Privacy Policy

Last updated:

1. Introduction

Merchantrange ("we," "our," or "us") is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website merchantrange.world and use our services.

We process personal data in compliance with the General Data Protection Regulation (GDPR) (EU) 2016/679 and applicable Norwegian data protection laws.

2. Data Controller Information

The data controller responsible for your personal data is:

  • Company Name: Merchantrange
  • Address: Kårvågveien 94, 6532 Averøy, Norway
  • Email: feedback@merchantrange.world
  • Website: merchantrange.world

3. Personal Data We Collect

We may collect and process the following categories of personal data:

3.1 Information You Provide Directly

  • Contact information: name, email address, phone number (optional)
  • Order/request information: information you submit when you request an order or contact us via a form
  • Communication content: messages, inquiries, feedback
  • Account information: if you create an account with us

3.2 Information Collected Automatically

  • Device information: IP address, browser type, operating system
  • Usage data: pages visited, time spent, click patterns
  • Cookies and similar technologies: as described in our Cookie Policy

4. Purposes and Legal Basis for Processing

We process your personal data for the following purposes and legal bases:

4.1 Contract Performance (Article 6(1)(b) GDPR)

  • Processing and fulfilling your orders
  • Providing customer support
  • Communicating about your orders and deliveries

4.2 Legitimate Interests (Article 6(1)(f) GDPR)

  • Improving our website and services
  • Analyzing usage patterns and trends
  • Preventing fraud and ensuring security
  • Marketing our products (with your right to object)

4.3 Consent (Article 6(1)(a) GDPR)

  • Sending marketing communications (where required)
  • Using non-essential cookies
  • Processing data for purposes you have specifically agreed to

4.4 Legal Obligation (Article 6(1)(c) GDPR)

  • Complying with tax and accounting requirements
  • Responding to lawful requests from authorities

5. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected:

  • Order data: 5 years after the last transaction (for legal and accounting purposes)
  • Marketing data: until you withdraw consent or object
  • Website analytics: 26 months
  • Customer support records: 3 years after resolution

6. Data Sharing and Transfers

We may share your personal data with:

  • Payment processors: to process your transactions securely
  • Shipping providers: to deliver your orders
  • IT service providers: for website hosting and maintenance
  • Service providers: to help us operate, maintain, and secure our website

We do not sell your personal data.

When transferring data outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission.

7. Your Rights Under GDPR

You have the following rights regarding your personal data:

  • Right of Access (Article 15): Request a copy of your personal data
  • Right to Rectification (Article 16): Request correction of inaccurate data
  • Right to Erasure (Article 17): Request deletion of your data ("right to be forgotten")
  • Right to Restriction (Article 18): Request limitation of data processing
  • Right to Data Portability (Article 20): Receive your data in a structured, machine-readable format
  • Right to Object (Article 21): Object to processing based on legitimate interests or for direct marketing
  • Right to Withdraw Consent (Article 7(3)): Withdraw consent at any time where processing is based on consent

To exercise your rights, please contact us at feedback@merchantrange.world. We will respond within 30 days.

8. Data Security

We implement appropriate technical and organizational measures to protect your personal data, including:

  • Encryption of data in transit using SSL/TLS
  • Secure storage with access controls
  • Regular security assessments
  • Employee training on data protection
  • Incident response procedures

9. Cookies

We use cookies and similar technologies on our website. For detailed information about the cookies we use and how to manage them, please see our Cookie Policy.

10. Children's Privacy

Our website and services are not directed to individuals under 18 years of age. We do not knowingly collect personal data from children. If we become aware that we have collected data from a child, we will take steps to delete it promptly.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by posting the new policy on this page and updating the "Last updated" date. We encourage you to review this policy periodically.

12. Complaints

If you believe we have not handled your personal data properly, you have the right to lodge a complaint with the Norwegian Data Protection Authority (Datatilsynet):

  • Website: datatilsynet.no
  • Address: Postboks 458 Sentrum, 0105 Oslo, Norway

13. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us:

  • Email: feedback@merchantrange.world
  • Address: Kårvågveien 94, 6532 Averøy, Norway