GDPR Compliance Statement

General Data Protection Regulation (GDPR)

Disclaimer: The following information is not legal advice nor should it be considered legal advice. This information is meant to help you better understand GDPR and how Shero Commerce is working to comply with the GDPR.

Effective Date: September 1, 2025

Shero Commerce Inc. is committed to respecting the rights of individuals under the General Data Protection Regulation (GDPR). This statement explains how we handle the personal data of people in the European Economic Area (EEA) and the United Kingdom.

We only process personal information where there is a clear legal basis for doing so. In most cases this means we rely on your consent when you subscribe to our communications, or on the need to fulfill a contract when you request services from us. Sometimes we process information because we are required to do so by law, or because we have a legitimate business interest such as improving our services or maintaining the security of our website. When we rely on legitimate interest, we make sure that our interests do not override your rights.

As a visitor or client located in the EEA or UK, you have rights over your data. You may request a copy of the information we hold about you, ask us to correct details that are inaccurate, or request that we delete your personal data. You may also object to certain types of processing or ask us to transfer your data to another provider. If you have given us consent to use your information, you can withdraw that consent at any time by contacting us. We may need to verify your identity before fulfilling such requests.

Because Shero Commerce is headquartered in the United States and operates internationally, your personal information may be transferred outside of your country. We use recognized safeguards such as Standard Contractual Clauses to ensure that your data remains protected whenever it is moved across borders.

We retain personal data only for as long as necessary to deliver services or to comply with our legal obligations. We also take appropriate measures to secure your data from unauthorized access or disclosure, although no system can ever be completely secure.

If you are based in the EEA or UK and believe your rights under GDPR have been violated, you also have the right to lodge a complaint with your local supervisory authority.

For questions or requests related to GDPR, please contact us at:

Shero Commerce Inc
21 Glen Pond Dr.
Red Hook, NY 12571
gdpr@sherocommerce
845-656-3000

Useful Links

• EU GDPR Website
• Information Commissioner’s Office (ICO) Guide to GDPR
• Full Regulation
• Google Analytics Privacy Page
• OneTrust – GDPR and Privacy Management Software
• Cookiebot – Cookie Management
• TermsFeed – Privacy Policy Generator
• HubSpot and GDPR
• Klaviyo GDPR Compliance
• Hotjar GDPR Compliance
• Facebook and GDPR