Get Started

Privacy Policy & Terms and Agreements

NextShopper Privacy FAQs

NextShopper is committed to helping you understand your data privacy obligations. Here, you’ll find information on our privacy practices and answers to frequently asked questions.

Disclaimer

These Privacy FAQs are for informational purposes only and may change over time. They do not modify any existing agreements with NextShopper and should not be considered legal advice.

GDPR Overview

On May 25, 2018, the General Data Protection Regulation (GDPR) took effect in the European Union. This law aims to protect the privacy and security of personal data for individuals in Europe.

The GDPR imposes specific obligations on organizations to secure personal data, maintain records, and protect data when it’s transferred outside Europe. The GDPR also grants certain rights to individuals. See the “GDPR Rights” section below for more on these rights.

Definitions

GDPR
To clarify GDPR terminology, we’ve provided definitions relevant to your use of NextShopper’s services:

  • Controller: The entity that determines how and why personal data is processed.

    • Example: If you log in to a website and submit data, that website’s organization is likely your controller.

  • Europe: In this context, refers to countries where the GDPR is in effect, including all EU countries, Iceland, Liechtenstein, Norway, and the United Kingdom.

    • Example: The GDPR applies to a Canadian resident in Germany but not to a German resident in Canada.

  • Personal Data: Any information relating to an identifiable individual.

    • Example: If you submit your name along with other personal details, this constitutes personal data.

  • Processor: An entity that processes personal data on behalf of the controller.

    • Example: If a website uses external tools like Microsoft Excel to analyze data, that tool’s provider is the processor.

NextShopper-Specific Definitions

  • Customer: An individual who uses NextShopper to access online services such as web development, SEO, and marketing.
  • Customer End User: An individual providing personal data to a NextShopper Customer via a site or service.

NextShopper’s Relationship to You

NextShopper operates as either a “Controller” or “Processor” of data depending on your relationship with us:

  • If you join our mailing list: NextShopper is the controller of your data.
  • If you publish a site using NextShopper: You, as the Customer, are the controller, while NextShopper serves as the processor for data collected through your site.
  • If you use a site built with NextShopper: NextShopper has no direct relationship with you as an end-user and acts only on the instructions of the Customer who created the site.

Your Obligations as a Customer

Does NextShopper handle my GDPR compliance as a Customer?
No. NextShopper fulfills its legal obligations under the GDPR, but as a Customer, you have your own GDPR responsibilities.

Do I need to make my website GDPR compliant?
Possibly. If you collect personal data from individuals in Europe, the GDPR likely applies. We recommend consulting a legal expert to ensure compliance.

Data Storage and International Transfers

The GDPR requires specific safeguards for personal data exported outside Europe.

  • Where does NextShopper store personal data?
    NextShopper stores customer data in the United States. For a list of subprocessors, visit our Subprocessors page.

  • How does NextShopper legally transfer data from Europe?
    We rely on Standard Contractual Clauses for EU data transfers and follow GDPR requirements.

  • How does NextShopper protect data with subprocessors?
    NextShopper vets all subprocessors to ensure compliance with GDPR requirements before engagement and conducts ongoing reviews.

Security

How does NextShopper secure stored data?
NextShopper uses robust security measures, including encryption and SOC 2 certification. To learn more, visit our Security Center.

GDPR Rights

As a user or customer in Europe, you may have rights concerning your personal data, including:

  • The right to withdraw consent
  • The right to access and correct your data
  • The right to erasure of your data (“right to be forgotten”)
  • The right to data portability
  • The right to restrict processing
  • The right to object to processing
  • The right to object to automated decision-making, including profiling

Please see Section 12 of our EU & Swiss Privacy Policy for more details on these rights.

Can an End User exercise their GDPR rights directly with NextShopper?
No. If we receive a GDPR request from a Customer’s end-user, we’ll inform both the Customer and the end-user but cannot directly fulfill the request.

CCPA Overview

On January 1, 2020, the California Consumer Privacy Act (CCPA) went into effect, providing certain rights to California residents, similar to GDPR.

CCPA Rights

California residents may have rights under CCPA, including:

  • The right to not be discriminated against for exercising CCPA rights
  • The right to request additional information on data collected by NextShopper
  • The right to opt out of data sharing
  • The right to request deletion of data collected, subject to certain exceptions

Can an End User exercise their CCPA rights directly with NextShopper?
No. If we receive a CCPA request from an end-user, we’ll inform both the Customer and end-user but cannot directly fulfill the request.

Additional Questions

For further information about NextShopper’s practices, please contact us:

Email: [email protected]
Phone: +8809697626435
Address: NextShopper, 3 Hasan Nagar Road, Kamrangirchar, Dhaka -1211, Bangladesh

Table of Contents

Review Your Cart
0
Add Coupon Code
Subtotal
Checkout