Settleline LLC (“Settleline”, “we”, “us”) respects your privacy. This policy describes the personal data we process, why we process it, the legal bases we rely on, and the rights available to you, including under the EU and UK General Data Protection Regulation (“GDPR”).
1. Who is responsible for your data
Settleline LLC is the controller for personal data processed about visitors to our website and buyers using our hosted checkout. Where a seller uses our Services to accept payments, the seller and Settleline each process personal data for their own purposes. Our regulated payment partners act as controllers or processors of card data as required by their role.
2. Data we collect
We process the following categories of personal data:
- Transaction data: the amount, currency, reference, item description, and status of a payment.
- Contact data: an email address you provide for a receipt or a support request.
- Limited card data: card details are entered on the hosted checkout and handled by our PCI DSS compliant payment partners. We receive only limited information such as the card brand, expiry, and last four digits. We do not store full card numbers or security codes.
- Technical data: IP address, device and browser information, and similar data collected to operate and secure the Services and to screen for fraud.
3. How we use data and our legal bases
- To provide the Services and process payments (performance of a contract).
- To prevent fraud and secure the Services (legitimate interests and legal obligation).
- To provide receipts and respond to support requests (contract and legitimate interests).
- To comply with legal, tax, and anti-money-laundering obligations (legal obligation).
4. Sharing your data
We share personal data with our payment processing partners to complete a transaction, with the seller you paid so they can fulfil and account for your purchase, and with service providers who help us operate the Services under appropriate contractual safeguards. We may also share data where required by law or to protect our rights. We do not sell personal data.
5. International transfers
Where personal data is transferred outside the European Economic Area or the United Kingdom, we rely on appropriate safeguards such as the European Commission’s Standard Contractual Clauses or an adequacy decision, so that your data remains protected.
6. Data retention
We keep personal data only for as long as necessary for the purposes described above, including to meet legal, accounting, and reporting obligations. Transaction records are typically retained for the period required by applicable financial regulations.
7. Your rights
Subject to applicable law, you have the right to access your personal data, to have it corrected or erased, to restrict or object to processing, and to data portability. Where processing is based on consent, you may withdraw that consent at any time. You also have the right to lodge a complaint with your local data protection authority.
To exercise any of these rights, contact us at support@settle-line.com. We may need to verify your identity before responding.
8. Cookies
We use strictly necessary cookies to operate the website and hosted checkout and to keep them secure. Where we use any non-essential cookies, we will ask for your consent and provide controls to manage your preferences.
9. Security
We use technical and organisational measures to protect personal data, including encryption in transit (TLS) and access controls. Card data is handled by PCI DSS compliant partners. No method of transmission or storage is completely secure, but we work to protect your data and to respond promptly to any incident.
10. Changes to this policy
We may update this policy from time to time. We will post the updated policy with a new effective date and, where appropriate, provide additional notice.
11. Contact
For privacy questions or to exercise your rights, contact support@settle-line.com. Our full company details are on the company details page.
Questions about this document? Contact support@settle-line.com.