A2X and the GDPR

Learn more about GDPR, privacy policy changes and your consent

Ashley Schroder avatar
Written by Ashley Schroder
Updated over a week ago

The EU General Data Protection Regulation (GDPR) has set a new standard for how companies use and protect EU citizens’ data. Taken effect during May 2018. A2X already takes the security and privacy of your data seriously and will be meeting these new standards.

In this article, we will give an overview of the changes to our privacy policy and the data collected by A2X.

Accepting the policy

You will be prompted to accept the policy when you next log in to A2X. The banner will appear at the top of your screen, click the accept button to accept the updated policy.

If you wish to revoke your consent please contact us. For detailed information, please refer to the updated privacy policy.

What is the GDPR?

GDPR stands for General Data Protection Regulation, a new privacy law that regulates the processing of personal data relating to individuals in the European Union. The GDPR strengthens the rights of individuals regarding their personal data and seeks to unify data protection laws across Europe.

When did GDPR come into effect?

GDPR came into effect on 25th May 2018.  

What's changing?

  • A2X has a new privacy policy: We've updated our privacy policy to ensure that we communicate to you, in a concise, transparent, intelligible, and easily accessible way, how we treat personal information. 

  • Your consent: We now require your explicit consent by accepting the privacy policy. You'll be prompted to accept the policy next time you log in to A2X or when you create an account.

  • You have new rights in relation to your data: You can request it be deleted, request copies of it or request we cease processing it. You can find out more about this in the privacy policy.

The Data A2X uses

A2X integrates with several platforms in order to process your eCommerce accounting data. This section summarizes what data those integrations use. These integrations are required in order for A2X to function correctly. 

A2X connects to one or more of: 

  • Amazon

  • Shopify 

  • Walmart

  • eBay

  • Etsy

In addition, A2X will connect to an accounting system: 

  • Xero

  • QuickBooks

  • Sage

  • Special export files for QuickBooks Desktop or Enterprise (no direct connection)

When connecting to Xero

A2X imports:

  • Company information (such as name, start date, country, currency)

  • Chart of Accounts

  • Tax Rates

  • Tracking Categories

A2X creates:

  • Invoices - for settlements, payouts, and cost of goods sold

  • Accounts - for default chart of account mappings

When connecting to QuickBooks

A2X imports:

  • Company information (such as name, start date, country, currency)

  • Chart of Accounts

  • Tax Rates

  • Tracking Classes

A2X creates:

  • Journals - for settlements, payouts, and cost of goods sold

  • Accounts - for default chart of account mappings

When connecting to Amazon

A2X imports:

  • Settlements - sales, fees, charges refunds - no identifying customer information

  • Orders, returns, refunds, and reimbursements - no identifying customer information

  • FBA Inventory - stock on hand and unit counts for FBA stocked products with receipts, shipments, removals, returns, adjustments, and inventory events - no identifying customer information 

  • FBA Inbound Inventory - no identifying customer information

A2X creates:

  • Nothing - A2X is read-only.

When connecting to Shopify

A2X imports:

  • Payouts - sales, fees, charges refunds - no identifying customer information

  • Orders, returns, refunds, adjustments, and reimbursements - identifying customer information is removed prior to processing

  • Order transactions, sales, charges, and adjustments - identifying customer information is removed prior to processing

A2X creates:

  • Nothing - A2X is read-only.

When connecting to Walmart

A2X imports:

  • Reports - identifying customer information is removed prior to processing

A2X creates:

  • Nothing - A2X is read-only.

When connecting to eBay

A2X imports:

  • Payouts, orders, and order transactions - identifying customer information is removed prior to processing

A2X creates:

  • Nothing - A2X is read-only.

When connecting to Etsy

A2X imports:

  • Deposits, orders, and order transactions - identifying customer information is removed prior to processing

A2X creates:

  • Nothing - A2X is read-only.

Your personal information

A2X stores information about users, accounts, and payments.

Users:

  • Email address (required - for notifications) and optionally name, address, phone

  • A user may access multiple A2X accounts, and a single account may have multiple users with access.

Accounts:

  • Accounts have a display name (optional), and an Amazon Seller ID (required for Amazon integration) or a shop/store name (required for other channels).

  • Accounts will have a company name - defined by the accounting system (Xero or QuickBooks) and company token (required for integration to accounting systems)

  • Company Address (optional - used for billing/invoicing)

Payments:

  • A2X stores a record of all payment transactions and events related to your subscription. For example: when you subscribe, make a payment, change plans or cancel a subscription. This is to ensure the service is provided at the appropriate plan level, for subscribed users, and to have a clear audit log should it be required for tax or accounting purposes or for customer service.

Third-party services used by A2X

A2X uses a number of third-party tools and services to operate and support the A2X service and team. Your data is used with these services, details are listed below.

These services include:

  • Intercom - for customer support, live chat, and communication

  • Mailchimp - for newsletters and promotional emails

  • SendGrid - for transactional notification emails

  • PipeDrive - for customer relationship management (CRM)

  • Gmail - email and communication

  • Google Docs - internal writing and collaboration

  • Cheddar - subscription billing and invoicing management

  • Google Analytics - web site statistics 

  • Google Adwords - advertising 

  • Calendly - support and webinar meetings 

  • Wootric - in-app satisfaction surveys

Servers, data processing, and data storage

A2X is hosted in Google Cloud, using servers located in the USA. When you use the A2X service your data will be stored and processed on Google Cloud servers within Google’s data centers.

Google Cloud is a top-tier server infrastructure and managed server provider that complies with important US and EU data protection:

Data protection officer

A2X has appointed a data protection officer - the position will oversee and advise the data management of the company. To contact the data protection officer (DPO) you can email security@a2xaccounting.com.

Continuing review

A2X undertakes regular security and privacy reviews to ensure your data is protected. Any new updates will be added to this page.

Hint: If you are in chat and wish to view the article outside of the chat window, please click HERE

Did this answer your question?