Privacy Policy

Last Updated: April 8, 2021

This Data Protection and Privacy Policy (hereinafter, “Policy”) applies to all activities of F4ntec Ecommerce Israel Ltd. (hereinafter, “F4ntec” or “we”) with respect to the protection of personal data that F4ntec collects and processes in the course of its activities, including through its websites (f4ntec.com and its subdomains), mobile applications, and any other electronic interfaces with data subjects (hereinafter, “Websites”). For any questions regarding this Policy and the processing or use of your personal data by F4ntec, please contact us here: dpo@f4ntec.com. Data subjects may also be in direct touch with the German Federal Data Protection Authority, at this email address: poststelle@bfdi.bund.de. F4ntec Ecommerce Israel Ltd. is located at Meir Feinstein 10, Tel Aviv, Israel and Gertigstrasse 12-14 Hamburg, Germany. The language of this Policy is intended to be gender-neutral.

General Principles

1. We at F4ntec believe that it is important to protect your personal data privacy. This Policy explains your rights regarding the personal data we collect, process and use in our ongoing activities, including via the Websites, as well as our use of safeguards to protect these rights. The Policy also applies to our use of cookies and tracking on the Website interfaces, as specified in the Cookies Policy below. 2. Your personal data is collected and stored lawfully, fairly and transparently by F4ntec. In processing your data, we act in good faith, in a proportionate manner, and with the appropriate technical and organizational measures; and to mitigate the risks represented by the processing of the data. 3. Please be aware that the collection, processing and use of your personal data may, in the course of F4ntec’s ongoing activities, be carried out by external data processors or joint controllers on our behalf. Within the framework of our contracts with such external processors, we inform them of the requirement to duly comply with relevant legal data protection rules and legislation applicable to the services they provide to us, and make reasonable efforts to communicate any changes to them with respect to such rules and legislation. Where your consent is required for such processing under the relevant regulation, we will so specify. 4. We may revise this Policy from time to time, and such changes shall come into effect from the moment we notify you of such changes and/or updates, either through the Websites or in some other reasonable manner. 5. For data subjects of the European Union, your rights under the General Data Protection Regulation (GDPR) are safeguarded by F4ntec in accordance with the principles detailed below. Any questions regarding GDPR-related rights may be referred to us via the email address: dpo@f4ntec.com.

Data Subject Rights

6. The rights detailed below are subject to the applicable law that determines your status as a data subject in the jurisdiction in which you are located, including the EU’s General Data Protection Regulation (“GDPR”). Depending on the applicable law, you may have some or all of the following rights in respect of your personal data that we process. For any questions regarding your rights, please contact us at dpo@f4ntec.com.

7. Consent: For data subjects for which processing by explicit consent is relevant, we will only process personal data if you have consented to such processing, unless we are otherwise legally authorized or obliged to collect and further process personal data relating to you; and data will be processed solely based on your informed consent, used only for the purposes stated in the consent procedure (for example, in order to supply updates regarding the processing of your data as we supply F4ntec Services), and within the scope outlined below.

8. Withdrawal of consent – You may revoke or withdraw your consent at any time by notifying us directly. Upon receipt of your request, and subject to applicable laws, we will delete your data unless we are legally obliged or authorized to retain it, including for ongoing legitimate business interests of F4ntec. Withdrawal of your consent shall not have any influence over the legality of processing of your personal data carried out prior to said withdrawal.

9. Minimization of data processing – We process and store a minimum of your personal data, only as needed for providing F4ntec Services to you.

10. The “right to be forgotten” – Subject to any relevant laws, including tax laws, you may also request the erasure of all or part of your personal data held by F4ntec. Upon receiving your request, we will remove your personal data from all of our records, as soon as reasonably possible and when technically feasible, unless there is an overriding legal interest or other legal basis for the continuation of the data processing. Please understand that in the event of deletion of personal data upon your request, F4ntec may not be able to further provide Services via the Websites or otherwise, in whole or in part. In requesting data deletion, you irrevocably agree and waive any claim against F4ntec’s inability to provide said services, or any interruption or malfunction resulting therefrom. Note that your request for deletion may also be rejected by F4ntec due to a lack of sufficient relevant information provided by you.

11. The “right to data correction” – You may also request the correction of all or part of your personal data held by F4ntec. Upon receiving your request, we will correct your personal data, as soon as reasonably possible and when technically feasible, unless there is an overriding legal interest or other legal basis for refraining from the requested correction. In requesting data correction, you irrevocably agree and waive any claim against F4ntec’s inability to provide said services, or any interruption or malfunction resulting therefrom. Note that your request for correction may also be rejected by F4ntec for lack of sufficient and/or relevant information provided by you.

12. Transparency and portability of personal data – You are entitled to ask F4ntec for information about the type of personal data about you that we process. You may also be entitled to obtain it in a commonly-used and machine-readable form, subject to technical feasibility and lawfulness considerations.

13. Automated decision-making on the basis of your personal data – Although the situation will be rare, we may make decisions concerning our business relationship with you based on automated processing activities without human intervention. We commit to giving you the opportunity to obtain human intervention in such a decision, express your point of view, and obtain an explanation of the decision.

14. Personal data relating to children and minors – We do not knowingly collect or process personal data relating to children and minors under the age of 13 years, unless we are legally obliged to do so. If we become aware that personal data was transferred to us or collected by us relating to children under the age of 13 years without the informed consent of a parent or legal guardian, we will delete such personal data without undue delay on our own initiative. Note that data subject requests from minors must be accompanied by valid consent of a parent or legal guardian and his/her identification.
15. In the implementation of these data protection rights, F4ntec is committed to providing a timely and transparent response to your requests.

Why F4ntec Uses Your Personal Data

16. F4ntec uses your personal data to provide the services requested by you and to process your requests and inquiries. Your personal data is also used for the cookies and tracking utilized in the Websites to distinguish you from other users, to improve your use of these interfaces, and to ensure that content in the Websites and other relevant interfaces is presented in the most effective manner for you. 17. Additional information about our use of cookies and tracking may be found in our Cookies Policy below.

The Types of Personal Data We Collect And How We Use It, Including Third-Party Use

18. The personal data collected and used by F4ntec is limited to the data necessary for us to provide you with services we supply in the course of our ongoing business activities, while operating under the relevant data protection and other regulatory obligations for each data subject and for combatting fraud. Access to your data, including physical access, is limited to only those appropriately-designated employees of F4ntec and third parties who have contracted with us, and who utilize it exclusively for the purposes outlined below. 19. There may be circumstances in which we process sensitive personal information, in order to carry out our activities, such as location information for shipping purposes. In such a case, we will only use this information for these purposes and will delete it when the purpose for which the information was collected or processed is terminated, unless there is a legal obligation not to delete this information. 20. The personal data collected and processed is both general in nature, (for example, for technical purposes) and may include, depending on the Services you select and utilize, personal data such as your name, contact details, some identifying numbers, the name of your internet provider, your IP address, browser type, system software, and geo-location, as well as the websites you have visited before being transferred to the F4ntec Websites, including keywords used for searches and the sites from which you have been transferred (e.g., search engine or linked content). 21. There may be circumstances in which automatic processing of your personal data may occur. As is true of most organizations operating websites, we gather certain information automatically and store it in log files, as required by regulation. This information includes but is not limited to IP addresses, type of browser, Internet service provider, referring and exit pages, operating systems, a date/time stamp and clickstream data. We may use this information to analyze trends, to administer the Websites, to track users’ movements through them and to gather information about our user base as a whole. We may link this automatically-collected data to personal data for legitimate purposes, such as to detect and prevent fraudulent activity; and for other legally-authorized purposes. 22. When you receive services from F4ntec through the Websites and other electronic interfaces, you may also be directed to third-party processors. When we use such third-party processors, we rely on the third-party service provider to process personal data in order to provide certain services; and we contractually require them to comply with the data protection and other laws and regulations applicable to their processing services. a. Please check the respective service provider’s relevant data protection terms and compliance with applicable laws prior to usage of any such processor’s services. The same applies to any links to and from websites of third-party networks, advertisers and affiliates. b. Such third-party websites are governed solely by such third parties’ data protection policies: you are advised to be careful and check any such third party’s privacy policies and compliance with laws, prior to supplying them with any of your personal data. 23. In order to provide some of the F4ntec services, we may share some of the data we collect from you with third parties such as vendors and other service providers who are engaged by us or are working with us. This data may also be shared with these parties for analytics purposes, which may require the reproduction and display of your information in an aggregated and anonymized manner that will not in any way identify you personally. 24. For more information about opting out of having your web browsing information used for behavioral advertising purposes, please visit www.aboutads.info/choices if you are in the United States and if you are in the EU, please visit www.youronlinechoices.eu/. In other locations, please be in direct touch with us at: dpo@f4ntec.com. 25. F4ntec may also disclose your data to a third party if we are required to do so by applicable law, court order or governmental regulation; or if such disclosure is otherwise authorized and necessary in support of any criminal or legal investigation or proceeding in accordance with applicable laws and regulations. 26. We may need to transfer the data submitted by you for the purposes described above to third parties in locations outside the country in which you are physically located, potentially including countries which may not require an adequate level of protection for your personal data compared with that provided in your country. By accepting this Policy, you consent to such data transfer as described in this section.

Other Uses of Your Personal Data

In addition to the uses identified elsewhere in this Policy, we use the personal data we collect to:

27. Send information or content to you which we think may be of interest to you by post, email, mobile device alerts, or other means and send you marketing communications relating to our activities;

28. Promote use of F4ntec Services to you, and share promotional and information content with you in accordance with your communication preferences;

29. Send information to you regarding changes to our terms of use, this Policy, other policies, or other legal agreements;

30. Meet legal requirements.

F4ntec’s Protection of Your Personal Data

31. We have taken all reasonable, industry-standard technical and organizational measures to protect your personal data against loss, alteration, theft or access by unauthorized third parties.

32. We will not sell, share, transfer or use the data we collect from you for purposes other than those purposes stated expressly in this Policy.

33. We will delete your personal data where the purpose for which the data was being collected or processed ceases to apply, or if applicable data protection regulations require us to delete such personal data.

34. The above notwithstanding, F4ntec will not be liable or responsible in any way, including financially, for any damage or loss resulting from the improper use or any breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to, your personal data.