DepartCart Privacy Policy

Effective Date: 02 March 2026

1. Introduction

DepartCart ("we", "our", "us") is committed to protecting the privacy and security of personal information. This Privacy Policy explains how we collect, use, disclose, and protect information in connection with our SaaS platform available at https://departcart.com/.

2. Scope

This Privacy Policy applies to:

• Visitors to our website
• Business customers using the DepartCart platform
• Individuals whose data may be processed through our platform

DepartCart primarily operates as a business-to-business service provider.

3. Information We Collect

3.1 Information Provided Directly

We may collect:

• Contact details (such as name, email address, company name)
• Account registration information
• Communications submitted via forms or email

3.2 Information Processed on Behalf of Customers

DepartCart processes transactional and booking-related metadata on behalf of its customers. We do not store full payment card details. Payment processing is conducted via Adyen using tokenised mechanisms.

3.3 Technical Information

We may collect:

• IP address
• Browser type and device information
• Log data and usage metrics
• Cookies and similar technologies

4. How We Use Information

We use information to:

• Provide and operate our services
• Maintain and improve platform functionality
• Communicate with customers
• Ensure security and prevent fraud
• Comply with legal obligations

5. Legal Basis for Processing

Where applicable, we process personal information based on:

• Contractual necessity
• Legitimate business interests
• Legal obligations
• Consent where required

6. Data Sharing

We may share information with:

• Infrastructure and cloud hosting providers
• Payment processing providers (Adyen)
• Professional advisors where required
• Regulatory authorities where legally required

We do not sell personal information.

7. Data Security

We implement administrative, technical, and organisational safeguards including:

• Encryption in transit using TLS
• Encryption at rest where supported
• Role-based access controls
• Multi-factor authentication where supported
• Monitoring and incident response procedures

8. Data Retention

Financial and accounting records are retained for a minimum of seven (7) years in accordance with statutory requirements. Other data is retained only as long as necessary for operational or legal purposes.

9. International Transfers

Data may be processed in cloud infrastructure environments. Appropriate safeguards are applied to protect data where cross-border transfers occur.

10. Your Rights

Where applicable under privacy law, individuals may have rights to:

• Access personal information
• Request correction
• Request deletion (subject to legal obligations)
• Lodge a complaint with a regulatory authority

Requests may be submitted via contact details below.

11. Cookies

We may use cookies and similar technologies to enhance user experience and analyse usage. Users may manage cookie preferences via browser settings.

12. Changes to This Policy

We may update this Privacy Policy from time to time. Updates will be published on our website with an updated effective date.

13. Contact Us

For privacy-related inquiries, please contact:

• DepartCart
• Email: privacy@departcart.com
• Website: https://departcart.com/