ACH Merchants' Privacy Policy
Last updated May 16, 2025
This Privacy Notice for ACH MERCHANTS (POWERED BY AAA SOFTWARE SOLUTIONS LLC) . (“we,” “us,” or “our”) outlines the process by which we may access, collect, store, use, and/or share your personal information when you use our services (“Services”), including when you:
- Visit our website at https://achmerchants.com/ or any other website of ours that contains a link to this Privacy Notice.
- Engage with us in other relevant ways, such as through sales, marketing, or events.
Do you have any questions or concerns? This Privacy Notice will assist you in comprehending your privacy rights and options. We are accountable for the decisions regarding the processing of your personal information. Please refrain from utilizing our Services if you are not in agreement with our policies and practices. Please do not hesitate to reach out to us at info@achmerchants.com if you have any further queries or concerns.
SUMMARY OF IMPORTANT CONCEPTS
This summary summarizes the primary points of our Privacy Notice. For additional information on any of these subjects, please refer to the link provided after each key point or utilize the table of contents below to locate the desired section.
- What types of confidential information do we handle? We may process personal information as a result of your interactions with us and the Services, the products and features you use, and the choices you make when you visit, use, or navigate our Services. Discover additional information regarding the personal information you provide to us.
- Is any sensitive personal information processed by us? For instance, your religious beliefs, sexual orientation, and racial or ethnic origins may be deemed “sensitive” or “special” in specific jurisdictions. We may process sensitive personal information when it is necessary, either with your consent or in accordance with the applicable law. Discover additional information regarding the sensitive data we handle.
Information may be obtained from public databases, marketing partners, social media platforms, and other external sources. Learn more about the information that has been gathered from other sources. - What is the method by which we handle your data? We use your information to administer, enhance, and provide our Services, communicate with you to prevent fraud and security, and ensure that we are in compliance with the law. Additionally, we may utilize your information for other purposes with your authorization. Discover additional information regarding our data processing procedures.
- What are the circumstances and parties with whom we share personal information? In specific circumstances and with specific categories of third parties, we may disclose information. Learn more about the circumstances under which we disclose your personal information and the individuals with whom we share it.
- What methods do we employ to ensure the security of your information? We have implemented sufficient organizational and technical processes and procedures to safeguard your personal information. Nevertheless, no electronic transmission over the internet or information storage technology can be guaranteed to be 100% secure. Consequently, we cannot guarantee or warrant that hackers, cybercriminals, or other unauthorized third parties will not be able to circumvent our security measures and improperly collect, access, steal, or modify your information. Discover more about the methods we employ to ensure the security of your information.
- What are your rights? The applicable privacy law may confer specific rights on you with respect to your personal information, contingent upon your geographic location. Discover additional information regarding your privacy rights.
- What is the method by which you exercise your rights? Submitting a data subject access request or contacting us is the most straightforward method of exercising your rights. We will evaluate and respond to any request in compliance with relevant data protection regulations.
Would you like to obtain additional information regarding our usage of any data we accumulate? Examine the Privacy Notice in its entirety.
TABLE OF CONTENTS
- 1. WHAT KIND OF INFORMATION DO WE COLLECT?
- 2. WHAT IS THE PROCESSING OF YOUR INFORMATION?
- 3. WITH WHOM AND AT WHAT TIME DO WE SHARE YOUR PERSONAL INFORMATION?
- 4. HOW LONG DO WE KEEP YOUR INFORMATION?
- 5. HOW DO WE ENSURE THE SECURITY OF YOUR INFORMATION?
- 6. DO WE COLLECT INFORMATION FROM MINORS?
- 7. WHAT ARE YOUR PRIVACY RIGHTS?
- 8. CONTROLS FOR FEATURES THAT DO NOT RECOGNIZE
- 9. Are there any specific privacy rights that United States residents are entitled to?
- 10. IS IT POSSIBLE FOR US TO IMPROVE THIS NOTICE?
- 11. HOW MAY YOU CONTACT US REGARDING THIS NOTICE?
1. WHAT KIND OF INFORMATION DO WE COLLECT?
Personal information that you provide to us
In summary, we accumulate personal information that you submit to us.
We gather personal information that you voluntarily submit to us when you register for the Services, express an interest in obtaining information about us or our products and Services, participate in activities on the Services, or otherwise contact us.
Personal Information That You Have Provided. The personal information we collect is contingent upon the context of your interactions with us and the Services, the choices you make, and the products and features you use. The following are examples of personal information that we may collect:
- names phone numbers email addresses mailing addresses
- contact preferences
- authentication or contact information
- billing locations
- Job titles
Confidential Information: We process the following categories of sensitive information when necessary, with your consent or as otherwise permitted by applicable law:
- Financial Information
- Genetic Information
- Information Regarding Creditworthiness
We require that all personal information you submit to us be accurate, complete, and truthful. Additionally, you are required to inform us of any modifications to this information.
Google API: We will comply with the Google API Services User Data Policy, which includes the Limited Use requirements, when utilizing the information obtained from Google APIs.
Information obtained from external sources
In summary, we may acquire restricted amounts of data from public databases, marketing partners, and other external sources.
We may acquire information about you from other sources, such as public databases, joint marketing partners, affiliate programs, data providers, and other third parties, in order to improve our capacity to offer you relevant marketing, offers, and services and to update our records. For the purpose of targeted advertising and event promotion, this information encompasses mailing addresses, job titles, email addresses, phone numbers, intent data (or user behavior data), Internet Protocol (IP) addresses, social media profiles, social media URLs, and custom profiles.
2. WHAT IS THE PROCESSING OF YOUR INFORMATION?
In summary, we utilize your information to administer, enhance, and provide our Services, communicate with you to prevent fraud and security, and ensure that we are in compliance with the law. Additionally, we may utilize your information for other purposes with your authorization.
Your personal information is processed for a variety of purposes, which are contingent upon your interactions with our Services, such as:
- To simplify the process of account creation and authentication, as well as to oversee user accounts in general. We may process your information to enable you to create and log in to your account, as well as to ensure that your account is functioning properly.
- To address user inquiries and provide assistance. In order to address your inquiries and resolve any potential issues you may have with the requested service, we may process your information.
- To solicit feedback. We may process your information as required to request feedback and to contact you regarding your use of our Services.
- To safeguard our services. We may process your information as part of our efforts to ensure the security and safety of our Services, which includes the prevention and monitoring of fraud.
- In order to fulfill our legal obligations. We may process your information to fulfill our legal obligations, respond to legal requests, and exercise, establish, or defend our legal rights.
3. WITH WHOM AND AT WHAT TIME DO WE SHARE YOUR PERSONAL INFORMATION?
In summary, we may disclose information in the specific circumstances outlined in this section and/or with the third parties listed below.
Consultants, vendors, and other third-party service providers. We may disclose your data to third-party vendors, service providers, contractors, or agents (“third parties”) who provide services on our behalf or for us and necessitate access to this information to perform their duties. Our third-party contracts are intended to protect your personal information. This implies that they are prohibited from utilizing your personal information unless we have given them permission to do so. Apart from us, they will not disclose your personal information to any other organization. Additionally, they are dedicated to safeguarding the data they manage on our behalf and preserving it for the duration that we specify.
The following are the categories of third parties with whom we may share personal information:
Additionally, we may be required to disclose your personal information in the following circumstances:
- Business Transfers. In conjunction with or during negotiations of any merger, sale of company assets, financing, or acquisition of all or a portion of our business by another company, we may disclose or transfer your information.
- Affiliates. We reserve the right to disclose your information to our affiliates, provided that they comply with this Privacy Notice. Our parent company and any subsidiaries, joint venture partners, or other companies that we control or are under common control with us are considered affiliates.
Business Associates. We may disclose your information to our business partners in order to provide you with specific products, services, or promotions.
4. FOR WHAT PERIOD OF TIME DO WE RETAIN YOUR INFORMATION?
In summary, we retain your information for the duration necessary to achieve the objectives delineated in this Privacy Notice, unless otherwise mandated by law.
Unless a prolonged retention period is required or permitted by law (such as tax, accounting, or other legal requirements), we will only retain your personal information for the duration necessary for the purposes outlined in this Privacy Notice. Personal information will not be retained beyond the duration of the user’s account with us, as no purpose of this notice necessitates it.
If there is no ongoing legitimate business need to process your personal information, we will either delete or anonymize it. If this is not feasible (e.g., due to backup archives containing your personal information), we will securely store your personal information and isolate it from any further processing until deletion is feasible.
5. HOW DO WE ENSURE THE SECURITY OF YOUR INFORMATION?
In summary, our objective is to safeguard your personal information by implementing a combination of technical and organizational security measures.
We have implemented technical and organizational security measures that are reasonable and appropriate in order to safeguard any personal information we process. Nevertheless, we cannot guarantee that hackers, cybercriminals, or other unauthorized third parties will not be able to defeat our security and improperly collect, access, steal, or modify your information, despite our safeguards and efforts to secure your information. No electronic transmission over the Internet or information storage technology can be totally secure. While we will make every effort to safeguard your personal information, the transmission of personal information to and from our Services is at your own risk. Access to the Services should be restricted to a secure environment.
6. DO WE COLLECT INFORMATION FROM MINORS?
In summary, we do not intentionally collect data from or market to minors under the age of 18.
We do not knowingly collect or solicit data from or market to minors under the age of 18, nor do we knowingly sell such personal information. By utilizing the Services, you certify that you are at least 18 years of age or that you are the parent or guardian of a minor dependent and provide your consent for the minor dependent’s use of the Services. In the event that we discover that personal information from users under the age of 18 has been collected, we will promptly deactivate the account and implement reasonable measures to remove the data from our records. Please notify us at info@achmerchants.com if you become aware of any data we may have collected from minors under the age of 18.
7. WHAT ARE YOUR PRIVACY RIGHTS?
In summary, you have the right to review, modify, or terminate your account at any time, subject to your country, province, or state of domicile.
Withdrawing your consent: You have the right to revoke your consent at any moment if we are relying on it to process your personal information, which may be expressed or implied, depending on the applicable law. You may revoke your consent at any time by contacting us using the information provided in the “HOW CAN YOU CONTACT US ABOUT THIS NOTICE?” section found below.
Nevertheless, it is important to note that the lawfulness of the processing prior to its withdrawal will not be impacted, nor will it affect the processing of your personal information that was conducted in reliance on lawful processing grounds other than consent, when applicable law permits.
Information Regarding Your Account
If you wish to review or modify the information in your account or terminate your account, you may do so by:
- Logging into your account settings and updating your user account.
- Use the contact information that has been provided to reach out to us.
We will deactivate or delete your account and information from our active databases upon your request to terminate your account. Nevertheless, we may maintain certain information in our files to prevent fraud, rectify issues, assist with investigations, enforce our legal terms, and/or comply with relevant legal requirements.
If you have any inquiries or feedback regarding your privacy rights, please do not hesitate to contact us at info@achmerchants.com.
8. CONTROLS FOR FEATURES THAT DO NOT RECOGNIZE
A Do-Not-Track (“DNT”) feature or setting is available in the majority of web browsers and certain mobile operating systems and applications. By activating this feature, you can indicate your privacy preference and object to the collection and monitoring of data regarding your online browsing activities. No uniform technology standard for the recognition and implementation of DNT signals has been established at this time. Consequently, we are unable to presently respond to DNT browser signals or any other mechanism that automatically communicates your preference not to be tracked online. In the event that a standard for online tracking is established that we are required to adhere to in the future, we will provide you with notification of this practice in a revised version of this Privacy Notice.
We are obligated by California law to inform you of our methods for responding to DNT signals from web browsers. We do not respond to DNT signals at this time due to the absence of an industry or legal standard for their recognition or respect.
9. Are there any specific privacy rights that United States residents are entitled to?
In Short: If you are a resident of California, Colorado, Connecticut, Delaware, Florida, Indiana, Iowa, Kentucky, Maryland, Minnesota, Montana, Nebraska, New Hampshire, New Jersey, Oregon, Rhode Island, Tennessee, Texas, Utah, or Virginia, you may have the right to request access to and receive details about the personal information we maintain about you and how we have processed it, correct inaccuracies, get a copy of, or delete your personal information. You may also have the right to withdraw your consent to our processing of your personal information. These rights may be limited in some circumstances by applicable law. More information is provided below.
Categories of Personal Information We Collect
The table below shows the categories of personal information we have collected in the past twelve (12) months. The table includes illustrative examples of each category and does not reflect the personal information we collect from you. For a comprehensive inventory of all personal information we process, please refer to the section “WHAT INFORMATION DO WE COLLECT?”
| Category | Examples | Collected |
|---|---|---|
| A. Identifiers | Contact details, such as real name, alias, postal address, telephone or mobile contact number, unique personal identifier, online identifier, Internet Protocol address, email address, and account name | NO |
| B. Personal information as defined in the California Customer Records statute | Name, contact information, education, employment, employment history, and financial information | NO |
| C. Protected classification characteristics under state or federal law | Gender, age, date of birth, race and ethnicity, national origin, marital status, and other demographic data | NO |
| D. Commercial information | Transaction information, purchase history, financial details, and payment information | NO |
| E. Biometric information | Fingerprints and voiceprints | NO |
| F. Internet or other similar network activity | Browsing history, search history, online behavior, interest data, and interactions with our and other websites, applications, systems, and advertisements | NO |
| G. Geolocation data | Device location | NO |
| H. Audio, electronic, sensory, or similar information | Images and audio, video or call recordings created in connection with our business activities | NO |
| I. Professional or employment-related information | Business contact details in order to provide you our Services at a business level or job title, work history, and professional qualifications if you apply for a job with us | NO |
| J. Education Information | Student records and directory information | NO |
| K. Inferences drawn from collected personal information | Inferences drawn from any of the collected personal information listed above to create a profile or summary about, for example, an individual’s preferences and characteristics | NO |
| L. Sensitive personal Information | NO |
In the event that you engage with us in person, online, by phone, or by mail, we may also collect additional personal information that is not included in these categories.
- Participating in client surveys or contests; Receiving assistance through our customer support channels; and
- to facilitate the delivery of our services and to address your inquiries.
Personal Information Sources
Find out more about the sources of personal information we collect in “WHAT INFORMATION DO WE COLLECT?”
Our Approach to Utilizing and Disseminating Personal Information
Your personal information may be utilized in automated processes and profiling that could have legal or similarly significant consequences for you. You can obtain additional information regarding our utilization of your personal information by consulting the “HOW DO WE PROCESS YOUR INFORMATION?” section.
Will your information be disclosed to any other parties?
We may share your personal information with our service providers in accordance with the terms of a written agreement between us and each service provider. Click on the “WHEN AND WITH WHOM DO WE SHARE YOUR PERSONAL INFORMATION?” section to learn more about the manner in which we disclose personal information.
We may utilize your personal information for our own business purposes, such as conducting internal research for technological development and demonstration. This is not regarded as the “selling” of your personal information.
In the previous twelve months, we have disclosed the following categories of personal information to third parties for a business or commercial purpose:
The categories of third parties to whom we disclosed personal information for a business or commercial purpose are detailed in the section titled “WHEN AND WITH WHOM DO WE SHARE YOUR PERSONAL INFORMATION?”
In the previous twelve months, we have either sold or shared the following categories of personal information with third parties:
The categories of third parties to whom we disclosed personal information are as follows:
- Services for User Account Registration and Authentication
Your Rights
You are entitled to certain privileges under the data protection laws of specific US states. Nevertheless, these rights are not absolute, and we may decline your request in specific circumstances, as permitted by law. These privileges encompass
- The right to be informed about whether or not your personal data is being processed.
- The right to examine your personal data
- The ability to rectify errors in your personal information.
- The right to request the deletion of your personal data
- The right to obtain a copy of the personal data you have previously shared with us.
- The right to exercise one’s liberties without fear of discrimination
- The right to opt out of the processing of your personal data if it is used for targeted advertising (or sharing as defined under California’s privacy law), the sale of personal data, or profiling in pursuance of decisions that produce legal or similarly significant effects (“profiling”).
You may also possess the following privileges, contingent upon your state of residence:
- The right to access the categories of personal data that are being processed, as permitted by applicable law, including the privacy law in Minnesota.
- The right to receive a list of the categories of third parties to which we have disclosed personal data, as permitted by applicable law, including the privacy laws of California, Delaware, and Maryland.
- The right to receive a list of specific third parties to whom we have disclosed personal data, as permitted by applicable law, including the privacy laws of Minnesota and Oregon.
- The right to review, comprehend, query, and rectify the profiling of personal data, as permitted by applicable law, including Minnesota’s privacy law.
- The right to restrict the use and disclosure of sensitive personal data, as permitted by applicable law, including the privacy law in California.
- The right to decline the collection of sensitive data and personal data that is collected through the operation of a voice or facial recognition feature, as permitted by applicable law, including the privacy law in Florida.
How to Exercise Your Rights
To exercise these rights, you may submit a data subject access request or consult the contact information provided at the bottom of this document.
By disabling cookies in Cookie Preference Settings, you have the option to forgo the sale of your personal information, targeted advertising, or profiling.
There are specific data protection regulations in the United States that allow you to designate an authorized agent to submit a request on your behalf. We may decline a request from an authorized agent who fails to provide evidence that they have been legitimately authorized to act on your behalf in accordance with the relevant laws.
Verification of Request
Upon receipt of your request, we will need to confirm your identity to ensure that you are the same individual with whom we have the information in our system. We will only utilize the personal information you have provided in your request to confirm your identity or authority to make the request. Nevertheless, if we are unable to confirm your identity based on the information we have on file, we may ask you to provide supplementary information to confirm your identity and to prevent fraud or security breaches.
If you submit the request through an authorized agent, we may need to collect additional information to verify your identity before processing your request. The agent will need to provide written and signed permission from you to submit the request on your behalf.
Appeals
In the event that we decline to address your request in accordance with specific data protection legislation in the United States, you have the right to appeal our decision by sending an email to info@achmerchants.com . We will provide you with a written explanation of the rationale behind any decisions made in response to the appeal, as well as any action that was taken or not taken. If your appeal is rejected, you have the option to file a complaint with the attorney general of your state.
The “Shine The Light” Law of California
The “Shine The Light” law, also known as California Civil Code Section 1798.83, allows our California residents to request and obtain information from us once a year at no cost. This information includes the names and addresses of all third parties with whom we shared personal information in the immediately preceding calendar year, as well as the categories of personal information that we disclosed to third parties for direct marketing purposes. Please submit your request in writing to us using the contact details provided in the section “HOW CAN YOU CONTACT US ABOUT THIS NOTICE?” if you are a California resident and wish to lodge such a request.
10. IS IT POSSIBLE FOR US TO IMPROVE THIS NOTICE?
In summary, we will revise this notice as required to ensure that it is in accordance with applicable laws.
We reserve the right to revise this Privacy Notice periodically. Updated versions of this Privacy Notice will be identified by an updated “Revised” date at the top. If we make substantial modifications to this Privacy Notice, we may notify you by either conspicuously posting a notice of the changes or by directly sending you a notification. We recommend that you frequently examine this Privacy Notice to remain informed about the methods we are using to safeguard your information.
11. HOW MAY YOU CONTACT US REGARDING THIS NOTICE?
If you have any concerns or comments regarding this notice, you may reach out to us via postal mail at the following address:
ACH MERCHANTS (POWERED BY AAA SOFTWARE SOLUTIONS LLC)
170-16 HILLSIDE AVE
JAMAICA, NY 11432
United States
Or by email at: info@achmerchants.com
