Privacy Policy

Who this applies to

This privacy policy covers personal data we process about (a) merchants who sign up for Oliver POS, (b) the staff of those merchants who log into Oliver, and (c) shoppers whose transactions are processed through Oliver POS by a merchant.

For shoppers: the merchant operating the store is the data controller for your data. Oliver POS is the data processor. If you have a question about how a specific shop uses your data, contact that shop. If you have a question about how Oliver as a processor handles data, contact us.

What data we collect

Merchant account data: business name, contact email, billing address, payment information for the Oliver subscription, and the WooCommerce store URL.

Staff data: name and email of each staff member a merchant grants register access to.

Shopper data (processed for merchants): the products purchased, the amount paid, the payment method, optionally the shopper's name and email if they choose to share it for receipts or loyalty. Payment card details are handled by our payment processors, not by Oliver — we do not store card numbers.

Usage data: anonymous analytics about how Oliver POS is used (which features are used, error reports, performance metrics). We use this to improve the product. You can opt out from the Oliver Hub settings.

How we use it

Merchant and staff data is used to operate the Oliver POS service, send service notifications, and provide support. Shopper data is processed on behalf of the merchant to complete transactions, synchronise with WooCommerce, and provide receipts. Usage data is used to improve the product.

Who we share with

We share data with: (a) the merchant's WooCommerce store (Oliver POS's whole purpose is to sync with it), (b) payment processors when a card is used (Stripe, Moneris, Vendara, etc. — only the data needed to complete the transaction), (c) sub-processors who provide infrastructure (hosting, email, analytics) — see our DPA for the full list.

We do not sell personal data. We do not share data with advertisers. We do not use shopper data for any purpose other than processing the transaction on behalf of the merchant.

Your rights

You have the right to access, correct, delete, port, or object to the processing of your personal data. For merchant accounts, most of these are self-service from the Oliver Hub. For everything else, email privacy@oliverpos.com and we'll respond within 30 days.

International transfers

Oliver is operated from Canada, with infrastructure in the United States and the European Union. Data may be transferred between these regions. We rely on Standard Contractual Clauses (SCCs) for EU-to- third-country transfers and on Canada's adequacy decision for EU-to-Canada transfers.

Retention

We retain merchant and staff data for the duration of the subscription plus 12 months after cancellation, then delete it. Shopper data retention is governed by the merchant's own retention policy.

Updates to this policy

We update this policy from time to time. The "last updated" date at the top reflects the most recent change. Material changes are announced by email to merchants.