Chargebee Privacy Notice

Effective Date: Jan 01st, 2020
For prior version, please click here

CHARGEBEE INC. is committed to protecting your privacy. This privacy policy applies to those who visit chargebee.com as well as customers, excluding end users of our billing and subscription platform, tools and services which is owned and operated by CHARGEBEE INC. (“We”, “Us” or “Our”). This privacy policy describes how Chargebee collects, uses and shares the personal information you provide to us. It also describes the choices available to you regarding the use of, your access to, and how to update and correct your personal information. The use of information collected through our products and services shall be limited to the purpose of providing the products and services for which our customer has contracted with Chargebee. If there are any questions regarding this privacy policy, the practices of this website or your dealings with this website, you may contact us at [email protected] or the address mentioned below.

We also have a dedicated data protection officer who may be contacted in relation to any privacy or data protection issues through the above email address ([email protected]).

Key Terms of Privacy Policy:

  • Who is covered by this Policy?

    Online visitors to chargebee.com as well as customers, excluding end users of the Chargebee billing/subscription platform and related tools.

    Please note that use of this website / application is not allowed for individuals who are under the age of 16 years.

  • What Information do we collect?

    Depending on who you are and how we are serving you, we may collect information including full name, email, phone number, organisation address, billing address, card address, IP address, and other information collected by customer through custom fields, if any.

  • How do we use this information?

    To provide customer service, to complete your transactions, to provide you billing services, and to periodically contact you for transactional as well as marketing purposes. We may also use your information for our business accounting and tax purposes.

  • Who else may access this information?

    In addition to authorised Chargebee personnel who may access your information for the purposes discussed in this policy, some of our third party vendors may also have access to your information (listed at https://www.chargebee.com/privacy/sub-processors). Vendors of the sub-processors may also have access to your information.

  • Do we use Cookies?

    Yes, we do. We also may collect log files for behavioural advertising (which you can opt out of). This includes information relating to website usage, analytics services (such as Google and Visual Website Optimiser), and IP information for performance monitoring.

  • How can you exercise your rights as a data subject?

    Most rights can be exercised by contacting us at [email protected]. Other rights such as rectification of your data can be exercised through your account’s self-service portal. Data portability requests may be directed to our support staff at [email protected]. If you an end user, please note that, in relation to billing services to our customers, the personal information we collect is that which is provided to us by customers we work with. In such cases, please contact the concerned customer (your service provider) for more details. If you are not sure about your service provider, you can get in touch with us at [email protected].

  • How will we keep you informed of changes to this Policy?

    We periodically review this Policy and will endeavour to notify you of any changes by email. However, please continue to check this page for updates.

Certification under the EU-U.S. Privacy Shield and Swiss-U.S. Privacy Shield

Effective certification dates and additional information regarding our participation is available at link.

Chargebee participates in and has certified its compliance with the EU-U.S. Privacy Shield Framework and the Swiss-U.S. Privacy Shield Framework. We are committed to subjecting all personal data received from European Union (“EU”) member countries and Switzerland, in reliance on the Privacy Shield Framework, to the Privacy Shield Framework’s applicable Privacy Shield Principles. To learn more about the Privacy Shield Framework, visit the U.S. Department of Commerce’s Privacy Shield List.

Chargebee complies with the EU-U.S. Privacy Shield and Swiss-U.S. Privacy Shield Frameworks (“Privacy Shield”) as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information transferred from the European Union and the United Kingdom and/or Switzerland, as applicable, to the United States in reliance on Privacy Shield. Chargebee has certified to the Department of Commerce that it adheres to the Privacy Shield Principles with respect to such information. If there is any conflict between the terms in this Notice and the Privacy Shield Principles, the Privacy Shield Principles shall govern. To learn more about the Privacy Shield program, and to view our certification, please visit https://www.privacyshield.gov/

Chargebee is responsible for the processing of personal data it receives, under the Privacy Shield Framework, and subsequently transfers to a third party acting as an agent on its behalf. Chargebee complies with the Privacy Shield Principles for all onward transfers of personal data from the EU and Switzerland, including the onward transfer liability provisions.

With respect to personal data received or transferred pursuant to the Privacy Shield Framework, Chargebee is subject to the regulatory enforcement powers of the U.S. Federal Trade Commission. In certain situations, we may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.

In compliance with the Privacy Shield Principles, Chargebee commits to resolve complaints about our collection or use of your personal information. EU, UK and Swiss individuals with inquiries or complaints regarding our Privacy Shield policy should first contact Chargebee at: [email protected]. If you have an unresolved privacy or data use concern that we have not addressed satisfactorily, please contact our U.S.-based third party dispute resolution provider (free of charge) at https://feedback-form.truste.com/watchdog/request.

Under certain conditions, more fully described on the Privacy Shield website, you may invoke binding arbitration when other dispute resolution procedures have been exhausted. Other disclosures required to be made are as contained within the provisions below.

TRUSTe

What information do we collect?

We collect personal and non-personal information from you when you register on our site, setup your subdomain and/or configure your details. When ordering or registering on our website application, you may be asked to enter your name, e-mail address, business name and/or credit card information.


This refers to:

  • Account Information:

    including First Name, Last Name, Email, Phone Number, Organization Address, Billing Address, and Internet Protocol (IP) addresses

  • Billing Information:

    First Name, Last Name, Email, Phone Number, Billing Address, Shipping Address, and Locale.

  • Credit Card Information:

    First Name, Last Name, full PAN and Card Address.

  • Custom Fields:

    Any other personal information, if stored by customer in the course of business.

On what basis do we collect your information?

In most cases, we collect your information on the basis of your desire to avail a particular service from us or to complete a transaction using our platform. Therefore, our processing in many cases occurs on the basis of your consent or the need to perform a contract that we may have with you (also on behalf of your end users). However, in addition to collection on the basis of consent, there are other bases on which we may collect or process your information. These are as follows:

  • We collect and also store your personal data as part of our legal obligation for business accounting and tax purposes such as in relation to record-keeping, compliance, disputes, and filings.

  • We will occasionally send you product updates where we have assessed that it is beneficial to you as a customer and in our interests. Such information will be non- intrusive and is processed on the grounds of legitimate interests.

  • On the basis of your opt-in, we will send you updates related to events, webinars, blogs and other marketing and promotional activities where we have assessed that it is beneficial to you as a customer and in our interests.

What do we use your information for?

Any of the information we collect from you may be used in one of the following ways:

  • To improve customer service

    In the context of customer support your information helps us to more effectively respond to your customer service requests.

  • To process transactions

    Your information, whether public or private, will not be sold, exchanged, transferred, or given to any other company for any reason whatsoever, other than for the express purpose of delivering the purchased product or service requested.

  • To send periodic emails

    The email address you provide in the application, may be used to send you information and updates pertaining to your usage, in addition to receiving occasional company news, updates, related product or service information, etc.

You as a data subject have the right to opt out of (a) disclosures of your personal information to third parties not identified at the time of collection or subsequently authorized, and (b) uses of personal information for purposes materially different from those disclosed at the time of collection or subsequently authorized. To exercise this right, please reach out to [email protected]

How do we protect your information?

We implement a variety of security measures to maintain the safety of your personal information when you place an order or enter, submit, or access your personal information. We offer the use of a secure server. All supplied sensitive/credit information is transmitted via Transport Layer Security (TLS) technology and then stored into our database to be only accessed by those authorized with special access rights to our systems, and are required to keep the information confidential. If you have any questions about the security of your personal information, you can contact us at [email protected].

Personal data we collect is stored on infrastructure provided by AWS within the United States and our DR location is situated in EU, Frankfurt. AWS implements and maintains industry- leading security standards. You can read more about AWS and its security features on their webpage. More about Chargebee’s organizational and technical measures at https://www.chargebee.com/security/

Do we use cookies and other tracking technologies?

What are Cookies? Cookies are small files that a site or its service provider transfers to your computer’s hard drive through your Web browser (if you allow) that enables the sites or service providers systems to recognize your browser and capture and remember certain information.

What do we use Cookies for? Chargebee and its partners use cookies or similar technologies to analyze trends, administer the website, track users’ movements around the website, and to gather demographic information about our user base as a whole. You can control the use of cookies at the individual browser level, but if you choose to disable cookies, it may limit your use of certain features or functions on our website or service. Analytics services we use for these purposes are those provided by Google and Visual Website Optimizer.

Log files. As is true of most websites, we gather certain information automatically. This information may include Internet protocol (IP) addresses, browser type, Internet service provider (ISP), referring/exit pages, the files viewed on our site (e.g., HTML pages, graphics, etc.), operating system, date/time stamp, and/or clickstream data to analyze trends in the aggregate and administer the site. We may also use your IP address for application performance monitoring and for blocking anomalous usage.

Behavioral Targeting. We partner with a third party to either display advertising on our website or to manage our advertising on other sites. Our third party partner may use cookies or similar technologies in order to provide you advertising based upon your browsing activities and interests. If you wish to opt out of interest-based advertising click here (or if located in the European Union click here). Please note you will continue to receive generic ads.

Do we share any information to outside parties?

We do not sell, trade, or otherwise transfer to outside parties your personal information. We will share your personal information with third parties only in the ways that are described in this privacy policy. However, non-personally identifiable visitor information may be provided to other parties for marketing, advertising, or other uses.

  • Service Providers

    We may provide your personal information to companies that provide services to help us with our business activities such as offering customer service or processing your payment. These companies are authorized to use your personal information only as necessary to provide these services to us. Third parties used by Chargebee are listed at www.chargebee.com/privacy/sub-processors. In addition, your merchant may have also enlisted third party service providers to help serve you.

  • Legal Obligations

    We may also disclose your personal information as required by law, such as to comply with a subpoena or similar legal process when we believe in good faith that disclosure is necessary to protect our rights, protect your safety or the safety of others, investigate fraud, or respond to a government request. If Chargebee is involved in a merger, acquisition, or sale of all or a portion of its assets, you will be notified via email and/or a prominent notice on our website, of any change in ownership, uses of your personal information, and choices you may have regarding your personal information. We may also disclose your personal information to any other third party with your prior consent.7

User Access and Choice

Upon request Chargebee will provide you with information about whether we hold any of your personal information. You may access, correct, request deletion of your personal information, or withdraw provided consent by logging in to your account or by contacting us at [email protected].

Some rights such as rectification/correction of your data can be exercised through your account’s self-service portal.

Please note that, in relation to billing services to customers, the personal information we collect is that which is provided to us by customers we work with. In such cases, please contact the concerned customer (your service provider) for more details. If you are not sure about your service provider, you can get in touch with us at [email protected].

You may also contact us to confirm if we are processing any information relating to you. We will respond to your request within a reasonable timeframe.

  • Data Retention

    We will retain your information as needed to provide you services. Once your relationship with Chargebee is terminated, we will delete any personal information we hold within a period of 120 days from date of termination. Even if you close your account with Chargebee, we will still retain and use your information as necessary to comply with our legal obligations, financial/audit requirements, to resolve disputes, and enforce our agreements. However, we will identify your account in our database as “deleted” or “closed”.

  • Opt-out Preferences

    When you register for an account, we will use your name and email address which you have opted-in to send periodic emails to you of both promotional and transactional in nature. Out of respect for your privacy, you may choose to stop receiving promotional emails by following the unsubscribe instructions included in these emails or you can contact us at [email protected].

  • Data Portability

    Upon request, we will endeavour to provide you with a complete copy of your personal data held or processed by us in a structured, commonly accepted, and machine-readable format. We have provided this as a part of service to download required data whenever needed by the customer themselves.

We will also send you service related email announcements on rare occasions when it is necessary to do so. For instance, if our service is temporarily suspended for maintenance, we might send you an email. You do not have an option to opt out of these emails, which are not promotional in nature.

Terms and Conditions

Please also visit our Terms and Conditions section establishing the use, disclaimers, and limitations of liability governing the use of our website.

Information Related to Data Collected through our Products and Services

  • Information Related to Data Collected for our Customers:

    Chargebee collects information under the direction of its customers, and has no direct relationship with the individuals whose personal data it processes. If you are a customer of one of our customers and would no longer like to be contacted by one of our customers that use our service, please contact the customer of ours that you interact with directly. We may transfer personal information to companies that help us provide our service. Transfers to subsequent third parties are covered by the service agreements with our customers.

  • Access and Retention of Data Controlled by our Customers:

    Chargebee acknowledges that you have the right to access your personal information. Chargebee has no direct relationship with the individuals whose personal data it processes. An individual who seeks access, or who seeks to correct, amend, or delete inaccurate data should direct his query to Chargebee's customer (the data controller). If requested to remove data we will respond within a reasonable timeframe.

    We will retain your information as needed to provide you services. Once your relationship with Chargebee is terminated, we will delete any personal information we hold within a period of 120 days from date of termination. Even if you close your account with Chargebee, we will still retain and use your information as necessary to comply with our legal obligations, financial/audit requirements, to resolve disputes, and enforce our agreements. However, we will identify your account in our database as “deleted” or “closed”.

Changes to our Privacy Policy

We may update this privacy policy to reflect changes to our information practices. If we make any material changes we will notify you by email (sent to the e-mail address specified in your account) or by means of a notice on this website prior to the change becoming effective. We encourage you to periodically review this page for the latest information on our privacy practices.

Contacting Us

If there are any questions regarding this privacy policy, the practices of this website or your dealings with this website, you may contact us using the information below:

Chargebee Inc.
340 S Lemon Avenue, #1537
Walnut, California 91789, USA
[email protected]

We also have a privacy officer who may be contacted in relation to any privacy or data protection issues through the above email address ([email protected]).

Privacy Notice for California Residents

This section provides additional details about the personal information we collect about California consumers and consumers’ rights under the California Consumer Privacy Act (“CCPA”). This section applies only to California residents and their personal information we collect as a Business (as defined in the CCPA).



1. Collection of Personal Information. The categories of personal information we have collected in the twelve (12) months prior to the Effective Date and that we may collect include:

  • A) Identifiers such as a real name, alias, postal address, unique personal identifier, online identifier, Internet Protocol address, email address, account name, a device identifier; an Internet Protocol address; cookies, beacons, pixel tags, mobile ad identifiers or similar technology; customer number, unique pseudonym or user alias; telephone numbers, or other forms of persistent or probabilistic identifiers that can be used to identify a particular consumer or device;

  • B) Signature, physical characteristics or description, telephone number, state identification card number, insurance policy number, employment, employment history, bank account number, credit card number, debit card number or any other financial information, medical information or health insurance information;

  • C) Internet or other electronic network activity information, including, but not limited to, browsing history, search history and information regarding a consumer’s interaction with an internet website, app or advertisement.

  • D) Geolocation data;

  • E) Audio, electronic, visual, thermal, olfactory or similar information.

We collect this personal information for business purposes as described in the "What do we use your information for?" section of our general privacy policy above.



2. Disclosure of Personal Information. We have disclosed the categories of personal information listed in clause 1 above for a business purpose in the twelve (12) months prior to the Effective Date and may disclose such personal information to service providers who support our business provided they do not sell such personal information or retain, use or disclose such information for any purpose other than for the specific purpose of performing the services specified in our contract with them. We do not sell (as the term is defined in the CCPA) the personal information We collect, including personal information of minors under sixteen (16) years of age, and will not sell it without providing a right to opt out. We have not sold (as the term is defined in the CCPA) any personal information in the twelve (12) months prior to the Effective Date.



3. Your Rights. You have certain rights, subject to certain limitations under applicable law, with respect to your personal information, including:

  • a) The right to request disclosure of details of personal information collected;

  • b) The right to request disclosure of information sold (as defined in the CCPA);

  • c) The right to deletion of your personal information;

  • d) The right to “opt out” of any sale (as defined in the CCPA), if such sale occurs;

  • e) The right not to be discriminated against for exercising your rights under CCPA.

California consumers may make a request pursuant to their rights under the CCPA by contacting us at [email protected] or via mail to our postal address set forth above. We will verify your request using the information associated with your account, including e-mail address and/or Government identification. We will let you know if we need additional information to verify your identity. Consumers may also designate an authorised agent to exercise these rights on their behalf.



4. Where we are a service provider. We may also act as a service provider (as the term is defined in the CCPA). When we act as a service provider, including by providing our services to another company that you interact with, we follow the instructions of the company that engaged us as a service provider and you should directly contact that company if you have any questions or would like more details on how your personal information is processed by that company.