Contents
- Overview
- Who We Are
- Information We Collect
- How We Use Your Information
- Legal Basis for Processing
- Information Sharing and Third Parties
- Payment Data
- Data Storage and Security
- Data Retention
- Your Rights
- International Data Transfers
- Cookies and Analytics
- Children's Privacy
- Changes to This Policy
- Contact Us
Your privacy matters to us. This Privacy Policy explains how OneTill collects, uses, stores, shares, and protects your personal information when you use the OneTill point-of-sale application, the OneTill companion WordPress plugin, the onetill.app website, and related services (collectively, the "Service").
This policy is designed to comply with the Personal Information Protection and Electronic Documents Act (PIPEDA), Alberta's Personal Information Protection Act (PIPA), the General Data Protection Regulation (GDPR) for users in the European Economic Area, and other applicable privacy laws.
1. Overview
OneTill is a point-of-sale application that connects your WooCommerce store to a Stripe smart terminal device (such as the S700 or S710) for in-person selling. To provide this service, we need to access and process certain data from your WooCommerce store, your Stripe account, and your use of the Application. We are committed to collecting only the data necessary to provide the Service and to handling that data responsibly.
Key points:
OneTill never sees, stores, or processes payment card data. All card data is handled entirely by Stripe within their PCI-compliant environment. OneTill does not sell your personal information to third parties. You can request access to, correction of, or deletion of your personal information at any time.
2. Who We Are
OneTill is a registered trade name (ONETILL) operating as a sole proprietorship registered in the Province of Alberta, Canada (Registration No. REG3018).
Privacy accountability contact:
- Email: privacy@onetill.app
- Web: onetill.app
For the purposes of the GDPR, OneTill is the data controller for information collected through the onetill.app website and the subscription/billing relationship. With respect to your WooCommerce store data that passes through the Companion Plugin and the Application, OneTill acts as a data processor operating under your instructions.
3. Information We Collect
3.1 Information You Provide
| Data Category | Examples | Purpose |
|---|---|---|
| Account information | Email address, business name | Subscription management, communication, support |
| WooCommerce store credentials | Store URL, REST API consumer key/secret | Connecting the Application to your store |
| Billing information | Payment method details (processed and stored by Stripe, not by OneTill) | Subscription billing |
| Support communications | Emails, messages, attached files | Providing customer support |
3.2 Information Synchronized from Your WooCommerce Store
To provide the point-of-sale functionality, the Application and Companion Plugin access and synchronize the following data from your WooCommerce store:
| Data Category | Examples | Purpose |
|---|---|---|
| Product catalog | Product names, descriptions, SKUs, barcodes, prices, images, categories, variations, stock levels | Displaying and searching products in the POS, barcode scanning |
| Order data | Order line items, totals, tax amounts, payment method, Stripe transaction IDs, applied coupons, timestamps | Creating and synchronizing orders between POS and WooCommerce |
| Customer data | Customer name, email address, phone number (when customer lookup or digital receipts are used) | Attaching customers to orders, sending digital receipts |
| Tax settings | Tax rates, tax classes | Calculating tax on POS transactions |
| Coupon data | Coupon codes, discount rules | Validating and applying coupons at the POS |
| Store settings | Currency, store address, timezone | Configuring the Application to match your store |
This data is cached locally on the Device in an encrypted SQLite database for offline functionality and performance. The local cache is synchronized with your WooCommerce store as described in our Terms and Conditions.
3.3 Information Collected Automatically
| Data Category | Examples | Purpose |
|---|---|---|
| Device information | Device model, operating system version, application version | Technical support, compatibility, bug diagnosis |
| Usage analytics | Feature usage patterns, screen views, session duration, crash reports | Improving the Service, identifying bugs |
| Connectivity status | Online/offline events, sync success/failure | Monitoring service reliability, troubleshooting |
| Website analytics | Page views, referral source, browser type, approximate location (city-level) | Improving the website, understanding how visitors find us |
3.4 Information We Do NOT Collect
- Payment card data: Credit card numbers, debit card numbers, CVVs, PINs, or any other cardholder data. All card data is processed entirely by Stripe within their PCI-compliant environment. OneTill never sees, stores, or transmits card data.
- Customer biometric data: We do not collect fingerprints, facial recognition data, or any other biometric identifiers.
- Precise geolocation: We do not track the GPS location of the Device.
4. How We Use Your Information
We use the information we collect for the following purposes:
- Providing the Service: Synchronizing your product catalog and orders, processing point-of-sale transactions (via Stripe), managing inventory, and enabling offline functionality.
- Account management: Managing your subscription, processing billing, and communicating account-related information.
- Customer support: Responding to your inquiries, troubleshooting issues, and providing technical assistance.
- Service improvement: Analyzing usage patterns to improve performance, fix bugs, and develop new features.
- Communication: Sending service-related notices (such as downtime alerts, billing confirmations, and security notifications). We may also send product updates and tips, from which you can unsubscribe at any time.
- Legal compliance: Complying with applicable laws, regulations, and legal processes.
- Security: Detecting and preventing fraud, abuse, and unauthorized access to the Service.
We do not use your information for automated decision-making or profiling that produces legal effects or similarly significant effects on you.
5. Legal Basis for Processing
Depending on your jurisdiction, we rely on the following legal bases for processing your personal information:
5.1 Canada (PIPEDA / Alberta PIPA)
Under Canadian privacy law, we process your information based on your consent, which you provide when you agree to our Terms and set up the Service. For information that is necessary to fulfill our contract with you (such as billing and providing the Service), we rely on implied consent as part of the commercial relationship. You may withdraw consent at any time by canceling your subscription and contacting us, subject to legal or contractual restrictions.
5.2 European Economic Area (GDPR)
For users in the EEA, we process personal data under the following bases:
- Contract performance: Processing necessary to provide the Service you have subscribed to.
- Legitimate interests: Improving the Service, ensuring security, and communicating product updates, where these interests are not overridden by your data protection rights.
- Consent: Where required, such as for marketing communications and non-essential analytics cookies.
- Legal obligation: Where required by applicable law.
6. Information Sharing and Third Parties
We do not sell your personal information. We share your information only in the following circumstances:
6.1 Service Providers
We use the following third-party service providers who may process your data on our behalf:
| Provider | Purpose | Data Shared |
|---|---|---|
| Stripe | Payment processing, subscription billing, Stripe Connect | Business name, email, Stripe account information, transaction data |
| Vercel | Website hosting | Website analytics (IP address, page views) |
| Cloudflare | DNS, security, performance | Web traffic data |
| Supabase | Waitlist/email capture database | Email address (only if you sign up for the waitlist) |
| Resend | Transactional email delivery | Email address, email content |
| Mixpanel | Product analytics | Anonymous usage events, device type, feature usage |
Each service provider is contractually obligated to protect your information and use it only for the purposes for which it was provided.
6.2 Your WooCommerce Store
The Application synchronizes data with your WooCommerce store via the REST API endpoints provided by the Companion Plugin. This data flows directly between the Device/Application and your WordPress server. You control your own WordPress hosting environment and are responsible for its security.
6.3 Legal Requirements
We may disclose your information if required by law, subpoena, court order, or government request, or if we believe in good faith that disclosure is necessary to protect our rights, your safety, or the safety of others.
6.4 Business Transfers
If OneTill is involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will provide notice before your personal information becomes subject to a different privacy policy.
7. Payment Data
OneTill does not process, store, or have access to payment card data.
All in-person card payments are processed entirely by Stripe through their Terminal SDK on the Device. Stripe renders the payment UI (card entry, NFC tap, PIN entry). Card data never passes through OneTill's code, servers, or databases. OneTill is not in PCI scope.
When you provide personal data in connection with payment processing, Stripe receives that personal data and processes it in accordance with Stripe's Privacy Policy.
OneTill does receive and store non-sensitive transaction metadata from Stripe, including transaction IDs, amounts, currency, payment method type (e.g., "card" or "cash"), and timestamps. This metadata is used to create and synchronize orders with your WooCommerce store.
8. Data Storage and Security
8.1 Where Data Is Stored
- On the Device: Product catalog, pending orders, and settings are cached locally on the Stripe smart terminal in an encrypted SQLite database. This data enables offline functionality.
- On your WordPress server: All order and product data synchronized through the Companion Plugin is stored on your own WordPress/WooCommerce installation. You control this data and your hosting environment.
- On OneTill servers: Subscription information, license data, analytics, and support communications are stored on servers operated by our infrastructure providers. Our primary infrastructure is hosted in North America.
- On Stripe's servers: Payment and billing data is stored by Stripe in accordance with their privacy and security policies.
8.2 Security Measures
We implement appropriate technical and organizational measures to protect your information, including:
- Encryption of data in transit (TLS/HTTPS) for all communications between the Application, the Companion Plugin, and our servers
- Encrypted local storage on the Device
- WooCommerce REST API authentication using consumer key/secret pairs
- Access controls limiting who within our organization can access personal data
- Regular security reviews of our infrastructure and code
No method of transmission over the internet or electronic storage is 100% secure. While we strive to use commercially reasonable means to protect your information, we cannot guarantee its absolute security.
8.3 Breach Notification
In the event of a data breach that poses a real risk of significant harm to you, we will notify you and the applicable privacy authorities as required by PIPEDA, Alberta PIPA, the GDPR, or other applicable law. We will provide notification as promptly as possible and no later than required by law.
9. Data Retention
We retain your personal information only as long as necessary to fulfill the purposes for which it was collected:
- Account and subscription data: Retained for the duration of your subscription and for a reasonable period afterward to fulfill legal and accounting obligations (typically up to 7 years for financial records).
- Local Device cache: Product catalog and order data cached on the Device are retained until you uninstall the Application or factory-reset the Device.
- Analytics data: Aggregated and anonymized analytics data may be retained indefinitely. Identifiable usage data is retained for up to 24 months.
- Support communications: Retained for up to 3 years after resolution to assist with recurring issues and for quality improvement.
- Waitlist email addresses: Retained until you unsubscribe or we no longer need them for the purpose collected, whichever comes first.
When personal information is no longer needed, we will securely delete or anonymize it.
10. Your Rights
10.1 Rights Under Canadian Privacy Law (PIPEDA / Alberta PIPA)
As a Canadian resident, you have the right to:
- Access: Request access to the personal information we hold about you.
- Correction: Request correction of inaccurate or incomplete personal information.
- Withdrawal of consent: Withdraw your consent to the collection, use, or disclosure of your personal information, subject to legal or contractual restrictions. Withdrawal may affect our ability to provide the Service.
- Complaint: File a complaint with the Office of the Privacy Commissioner of Canada or, for Alberta residents, the Office of the Information and Privacy Commissioner of Alberta.
10.2 Rights Under GDPR (EEA Residents)
If you are located in the European Economic Area, you have the additional right to:
- Erasure: Request deletion of your personal data ("right to be forgotten").
- Restriction: Request restriction of processing of your personal data.
- Portability: Receive your personal data in a structured, machine-readable format.
- Objection: Object to processing of your personal data based on legitimate interests.
- Complaint: Lodge a complaint with your local data protection authority.
10.3 Exercising Your Rights
To exercise any of these rights, contact us at privacy@onetill.app. We will respond to your request within 30 days (or as required by applicable law). We may need to verify your identity before processing your request. There is no fee for exercising your rights, unless requests are manifestly unfounded or excessive.
11. International Data Transfers
OneTill is based in Canada. Our service providers may store or process data in the United States or other countries. When your personal information is transferred outside of Canada or the EEA, we ensure that adequate safeguards are in place:
- Canada has been recognized by the European Commission as providing an adequate level of data protection under the GDPR.
- For transfers to countries not recognized as providing adequate protection, we rely on standard contractual clauses or other appropriate safeguards as required by applicable law.
- Under PIPEDA, organizations remain accountable for personal information transferred to third parties, including those in other jurisdictions. We require our service providers to protect your information to a comparable standard.
12. Cookies and Analytics
12.1 Website (onetill.app)
Our website may use the following types of cookies and similar technologies:
- Essential cookies: Necessary for the website to function (e.g., remembering your session). These cannot be disabled.
- Analytics cookies: Help us understand how visitors interact with our website. We use privacy-respecting analytics. You can opt out of analytics cookies via your browser settings or our cookie preferences (if applicable).
We do not use advertising cookies or tracking pixels. We do not engage in cross-site tracking.
12.2 Application
The OneTill Application does not use cookies. Usage analytics in the Application are collected via Mixpanel and are used solely to improve the Service. Analytics can be configured in the Application settings.
13. Children's Privacy
The Service is intended for use by businesses and individuals who are at least 18 years old (or the age of legal majority in their jurisdiction). We do not knowingly collect personal information from children under 18. If we become aware that we have collected personal information from a child under 18, we will take steps to delete that information promptly.
14. Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. If we make material changes, we will notify you by email or by posting a prominent notice on our website at least 30 days before the changes take effect. The "Last updated" date at the top of this page indicates when the policy was last revised.
We encourage you to review this policy periodically. Your continued use of the Service after the effective date of any changes constitutes your acceptance of the updated policy.
15. Contact Us
If you have any questions about this Privacy Policy, want to exercise your privacy rights, or have a privacy-related complaint, please contact us:
- Privacy inquiries: privacy@onetill.app
- General support: support@onetill.app
- Web: onetill.app
If you are not satisfied with our response, you may file a complaint with the applicable privacy authority:
- Canada: Office of the Privacy Commissioner of Canada
- Alberta: Office of the Information and Privacy Commissioner of Alberta
- EEA: Your local Data Protection Authority