ChaChing's Privacy Policy

Effective date: 2/2/2026
Company: Chaching, Inc. (“Chaching,” “we,” “us”)
Contact: Support@chaching.com

This Privacy Policy explains how Chaching collects, uses, discloses, and protects information in connection with our websites, applications, APIs, and related services (collectively, the “Services”).

1) Who this policy applies to

The Services are used primarily by businesses to manage subscriptions, invoicing, and billing workflows.

  • Merchants / Business users: If you sign up for Chaching as a business, this policy explains how we handle your information.

  • End customers of Merchants: If you are billed by a business that uses Chaching, we generally process your information on that business’s behalf.

In many cases:

  • The Merchant is the “controller” (or equivalent under applicable law) for end-customer information, and

  • Chaching acts as a “processor” or “service provider” under our contract with the Merchant.

If you are an end customer of a Merchant, the Merchant’s own privacy policy may also apply.

2) Information we collect

We collect information in three ways: (A) information you provide, (B) information collected automatically, and (C) information from third parties.

A. Information you provide

  • Account and business details: name, email, phone number, job title, company name, business address, and account credentials.

  • Configuration and billing operations: subscription settings, product/catalog configuration, invoicing preferences, tax settings, and related operational inputs.

  • Support and communications: content of messages you send us (including emails, chats, forms, and support tickets) and files you upload.

B. Information collected automatically

  • Usage and device data: IP address, device identifiers, browser type, operating system, pages/screens viewed, actions taken in the Services, timestamps, and logs.

  • Approximate location: inferred from IP address.

  • Cookies and similar technologies: used to authenticate sessions, remember preferences, analyze performance, and measure marketing effectiveness (see “Cookies and similar technologies”).

C. Information we receive from third parties

  • Payment processors (e.g., Stripe): transaction outcomes (such as succeeded/failed), tokenized identifiers (such as customer tokens and payment method tokens), limited transaction metadata (such as amount, currency, timestamps, and response codes), and risk/fraud signals.

  • Integrations you enable: information from tools you connect to Chaching (for example CRM, accounting, support, analytics, or email tools), based on the permissions and scopes you approve.

  • Security and compliance sources: signals used to protect accounts and prevent fraud/abuse.

Payment information (tokenized)

Chaching does not store full payment card numbers, bank account numbers, or CVV/security codes. When a Merchant uses a payment processor (such as Stripe), the processor collects and stores sensitive payment credentials. Chaching stores only token references issued by the processor (for example, customer and payment method tokens) and related transaction metadata needed to provide the Services.

3) Customer Data processed on behalf of Merchants

Merchants may submit data to Chaching about their customers, subscribers, or payers (“Customer Data”). Customer Data may include identifying information (like name and email), subscription status, invoices, and payment/transaction history.

We process Customer Data to:

  • provide the Services to the Merchant,

  • follow the Merchant’s instructions (including via API calls and product configuration),

  • maintain security, prevent fraud, and troubleshoot,

  • comply with law as required.

Customer Data may include token references to payment methods created by a payment processor, but Chaching does not store the underlying payment credentials.

4) How we use information

We use information to:

  • Provide the Services: create accounts, authenticate users, manage subscriptions, generate invoices, send billing communications configured by Merchants, and deliver reporting and APIs.

  • Process and reconcile billing activity: track transaction status and lifecycle events using processor responses and tokens.

  • Maintain security and reliability: monitor for suspicious activity, prevent abuse, diagnose bugs, and maintain system performance.

  • Communicate with you: send administrative messages (such as security notices, product updates, and support responses).

  • Improve and develop: analyze performance and usage trends to build and enhance features.

  • Market and sell: promote the Services where permitted (you can opt out of marketing communications).

  • Comply with legal obligations: including accounting, tax, regulatory compliance, and lawful requests.

5) How we share information

We do not sell personal information for money. We may disclose information in the following circumstances:

  1. Service providers and vendors
    We use third parties for hosting, storage, analytics, support tooling, communications, security, and other operational needs. They may access information only to perform services for us and must protect it consistent with contractual obligations.

  2. Payment processors and financial partners
    If a Merchant enables a payment processor (such as Stripe), we share information necessary to facilitate payment processing and subscription management (for example, customer identifiers, invoice amounts, and token references), and we receive transaction results, token references, and risk signals back from the processor.

  3. Integrations you enable
    When you connect third-party services, we share and receive information as needed to operate that integration based on the permissions you choose.

  4. Legal, security, and enforcement
    We may disclose information if we believe it is reasonably necessary to comply with law, respond to lawful requests, protect safety, investigate fraud or security issues, or enforce our agreements.

  5. Business transfers
    If Chaching is involved in a merger, acquisition, financing, reorganization, bankruptcy, or sale of assets, information may be transferred as part of that transaction, subject to appropriate protections.

6) Cookies and similar technologies

We use cookies and similar technologies to:

  • keep you logged in and maintain sessions,

  • remember preferences,

  • understand usage and improve performance,

  • measure marketing effectiveness (where used).

You can control cookies through your browser settings. If you disable cookies, some features may not function properly.

7) Your choices and rights

Depending on your location and relationship to Chaching, you may be able to:

  • access, update, or correct certain account information,

  • opt out of marketing emails (via the unsubscribe link or by contacting us),

  • request deletion or restriction where applicable (subject to legal and contractual requirements),

  • manage integration permissions and scopes.

If you are an end customer of a Merchant, requests related to Customer Data should be directed to the Merchant first. We may need the Merchant’s authorization to act on Customer Data.

8) Data retention

We retain information for as long as necessary to:

  • provide the Services,

  • meet legal, tax, accounting, and compliance obligations,

  • resolve disputes and enforce agreements,

  • maintain security and prevent abuse.

Retention periods vary by data type and legal requirements. We may also retain de-identified or aggregated information.

9) Security

We maintain administrative, technical, and organizational measures designed to protect information. No system is completely secure, and we cannot guarantee absolute security.

10) International data transfers

We may process and store information in the United States and other locations where we or our service providers operate. Where required, we use appropriate safeguards for cross-border transfers (such as standard contractual clauses or equivalent mechanisms).

11) Children

The Services are not intended for children under 13 (or a higher age where required by law). We do not knowingly collect personal information from children. If you believe a child has provided information to us, contact us so we can address it.

12) U.S. state privacy disclosures (e.g., California)

If you live in a state with privacy rights, you may have rights to request access, deletion, correction, and information about our data practices, and to opt out of certain forms of sharing/targeted advertising where applicable.

How to submit a request: email privacy@chaching.com with the subject “Privacy Request.”
We may verify your identity and authority before responding.

Note: Whether Chaching acts as a “business” or “service provider/processor” depends on the context and the data at issue.

13) Changes to this policy

We may update this Privacy Policy from time to time. We will post the updated version and revise the effective date. If changes are material, we may provide additional notice.

14) Contact us

Email: Support@chaching.com