Privacy Policy

Privacy Policy for Compass CartsEffective Date: October 15, 2025At Compass Carts ("we," "us," or "our"), we are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your data when you visit our website at compascarts.com (the "Site"), make purchases, book meetings via integrated tools like Calendly, or interact with our marketing (e.g., via Meta or LinkedIn ads). We comply with applicable laws, including the EU General Data Protection Regulation (GDPR) for European users and the Australian Privacy Principles for Australian users.If you do not agree with this Privacy Policy, please do not use our Site or services. We may update this policy periodically; changes will be posted here with an updated effective date. Continued use after changes constitutes acceptance.Data Controller and Contact InformationData Controller: Compass Carts LLC.
Address: 1445 Valleyhigh Dr NW Suite 7303, Rochester, MN 55901
Email: support@compascarts.com
Phone: +1 507-974-9525 For EU/AU users, you may also contact your local data protection authority (e.g., ICO in the UK or OAIC in Australia) for complaints.Types of Personal Data We CollectWe collect the following data to provide our automotive aftermarket services, process orders, and enhance user experience:
  1. Personal Identification Information: Name, email address, phone number, shipping/billing address, and company details (for B2B inquiries).
    Example: Provided during account registration, product purchases, or SEMA meeting bookings via Calendly.
  2. Account and Usage Details: Username, password, purchase history, browsing behavior (e.g., viewed products), and interaction data (e.g., ad clicks from Meta/LinkedIn).
    Example: Saved preferences for custom parts recommendations.
  3. Payment Information: Credit/debit card details, billing address (processed securely via third-party providers like Stripe; we do not store full card numbers).
    Example: Collected at checkout for orders.
  4. Technical Data: IP address, browser type/version, device ID, operating system, location (approximate, for ad targeting), and cookies/web beacons.
    Example: Automatically logged to optimize Site performance.
  5. Marketing and Engagement Data: Responses to surveys, newsletter subscriptions, or event registrations (e.g., SEMA booth visits).
    Example: Email opt-ins for promotions on custom automotive parts.
We do not collect sensitive data (e.g., health or racial information) unless voluntarily provided for specific B2B customizations.How We Collect Your Data
  • Directly from You: Via forms (e.g., contact, booking, checkout), account creation, or email interactions.
  • Automatically: Through cookies, server logs, and analytics tools (e.g., Google Analytics) when you browse the Site.
  • From Third Parties: Social media (e.g., Meta/LinkedIn logins), payment processors, or scheduling tools (e.g., Calendly for meeting bookings).
  • Indirectly: Aggregated ad platforms for retargeting (e.g., users who engage with SEMA ads).
How and Why We Use Your DataWe use your data to:
  • Process orders, manage accounts, and fulfill deliveries for custom parts.
  • Facilitate bookings (e.g., SEMA meetings via Calendly) and provide customer support.
  • Personalize experiences, such as product recommendations based on past purchases.
  • Send marketing communications (e.g., newsletters on aftermarket innovations) with your consent.
  • Analyze Site usage for improvements and conduct market research.
  • Comply with legal obligations (e.g., tax reporting) and prevent fraud.
  • Target ads on platforms like Meta/LinkedIn to reach relevant businesses.
Legal Basis for Processing (GDPR)
  • Consent: For marketing emails or non-essential cookies (you can withdraw anytime).
  • Contract: To process orders or bookings.
  • Legitimate Interests: For analytics, fraud prevention, and personalized ads (balanced against your rights).
  • Legal Obligation: For compliance (e.g., record-keeping).
Sharing Your DataWe share data only as necessary:
  • Service Providers: Payment processors (e.g., Stripe), scheduling tools (e.g., Calendly), email services (e.g., Mailchimp), and analytics (e.g., Google).
  • Business Partners: Affiliates or SEMA organizers for event coordination (with consent).
  • Legal Requirements: To authorities if required (e.g., subpoenas).
  • Marketing: Aggregated/anonymized data with ad platforms; personalized sharing only with opt-in.
We do not sell your data. All recipients are bound by confidentiality agreements.
International Data TransfersAs a US-based company, we may transfer data to the US or other non-EU/EEA countries (e.g., for cloud hosting). For EU users, we use Standard Contractual Clauses (SCCs) or adequacy decisions to ensure GDPR-level protection. Australian users' data is handled per APPs, with equivalent safeguards.Data Storage, Security, and Retention
  • Security: We use SSL encryption, firewalls, and access controls. Third parties undergo security audits.
  • Retention: Order data for 7 years (tax/compliance); marketing data until opt-out; technical data for 26 months. We delete or anonymize data when no longer needed.
  • Erasure: Upon request or policy, data is securely deleted.
Cookies and Tracking TechnologiesOur Site uses cookies for functionality (e.g., cart persistence), analytics (e.g., traffic patterns), and advertising (e.g., retargeting SEMA ads). Essential cookies cannot be disabled; others can via browser settings or our cookie banner.
  • Types: First-party (ours) and third-party (e.g., Meta Pixel for ad tracking).
  • Management: See allaboutcookies.org or our Cookie Policy [link if separate].
You can opt out of targeted ads via Network Advertising Initiative.
Your RightsUnder GDPR/APPs, you have:
  • Access: Request a copy of your data.
  • Rectification: Correct inaccuracies.
  • Erasure ("Right to be Forgotten"): Delete data (subject to legal holds).
  • Restriction/Objection: Limit processing or object (e.g., to marketing).
  • Portability: Receive data in a structured format.
  • Withdraw Consent: At any time, without affecting prior processing.
To exercise rights, email privacy@compascarts.com (response within 1 month). We verify requests to prevent unauthorized access.Children's PrivacyOur Site is not for children under 16. We do not knowingly collect their data.Changes to This PolicyWe may update this policy; check periodically. Major changes will be notified via email or Site notice.Contact UsFor questions, contact:
support@compascarts.com
+1 507-974-9525
Compass Carts Inc., 1445 Valleyhigh Dr NW, Suite 7303, Rochester, MN 55901 Thank you for trusting Compass Carts with your data.