Privacy Policy β
Introduction β
Welcome to AgentsBen! We highly value your privacy and are firmly committed to protecting your personal information. This Privacy Policy outlines in detail how we collect, use, store, and safeguard your personal data when you access and use our services. We urge you to read this policy thoroughly before using our website or any of our services. By accessing or using our services, you confirm that you have read, understood, and agreed to all the terms and provisions set forth in this Privacy Policy.
1. Information We Collect β
1.1 Personal Information β
When you register an account with AgentsBen and use our services, we may collect the following categories of personal information, depending on the specific services you use:
Basic Account Information: Full name, valid email address, phone number (including country/region code), and password (stored in encrypted form). You may also choose to provide additional profile details (e.g., company name, job title) if you use our business-oriented services.
Shipping and Delivery Information: Recipient's full name, detailed delivery address (including street name, building number, unit/floor, postal code), contact phone number for delivery notifications, and any special delivery instructions (e.g., "leave at front door" or "deliver after 6 PM").
Payment-Related Information: Transaction records (including order number, purchase date, amount, and payment status), and payment method details (e.g., last 4 digits of a credit card, or name of a third-party payment account). Note: We do not store complete credit card numbers or sensitive payment credentials; such information is processed directly by our licensed payment service providers.
Identity Verification Information: When required by applicable laws (e.g., anti-money laundering regulations) or to verify your identity for high-value transactions, we may collect government-issued identification documents (e.g., copy of a passport, national ID card, or driverβs license) and proof of address (e.g., recent utility bill or bank statement).
1.2 Google OAuth Login Information β
If you choose to sign in to AgentsBen using your Google account (OAuth authentication), we will collect the following limited information from your Google account, as authorized by you:
Profile Information: Your full name, primary email address associated with the Google account, and profile picture (if you have set one).
Google User ID: A unique, non-identifiable identifier assigned by Google to your account, which we use to link your Google login to your AgentsBen account.
Verification Tokens: Temporary authentication tokens provided by Google to verify the legitimacy of your login request and ensure secure access.
How We Use Google Login Data:
To create an AgentsBen account for you (if you do not already have one) or to authenticate your existing account during login.
To verify your identity and prevent unauthorized access to your AgentsBen account.
To pre-fill basic profile information (e.g., name and email) in your AgentsBen account, reducing the need for manual data entry and improving your user experience.
Important: We do not access, collect, or store any other information from your Google account beyond the basic profile details listed above. This includes (but is not limited to) your Google Drive files, Gmail messages, Google Calendar events, YouTube history, or any other Google service data.
Google OAuth Scope:
We only request the minimum necessary permissions from Google to enable the login function, in compliance with Googleβs OAuth policies and data minimization principles:
openid: Required to authenticate your identity through Googleβs OpenID Connect protocol.profile: Required to access your basic public profile information (name and profile picture).email: Required to access your primary Google email address (to link it to your AgentsBen account and send service-related communications).
Data Storage and Security for Google OAuth Data:
All Google OAuth authentication tokens are encrypted using industry-standard encryption algorithms and stored securely on our servers. These tokens are automatically expired after a short period to minimize security risks.
We never store your Google account password or any credentials used to access your Google account.
You have the right to revoke AgentsBenβs access to your Google account at any time. To do so, please visit your Google Account Permissions page, locate "AgentsBen" in the list of third-party apps, and select "Remove Access".
1.3 Automatically Collected Information β
When you visit our website, use our mobile app (if applicable), or interact with our services, we may automatically collect certain non-identifiable or pseudonymized information through server logs, tracking tools, and device sensors. This information helps us optimize our services, improve user experience, and ensure system security. The types of automatically collected information include:
Device Information: Device model (e.g., iPhone 15 Pro, Samsung Galaxy S24), operating system (e.g., iOS 18, Android 15), unique device identifiers (e.g., IMEI, UDID, or advertising ID), browser type and version (e.g., Chrome 120, Safari 17), and network type (e.g., WiFi, 4G, 5G).
Usage and Access Data: IP address (used to determine approximate geographic location, not precise GPS location), date and time of access, pages visited (including URL, visit duration, and bounce rate), links clicked, search queries entered on our website, and the referring source (e.g., which website or app directed you to AgentsBen).
Location Information:
Approximate Location: Derived from your IP address or WiFi access points, used to provide location-relevant services (e.g., showing nearby shipping hubs or local currency).
Precise Location: Only collected if you explicitly grant permission (e.g., through your device settings when using our mobile app), and is used solely for specific, user-initiated functions (e.g., setting a delivery location). You can disable precise location access at any time through your device settings.
Browsing Behavior: Information about how you interact with our website or app (e.g., items added to cart, checkout steps completed, time spent on product pages) and preferences (e.g., language selection, currency preference).
1.4 Cookies and Similar Technologies β
We use cookies, web beacons, pixels, and similar tracking technologies (collectively referred to as "Cookies") to enhance your user experience, optimize our services, and analyze user behavior. Below is detailed information about our use of these technologies:
Types of Cookies We Use:
Necessary Cookies: These cookies are essential for the operation of our website and services (e.g., cookies that maintain your login status, enable cart functionality, or ensure secure checkout). You cannot disable these cookies through your browser settings, as they are required to provide basic services.
Functional Cookies: These cookies remember your preferences (e.g., language, currency, shipping address) to personalize your experience. For example, a functional cookie may store your preferred currency so you do not have to select it every time you visit.
Analytical Cookies: These cookies collect data about how users interact with our website (e.g., which pages are most visited, how users navigate the site) to help us improve website performance, identify issues, and optimize content. We use third-party analytics tools (e.g., Google Analytics) for this purpose, and the data collected is anonymized.
Marketing Cookies: These cookies track your browsing activity to deliver personalized advertisements (e.g., ads for products you viewed) on our website or third-party platforms. We only use marketing cookies if you have given your explicit consent.
Managing Cookie Preferences: You can control and manage cookies through your browser settings. Most browsers allow you to:
View and delete existing cookies.
Block future cookies (except necessary cookies).
Receive a notification before a cookie is stored.
Note: Disabling certain cookies (e.g., functional or analytical cookies) may affect the functionality and performance of our website, and may prevent you from accessing certain features. For instructions on managing cookies, please refer to your browserβs help documentation (e.g., Chrome, Firefox, Safari, Edge).
Third-Party Cookies: Some third-party service providers (e.g., analytics providers, advertising networks) may place cookies on your device when you use our services. We do not control these third-party cookies, and their use is governed by the third partyβs own privacy policies. We encourage you to review the privacy policies of these third parties for more information.
2. How We Use Your Information β
We only use your personal information for the purposes stated in this Privacy Policy, and in compliance with applicable data protection laws (e.g., GDPR, CCPA). We do not use your information for unstated purposes without your prior consent.
2.1 Primary Purposes (Necessary for Service Provision) β
These purposes are essential to providing our services to you, and we may use your information for these purposes without additional consent (as they are directly related to the performance of our contract with you):
Process and fulfill your orders (e.g., using your shipping address to deliver products, using your payment information to process transactions).
Provide customer support (e.g., using your email or phone number to respond to your inquiries, using your order history to resolve issues with deliveries or returns).
Send service-related communications (e.g., order confirmation emails, shipping notifications, delivery status updates, account verification emails, or password reset links). These communications are not marketing messages and are necessary to inform you about your account or orders.
Manage and maintain your AgentsBen account (e.g., updating your profile information, ensuring account security, and enabling account-related features).
Process payments and refunds (e.g., verifying payment details, processing transaction authorizations, issuing refunds for canceled orders or returns).
Prevent fraud, detect unauthorized activity, and enhance security (e.g., using your IP address or device information to identify suspicious login attempts, using identity verification information to prevent fraudulent transactions).
2.2 Secondary Purposes (With Consent Where Required) β
These purposes are not essential for basic service provision but help us improve our services and provide a more personalized experience. We will only use your information for these purposes if you have given your explicit consent, or if permitted by law:
Improve our services and user experience (e.g., using browsing behavior data to optimize website design, using feedback and usage data to enhance product features).
Personalize content and recommendations (e.g., using your purchase history or browsing behavior to suggest products you may be interested in, tailoring website content to your preferences).
Conduct market research and analysis (e.g., aggregating anonymized user data to identify trends, surveying users about their experience to inform business decisions). The data used for research is always anonymized to protect your privacy.
Send promotional materials (e.g., newsletters, discount offers, new product announcements) via email, SMS, or push notifications. You can opt out of these communications at any time (see Section 5 for details on how to opt out).
Comply with legal obligations and regulatory requirements (e.g., retaining transaction records to comply with tax laws, providing information to law enforcement authorities when required by court order or applicable law).
3. Information Sharing and Disclosure β
We understand the sensitivity of your personal information and only share or disclose it in the circumstances described below. We never sell your personal information to third parties for commercial purposes.
3.1 We May Share Your Information With the Following Third Parties: β
Shipping and Logistics Partners: We share your shipping address, recipient name, and contact number with our licensed shipping partners (e.g., DHL, FedEx, local courier services) to deliver your orders. These partners are only authorized to use your information for the sole purpose of completing the delivery and are prohibited from using it for any other purposes.
Payment Service Providers: We share your payment-related information (e.g., transaction amount, last 4 digits of your credit card, payment account name) with our third-party payment processors (e.g., PayPal, Stripe) to process payments securely. These providers are required to comply with industry standards (e.g., PCI DSS) to protect your payment data and are not allowed to use your information for unrelated purposes.
Service Providers and Vendors: We engage third-party service providers to assist with the operation of our business (e.g., website hosting, data storage, customer support software, analytics tools, marketing platforms). These providers may have access to your personal information only to perform the services we have contracted them for, and they are legally obligated to protect your data and not use it for their own benefit. Examples of such providers include:
Cloud storage providers (e.g., AWS, Google Cloud) for secure data storage.
Customer relationship management (CRM) tools to manage customer inquiries.
Analytics providers (e.g., Google Analytics) to analyze website traffic.
Legal and Regulatory Authorities: We may disclose your personal information to law enforcement agencies, government authorities, or regulatory bodies if:
We are required to do so by law (e.g., in response to a court order, subpoena, or legal request).
We believe in good faith that the disclosure is necessary to prevent fraud, protect the safety of users or the public, or comply with applicable laws or regulations.
Business Transfers: In the event of a merger, acquisition, sale of assets, or other business transaction (e.g., bankruptcy), your personal information may be transferred to the acquiring or successor entity. We will notify you of such a transfer in advance (if required by law) and ensure that the new entity complies with the terms of this Privacy Policy.
3.2 We Never: β
Sell your personal information to third parties for monetary gain or commercial purposes.
Share your personal information with unauthorized third parties (i.e., parties not listed in Section 3.1) without your explicit consent.
Use or disclose your personal information for purposes other than those specified in this Privacy Policy, unless we have obtained your prior consent or are required by law.
4. Data Security β
We take the security of your personal information very seriously and implement industry-standard technical, administrative, and physical security measures to protect your data from unauthorized access, use, disclosure, alteration, or destruction. Our security measures include:
Data Transmission Security: All data transmitted between your device and our servers (e.g., during login, checkout, or account updates) is encrypted using SSL/TLS (Secure Sockets Layer/Transport Layer Security) protocol, which is the industry standard for secure data transmission. You can verify this by checking for the "https://" prefix and padlock icon in your browserβs address bar.
Secure Data Storage: Your personal information is stored on secure servers with restricted access. We use encryption (e.g., AES-256) to protect sensitive data (e.g., passwords, payment-related information) at rest. We also use secure cloud storage providers that comply with international security standards (e.g., ISO 27001, SOC 2).
Access Controls and Authentication: We implement strict access controls to ensure that only authorized employees or service providers can access your personal information. Authorized personnel are required to use strong passwords, two-factor authentication (2FA), and other security measures to access sensitive data. We also regularly review and update access permissions to minimize the risk of unauthorized access.
Regular Security Audits and Testing: We conduct regular security audits, vulnerability assessments, and penetration testing (performed by independent third-party security firms) to identify and address potential security risks. We also monitor our systems for suspicious activity (e.g., unauthorized login attempts, unusual data access) and take immediate action to mitigate threats.
Employee Training and Confidentiality Agreements: All employees who have access to personal information receive comprehensive training on data protection laws, security best practices, and our internal privacy policies. Employees are also required to sign confidentiality agreements that prohibit the unauthorized disclosure or use of personal information.
Incident Response Plan: We have a dedicated incident response plan in place to handle data breaches or security incidents. In the event of a data breach that poses a risk to your privacy, we will notify you and relevant regulatory authorities (as required by applicable law) in a timely manner, and take steps to mitigate the impact of the breach.
Important Note: While we take all reasonable measures to protect your personal information, no security system is 100% foolproof. We cannot guarantee absolute security of your data, especially in cases where the security breach is caused by factors beyond our control (e.g., unauthorized access to your device, phishing attacks, or third-party security vulnerabilities). We encourage you to take steps to protect your own data (e.g., using strong, unique passwords, enabling 2FA for your AgentsBen account, not sharing your account credentials with others, and being cautious of phishing emails).
5. Your Rights β
Under applicable data protection laws (e.g., GDPR, CCPA, PDPA), you have certain rights regarding your personal information. We are committed to helping you exercise these rights in a timely and transparent manner. Below is a summary of your rights and how to exercise them:
5.1 Right to Access (Data Portability) β
You have the right to request access to the personal information we hold about you, including details about how we collected, used, and shared your data. You also have the right to receive a copy of your personal information in a structured, machine-readable format (e.g., CSV file) so you can transfer it to another service provider (if applicable).
5.2 Right to Correction (Rectification) β
If the personal information we hold about you is inaccurate, incomplete, or outdated, you have the right to request that we correct or update it. For example, if your shipping address has changed, you can request that we update your address in our records.
5.3 Right to Deletion (Right to be Forgotten) β
You have the right to request that we delete your personal information, subject to certain exceptions (e.g., if we are required to retain the data to comply with legal obligations, resolve disputes, or enforce agreements). We will delete your data within the time frame required by law, provided that no exceptions apply.
5.4 Right to Opt-Out of Marketing Communications β
You have the right to opt out of receiving promotional or marketing communications (e.g., newsletters, discount offers) at any time. To opt out:
Email: Click the "Unsubscribe" link at the bottom of any marketing email we send you.
SMS: Reply "STOP" to any marketing SMS we send you (standard messaging rates may apply).
Push Notifications: Disable push notifications through your device settings or app settings.
Note: Opting out of marketing communications will not affect service-related communications (e.g., order confirmations, shipping updates, account security alerts), which are necessary to provide our services.
5.5 Right to Object to Processing β
You have the right to object to certain types of processing of your personal information, including:
Processing for direct marketing purposes: You can object to receiving marketing communications at any time (see Section 5.4 above).
Processing based on legitimate interests: If we process your data based on our legitimate interests (e.g., fraud prevention, analytics), you have the right to object. We will stop processing your data unless we can demonstrate compelling legitimate grounds that override your interests.
5.6 Right to Restrict Processing β
You have the right to request that we restrict or limit the processing of your personal information in certain circumstances, such as:
If you believe the information we hold is inaccurate (we will restrict processing until we verify the accuracy).
If you believe our processing is unlawful but you do not want us to delete the data.
If we no longer need the data but you need it to establish, exercise, or defend legal claims.
If you have objected to processing and we are verifying whether our legitimate grounds override your objection.
5.7 Right to Withdraw Consent β
If we process your personal information based on your consent (e.g., for marketing purposes, using precise location data), you have the right to withdraw your consent at any time. Withdrawing consent will not affect the lawfulness of processing based on consent before its withdrawal.
5.8 Right to Lodge a Complaint β
If you believe we have violated your privacy rights or mishandled your personal information, you have the right to lodge a complaint with:
AgentsBen Customer Support: Contact us directly at [email protected] to raise your concerns. We will investigate and respond to your complaint within a reasonable time frame (typically within 30 days).
Your Local Data Protection Authority: Depending on your location, you may also have the right to file a complaint with a government data protection authority (e.g., the European Data Protection Supervisor for EU residents, the Office of the Privacy Commissioner for certain jurisdictions). We encourage you to contact us first so we can address your concerns directly.
5.9 How to Exercise Your Rights β
To exercise any of the rights described above, please contact us using the methods provided in Section 10 (Contact Us). When submitting a request, please include:
Your full name and the email address associated with your AgentsBen account.
A clear description of your request (e.g., "I would like to request a copy of my personal data" or "I would like to delete my account").
Proof of identity (e.g., a copy of your government-issued ID) if we need to verify your identity before processing the request (this is to ensure we do not disclose your information to an unauthorized party).
We will respond to your request within the time frame required by applicable law (typically within 30 days). If we need more time to process your request (e.g., due to the complexity of the request), we will notify you and provide a reason for the delay.
6. Data Retention β
We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, or as required by applicable laws and regulations. The specific retention periods vary depending on the type of data and the purpose for which it was collected:
6.1 Account Information β
Active Accounts: We retain your account information (e.g., name, email, profile details) for as long as your account remains active. If you wish to close your account, please contact us at [email protected].
Inactive Accounts: If your account has been inactive for a prolonged period (e.g., 5 years with no login activity or transactions), we may send you a notification asking if you wish to keep the account active. If we do not receive a response, we may deactivate or delete your account and associated data, subject to legal retention requirements.
6.2 Transaction and Order Data β
We retain transaction and order data (e.g., order history, payment records, shipping details) for a minimum of 7 years after the transaction date, or longer if required by applicable tax, accounting, or legal regulations. This data is retained to:
Comply with financial and tax reporting obligations.
Resolve disputes, process refunds, or handle warranty claims.
Prevent fraud and assist with law enforcement investigations.
6.3 Support and Communication Records β
We retain customer support communications (e.g., emails, chat transcripts, phone call recordings) for 3 years after the last interaction, or longer if necessary to resolve ongoing disputes or legal claims. This data is retained to:
Provide a record of our communications and agreements.
Improve customer support quality and train support staff.
Defend against legal claims or regulatory inquiries.
6.4 Marketing and Analytics Data β
- We retain marketing and analytics data (e.g., browsing behavior, email open rates, ad engagement) for 2 years from the date of collection. After this period, the data is either anonymized (so it can no longer identify you) or permanently deleted.
6.5 Legal and Compliance Data β
- If your personal information is involved in legal proceedings, disputes, regulatory investigations, or suspected fraud, we may retain the relevant data beyond the standard retention periods until the matter is fully resolved. We will notify you if we need to extend the retention period for legal reasons.
6.6 Data Deletion β
When the retention period expires, we will:
Securely Delete: Permanently delete your personal information from our active systems using secure deletion methods (e.g., overwriting data, degaussing storage media).
Anonymize: If we retain data for statistical or research purposes, we will anonymize it so that it can no longer be used to identify you.
Archive: In limited cases (e.g., to comply with legal obligations), we may archive data in a secure, offline storage system with restricted access. Archived data will not be used for active processing or marketing.
You have the right to request early deletion of your data before the retention period expires (see Section 5.3 for details on the right to deletion).
7. Children's Privacy β
AgentsBen's services are not intended for individuals under the age of 18 (or the age of majority in your jurisdiction, whichever is higher). We do not knowingly collect, use, or disclose personal information from children without verifiable parental consent.
Parental Notice: If you are a parent or legal guardian and believe your child has provided us with personal information without your consent, please contact us immediately at [email protected]. We will take prompt action to investigate and delete the child's information from our systems.
Verification: If we discover that we have inadvertently collected personal information from a child, we will delete the information as soon as reasonably possible, unless we are required by law to retain it.
Special Exceptions: In some jurisdictions, minors aged 13-17 may be permitted to use certain online services with parental consent. If you are a minor in such a jurisdiction and wish to use AgentsBen's services, please ensure you have obtained your parent or guardian's permission before creating an account.
8. International Data Transfers β
AgentsBen operates globally, and your personal information may be transferred to, stored in, or processed in countries other than your country of residence. These countries may have data protection laws that differ from the laws of your jurisdiction.
8.1 Transfers Outside Your Country β
If you are located in the European Economic Area (EEA), United Kingdom (UK), or Switzerland, your personal information may be transferred to countries outside these regions (e.g., to the United States, China, or other countries where our servers or service providers are located). Some of these countries may not have been recognized by the European Commission or other authorities as providing an "adequate" level of data protection.
To ensure your data is protected during international transfers, we implement appropriate safeguards, including:
Standard Contractual Clauses (SCCs): We use the European Commission-approved Standard Contractual Clauses to ensure that personal data transferred to countries without adequate data protection laws is subject to the same level of protection as required under EU law.
Data Processing Agreements: We enter into legally binding data processing agreements with all third-party service providers who process your data on our behalf, requiring them to comply with data protection standards equivalent to those set forth in this Privacy Policy.
Adequacy Decisions: Where possible, we transfer data to countries that have been recognized by the European Commission (or other relevant authorities) as providing adequate data protection (e.g., Canada, Japan).
8.2 Your Rights Regarding International Transfers β
If you have concerns about international data transfers, you have the right to:
Request more information about where your data is stored and processed.
Request a copy of the safeguards we have implemented (e.g., SCCs, data processing agreements).
Object to certain transfers if you believe they pose a risk to your privacy (we will assess your objection on a case-by-case basis).
To exercise these rights, please contact us at [email protected].
9. Changes to This Privacy Policy β
We may update this Privacy Policy from time to time to reflect changes in our business practices, legal requirements, or technological developments. When we make significant changes to this policy, we will notify you in one or more of the following ways:
9.1 Notification Methods β
Email Notification: We will send an email to the address associated with your AgentsBen account, highlighting the key changes and providing a link to the updated policy.
Website Banner: We will display a prominent notice on our website's homepage or login page, informing you of the policy update.
In-App Notification: If you use our mobile app (if applicable), we will send a push notification or display an in-app message about the update.
9.2 Effective Date and Acceptance β
Effective Date: All updates to this Privacy Policy will include a new "Last Updated" date at the top of the document, indicating when the changes take effect.
Continued Use Constitutes Acceptance: By continuing to use AgentsBen's services after the effective date of the updated policy, you acknowledge that you have read, understood, and agreed to the revised terms. If you do not agree with the updated policy, you should discontinue using our services and contact us to close your account (if applicable).
9.3 Material Changes β
- If we make material changes that significantly affect your privacy rights (e.g., expanding the purposes for which we use your data, sharing data with new categories of third parties), we may require your explicit consent before applying the changes to data collected prior to the update. In such cases, we will provide you with a clear opt-in mechanism (e.g., a checkbox or button) to confirm your consent.
9.4 Version History β
We maintain a version history of this Privacy Policy to ensure transparency. You can request a copy of previous versions by contacting us at [email protected].
10. Contact Us β
We are committed to addressing your questions, concerns, and requests regarding this Privacy Policy and how we handle your personal information. If you have any inquiries or wish to exercise your privacy rights, Contact Us and Customer Service here
Quick Reference Summary β
Below is a quick reference summary of the key points in this Privacy Policy. This summary is for convenience only and does not replace the full policy. Please read the complete Privacy Policy above for detailed information.
| Topic | Key Points |
|---|---|
| What We Collect | Account info, shipping addresses, payment records, browsing data, Google OAuth profile (name, email only) |
| How We Use It | Process orders, provide support, improve services, send updates (with consent for marketing) |
| Who We Share With | Shipping partners, payment processors, service providers, legal authorities (when required) |
| Your Rights | Access, correct, delete, opt-out, object, restrict processing, withdraw consent, lodge complaints |
| Data Security | SSL/TLS encryption, secure storage, access controls, regular audits, incident response plan |
| Data Retention | Active accounts: until closed; Orders: 7 years; Support: 3 years; Marketing: 2 years |
| Children | Not for users under 18; we delete children's data if inadvertently collected |
| International Transfers | Data may be transferred globally; protected by SCCs and data processing agreements |
| Policy Updates | We notify you via email, website banner, or app; continued use = acceptance |
Your Consent β
By using AgentsBen's website, mobile app, or services, you confirm that:
β You have read and understood this Privacy Policy in its entirety.
β You consent to the collection, use, storage, and disclosure of your personal information as described in this policy.
β If you use Google OAuth to sign in, you authorize us to access your basic Google profile information (name, email, profile picture) as outlined in Section 1.2.
β You are at least 18 years old (or the age of majority in your jurisdiction).
β You agree to receive service-related communications (e.g., order confirmations, shipping updates).
β If you have provided consent for marketing communications, you understand you can opt out at any time.
If you do not agree with any part of this Privacy Policy, please do not use our services and contact us to close your account (if you have one).
Thank you for trusting AgentsBen with your personal information. Your privacy is our priority, and we are committed to protecting it.