Last updated: April 5, 2026
This Privacy Policy describes how VPayment Solutions LLC ("Company," "we," "us," or "our") collects, uses, stores, and protects information when you use ShopConnect, including the Chrome browser extension, web console, and all related services (collectively, the "Service"). This policy applies to all users: merchants, ISOs, agents, sub-agents, and their employees.
ShopConnect is a payment connector that enables merchants to process payments through their chosen payment processor while using their existing business software. To provide this service, we need to access certain data from your browser when you are on supported business software platforms.
The short version: We read invoice data from your business software to facilitate payments. We do not read, store, or transmit full credit card numbers. We do not sell your data. We do not use your data for advertising.
When you create an account, we collect:
When you or your ISO/agent configure a payment processor, we collect:
These credentials are encrypted at rest and are never exposed to the client-side application after initial entry. They are used solely to route payment requests to your configured processor.
When the extension is active on a supported business software platform, it reads:
When a payment is processed through ShopConnect, we record:
We collect standard usage data including:
We do not collect browsing history, keystrokes, or data from websites other than supported business software platforms.
This section specifically addresses data practices of the ShopConnect Chrome extension, as required by Google's Chrome Web Store Developer Program Policies.
The extension only activates on domains listed in its configuration — these are the websites of supported business software platforms. The extension does not activate on, read data from, or interact with any other websites, including search engines, social media, email, banking sites, or personal browsing.
On supported platforms, the extension reads only financial document data (invoice amounts, numbers, and associated customer names) necessary to facilitate payment processing. It does not read:
| Data Type | Destination | Purpose |
|---|---|---|
| Invoice data | ShopConnect servers | Display in payment interface, transaction records |
| Payment amount | Your payment processor's API | Process the transaction |
| Payment confirmation | Your business software (via extension) | Record payment status |
ShopConnect's use of data obtained through the Chrome extension complies with Google's Chrome Web Store Developer Program Policies, including the Limited Use requirements.
Specifically:
Upon first installation, the extension presents a data use disclosure within its interface. You must actively confirm this disclosure (via an explicit user action) before the extension begins reading financial data from business software platforms.
We use collected data for the following purposes:
| Purpose | Data Used | Legal Basis |
|---|---|---|
| Process payments | Invoice data, processor credentials | Contract performance |
| Transaction history & reporting | Transaction records | Contract performance |
| Account management | Account information | Contract performance |
| Service communications | Email, phone | Legitimate interest |
| Error detection & service improvement | Usage data, error logs | Legitimate interest |
| Security & fraud prevention | Account activity, transaction patterns | Legitimate interest / legal obligation |
| Legal compliance | Transaction records, account data | Legal obligation |
We make the following commitments about your data:
ShopConnect does not currently respond to Do Not Track (DNT) signals from browsers, as no uniform standard for honoring DNT signals has been established. However, as stated above, we do not engage in cross-site tracking for advertising purposes regardless of your DNT setting.
We implement the following security measures to protect your data:
While we implement commercially reasonable security measures, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security of your data.
We use third-party service providers ("sub-processors") to operate the Service. Each sub-processor is bound by data protection obligations no less protective than those in this Privacy Policy.
| Category | Function |
|---|---|
| Cloud infrastructure & database | Hosting, data storage, authentication |
| Payment processors | Transaction processing (as configured by you) |
| Email delivery | Account verification, service notifications |
| Error monitoring | Crash reporting, service reliability |
A current list of specific sub-processors and their locations is available upon request by contacting aashil@shopconnectpro.com.
We will notify you of any material changes to our sub-processor list that may affect the processing of your data.
| Data Type | Retention Period | Reason |
|---|---|---|
| Account information | Duration of account + 30 days | Service operation |
| Transaction records | Duration of account + 7 years | Financial recordkeeping requirements |
| Processor credentials | Duration of account (deleted on termination) | Service operation only |
| Usage data & error logs | 90 days | Service improvement |
Upon account termination, we delete or anonymize your data within the timeframes above, subject to our legal retention obligations.
Regardless of your location, we honor the following data rights for all users:
Submit requests to aashil@shopconnectpro.com with the subject line "Privacy Rights Request." We will:
We will not discriminate against you for exercising your privacy rights. You will not receive a different level of service or pricing for making a request.
If you are a California resident, you have the following additional rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):
In the preceding 12 months, we have collected the following categories of personal information as defined by the CCPA:
| Category | Collected | Sold | Shared for Ads |
|---|---|---|---|
| Identifiers (name, email, phone) | Yes | No | No |
| Commercial information (transactions) | Yes | No | No |
| Internet activity (usage data) | Yes | No | No |
| Professional information (business name) | Yes | No | No |
| Sensitive PI (processor credentials) | Yes | No | No |
To make a CCPA request, contact aashil@shopconnectpro.com. You may also designate an authorized agent to make a request on your behalf.
For merchants in healthcare verticals (medical, dental, chiropractic, veterinary, physical therapy, mental health, etc.):
Merchants in healthcare verticals remain responsible for their own HIPAA compliance obligations.
The Service is intended for use by businesses and their authorized adult employees. We do not knowingly collect personal information from children under the age of 13 (or 16 in applicable jurisdictions). If we become aware that we have collected personal information from a child, we will promptly delete that information.
Our servers and sub-processors are primarily located in the United States. If you access the Service from outside the United States, your data will be transferred to and processed in the United States. By using the Service, you consent to this transfer.
For users in the European Economic Area (EEA), United Kingdom, or other jurisdictions with data transfer restrictions, we rely on Standard Contractual Clauses or other appropriate safeguards as required by applicable law.
We may update this Privacy Policy from time to time. When we make material changes, we will:
Your continued use of the Service after the effective date of an updated Privacy Policy constitutes your acceptance of the changes.
If you have questions about this Privacy Policy, want to exercise your data rights, or have a privacy concern, contact us: