Last Updated: May 2026
This website is operated by Fermat Commerce, Inc. and its affiliates (“Fermat,” “we,” “us,” or “our”), who respect the privacy of visitors to its websites. This Privacy Policy governs the manner in which Fermat collects, uses, maintains, and discloses information collected through: (a) our website at https://www.fermatcommerce.com (the “Website”) and to any subdomains of this Website or any products and services offered by Fermat; (b) our brand-facing dashboard and related SaaS tools (the “Dashboard”); (c) any Fermat-powered funnels and landing pages (the “Funnels”); and (d) any related services, sales, marketing, or events (collectively, the “Services”).
Fermat is committed to ensuring that your privacy is protected. We have provided this Privacy Policy to ensure that those who provide personal data to us understand the type of personal data we may collect and hold about them, what we may use it for, and how we keep it safe. Should we ask you to provide personal information, it will only be used in accordance with this Privacy Policy, which may be changed and/or updated from time to time. You may have legal rights to access the personal data that we hold about you and to control how we use it, which is further explained in this Privacy Policy.
Your use of this Website indicates to us that you have read and accept our privacy practices, as outlined in this Privacy Policy. If you do not agree with this Privacy Policy, please discontinue use of the Services and this Website. If you have questions or concerns regarding this Privacy Policy, please contact us at privacy@fermatcommerce.com.
This Privacy Policy is in addition to any other legally binding agreement between you and Fermat that may govern your privacy or use of Fermat products and Services. To the extent any such agreement is in writing and conflicts with this Privacy Policy, the terms of the written agreement will govern. Generally, when users visit our Website and access information, users will remain anonymous. However, as further explained within this Privacy Policy, for some Services that are provided through our Website, such as requesting a product demonstration, or subscribing to email updates, we will ask users to register with an online registration form and to share personal identification information.
We collect personal information that you provide to us. There are several ways in which you may share personal data with us through our Website or otherwise. For example, we collect personal information when:
As you interact with our Website, there are several ways in which you may share personal data with us. We collect personal information in the following categories:
We may ask you to provide us with certain personal information that can be used to contact you or identify you. This includes:
We do not offer third-party login (e.g., Google SSO). Your decision to provide us with personal information is voluntary, however, if you choose not to provide the requested information, you may not be able to take advantage of all the features of the Website or the services offered thereon.
We collect certain technical information that web browsers and services typically make available. Therefore, when you use the Website, Dashboard, or Funnels, we may automatically collect:
We use cookies, pixels, tags, JavaScript, session replay tools, and browser storage (HTML5) to collect this information. Where IP addresses are collected, they are used solely for security, fraud prevention, and aggregate analytics purposes and are not used to identify individual consumers.
We do not use Flash cookies and do not use IP-based reidentification services.
When we work with third parties, those third parties may collect personal data about you which they will share with us. Therefore, we may receive:
For example, your name and contact details may be passed on to us by third-parties that we work with, such as your employer, marketing partners, industry publications, or content syndication partners, that refer you to us so that we can provide you with information on our products or services that may interest you. We may also receive professional or employment-related information on you, and inferences drawn from other personal data. Your employer may also provide us with personal data about you when providing licensing and account information or registering you for events. We combine this information with the personal information that you provide to us and use it for the purposes described above.
We use a proprietary pixel installed on customers’ Shopify stores to collect anonymized event data, including:
This data is used exclusively for:
We do not collect identifiable personal information from these events, and we do not sell or share this data with third parties for commercial gain.
Visitors to Fermat-powered Funnels may generate:
We do not link Funnel visitor cookies or IP addresses to identifiable personal data such as name, email, or address.
Please do not send us any sensitive data. Sensitive data includes social security numbers, national identification numbers, information related to ethnic or racial origin, political opinions, religious beliefs, health data and information, biometrics or genetic information, criminal background, and union membership status. Should you send Fermat such sensitive information, you consent to its processing in accordance with this Privacy Policy. To avoid such processing of sensitive data, do not submit it.
Our Services are intended for business professionals and our Website is not directed to children under the age of 16. We do not knowingly collect personal information from individuals under 16. If we learn that we have received personal information from a child under the age of 16, we will delete the data. If you believe your minor child’s personal information was collected without your consent, please contact us and we will delete it.
We require personal information to better understand your needs and provide you with a better service. Specifically, we use personal information for the following purposes:
Any training or enhancement of models uses only aggregated, anonymized, or de-identified data and does not involve identifiable personal data unless expressly permitted under a written agreement.
When we process customer personal data through our Dashboard or Funnels on behalf of our customers, we act as a processor or service provider, and our customers act as the controller of that data. We process such data strictly in accordance with our agreements with customers, including our Data Processing Addendum.
We may share your personal information with others in the day to day running of our business. Except as otherwise provided in this Privacy Policy, Fermat will disclose personally identifiable information to our employees, contractors, and affiliated organizations that: (i) need to know the information to process it on our behalf or to provide services through the Website; and (ii) have agreed not to disclose it to others. Some of those employees, contractors, and affiliated organizations may be located outside of your home country and by using the Website, you consent to the transfer of such information to them. Furthermore, unless otherwise disclosed in this Privacy Policy, Fermat will not rent or sell personally identifiable information to anyone without advance notice. We do share information as described herein with our Website hosting partners and other parties who assist us in operating the Website, conducting our business, or serving our users so long as those parties agree to only use such information for the purpose for which it was shared with them by Fermat. For example, we may share your personal information with:
Fermat uses trusted third-party service providers (“Subprocessors”) to support hosting, analytics, support, and product functionality and we will share your information with such providers. Our current Subprocessor list, including descriptions of their services, is available at: https://www.fermatcommerce.com/subprocessor-list.
We may update this list from time to time as described in our Data Processing Addendum. We notify customers of new Subprocessors in advance of their engagement, as required under our Data Processing Addendum.
Fermat does not collect, receive, or process payment information directly. Fermat uses Stripe to collect and process payment card data on our behalf.
We may share your personal data within the Fermat group of companies. Access to your data within the Fermat group is limited and granted only on a need-to-know basis, depending upon job functions and roles (i.e. engineering, operations, compliance support). Of course, we will ensure that appropriate security measures and agreements are in place to protect your personal data.
We may share your personal data when it is directed by you to fulfill a business or commercial purpose. For example, we may share your data when it is related to integrations with your marketing attribution platforms or when we sync event data with marketing tools.
We may share certain information to protect rights, property, or safety of our customers, ourselves, or others. This includes disclosing and exchanging information with other businesses relating to fraud protection or other security issues. We may also disclose information if we are under a legal duty to comply with any legal obligation including, but not limited to, subpoenas, court orders, or governmental inquiries, or to enforce our Website Terms of Use or other agreements.
We may share information with third-parties including, but not limited to, consultants and professional advisors, during mergers, acquisitions, financing events, and asset sales. Successor entities may use your information consistent with this Privacy Policy.
We may collect, create, use, and share aggregated, anonymized, or de-identified information for any lawful purpose, including:
This information does not identify you or your end users, and we will not attempt to re-identify any anonymized or de-identified data. Fermat may display this information publicly or provide it to others.
Fermat will take reasonable steps for you to correct, amend, delete, or limit the use of your personal information. You may have the right to:
You can exercise any of these rights by contacting privacy@fermatcommerce.com. You may also request the details of the personal information that we hold about you. A small fee may be required.
If you are an end user of a brand using Fermat, please direct your privacy rights requests (access, deletion, correction, etc.) to the brand directly. We process such data on behalf of our customers and will assist them in responding to requests in accordance with our agreements and within the timeframe required under applicable law.
We use cookies, pixels, web beacons, session replay tools, and browser storage to operate the Services and enhance your experience.
Most browsers allow you to block or delete cookies. Any Website visitor who does not want to have cookies placed on their computer should set their browsers to refuse cookies before using the Website. If you refuse cookies, please note that some parts of our Website may not function properly. See: www.allaboutcookies.org.
You may also opt out of certain interest-based advertising through the advertisement itself, by visiting the Digital Advertising Alliance (http://optout.aboutads.info). You can also opt out of the Digital Advertising Alliance by using your mobile device settings.
Some of our advertising partners also offer opt-outs:
| Vendor | Link |
|---|---|
| Meta (Facebook) | Facebook Advertising Preferences |
| LinkedIn Privacy Preferences | |
| Google’s Privacy Policy | |
| X (Twitter) | X Privacy Policy |
We use Microsoft Clarity, Posthog, and Vantara for analytics, including on Funnels.
Brands may configure additional analytics or advertising pixels in Funnels.
Fermat is a global company with worldwide systems and, therefore, personal information collected in one country may be processed in another country, except where it is prohibited by law. If we transfer personal information to third countries, we do so by using lawful transfer mechanisms such as the Standard Contractual Clauses and the UK Addendum, as described in our Data Processing Addendum. Where we, or our subcontractors, use IT systems or software provided by companies based in countries other than the one in which the data was collected, your personal data may be stored on the servers of such companies.
Furthermore, if any of our data processing activities require your personal data to be transferred from inside the UK or the EEA to outside the UK or the EEA, we will only make that transfer if:
We seek to ensure that reasonable safeguards are in place in relation to international transfers of personal data to provide adequate levels of protection for your personal data. We will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Policy.
Fermat does not “sell” or “share” personal information as defined by the California Consumer Protection Act or other state laws. The categories of collected and disclosed information are described in Sections 2 and 4 hereinabove. You may request deletion, access, or correction by emailing privacy@fermatcommerce.com.
This section applies only to California residents. It describes how we collect, use and share Personal Information of California residents in operating our business, and their rights with respect to that Personal Information. For purposes of this section, “Personal Information” has the meaning given in the California Consumer Privacy Act of 2018 (“CCPA”) but does not include information exempted from the scope of the CCPA.
In particular, California residents may have a right to:
We will not discriminate against you for exercising any of these rights, in accordance with your rights under the CCPA. To exercise your rights, contact us by emailing privacy@fermatcommerce.com. To opt out of the use of cookies on our sites for interest-based advertising purposes, follow the instructions above.
We will acknowledge receipt of your request within ten (10) business days and provide a substantive response within forty-five (45) calendar days or inform you of the reason and extension period (up to ninety (90) days) in writing.
Under the CCPA, only you or an authorized agent may make a request related to your personal data. Note that to respond to your requests to access or delete personal data under the CCPA, we must verify your identity. We may do so by requiring you to log into any relevant account with us, provide information relating to your account (which will be compared to information we have, such as profile information), give a declaration as to your identity under penalty of perjury, and/or provide additional information. You may designate an authorized agent to submit your verified consumer request by providing written permission and verifying your identity, or through proof of power of attorney.
In addition, California Civil Code Section 1798.83, also known as “Shine The Light” law, permits California residents to annually request information regarding the disclosure of your Personal Information (if any) to third parties for the third parties’ direct marketing purposes in the preceding calendar year. This Privacy Policy summarizes how we collect, use and share Personal Information, and describes our practices during the twelve (12) months preceding the effective date of this Privacy Policy.
We care about the security of personal information and, therefore, use industry-standard safeguards, including encryption, access controls, monitoring and logging, and incident response processes. With that said, no system is completely secure. We use reasonably appropriate security measures to protect personal information against unauthorized use, access, modification, destruction, or disclosure. We also require our third-party providers to utilize similar safeguards.
We will retain your personal information for as long as reasonably necessary to provide the Services, comply with legal obligations, resolve disputes, and enforce our legal agreements and policies unless you either request deletion, when retention is no longer necessary, or when the law requires shorter or longer retention. Backup copies may persist temporarily for security. All information you provide to us is stored on our own secure servers or other internally hosted technology, or by third-parties that we work with through their cloud services or other similar technology to support Fermat’s business operations. These third-parties do not have access to the personal data other than for cloud storage and retrieval, and Fermat requires such parties to employ at lease the same level of security that we use to protect your personal data.
Our Services may contain links to third-party websites. We do not control the content or links that appear on these websites and are not responsible for the practices employed by websites linked to or from our Website. In addition, these websites or services, including their content and links, may change from time to time. These websites and services may have their own privacy policies and customer service policies. Browsing and interaction on any other website, including websites which have a link to our Website, is subject to that website’s own terms and policies. Fermat is not responsible for the privacy practices of any third-party.
Although most changes are likely minor, we may update this Privacy Policy periodically, in our sole discretion. The updated version will include the “Last Updated” date at the top of the page. Therefore, we encourage you to refer to this page on an ongoing basis so that you are always aware of the current Privacy Policy. If required by applicable law, we will notify you of the changes. Through continued use of this Website or by providing us with information following a Privacy Policy update, you agree to have accepted the Privacy Policy as changed.
We welcome any questions, comments, or requests that you may have regarding this Privacy Policy.
Fermat Commerce, Inc.
300 Brannan St. Suite 304
San Francisco, CA 94107
Email: privacy@fermatcommerce.com