ediplug

Legal

Privacy Policy

Last updated: April 1, 2026

Contents

1. Overview2. Information We Collect3. How We Use Your Information4. Data Retention5. How We Share Your Information6. Data Security7. Your Rights8. Cookies & Tracking9. Third-Party Links10. Children's Privacy11. Changes to This Policy12. Contact Us

1. Overview

EDIPlug ("we", "our", or "us") operates an EDI (Electronic Data Interchange) connectivity platform for retail suppliers. This Privacy Policy explains how we collect, use, disclose, and protect information when you visit our website (ediplug.com) or use our EDI platform services.

We are committed to handling your data with transparency. If you have any questions, contact us at support@ediplug.com.

2. Information We Collect

2.1 Information You Provide

  • ·Account registration information: name, business name, email address, phone number, billing address.
  • ·Payment information: processed via our third-party payment processor; we do not store full card numbers.
  • ·Onboarding information: trading partner identifiers, retailer credentials, EDI configuration data, and business contact details necessary to set up your EDI connections.
  • ·Communications: emails, support tickets, and live chat messages sent to our team.
  • ·Demo and contact form submissions.

2.2 EDI Transaction Data

  • ·EDI documents exchanged on your behalf with trading partners, including Purchase Orders (850), Advance Ship Notices (856), Invoices (810), Functional Acknowledgments (997), and other transaction sets.
  • ·Transaction metadata: document IDs, timestamps, processing status, retailer identifiers, and error logs.
  • ·This data belongs to you. EDIPlug processes it solely to deliver the agreed service.

2.3 Automatically Collected Data

  • ·Log data: IP address, browser type, pages visited, referring URLs, and access timestamps when you visit our website.
  • ·Platform usage data: feature usage patterns, dashboard interactions, and session activity within the EDIPlug platform.
  • ·Cookies and similar tracking technologies (see Section 8).

3. How We Use Your Information

  • ·Providing and operating our EDI connectivity services.
  • ·Processing and routing EDI documents between you and your trading partners.
  • ·Communicating service updates, compliance changes, and account notifications.
  • ·Responding to support requests and managing your account.
  • ·Billing and subscription management.
  • ·Improving platform features, reliability, and performance.
  • ·Meeting legal and regulatory obligations.
  • ·Detecting and preventing fraud, abuse, or unauthorized access.
  • ·Sending marketing communications where you have consented (you may opt out at any time).

4. Data Retention

EDI transaction data and document history are retained for a minimum of 12 months and made available through your self-service dashboard at no additional charge. This allows you to access, review, and export your own transaction records.

Account data is retained for as long as your account remains active and for a reasonable period thereafter to satisfy legal and business obligations.

If you close your account, we will retain your data for up to 90 days to facilitate any transition needs, after which personal data will be deleted or anonymised, unless a longer retention period is required by law.

5. How We Share Your Information

We do not sell your personal or business data. We share information only in the following circumstances:

5.1 Trading Partners

  • ·EDI documents are transmitted to the retailers and trading partners you instruct us to connect with. This is the core function of the service.

5.2 Service Providers

  • ·We use carefully vetted third-party providers for cloud infrastructure (SOC 2 Type II certified), payment processing, email delivery, and analytics. These providers process data only on our instruction and under strict data processing agreements.

5.3 Legal Requirements

  • ·We may disclose information if required by law, court order, or government authority, or when necessary to protect the rights, property, or safety of EDIPlug, our clients, or the public.

5.4 Business Transfers

  • ·In the event of a merger, acquisition, or sale of assets, your data may be transferred as part of that transaction. We will notify you via email or prominent notice on our website before your data becomes subject to a different privacy policy.

6. Data Security

We take security seriously. EDIPlug employs the following measures to protect your data:

  • ·Encryption in transit: all data transmitted between your systems and ours uses TLS 1.3.
  • ·Encryption at rest: all stored data is encrypted using AES-256.
  • ·Infrastructure: our platform runs on SOC 2 Type II certified cloud infrastructure with strict access controls and audit logging.
  • ·AS2 connections: EDI transmission via AS2 uses digital certificates and message integrity verification.
  • ·Access controls: employee access to client data is on a need-to-know basis with multi-factor authentication enforced.
  • ·Incident response: we maintain a documented incident response plan and will notify affected clients of any data breach within 72 hours of discovery, as required by applicable law.

7. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

  • ·Access: request a copy of the personal data we hold about you.
  • ·Correction: request correction of inaccurate or incomplete data.
  • ·Deletion: request deletion of your personal data, subject to legal retention requirements.
  • ·Portability: receive your data in a structured, machine-readable format.
  • ·Objection: object to processing for direct marketing purposes.
  • ·Restriction: request that we restrict processing in certain circumstances.

To exercise any of these rights, email us at support@ediplug.com. We will respond within 30 days.

8. Cookies & Tracking

We use cookies and similar technologies on our website to:

  • ·Remember your session and authentication state.
  • ·Understand how visitors use our site (analytics).
  • ·Improve website performance and usability.

You can control cookies through your browser settings. Disabling certain cookies may affect website functionality. We do not use tracking cookies for third-party advertising.

9. Third-Party Links

Our website may contain links to third-party sites (retailer portals, partner resources, etc.). This Privacy Policy does not apply to those sites. We encourage you to review the privacy policies of any third-party services you visit.

10. Children's Privacy

Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If you believe a minor has provided us with personal data, please contact us immediately at support@ediplug.com.

11. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will notify you by email (to the address on your account) or by posting a prominent notice on our website at least 14 days before the changes take effect.

The "Last Updated" date at the top of this page reflects when the policy was last revised. Continued use of our services after the effective date constitutes your acceptance of the updated policy.

12. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or how we handle your data, please reach out:

Support: support@ediplug.com

Sales: sales@ediplug.com

© 2026 EDIPlug. All rights reserved.

Privacy PolicyTerms of ServiceContact