Dash to Cart (“we”, “us”, “our”) is committed to protecting your personal data and ensuring transparency in how we collect, use, and safeguard information. By accessing or using our platform, you agree to the practices described in this Privacy Policy.

This Privacy Policy applies to merchants, customers, visitors, and any user interacting with Dash to Cart’s website, dashboard, and services.

1. Data We Collect

We collect different types of data to provide, secure, and improve our services.

1.1 Personal Information

Information that identifies you, such as:

• Name
• Email address
• Phone number
• Billing address
• Payment details (processed securely via Stripe. We do not store card numbers)

1.2 Business and Store Data

Data you provide as part of managing your store:

• Product listings, images, descriptions
• Order, sales, and transaction data
• Customer lists, shipping details, refund records
• Store preferences and configuration

1.3 Usage and Technical Data

Information collected automatically when interacting with the platform:

• IP address, device type, operating system
• Browser information
• Login timestamps, session logs
• Error logs and diagnostic data
• Behavioural analytics, including click paths and feature usage

1.4 Cookies and Tracking Data

Collected through cookies, pixels, and similar technologies for:

• Authentication
• Analytics
• Personalisation
• Advertising and retargeting
• Security and fraud detection

See our Cookie Policy for full details.

2. How We Use Your Data

We process your data for the following purposes:

2.1 Service Delivery

To operate and maintain the platform, including:

• Account creation and management
• Checkout and payment processing
• Order fulfilment and communication
• Store configuration and dashboard features

2.2 Security & Fraud Prevention

To protect users and maintain platform integrity:

• Detect and prevent suspicious behaviour
• Apply Stripe Radar and internal risk controls
• Monitor login and transaction anomalies
• Comply with cybersecurity standards

2.3 Platform Improvement

We use analytics to:

• Understand product usage
• Identify friction points
• Improve speed, stability, and reliability
• Troubleshoot errors and performance issues

2.4 Marketing & Communication

With your consent (where required), we may send:

• Platform updates
• Tips, guides, and education
• Promotions or offers
• Product or feature announcements

You may opt out anytime.

2.5 AI and Machine Learning

We use aggregated or anonymised data to:

• Train recommendation and prediction models
• Improve success fee analytics
• Generate insights such as best-sellers, demand trends, and abandoned cart prompts
• Power automated tools like AI email marketing or product tagging

We do not use personal or business data to train external AI models.

3. Sharing Your Information

Dash to Cart does not sell personal data.

We may share limited data only under these circumstances:

3.1 Service Providers (Processors)

With trusted partners who support:

• Payments (e.g., Stripe)
• Cloud hosting and storage
• Analytics and performance tools
• Email delivery and notifications
• Fraud prevention services

They are contractually required to protect your data.

3.2 Legal and Compliance Requirements

We may disclose data:

• To comply with laws, regulations, or court orders
• To respond to governmental or regulatory requests
• To enforce our Terms of Service

3.3 Business Transfers

If Dash to Cart undergoes a merger, acquisition, restructuring, or asset sale, relevant data may be transferred securely as part of the transaction.

3.4 Merchant-Buyer Transactions

During purchases:

• Buyers’ shipping, contact, and order details are shared with merchants
• Merchants’ business details (e.g., store name, return policy) may be shared with buyers

This is necessary for completing transactions.

4. Data Retention

4.1 How Long We Keep Data

We retain data only as long as necessary to:

• Provide our services
• Meet legal, accounting, or reporting obligations
• Resolve disputes and prevent fraud

4.2 Account Closure

When an account becomes inactive:

• Store data (products, orders, customer lists, media assets) may be deleted after 2 years
• Merchants may request earlier deletion
• Dash to Cart cannot recover deleted data

4.3 Transaction Records

Certain information (e.g., invoices) may be retained for legal or financial compliance.

5. Data Security

We implement security measures aligned with modern SaaS and cybersecurity standards, including:

• Encryption of data in transit (TLS)
• Secure servers and access controls
• Continuous monitoring and logging
• Rate limiting and threat detection
• Regular penetration and vulnerability testing

Despite safeguards, no system is completely risk-free. Users should protect their accounts by:

• Using strong passwords
• Enabling 2FA when available
• Keeping devices secure

6. Cookies and Tracking Technologies

We use cookies and similar technologies to:

• Authenticate sessions
• Protect against fraud
• Analyse performance
• Personalise user experience
• Deliver and optimise ads

Users may manage cookie settings via their browser. Disabling essential cookies may affect platform functionality.

See our Cookie Policy for full details.

7. Your Rights

Under PDPA and applicable laws, you may:

7.1 Access & Correction

Request access to personal data or corrections to inaccuracies.

7.2 Deletion

Request deletion of your personal data, subject to legal or contractual requirements.

7.3 Withdraw Consent

You may withdraw consent for data use, though this may limit your access to certain features.

7.4 Marketing Preferences

Opt out of marketing communications at any time.

7.5 Data Portability (Merchants Only)

Request a structured export of store data (products, orders, customers).

To exercise these rights, contact us using the details below.

8. Cross-Border Data Transfers

We may transfer data to servers or partners located outside Singapore. Such transfers comply with:

• PDPA requirements
• Contractual safeguards
• Equivalent data protection standards (e.g., GDPR Model Clauses where applicable)

9. Third-Party Links

Dash to Cart may contain links to external websites. We are not responsible for their privacy practices, and users should review their policies separately.

10. Children’s Privacy

Our platform is not intended for individuals under 13 years old.
We do not knowingly collect personal data from children. If such data is found, we will delete it promptly.

11. Data Breach Notification

If a data breach occurs, Dash to Cart will:

• Notify affected users as soon as possible
• Inform relevant authorities within legally required timelines (e.g., within 72 hours under GDPR-equivalent standards)
• Take corrective and preventive measures

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When changes occur:

• We will update the “Last Updated” date
• Significant updates may be communicated through email or dashboard notices
• Continued use of our services indicates acceptance of the updated policy

13. Contact Us

If you have any questions or concerns about our Privacy Policy or how we handle your data, feel free to contact us at:

Dash to Cart Support
Email: contact@dashtocart.io
Address: 71 Ubi Rd 1, #06-39 OXLEY BIZHUB, Singapore 408732