The EU General Data Protection Regulation (GDPR) has set a new standard for how companies use and protect EU citizens’ data. Taken effect during May 2018. A2X already takes the security and privacy of your data seriously and will be meeting these new standards.
In this article, we will give an overview of the changes to our privacy policy and the data collected by A2X.
Accepting the policy
You will be prompted to accept the policy when you next log in to A2X. The banner will appear at the top of your screen, click the accept button to accept the updated policy.
If you wish to revoke your consent please contact us. For detailed information, please refer to the updated privacy policy.
What is the GDPR?
GDPR stands for General Data Protection Regulation, a new privacy law that regulates the processing of personal data relating to individuals in the European Union. The GDPR strengthens the rights of individuals regarding their personal data and seeks to unify data protection laws across Europe.
When did GDPR come into effect?
GDPR came into effect on 25th May 2018.
What's changing?
A2X has a new privacy policy: We've updated our privacy policy to ensure that we communicate to you, in a concise, transparent, intelligible, and easily accessible way, how we treat personal information.
Your consent: We now require your explicit consent by accepting the privacy policy. You'll be prompted to accept the policy next time you log in to A2X or when you create an account.
You have new rights in relation to your data: You can request it be deleted, request copies of it or request we cease processing it. You can find out more about this in the privacy policy.
The Data A2X uses
A2X integrates with several platforms in order to process your eCommerce accounting data. This section summarizes what data those integrations use. These integrations are required in order for A2X to function correctly.
A2X connects to one or more of:
Amazon
Shopify
Walmart
eBay
Etsy
In addition, A2X will connect to an accounting system:
Xero
QuickBooks
Sage
Special export files for QuickBooks Desktop or Enterprise (no direct connection)
When connecting to Xero
A2X imports:
Company information (such as name, start date, country, currency)
Chart of Accounts
Tax Rates
Tracking Categories
A2X creates:
Invoices - for settlements, payouts, and cost of goods sold
Accounts - for default chart of account mappings
When connecting to QuickBooks
A2X imports:
Company information (such as name, start date, country, currency)
Chart of Accounts
Tax Rates
Tracking Classes
A2X creates:
Journals - for settlements, payouts, and cost of goods sold
Accounts - for default chart of account mappings
When connecting to Amazon
A2X imports:
Settlements - sales, fees, charges refunds - no identifying customer information
Orders, returns, refunds, and reimbursements - no identifying customer information
FBA Inventory - stock on hand and unit counts for FBA stocked products with receipts, shipments, removals, returns, adjustments, and inventory events - no identifying customer information
FBA Inbound Inventory - no identifying customer information
A2X creates:
Nothing - A2X is read-only.
When connecting to Shopify
A2X imports:
Payouts - sales, fees, charges refunds - no identifying customer information
Orders, returns, refunds, adjustments, and reimbursements - identifying customer information is removed prior to processing
Order transactions, sales, charges, and adjustments - identifying customer information is removed prior to processing
A2X creates:
Nothing - A2X is read-only.
When connecting to Walmart
A2X imports:
Reports - identifying customer information is removed prior to processing
A2X creates:
Nothing - A2X is read-only.
When connecting to eBay
A2X imports:
Payouts, orders, and order transactions - identifying customer information is removed prior to processing
A2X creates:
Nothing - A2X is read-only.
When connecting to Etsy
A2X imports:
Deposits, orders, and order transactions - identifying customer information is removed prior to processing
A2X creates:
Nothing - A2X is read-only.
Your personal information
A2X stores information about users, accounts, and payments.
Users:
Email address (required - for notifications) and optionally name, address, phone
A user may access multiple A2X accounts, and a single account may have multiple users with access.
Accounts:
Accounts have a display name (optional), and an Amazon Seller ID (required for Amazon integration) or a shop/store name (required for other channels).
Accounts will have a company name - defined by the accounting system (Xero or QuickBooks) and company token (required for integration to accounting systems)
Company Address (optional - used for billing/invoicing)
Payments:
A2X stores a record of all payment transactions and events related to your subscription. For example: when you subscribe, make a payment, change plans or cancel a subscription. This is to ensure the service is provided at the appropriate plan level, for subscribed users, and to have a clear audit log should it be required for tax or accounting purposes or for customer service.
Third-party services used by A2X
A2X uses a number of third-party tools and services to operate and support the A2X service and team. Your data is used with these services, details are listed below.
These services include:
Intercom - for customer support, live chat, and communication
Mailchimp - for newsletters and promotional emails
SendGrid - for transactional notification emails
PipeDrive - for customer relationship management (CRM)
Gmail - email and communication
Google Docs - internal writing and collaboration
Cheddar - subscription billing and invoicing management
Google Analytics - web site statistics
Google Adwords - advertising
Calendly - support and webinar meetings
Wootric - in-app satisfaction surveys
Servers, data processing, and data storage
A2X is hosted in Google Cloud, using servers located in the USA. When you use the A2X service your data will be stored and processed on Google Cloud servers within Google’s data centers.
Google Cloud is a top-tier server infrastructure and managed server provider that complies with important US and EU data protection:
EU-U.S. Privacy Shield Framework (https://cloud.google.com/security/compliance/privacy-shield/)
Data protection officer
A2X has appointed a data protection officer - the position will oversee and advise the data management of the company. To contact the data protection officer (DPO) you can email security@a2xaccounting.com.
Continuing review
A2X undertakes regular security and privacy reviews to ensure your data is protected. Any new updates will be added to this page.
Hint: If you are in chat and wish to view the article outside of the chat window, please click HERE