● VAN ON ROUTE — NYC FIVE BOROUGHS● VAN ON ROUTE — NYC FIVE BOROUGHS● VAN ON ROUTE — NYC FIVE BOROUGHS● VAN ON ROUTE — NYC FIVE BOROUGHS

Privacy Policy

Effective date: May 26, 2026 · Last updated: May 26, 2026

1. Introduction

ABS Pedidos ("ABS Pedidos", "we", "us", or "our") operates the website abspedidos.com and the ABS Pedidos ordering, payment and customer management application (collectively, the "Service"). This Privacy Policy explains how we collect, use, store, share, retain and delete information about you when you use the Service, including information we obtain through Plaid Inc. ("Plaid") when you link a bank account.

By using the Service you agree to the practices described here. If you do not agree, do not use the Service.

2. Information We Collect

2.1 Information you provide

  • Account data: name, email, phone, business name, preferred language.
  • Order and payment data: products ordered, delivery address, totals, payment method.
  • Communications: messages you send us through WhatsApp, email or in-app chat.

2.2 Information collected automatically

  • Device and usage data: IP address, browser type, pages visited, timestamps.
  • Cookies and similar technologies required to keep you signed in and to operate the Service.

2.3 Information collected via Plaid

When you connect a bank account through Plaid Link, Plaid collects and shares with us the data you authorize, which may include:

  • Account identifiers (masked account number, routing number, account type).
  • Account balance information.
  • Account holder name and contact information held by your financial institution.
  • Transaction history, where required to authorize a payment.

Plaid's own collection and use of your data is governed by the Plaid End User Privacy Policy. We never see or store your online banking credentials — those are handled exclusively by Plaid.

3. How We Use Your Information

  • To create and operate your account.
  • To process orders, payments and ACH bank transfers initiated via Plaid.
  • To verify bank account ownership and prevent fraud.
  • To send transactional messages (order confirmations, receipts, delivery updates).
  • To provide customer support.
  • To comply with legal, tax and regulatory obligations.
  • To improve the Service.

We do not sell your personal information. We do not use Plaid-derived data for advertising or for any purpose other than providing and securing the Service you requested.

4. Consent

We obtain your consent for the collection, processing and storage of your data at the point of collection:

  • When you create an account you accept this Privacy Policy and our Terms of Service.
  • When you connect a bank account, Plaid Link presents its own consent screen describing the data being shared and you must explicitly authorize it.
  • You may withdraw consent at any time by disconnecting your bank account or by deleting your account (see "Your Rights").

5. How We Share Information

We share personal information only with:

  • Service providers that help us run the Service: Plaid (bank linking & ACH), Stripe (card processing), Supabase / Lovable Cloud (database & hosting), Cloudflare (CDN & security), Meta WhatsApp Business (transactional messaging), Google (authentication & maps).
  • Legal authorities when required by law, subpoena, court order or to protect rights, safety and property.
  • Successors in connection with a merger, acquisition or sale of assets, subject to this Privacy Policy.

We do not sell or rent your personal information to third parties.

6. Data Security

  • All data is encrypted in transit using TLS 1.2+.
  • All data is encrypted at rest using AES-256.
  • API keys and secrets are stored in an encrypted vault and never exposed to the client.
  • Access to production data is restricted to authorized personnel and requires multi-factor authentication (MFA).
  • We patch identified vulnerabilities within a defined SLA and actively monitor end-of-life software.

7. Data Retention and Deletion

We retain your personal data only as long as necessary to provide the Service and to comply with our legal obligations.

  • Account data: retained while your account is active. Deleted within 30 days of account closure.
  • Order and payment records: retained for up to 7 years to comply with tax and accounting laws.
  • Plaid-derived data (bank account tokens, balances, transactions): deleted immediately when you disconnect the bank account or close your account. The Plaid access token is also revoked on Plaid's side.
  • Marketing communications data: deleted upon unsubscribe.
  • Backups: deleted within 90 days as backup cycles rotate.

This policy is reviewed at least annually and updated to remain in compliance with applicable data privacy laws (including GDPR and CCPA where applicable).

8. Your Rights

Depending on your jurisdiction you may have the right to:

  • Access the personal data we hold about you.
  • Correct inaccurate or incomplete data.
  • Delete your data ("right to be forgotten").
  • Withdraw consent or object to processing.
  • Request a portable copy of your data.
  • Lodge a complaint with a data protection authority.

To exercise any of these rights, email us at privacy@abspedidos.com. We will respond within 30 days.

9. Children's Privacy

The Service is not directed to children under 18 and we do not knowingly collect personal information from children.

10. International Data Transfers

Your data may be processed in the United States and other countries where our service providers operate. We use providers that offer appropriate safeguards for international data transfers.

11. Changes to This Policy

We may update this Privacy Policy from time to time. The "Last updated" date at the top reflects the most recent change. Material changes will be communicated through the Service or by email.

12. SMS / Text Messaging

When you provide your mobile phone number and opt in at checkout, ABS Beauty Distributor sends you transactional SMS messages related to your orders (order confirmations, delivery updates, payment receipts, and account notifications). We do not send marketing or promotional SMS without separate, explicit consent.

  • Message frequency: Varies based on your order activity (up to 5 messages per order).
  • Message & data rates: May apply depending on your mobile carrier and plan. ABS Pedidos does not charge you for SMS.
  • Opt-out: Reply STOP to any SMS to unsubscribe. You will receive a confirmation message and no further SMS from us.
  • Help: Reply HELP for assistance, or email support@abspedidos.com.
  • No third-party sharing: Mobile phone numbers and SMS consent are never shared, sold, or rented to third parties or affiliates for marketing or promotional purposes.

Your consent and related metadata (timestamp, IP address, the exact disclosure text shown to you) are stored as proof of opt-in for compliance purposes and deleted on request.

13. Contact Us

ABS Pedidos
Email: privacy@abspedidos.com
Website: https://abspedidos.com