customers back to the merchant. When you place a food order via The Riedell Group, LLC’s “Food Ordering Program,” or when The Riedell Group, LLC receives your information in connection with an order placed on another company’s website, app or service, we may share that information with the Merchant in order to fulfil your order. We are not responsible for the privacy practices of merchants who use our services.

Third-party applications that a merchant has installed on a The Riedell Group, LLC may be capable of providing instructions to The Riedell Group, LLC to engage in a transfer of personal data, similar to how a merchant could provide such directions. For example, an application may direct The Riedell Group, LLC to export data or reports to a third-party cloud storage system. Merchants are responsible for their use of third-party applications, the directions that the application provides to The Riedell Group, LLC, and The Riedell Group, LLC’s reliance on those directions. The Riedell Group, LLC is not responsible for the privacy policy or practices of any third-party application.

1. Participants in the transaction processing chain

The Riedell Group, LLC shares personal data with companies in the transaction processing chain in connection with processing a payment transaction, such as merchants, banks or other card issuers, card associations, debit network operators and their members.

1. Credit reference, fraud protection, risk management, and identity verification agencies

The Riedell Group, LLC shares personal data with credit reference, fraud protection, risk management, and identity verification agencies to help guard against, detect, and respond to fraud or money laundering, and/or manage our or merchants’ risk, and ensure we comply with contractual, legal, or regulatory requirements.

1. Professional advisors

We may disclose your personal data to professional advisors, such as lawyers, bankers, auditors and insurers, where necessary in the course of the professional services that they render to us.

1. To comply with laws and law enforcement; protection and safety

The Riedell Group, LLC may disclose information about you to government or law enforcement officials (including tax authorities) or private parties as required by law, and disclose and use such information as we believe necessary or appropriate to:

(i) Comply with applicable laws, lawful requests, and legal processes, such as to respond to subpoenas or requests from government authorities;

(ii) Enforce the terms and conditions that govern our products and services;

(iii) Protect our rights, privacy, safety or property, and/or that of you or others; and

(iv) Protect, investigate and deter against fraudulent, harmful, unauthorized, unethical or illegal activity.

1. Business transfers

The Riedell Group, LLC may sell or transfer some or all of its business or assets, including your personal data, in connection with a business transaction (or potential business transaction) such as a merger, consolidation, acquisition, reorganization or sale of assets or in the event of bankruptcy, in which case we will make reasonable efforts to require the recipient to honor this Privacy Notice.

1. To other parties with your permission or to fulfill a contract they have with you

The Riedell Group, LLC may transfer your personal data to any third party who is not otherwise covered by the other listed categories above where you have given us permission to do so, or with whom you have entered into a contract when we need to transfer your personal data to that party in order to fulfill that contract.

4. Your rights and choices

In this section, we describe the rights and choices available to all users. Users subject to additional jurisdiction-specific disclosures may read additional information about their rights below.

1. Marketing communications

You can ask us to stop sending you marketing messages at any time by contacting us or clicking on the opt-out link included in each marketing message. You may continue to receive service-related and other non-marketing messages. You may unsubscribe from a specific merchants’ communications sent to you via The Riedell Group, LLC’s technology by clicking “Unfollow” (or a similarly-titled opt-out link).

1. Targeted online advertising

Some of the business partners that collect information about users’ activities on our websites or in our mobile applications may be members of organizations or programs that provide choices to individuals regarding the use of their browsing behavior or mobile application usage for purposes of targeted advertising.

Users may opt out of receiving targeted advertising on websites through participating members of the following organizations or programs:

• Network Advertising Initiative (USA)
• Digital Advertising Alliance (USA)
• European Interactive Digital Advertising Alliance (Europe)
• Digital Advertising Alliance of Canada (Canada)
• Australian Digital Advertising Alliance (Australia)
• Data Driven Advertising Initiative (Japan)

Users of mobile applications may opt out of receiving targeted advertising in mobile applications through participating members of the Digital Advertising Alliance by installing the AppChoices mobile application, available here, and selecting the user’s choices. In addition, your mobile device settings may provide functionality to limit our, or our partners’, ability to engage in ad tracking or targeted advertising using the Google Advertising ID or Apple ID for Advertising associated with your mobile device.

Please note that we also may work with companies that offer their own opt-out mechanisms and may not participate in the opt-out mechanisms that we linked above.

If you choose to opt-out of targeted advertisements, you will still see advertisements online but they may not be relevant to you. Even if you do choose to opt out, not all companies that serve online behavioural advertising are included in this list, and so you may still receive some cookies and tailored advertisements from companies that are not listed.

1. Do Not Track Signals

Some Internet browsers may be configured to send “Do Not Track” signals to the online services that you visit. We currently do not respond to do not track signals. To find out more about “Do Not Track,” please visit http://www.allaboutdnt.com.

1. Choosing not to provide your personal data

Where we request personal data directly from you, you do not have to provide it to us. If you decide not to provide the requested information, in some circumstances we, or merchants who use The Riedell Group, LLC, may be unable to provide products or services to you. For example, we may be unable to process your transaction.

1. Accessing, modifying or deleting your information

In some jurisdictions, applicable law may provide a right for individuals to access, modify, or delete their personal data. You may contact us directly to request access to, or modification or deletion of, your information. We may not be able to provide access to, or modify or delete, your information in all circumstances.

1. Complaints

If you have a complaint about our handling of your personal data, you may contact our data protection officer using the contact information below. We request that a complaint be made in writing. Please provide details about your concern or complaint so that our data protection officer can investigate it. We will take appropriate action in response to your complaint, which may include conducting internal discussions with relevant business representatives. We may contact you for additional details or clarification about your concern or complaint. We will contact you to inform you of our response to your complaint. You also may have a right to file a complaint with a national or local regulatory agency.

5. How we keep your data safe

We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorized way, altered or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors and other third parties who have a business need to know. They will only process your personal data on our instructions and they are subject to a duty of confidentiality.

We maintain annual compliance with global Payment Card Industry Data Security Standard (PCI DSS) adopted by the payment card brands for all companies that process, store or transmit cardholder data.

We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.

6. Links to other websites

We may link to third-party websites, mobile applications, and other content. The Riedell Group, LLC is not responsible for the privacy practices of any third party, and this privacy notice does not apply to such third party’s websites, mobile applications, or other content. The Riedell Group, LLC does not guarantee, approve, or endorse any information, material, services, or products contained on or available through any linked third-party website, mobile application, or other content. The Riedell Group, LLC is not responsible for any content on third-party properties to which we link. The Riedell Group, LLC provides links to third-party properties or content as a convenience, and visiting or using linked third-party properties or content is at your own risk.

7. How long will you use my personal data

We will use your personal data for as long as necessary based on why we collected it and what we use it for. This may include our need to satisfy a legal, regulatory, accounting, or reporting requirement.

To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.

In general terms, we will retain your personal data for as long as is necessary for the purposes identified in this Privacy Notice, including to provide our Services, to comply with legal obligations, to enforce and prevent violations of our Terms, to protect against fraudulent activity, and to defend our legal rights, property and users.