Privacy | Shippiz

Shippiz Inc. — Privacy Policy

Last Updated: April 23, 2026
Effective Date: April 23, 2026

1. Introduction and Scope

Shippiz Inc. ("Shippiz," "we," "us," or "our"), a Delaware corporation with its principal place of business in New Jersey, operates the website located at www.shippiz.com and the shipping comparison and fulfillment platform accessible thereon (collectively, the "Services"). This Privacy Policy explains how Shippiz collects, uses, stores, shares, and protects information about users of the Services ("you" or "User").

This Privacy Policy applies to:

All visitors to www.shippiz.com
Registered account holders and their authorized users
API customers and enterprise platform integrators
Individual users placing shipment orders through the Website

This Privacy Policy is incorporated into and forms part of Shippiz's Terms of Service. By using the Services, you acknowledge that you have read and understood this Privacy Policy and consent to the data practices described herein. Capitalized terms not defined in this Privacy Policy have the meanings given to them in the Terms of Service.

This Privacy Policy does not apply to information collected by third-party Carriers, payment processors, or other third-party services accessible through the Platform. Those parties maintain their own privacy policies, and you are encouraged to review them.

Shippiz may also use collected data, including de-identified and aggregated data, to develop, train, and improve artificial intelligence and machine learning models. See Section 3 (Analytics and Product Development) and Section 14 for further details.

2. Information We Collect

Shippiz collects information in three ways: information you provide directly, information generated by your use of the Services, and information received from third parties.

2.1 Information You Provide Directly

Account Registration Data: Full name, business name, email address, telephone number, billing address, and account password
Shipment Data: Sender and recipient names, addresses, telephone numbers, package dimensions, weight, declared value, contents description, and any special handling instructions
Payment Information: Billing name, billing address, and payment method details. Payment card numbers are transmitted directly to and stored exclusively by Shippiz's third-party payment processor. Shippiz does not store full payment card numbers on its own systems
Communications Data: Content of support tickets, emails, chat messages, and feedback you submit to Shippiz
Verification and Identity Data: Business registration information, taxpayer identification information, and other information required for account verification or compliance purposes

2.2 Information Generated by Your Use of the Services

Platform Usage Data: IP address, device type, device identifier, operating system, browser type and version, referring URL, pages visited, features used, clickstream data, session duration, and timestamps
API and Integration Data: API keys, webhook endpoint configurations, third-party platform credentials (e.g., e-commerce store integrations), and order and inventory data transmitted through Shippiz APIs
Transaction and Log Data: Order history, label generation records, tracking events, Carrier transaction records, shipment status updates, adjustment records, and error logs
Cookies and Tracking Technologies: See Section 7 below

2.3 Information Received from Third Parties

Carriers: Shipment status updates, tracking events, weight and dimension audit results, and delivery confirmation data
Payment Processors: Transaction confirmations, updated payment card account information (such as expiration date updates), and fraud signals
E-Commerce Platform Integrations: Order data, customer data, and product data imported from platforms you connect to the Services
Identity Verification Services: Business verification and address verification data used for compliance purposes

3. How We Use Your Information

Shippiz uses collected information for the following purposes:

Service Delivery:

Processing and fulfilling your shipment Orders
Generating shipping labels and transmitting required shipment data to Carriers
Providing shipment tracking and status updates
Managing your account and account preferences

Billing and Payments:

Calculating and billing applicable service fees
Processing post-shipment adjustments for weight, dimension, and rate discrepancies
Maintaining transaction records and issuing receipts

Legal and Regulatory Compliance:

Complying with applicable laws, regulations, and governmental requests
Fulfilling Shippiz's obligations under its agreement with USPS, including transaction data reporting within five (5) business days of USPS request
Complying with customs, export control, and sanctions laws and regulations
Responding to lawful subpoenas, court orders, and regulatory inquiries

Platform Operations and Security:

Detecting and preventing fraud, abuse, unauthorized access, and security incidents
Monitoring platform performance and diagnosing technical issues
Enforcing the Terms of Service and this Privacy Policy
Maintaining backup and disaster recovery systems

Analytics and Product Development:

Conducting internal analytics, performance monitoring, machine learning model training and improvement, artificial intelligence development for logistics optimization, predictive analytics, automated decision-making tools, and product development based on usage patterns
Generating aggregated, anonymized, or de-identified data for benchmarking, industry analytics, business development, or any other lawful purpose, provided such data cannot reasonably be used to identify you or any individual.
Commercializing de-identified and aggregated AI/ML outputs and models, including by licensing or selling such outputs or models to third parties for logistics, supply chain, or other lawful purposes.
Automated decision-making using AI and algorithmic systems, including for purposes such as fraud detection, pricing optimization, account eligibility determinations, and shipment routing. See Section 14 for additional disclosures regarding automated processing.

Communications:

Sending transactional communications related to your Orders and account
Providing customer support
Sending Service updates, security alerts, and administrative notices
Sending marketing communications, where you have opted in or where permitted by applicable law

Shippiz does not sell your personal data to third parties. Shippiz does not use your personal data for targeted third-party advertising without your separate consent.

4. How We Share Your Information

Shippiz shares personal data only with the following categories of third parties, and only to the extent necessary for the stated purpose:

Carriers: We share sender and recipient data, package details, and shipment instructions with the Carrier you select to execute your Shipment. Each Carrier's handling of your data is governed by that Carrier's own privacy policy.

Payment Processors: We share billing information and transaction data with our third-party payment processor to facilitate payment. Our payment processor is required to handle your data in accordance with applicable payment card industry standards and data privacy laws.

Cloud and Infrastructure Providers: We store and process data using third-party cloud infrastructure providers. These providers are contractually required to maintain security standards equivalent to those described in this Privacy Policy and the Terms of Service.

AI and Analytics Service Providers: Third-party vendors engaged to assist with data processing, machine learning model training, analytics, or AI development, subject to contractual obligations at least as protective as this Privacy Policy.

USPS: Pursuant to Shippiz's agreement with the United States Postal Service, Shippiz may be required to disclose your Merchant information, transaction data, and payment information to USPS upon request, within five (5) business days of such request. Such disclosure may include your legal name, address, email, phone number, and complete transaction-level data for any USPS shipment. By using USPS shipping services through the Platform, you expressly consent to such disclosure.

Legal and Regulatory Authorities: We may disclose your information to law enforcement agencies, regulators, courts, or other governmental authorities where required by applicable law, regulation, or legal process, or where we believe in good faith that disclosure is necessary to protect the rights, property, or safety of Shippiz, our users, or the public.

Business Successors: In the event of a merger, acquisition, reorganization, bankruptcy, or sale of all or substantially all of Shippiz's assets, your information may be transferred to the acquiring entity, subject to equivalent privacy protections. You hereby consent to such transfer. We will provide notice of any such transfer as required by applicable law.

With Your Consent: We may share your information with additional third parties where you have provided your affirmative consent.

5. Data Roles — Controllers and Processors

For purposes of applicable data privacy law:

Shippiz as Controller: Shippiz acts as a Data Controller (or "Business" under applicable U.S. law) with respect to information you provide about yourself — including your Account Data, Platform Usage Data, Communications Data, and Payment Data.

Shippiz as Processor: Shippiz acts as a Data Processor (or "Service Provider" under applicable U.S. law) with respect to the personally identifiable information of your end-consumers (e.g., recipient names and addresses) that you transmit through the Services in your capacity as a Data Controller or Business. Shippiz processes such end-consumer PII solely as directed by you and as necessary to provide the Services, as set forth in Section 17 of the Terms of Service.

Your Responsibilities as Controller: If you transmit end-consumer PII to Shippiz, you represent and warrant that you have obtained all necessary consents and provided all required privacy notices to your end-consumers prior to transmission, in accordance with applicable law including the CCPA, GDPR, DPDPA, and NJDPA.

6. Data Retention

We retain personal data for the following periods, or longer where required by applicable law, pending legal proceedings, or Shippiz's agreement with USPS:

Data Category — Retention Period

Account Data — Duration of account plus three (3) years following termination

Shipment and Transaction Data — Seven (7) years from transaction date

Integration and API Data — Duration of active integration plus one (1) year following disconnection

Platform Usage Data — The duration necessary to fulfill the purposes of processing, which may be indefinite for de-identified or aggregated data used in AI model development, validation, or commercialization, or as required by law

Payment Records — Seven (7) years from transaction date

Communications Data — Three (3) years from date of communication

Marketing Consent Records — Duration of consent plus three (3) years

Derived Data / AI Training Data (de-identified or aggregated) — Indefinitely, subject to applicable law

Upon expiration of applicable retention periods, Shippiz will securely delete or anonymize personal data unless retention is required by applicable law or a pending legal proceeding. Notwithstanding the foregoing, de-identified or fully aggregated data derived from the above categories may be retained indefinitely for AI model training, analytics, product development, or other lawful business purposes.

7. Cookies and Tracking Technologies

Shippiz uses cookies and similar tracking technologies on the Website for the following purposes:

Strictly Necessary Cookies: Required for the Website to function, including session management, authentication, and security. These cannot be disabled.
Functional Cookies: Enable enhanced functionality and personalization, including remembering your preferences and saved settings.
Analytics Cookies: Collect information about how you use the Website, including pages visited and features used, to help us improve the Services, including through machine learning and AI development.
Marketing Cookies: Used only where you have provided explicit consent, to deliver relevant content and measure the effectiveness of communications.

You may control cookie preferences through your browser settings or through any cookie consent mechanism displayed on the Website. Note that disabling certain cookies may affect the functionality of the Services. We do not respond to "Do Not Track" browser signals. Shippiz currently recognizes Global Privacy Control (GPC) signals as opt-out requests for the sharing of personal data under applicable law, including the CCPA and NJDPA. GPC signals are treated as opt-out requests only with respect to the sale or sharing of personal data for cross-context behavioral advertising purposes. A GPC signal does not affect Shippiz's processing of personal data for service delivery, billing, fraud prevention, legal compliance, or AI model training on de-identified or aggregated data. Regardless, you may submit opt-out requests as described in Section 8.

8. Your Privacy Rights

Depending on your jurisdiction, you may have the following rights with respect to your personal data. To exercise any of these rights, please contact us at support@shippiz.com with the subject line "Privacy Rights Request."

All Users

Access: Request a copy of the personal data Shippiz holds about you
Correction: Request correction of inaccurate or incomplete personal data
Deletion: Request deletion of your personal data, subject to applicable legal retention requirements
Portability: Request your personal data in a structured, machine-readable format

California Residents (CCPA)

In addition to the above, California residents have the right to:

Know the categories of personal information collected, the purposes of use, and the categories of third parties with whom it is shared
Opt out of the sale or sharing of personal information (Shippiz does not sell personal information)
Limit the use and disclosure of sensitive personal information
Non-discrimination for exercising privacy rights

To submit a CCPA request, contact support@shippiz.com or call 1-718-971-1969.

Delaware Residents (DPDPA)

Delaware residents may submit requests to exercise rights of access, correction, deletion, data portability, and opt-out of processing for targeted advertising or profiling. Shippiz will respond within forty-five (45) days, with up to an additional forty-five (45) day extension where reasonably necessary. If your request is denied, you may appeal by contacting support@shippiz.com with the subject line "Privacy Rights Appeal."

New Jersey Residents (NJDPA)

New Jersey residents may submit requests to exercise rights of access, correction, deletion, and data portability. Shippiz will respond within forty-five (45) days. Opt-out requests will be processed within fifteen (15) days. If your request is denied, you may appeal by contacting support@shippiz.com with the subject line "Privacy Rights Appeal."

EU/EEA, UK, and Swiss Residents (GDPR)

In addition to the above rights, EU/EEA, UK, and Swiss residents have the right to:

Object to processing based on legitimate interests
Withdraw consent at any time where processing is based on consent
Lodge a complaint with your local supervisory authority

Shippiz relies on the following legal bases for processing EU/EEA personal data: (a) performance of a contract (order fulfillment, billing); (b) compliance with a legal obligation; (c) legitimate interests (platform security, fraud prevention, internal analytics); and (d) consent (marketing communications, analytics cookies).

Residents of Other U.S. States. Residents of U.S. states with applicable data privacy laws not specifically addressed above — including without limitation Texas (TDPSA), Virginia (VCDPA), Colorado (CPA), Connecticut (CTDPA), and others — may have rights similar to those described in this Section, including rights of access, correction, deletion, portability, and opt-out of targeted advertising or profiling. To exercise any such rights, please contact us at support@shippiz.com with the subject line "Privacy Rights Request." Shippiz will respond in accordance with applicable law.

Automated Processing and AI Profiling. Shippiz may use automated systems, including algorithms and machine learning models, to process data for purposes such as fraud detection, pricing optimization, shipment routing, and platform performance. These systems may analyze usage patterns, transaction data, and other inputs to generate insights or recommendations. To the extent Shippiz uses automated decision-making or AI-assisted profiling that produces decisions with legal or similarly significant effects on individual Users, you have the right, to the extent required by applicable law, to opt out of such processing, request a human review of any automated decision that has legal or similarly significant effects on you, or obtain an explanation of the logic involved. This right does not apply to automated processing conducted solely on de-identified or fully aggregated data that cannot reasonably be used to identify you, as such processing does not produce decisions with individual legal or similarly significant effects. To submit such a request, contact support@shippiz.com with the subject line "Automated Processing Inquiry." Shippiz will respond within forty-five (45) days

Response Timeline: Shippiz will respond to all verifiable privacy rights requests within forty-five (45) days of receipt. We may require verification of your identity before processing your request. We will not discriminate against you for exercising your privacy rights.

9. Security

Shippiz implements and maintains commercially reasonable technical and organizational security measures designed to protect your personal data against unauthorized access, disclosure, alteration, or destruction, including, without limitation, the following types of controls, which are subject to modification as Shippiz's security program evolves:

Encryption of personal data at rest and in transit using industry-standard protocols
Multi-factor authentication for administrative access to systems containing personal data
Access controls based on the principle of least privilege
Regular security assessments, vulnerability scanning, and patch management
Network segmentation and monitoring
Documented incident response and business continuity procedures
Confidentiality obligations for all personnel with access to personal data

· Access restrictions and security controls applied to artificial intelligence/machine learning model assets and training datasets, including limitations on personnel access to datasets containing or derived from personal data, and logging of access to such assets.

No security system is impenetrable. While we take data security seriously, we cannot guarantee the absolute security of your information. In the event of a personal data breach, Shippiz will notify affected users and applicable regulators in accordance with applicable law, including:

New Jersey residents: notification to the New Jersey Division of State Police prior to consumer notification, pursuant to N.J.S.A. 56:8-163 et seq.
GDPR-covered data: notification to the applicable supervisory authority within seventy-two (72) hours and to affected data subjects without undue delay
All applicable U.S. state breach notification laws based on affected residents' jurisdictions

10. Children's Privacy

The Services are intended exclusively for business use and are not directed to children under the age of 13. Shippiz does not knowingly collect personal information from children under 13. If you believe that a child under 13 has provided personal information to Shippiz, please contact us immediately at support@shippiz.com and we will take prompt steps to delete such information.

If you collect personal information pertaining to a minor through your use of the Services, you represent and warrant that you have obtained valid consent from the minor's parent or legal guardian in accordance with the Children's Online Privacy Protection Act (COPPA) and the laws of the applicable jurisdiction.

11. International Data Transfers

Shippiz stores and processes data on servers located in the United States. If you are located outside the United States — including in the European Economic Area, United Kingdom, or Switzerland — your personal data will be transferred to and processed in the United States. You acknowledge that the United States may not provide the same level of data protection as your home jurisdiction.

For transfers of personal data from the EU/EEA, UK, or Switzerland to the United States, Shippiz relies on appropriate transfer mechanisms as required by applicable law, which may include Standard Contractual Clauses approved by the European Commission or other lawful transfer mechanisms. Please contact support@shippiz.com for further information about applicable transfer safeguards.

12. Third-Party Links and Integrations

The Website may contain links to third-party websites, and the Services may integrate with third-party platforms including e-commerce stores and Carrier websites. This Privacy Policy does not apply to those third-party services. Shippiz is not responsible for the privacy practices of any third party, and we encourage you to review the privacy policies of any third-party service you access through or in connection with the Services.

13. Changes to This Privacy Policy

Shippiz reserves the right to update or modify this Privacy Policy at any time. When we make changes, we will post the updated Privacy Policy on the Website and update the "Last Updated" date above. For material changes to this Privacy Policy, we will use commercially reasonable efforts to post a prominent notice on the Website and/or notify you by email prior to the change taking effect.

Your continued use of the Services following the posting of any updated Privacy Policy constitutes your acceptance of the updated terms. If you do not agree to any modification, you must cease using the Services and may request deletion of your personal data in accordance with Section 8.

14. AI and Automated Processing

14.1 Use of AI and Automated Tools. Shippiz uses artificial intelligence, machine learning, and automated algorithmic systems in connection with the Services. These tools are used for purposes including, without limitation: logistics and route optimization; fraud detection and account security; rate comparison and prediction; platform performance monitoring; and development of new AI-powered shipping and fulfillment products. These automated systems may be used to make or assist in making decisions regarding account eligibility, pricing, fraud risk scoring, service access, and other platform functions. To the extent any such automated decision produces a legal or similarly significant effect on you, you may exercise the rights described in Section 8 (Automated Processing and AI Profiling) of this Policy.

14.2 Ownership of AI Outputs. All AI-generated outputs, models, scores, recommendations, and derived insights produced through Shippiz's systems are the exclusive intellectual property of Shippiz, regardless of whether your data contributed to their development. You have no claim to any compensation, royalty, or other consideration in connection with Shippiz's use or commercialization of any such outputs. The intellectual property rights described in this Section are governed by and subject to Section 15 of the Terms of Service, which controls in the event of any conflict or inconsistency with this Privacy Policy.

15. Business Data Clarification. CERTAIN INFORMATION PROCESSED THROUGH THE SERVICES MAY RELATE TO BUSINESSES OR COMMERCIAL TRANSACTIONS RATHER THAN IDENTIFIABLE INDIVIDUALS. TO THE EXTENT SUCH DATA DOES NOT CONSTITUTE “PERSONAL DATA” UNDER APPLICABLE LAW, IT IS NOT SUBJECT TO THE RIGHTS AND OBLIGATIONS DESCRIBED IN THIS PRIVACY POLICY.

16. Contact Information

For any questions, concerns, or requests relating to this Privacy Policy or Shippiz's data practices, please contact us:

Shippiz Inc.
465 Oberlin Ave S
Lakewood, NJ 08701 USA

Email: support@shippiz.com
Phone: 1-718-971-1969
Monday – Thursday, 9:00 AM – 5:00 PM Eastern Time

For privacy rights requests, please use the subject line "Privacy Rights Request." For data breach notifications or urgent security concerns, please use the subject line "Security Notice."