Privacy Policy

Version: 2021-12-10 

Please carefully read this document before you access and use Eshipper Website and  Services.

1. Introduction

This Privacy Policy describes our privacy and data protection practices in connection with this Website (https://www.eshipper.com) and Services as well as the rights available to you with respect to your Personal Information.

This Website is owned and operated by Canada Worldwide Services Inc, a company incorporated under The Canada Business Corporations Act, with main offices at 9 Van Der Graaf Ct, Brampton, Ontario, L6T 5E5, Canada (hereinafter collectively referred to as “eShipper" and/or “We” and/or “Us”).

We guarantee that your Personal Information is protected by all privacy and data protection rights under the Personal Information Protection and Electronic Documents Act (PIPEDA) in force in Canada, as well as by the California Consumer Privacy Act (CCPA) and California Online Privacy Protection Act (CalOPPA), along with the Children’s Online Privacy Protection Act (COPPA) and the CAN-SPAM Act of 2003, applicable in the United States of America; and the General Data Protection Regulation (GDPR) approved by the European Parliament and all international privacy and data protection treaties.

This Privacy Policy is a legally binding agreement between you and eShipper, and is incorporated into and subject to our Terms and Conditions. The use of our Website and Services is subject to your acceptance of this Privacy Policy.

By accessing, registering with us and/or using our Website and Services, you expressly agree and electronically consent to all provisions of this Privacy Policy. If you do not agree with this Privacy Policy, you must not use our Services and leave this Website immediately.

Please read the definitions applicable to this Privacy Policy in Section 21 set out below.

• Information subject to this Privacy Policy

This Privacy Policy applies to any information collected from you (“Personal Information”) in accordance with this document, when you access and use our Website and Services and also when you contact us by email or  otherwise.

This Privacy Policy does not apply to any information about you provided by third parties and/or publicly available with no restrictions. We are not responsible for the privacy practices of third parties.

• Data Controller and Data Processor Details

The Data Controller and Data Processor details are as follows:

• Business Name: eShipper.
• Owner: Canada Worldwide Services Inc.
• Address: 9 Van Der Graaf Ct, Brampton, Ontario, L6T 5E5, Canada.
• Phone Number: +1 905-671-1771.
• Website: https://www.eshipper.com.
• Email: info@eshipper.com.

• Granting Consent

By accepting this Privacy Policy you expressly agree to grant eShipper a non-exclusive, worldwide, temporary, revocable, royalty-free, sub licensable right, to exercise the copyright, publicity, and/or any database rights (but no other rights) you have on your Personal Information, in any media now known or that may be known in the future, with respect to your Personal Information, solely for the purpose of enabling eShipper the use and process of the information provided by you for the use of the Website and Services and to avoid the violation of any rights over that information.

We do not collect Personal Information from you or any third party without the prior express consent of the owner of such information.

You have the right to withdraw your consent at any time, in which case you must leave the Website immediately and suspend the use of our Services. If you withdraw your consent, this Privacy Policy will terminate immediately.

By accepting this Privacy Policy you expressly represent and warrant that you are of legal age to consent to the collection of your Personal Information in accordance with the applicable law in your jurisdiction, and that eShipper is the Data Controller and Data Processor of your Personal Information.

• Information We Collect

We only request Personal Information that is necessary for you to use our Website and for us to provide you with our Services.

We reserve the right to confirm and validate your Personal Information and any other information provided by you at any time. In the event that we determine that the information provided by you is unlawful, fraudulent, erroneous or incorrect (totally or partially), we may cancel your access and use of our Website and Services  at any time and without prior notice.

All payment methods details entered through our Website are encrypted by us. Communications to and from our payment service providers are also encrypted. We do not provide any User payment information to any third-party companies or individuals unless required by law, regulation or court order.

The information we collect from you when you use this Site and our Services is as follows (“Personal Information” and/or “Information”):

1. Information Provided By You.

We will collect the following information about you when you register on our Website:

• Name and Last Name;
• Address;
• Email Address;
• Phone Number;
• Credit Card Details; and
• Billing Details.

• Information collected by us automatically:

Strictly to provide our Services to you, we automatically collect the following Information about you:

• Device data, such as Device operating system type and version number, manufacturer and model, browser type, screen resolution, IP address, the website you visited before accessing and using our Website and Service;

• Geolocation data, such as your city, state, locality or geographic area.

• Online activity data, such as pages or screens you viewed on our Website; how long you stayed on a page or screen; navigation paths between pages or screens; information about your activity on a page or screen, access times, and access duration.

• Use Of Personal Information

We use your Personal Information to:

• Identify you and allow you to access and use this Website and Services;
• Provide our Services in accordance with our Terms and Conditions;
• Identifying usage patterns of our Website and Services for identifying potential problems or avenues of improvement;
• Enable security features of the Website and Services;
• Send you notifications of the system necessary for the operation of our Website and Services (e.g. passwords resets, logins from new devices, among others);
• Answer your requests, inquiries and complaints about our Website and Services;
• Monitoring your compliance with acceptable rules of use of this Website; and
• Comply with applicable laws and regulations.

• Data Retention Period

We may retain and store your Personal Information until necessary but for a limited period of time that may not exceed 1 year, since the cancellation of your User Account for any reason.

In some circumstances, we may retain your Personal Information for longer periods but in an anonymised form. This means we would delete any information which identifies you personally. We may also retain your Personal Information where such retention is necessary for compliance with a legal or regulatory obligation to which we may be subject to.

• Your Data Subject Rights

Your rights as a data subject (“Data Subject Rights”) are as follows:

1. Right to Access: You have the right to know how your Personal Information has been collected, and processed, just as what information about you we have stored, and for what purposes. For this reason, and upon your request, we will inform you or give you access to the Personal Information about you that we have stored to provide you with our Services.

• Data Portability (European Unión Residents): You have the right to obtain a copy of your Personal Information in a structured, commonly used, machine-readable format, or (where technically feasible) to have it ported directly to another data controller, provided this does not adversely affect the rights and freedoms of others.

• Right to Data Rectification: You have the right to ask us to update and/or rectify and/or complete your inaccurate or incomplete Personal Information. Please note that notwithstanding that all reasonable efforts will be made by us to keep your Personal Information updated, you are kindly requested to inform us promptly of any change, error or inaccuracy in your Personal Information.

• Right to Data Objection or Restriction (Opt-Out): You have the right to object or request us to suspend the processing of your Personal Information (opt-out) when you have a legitimate interest (or those of a third party) and there is something about your particular situation that causes you to object the processing of such Information because it makes you feel it impacts your fundamental rights and freedoms. Please note that we only process your Personal Information when this is necessary to provide you with our Services and/or when it is necessary to comply with a legal obligation to which we are subject to, as when processing is necessary to protect your interests or those of another person or entity.

• Right to Data Deletion: You have the right to ask us to delete your Personal Information when it is not relevant to the purpose for which we collect it, once the period set forth  in Section 7 above has elapsed. We may delete your Personal Information before the expiration of that period, when such information is not necessary, at our sole discretion.

Nevertheless, keep in mind, there may be legal obligations which may prohibit us from deleting all or part of the Personal Information held about you immediately at the time of the request, however, we will process your request at the earliest opportunity whenever the information retention period expires in accordance with Section 7 above.

• How to Exercise Your Rights

You may exercise the rights described in Section 8 above, at any time, by contacting us at technology@eshipper.com or by contacting the Office of the Privacy Commissioner of Canada (https://www.priv.gc.ca) or the competent Supervisory Authority of your country.

Please note that we try to respond to all legitimate requests within 5 business days. We will verify your identity prior to responding to any request. Occasionally, it may take us longer if your request is particularly complex or you have made certain number of requests. In this case, we will notify you and keep you updated on the status.

1. Data Protection Officer

We have appointed a person to act as a Data Protection Officer, who is responsible for overseeing compliance with this Privacy Policy and liaising with our Users on matters related to this Privacy Policy. You can contact our Data Protection Officer by sending an email to: technology@eshipper.com .

1. Security and Protection of Your Information

We guarantee the privacy, confidentiality and protection of your Personal Information and we also guarantee that we have implemented physical and electronic security measures, as well as other appropriate administrative procedures to prevent unauthorized or unlawful access by third parties to your Personal Information.

We shall ensure that confidentiality of your Personal Information is strictly maintained at all times, including informing and training our personnel about the confidential nature of your Personal Information and appropriate practices and procedures for the handling of such data.

We shall ensure that our access to  our Users information is limited strictly on a needs basis to only those personnel who are responsible for providing the services offered by us. 

We shall ensure that all personnel engaged in processing of your Personal Information have executed written confidentiality agreements and that the obligations under such agreements survive termination of the personnel engagement. This will cover both our own employees and any Data Processor engaged by us for the processing of ​the Personal Information of our Users.

1. Data Protection Measures.

Our data protection and security practices include, but are not limited to:

• The continuous review and updates of our security policies and controls, as technology changes to ensure ongoing information security.

• Implementation of reasonable and appropriate technical security measures to protect the Personal Information we process, from unauthorized access, alteration, disclosure, loss or destruction.

• Application of the duty of confidentiality for any authorized personnel who processes your Personal Information.

• Regular audits of the security measures of the Website by requesting third party experts to review our security controls against international standards. These audits help us to further improve our security levels.

• All information is encrypted in transit, and where possible specific fields are encrypted at rest using industry recognized cryptographic measures.

• Notification.

We will promptly notify  you and/or the Office of the Privacy Commissioner of Canada (only Canadian residents) any breach of security of your Personal Information under our control if it is reasonable in the circumstances to believe that such breach creates a real risk of significant harm to you and/or any other individual.

We will also notify you promptly, if:

• In our opinion, any instruction provided by you breaches any requirements of this Privacy Policy or that of any law or regulation applicable to the protection of Personal Information;

• Any non-compliance with the requirements of this Privacy Policy is detected by us;

• If we receive any notice, inquiry or investigation from a Supervisory Authority in relation to your Personal Information; and/or

• If any third party does not submit a request regarding the Personal Information you have provided to us.

1. Information Shared With Third Parties

We do not use, share, sell and/or exchange any of your Personal Information with third parties for any purposes without your express consent. However, in order to enable you access to, and the use of our Website and Services, we may share your Personal Information with companies that we hire to perform services or operate on our behalf as our service providers (“Data Processors”). In all cases in which we share your Personal Information with a third party for the purpose of providing you our Services, we will not authorize them to keep, disclose or use your information with others except for the purpose of providing the services we asked them to provide.

By accepting this Privacy Policy, you expressly give us authorization to use and share your Personal Information with our Data Processors, under their corresponding privacy conditions, within the limits set in this Privacy Policy.

We are not responsible for the privacy and data protection practices of our service providers and/or any third party. However, we warrant that we have used reasonable efforts to determine that our Data Processors have adequate technical and organizational measures in place and are able to satisfy the privacy, security and data protection parameters used by eShipper.

Our main Data Processors are the following:

Data Processor	Country	Purpose	Details
Amazon Web Services	Canada	Computing and Storage	https://aws.amazon.com/terms/?nc1=f_pr
Google Analytics	United States of America	Web Analytics Service	https://www.google.com/analytics/terms/?hl=es

1. International Data Transfers

We are a company based in Brampton, Province of Ontario,  Canada.  We provide our services in our country and the United States of America and we may also provide our services to users in other countries.

We process and store your information in Canada and our servers are located in Canada. However, our Data Processors may process and store your Personal Information in our country and/or elsewhere.

If you are located outside Canada and choose to provide us with your Personal Information, we will transfer such information to Canada for due processing, and our Data Processors may process your Personal Information in our country and/or any place else. You expressly accept and acknowledge that such countries may not have the same data protection laws as your country or the country in which you initially provided your Personal Information. Notwithstanding, we will ensure that our Data Processors are aware of this Privacy Policy and we will urge them and make our reasonable efforts to ensure that they implement the necessary and adequate measures to comply with the privacy, security and data protection parameters set forth herein.

By accepting this Privacy Policy you have expressly given us authorization to transfer your Personal Information to our servers located in Canada and/or to the servers of our Data Processors located in their relevant countries, if necessary, to provide you with our Services.

1. Details of Transferable Data (European Union Residents)

The details of the Personal Information that we may transfer in accordance with Section above are as follows:

• Data Controller: eShipper.
• Data Processors: eShipper,  Amazon Web Services, Google Analytics: and other Data Processors.
• Place:
• eShipper: Canada;
• Amazon Web Services: Canada;
• Google Analytics: United States of America
• Other Data Processors: Canada and/or their relevant countries.
• Category of Data Subjects:  Visitors, Users and Customers.
• Data Category: Personal Data referred in Section 5 above.
• Frequency of the Transfer: Each time an individual or entity registers on our Website to Use our Services.
• Nature of the Processing: Collection, process and storage.
• Purpose of Data Transfer and  Processing: Provide our Services.
• Data Retention Period: 1 year in accordance with Section 7.

1. Information Disclosure

We may share and/or disclose your Personal Information in accordance with applicable laws. Additionally, we must cooperate with law enforcement inquiries, as well as other third parties to enforce laws, as well as to help protect you and us, and all our Users of any crime or fraud. For this reason, and in response to a verified request by law enforcement or other government officials relating to a criminal investigation or alleged illegal or fraudulent activity, we may (and you expressly authorize us to) disclose the Personal Information we collect from you, in accordance with this Privacy Policy, without a subpoena. However, in an effort to respect your privacy, we will not otherwise disclose your Personal Information to law enforcement or other government officials without a subpoena, court order or substantially similar legal procedure, except when we believe in good faith that the disclosure of information is necessary to prevent imminent physical harm, fraud or financial loss; or report suspected illegal or fraudulent activities.

We are committed to notifying you, as soon as possible, in the event that we receive any legal request from a public authority, including judicial authorities, regarding your Personal Information within the limits established by applicable law.

1. Regulations Applicable to U.S. Residents

1. California Consumer Privacy Act (California Residents).

We provide the following additional details regarding the categories of Personal Information about California residents that we have collected or disclosed in the past 12 months, in accordance with the California Consumer Privacy Act (CCPA), as described in this Section.

We collected the following categories of Personal Information:

• Identifiers, such as name, last name, contact information, online identifiers  and any  other government-issued ID numbers;
• Personal information, as defined in the California customer records law, such as name, last name, postal address, signature, and any other information that allows to identify a person individually.
• Commercial information, such as transaction information and commercial history;
• Internet or network activity information, such as browsing history, online behavior, and interactions with our and other websites, applications and systems;
• Geolocation data, such as device location and IP location; and
• Inferences drawn from any of the Personal Information listed above to create a profile or summary about you, such as an individual’s preferences and characteristics.

We collect this Personal Information from you and from other categories of sources: information received as part of routine card verification (fraud) checks; social networks; publicly available databases; and joint marketing partners, when they share the information with us.

We share this Personal Information with our service providers, data processors, business partners, auditors, advisors and public or government authorities.

We disclosed the following Personal Information to third parties (such as our service providers, data processors, business partners, auditors, advisors and public or government authorities) for our operational business purposes:

• Identifiers, such as name, last name, contact information, and any  other government-issued ID numbers;
• Personal information, as defined in the California customer records law, such as name, last name, postal address, signature, and any other information that allows to identify a person individually.
• Commercial information, such as transaction information and commercial history;
• Internet or network activity information, such as browsing history, online behavior, and interactions with our and other websites, applications and systems;
• Geolocation data, such as device location and IP location; and
• Inferences drawn from any of the Personal Information listed above to create a profile or summary about you, such as an individual’s preferences and characteristics.

We do not “sell” Personal Information for purposes of the CCPA. For purposes of this Section about CCPA, “sell” means the disclosure of Personal Information for monetary or other valuable consideration but does not include, for example, the transfer of Personal Information as an asset that is part of a merger, bankruptcy, or other disposition of all or any portion of our business.

If you are a California resident, you may request that we:

 (i) Disclose to you the following information covering the 12 months preceding your request:

• The categories of Personal Information we collected about you and the categories of sources from which we collected such Personal Information;
• The specific pieces of Personal Information we collected about you;
• The business or commercial purpose for collecting Personal Information about you;
• The categories of Personal Information about you that we otherwise shared or disclosed, and the categories of third parties with whom we shared or to whom we disclosed such Personal Information.

(ii) Delete Personal Information we collected from you.

We will respond to your request consistent with applicable law. Nonetheless, you have the right to be free from unlawful discrimination for exercising your rights under the CCPA.

(iii) Requests about your Personal Information

If you are a California resident, you may make a request for the disclosures described above or make a request to delete Personal Information we collected from you, by contacting our Data Protection Officer at: technology@eshipper.com .

• California Online Privacy Protection Act (California Residents).

The California Online Privacy Protection Act (CalOPPA) applies to any individual, entity or business operating websites that collect personal information from California viewers and/or consumers and/or users.

The CalOPPA defines as "personally identifiable information" the following: first and last name;  physical address; email address; telephone number; social security numbers; details of physical appearance (height, weight, hair color); contact information; and any other information stored online that may identify an individual.

For the purposes of CalOPPA, we only collect the following "personally identifiable information” to provide you with our Services: first and last name, physical address, email address and telephone number.

Pursuant to CalOPPA, we agree to the following:

• You and any User may visit our Website anonymously.
• There is a link to this Privacy Policy on the footer of the homepage of this Website.
• Our Privacy Policy link does include the word "Privacy'" and may easily be found on the footer of our homepage. It is titled "Privacy Policy" very clearly.
• You will be notified of any Privacy Policy changes on our Privacy Policy Page.

• Children’s Online Privacy Protection Act.

The Children’s Online Privacy Protection Act (COPPA) is intended to prevent  websites and any online marketers from targeting children with deceptive campaigns that extract personal information from children.

This law is a U.S. federal law and is enforced by the U.S. Federal Trade Commission (FTC). However, the websites and online services that are based in other countries can still be subject to the requirements of COPPA if they knowingly collect personal information from or about children in the United States of America, or are directed at children in that country.

For purposes of COPPA, we represent that:

• This WebSite and our Services are not provided and do not exist for a commercial purpose to children under the age of 13;

• We do not in any way collect, any Personal information from children under the age of 13 on this Website;

• We do not provide our Services to other websites by collecting information from users of websites that are directed to children; and

• We do not process, use, share, store, maintain, and/or disclose any Personal Information from children under 13.

If you are a parent or guardian who has discovered that your child under the age of 13 has submitted personal information to us, please notify us at: technology@eshipper.com. We will promptly delete the information submitted by your child under 13 from our records, once we receive such notification.

• Controlling the Assault of Non-Solicited Pornography And Marketing Act of 2003 (CAN-SPAM Act).

The Controlling the Assault of Non Solicited Pornography and Marketing Act of 2003 (CAN-SPAM Act), i s a U.S. federal law  regulating  “commercial e-mail” which applies to any individual, entity or business that engage in any advertising/marketing of products or  services via e-mail.

The CAN-SPAM Act sets forth the rules and requirements for commercial email and gives recipients the right to prevent or stop the sending of commercial or marketing emails to them.

We collect your email address, name and last name, so we can:

• Send information, respond to inquiries, and/or other requests or questions.
• Process your requests about our Services and to send information and updates pertaining to thereon.
• Send you additional information related to our Services.
• Market to our mailing list or continue to send emails to you after any transaction.
• Email you free information and advertising certain Services we offer.

In compliance with CAN-SPAM Act, we agree to the following:

• We will not use false or misleading subjects or email addresses.
• We will identify the email message as an advertisement in some reasonable way.
• We will include our business mailing address and/or physical address in our emails.
• We will monitor third-party email marketing services for compliance.
• We will honor opt-out/unsubscribe requests quickly.
• We will allow Users to unsubscribe by using the appropriate link at the bottom of each email.

How to Unsubscribe to our  Emails:

If at any time you would like to unsubscribe from receiving future emails, you may email us at technology@eshipper.com or follow the instructions at the bottom of any email you receive from us and we will promptly remove you from future correspondence(s). If you experience any problems unsubscribing, please email us to that email address listed here and we will promptly handle your removal.

1. Cookies

We use Cookies in this Website to provide our Services. A Cookie is a small text file that browsers store on each user’s  devices, upon prior consent, when they visit any website. Cookies are widely used in order to make websites and applications work more efficiently and provide better services and features for their users. Cookies allow us to identify and track our Users, as well as recognize their needs and preferences and provide them with security features.

1. What Cookies Do We Use?

This Website uses “First Party Cookies” set up by us, and “Third-Party Cookies” set up by our service providers and advertisers. Cookies and their use are described below.

1. First-Party Cookies.

First-Party Cookies are directly stored by our Website. These Cookies allow us to collect analytics data, remember users settings, and perform other useful functions that provide a good experience to our Users (e.g. Strictly Necessary Cookies; Performance Cookies; and Functionality Cookies).

• Third-Party Cookies.

Third-Party Cookies are created by third party websites that are not our Website, including but not limited to our service providers and advertisers. These types of Cookies are usually used for online-advertising purposes and placed on any website through a script or tag. A Third-Party cookie is accessible on any website that loads the third-party server’s code. (e.g. Targeting Cookies).

This Website uses Google Analytics, as a service provider. Google Analytics is a website analytics  service and uses cookies to track how our Users use our Website and Services.

• Your Consent to our Use of Cookies.

When you first visit our Website we will require your consent to continue with the use of Cookies. By Clicking “Accept” when you first access this Website you are giving us your consent to use Cookies on our Website in accordance with this Privacy Policy.

• What We Use Cookies For.

We use Cookies to:

• Identify you when you use our Website and  Services.
• Provide our Services.
• Store information about your preferences and customize our Services.
• Analyze the use and performance of our Website and Services.
• Implement security measures to protect your Personal Information, including the prevention of fraudulent use of login credentials, and to protect our Website and/or Services.
• Display advertisements that will be relevant to you.

• Cookies Control

You may easily control Cookies usage through your browser settings. The help function in your preferred browser should provide you with the correct information. You may also visit the following website to obtain further information on Cookies and how to manage them: http://www.allaboutcookies.org.

1. Changes to this Privacy Policy

We reserve the right to modify all or part of this Privacy Policy at any time. The modified Privacy Policy will be published on our Website. The Privacy Policy modified will come effective five (5) days following its publication on our Website. In case you do not agree to such changes, you must indicate so by sending an email to: technology@eshipper.com within five (5) days following such publication, in which case you must leave the Website immediately and also suspend the use of our Services.

Upon expiration of the term above, it will be understood that you accepted such modifications made to this Privacy Policy. You are advised to review this Privacy Policy periodically for any changes.

1. Governing Law and Jurisdiction

This Privacy Policy shall be governed by and construed in accordance with the laws of Canada without regard to conflict of laws provisions. In case of any disputes, you hereby agree to submit to the exclusive jurisdiction of the Ontario Courts, Canada.

• Questions, Complaints, and Claims

For any questions or comments regarding this Privacy Policy, you may address us by sending an email to technology@eshipper.com and that email receipt must be acknowledged by us. You also may call us at the following phone number: +1 877 373 9222 (9 am to 5 pm, Monday to Friday, Greenwich time).

For any claims, you may contact us through the form available in the "Help & Support" Section of our website or send an email to claims@eshipper.com .

• Definitions

• "Data Controller" means the person who determines the purpose and means of processing Personal Information.

• "Data Processor" means the person who processes Personal Information on behalf of the Data Controller.

• “Data Subject” means the identified or identifiable person to whom Personal Information pertains.

• “Data Subject Right” means the rights referred to in Section 8 above.

• “Device” means smartphones, tablets, laptops, desktops and any other similar digital or electronic equipment.

• “eShipper" and/or “We” and/or “Us” means this Website and Services, owned and operated by Canada Worldwide Services Inc., a company incorporated under The Canada Business Corporations Act, with main offices at 9 Van Der Graaf Ct, Brampton, Ontario, L6T 5E5, Canada.

• "Personal Information" and/or “Information” means any information about you collected by us in accordance with this Privacy Policy that can be used to uniquely identify you.

• “Privacy Policy” means this document that governs eShipper´s privacy and data protection practices.

• "Processing" means any operation or set of operations which is performed on Personal Information or on sets of Personal Information, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

• “Service” and/or “Services” means the services provided by eShipper through this Website, as described in the Terms and Conditions.

• “Supervisory Authority” means a competent legal data protection authority which has supervisory authority and legal jurisdiction over a User

• “Terms and Conditions” means the document that describes and governs the Services provided by eShipper.

• “You” and/or “User” and/or “Users” means any individual or  entity registered on this Website for the purpose of using our Services.

• “Website” means https://www.eshipper.com.