Privacy and Security Policy

Effective Date: January 1, 2020

This website is owned and operated by CreditShop LLC and its affiliated company Credit Shop, Inc. (“we”, “us”, or “our”).


When you visit our website, apply for, or open an account, you entrust us with personally identifiable information. Because we value that trust and respect your expectation of privacy, we designed/provided this online privacy policy (the “Website Security Policy”). All financial companies share and use consumers’ personal information to run their daily business, provide you with products, process your transactions, and to properly identify, validate and protect your identity. This Website Security Policy describes the ways that we, on behalf of ourselves and affiliates, collects and share personally identifiable information collected online.


What Types of Personally Identifiable Information do we collect?
For purposes of this Website Security Policy, "personally identifiable information" means information identifiable to and about an individual consumer collected online, such as on applications or other forms.  Personally identifiable may include an individual’s first and last name, home or other physical address, e-mail address, telephone number, social security number, or other identifier that permits the physical or online contacting of a specific individual.  Personally identifiable information also includes information concerning a user, such as income or employment information, that we collect online from the user and maintains in personally identifiable form in combination with an identifier described in the above categories.


What personal information do we share with other entities?
We may disclose all of the information, as described above, as permitted by law. Examples of what is permitted by law include: disclosing such information (a) to third parties if it is necessary or helpful in confirming the information or completing a transaction; (b) to other persons that have an interest in the financial product or service; (c) to report to consumer reporting agencies; (d) to comply with legal process such as subpoenas or court orders; (e) to respond to law enforcement agencies with respect to suspected or actual fraud, criminal activity or security risks; and (f) if you give us your consent.  We also may disclose all of the information we collect to companies that perform marketing services on our behalf (e.g., those that assist us with mailings).

This website uses the Google AdWords remarketing service to advertise on third party websites (including Google) to previous visitors to our site. It could mean that we advertise to previous visitors who haven’t completed a task on our site, for example using the contact form to make an enquiry. This could be in the form of an advertisement on the Google search results page, or a site in the Google Display Network. Third-party vendors, including Google, use cookies to serve ads based on someone’s past visits to our website. Any data collected will be used in accordance with our own Website Security Policy and Google’s privacy policy.
You can set preferences for how Google advertises to you using the  Google Ad Preferences page. You can also opt out of interest-based advertising entirely by cookie settings or permanently using a browser plugin.


Use of Cookies and Similar Technology
We,or our service providers, and other companies we work with may deploy and use cookies, web beacons, local shared objects and other tracking technologies for various purposes, such as fraud prevention and monitoring our advertising and marketing campaign performance. Some of these tracking tools may detect characteristics or settings of the specific device you use to access our online services.

We or our service providers who assist in operating our online services do not respond differently or limit their practices under the terms of this Online Website Security Policy when you access those online services with a browser that uses a do not track signal or similar mechanism.


Suspicious Email
It is our policy not to email you or send you electronic communications to request non-public personal information or account information (such as a username or password). If you receive an unsolicited email or other electronic communication that appears to be from us, but you suspect may be from another source and might be fraudulent, please email us at contact@creditshop.com.


Social Media
You may also find additional information on our products and services through social media sites such as Facebook, LinkedIn, or Twitter. Please keep in mind that any information you share is visible to all participants on these social media sites and you should never post any sensitive personal information (such as account number or tax identification). Please carefully review the terms of use and privacy policy on these social media sites as they may be different than our own policies.


Links to Other Web Sites
Our web site or online service may contain links to other web sites. As such, we are not responsible for the privacy practices or the content of such web sites.

Updating and Correcting Your Personal Information
Keeping your information accurate and up to date is very important. If your personal or account information is incomplete, inaccurate or not current, please contact us.

Children's Privacy
Our website and online services are not intended for children under the age of 13. We do not knowingly collect personal information from users in this age group.


Questions or Comments
If you would like more information regarding this Website Security Policy or you believe that the information we have on file about you is inaccurate or incomplete, you can email us at contact@creditshop.com.

Changes to this Website Security Policy
We may amend this Website Security Policy from time to time by posting a notice of the change (or an amended Website Security Policy) on our website. If we make changes to the Website Security Policy, we will revise the “Effective” date at the top of this Policy. We will send you a notice of the change only if required by applicable law.  Any changes to this Website Security Policy will become effective when we post the revised Website Security Policy on the site.

Your California Privacy Rights

Effective January 1, 2020, this section applies to any California residents about whom we have collected personal information from any source, including through your use of our Website(s), by buying our products or services, or by communicating with us electronically, in paper correspondence, or in person (collectively, “you”).

For purposes of this section, “personal information” means information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular California consumer/resident or household. Personal information does not include publicly available information or information that has been de-identified.

A. What Information We Collect

We may collect the following categories of personal information about you:

  • Identifiers, which includes real name and alias; postal address; unique personal identifier; Internet Protocol (“IP”) address; email address; telephone number and/or other similar identifiers;

  • Commercial information, which includes products or services purchased, obtained, or considered;

  • Information relating to Internet activity or other electronic network activity, which includes cookie identifiers, clear gifs (a.k.a. web beacons/web bugs), browser type, internet service provider (ISP), referring/exit pages, operating system, date/time stamp, clickstream data, device platform, device version, and/or other device characteristics including your choice of settings such as Wi-Fi, Bluetooth, and Global Positioning System (“GPS”);

  • Geolocation data, which includes Global Positioning System (“GPS”) data; locational information based upon your IP address; cell network data; and/or other similar locational data; and which may be collected from various devices including your mobile device(s);

  • Inferences about you;

B. What We Do With Your Information

We may collect or use personal information from you for the following purposes:

Internal analytics
Audit, compliance, policy, procedures, or regulation
Marketing our products and services
Website optimization and maintenance
Systems and data security

C. Sources of Collected Information

We may collect personal information from the following categories of sources:

  • Potential credit applicants and users of our website, including via our websites, mobile applications, or other means;

  • Our service providers, which includes customer relationship management providers, marketing providers, analytics providers, website hosting providers, systems administrators, and communications delivery services;

  • Nonaffiliated companies with which we have a business relationship, such as membership organizations;

  • Other third parties, including online advertising partners and other data suppliers;

  • Things that other third parties may post publicly about you or otherwise provide to us; and

  • Employees and job applicants.

D. Who We Share Information With

We may share your personal information with the following categories of third parties:

  • Advertising and marketing companies

  • Nonaffiliated companies with which we have a business relationship, including those for with you have a preexisting relationship before applying for credit, such as membership organizations

We disclose the following categories of personal information for a business purpose:

  • Identifiers, which includes real name and alias; postal address; unique personal identifier; email address; telephone number and/or other similar identifiers;

  • Commercial information, which includes products or services purchased, obtained, or considered;

We do not sell any of your personal information to others.

E. Your Privacy Rights

If you are a California resident, subject to applicable law, you have the following rights under California law with respect to your personal information, to the extent your personal information is not already subject to federal law and the required privacy and security measures applied under federal law:

  • Right to Know. You have the right to request what personal information we collect, use, disclose, and/or sell, as applicable.

  • Right to Delete. You have the right to request the deletion of your personal information that is collected or maintained by us.

  • Right to Non-Discrimination. You have the right not to receive discriminatory treatment by us for the exercise of the privacy rights described above.

You may also authorize someone to exercise the above rights on your behalf. Please call 1(877)677-0982 for instructions on how to send us a Power of Attorney authorizing the third party to act on your behalf. If we have collected information on your minor child, you may exercise the above rights on behalf of your minor child.

The above rights are subject to our being able to reasonably verify your identity and authority to make these requests. These rights are also subject to various exclusions and exceptions under applicable laws. When you submit a request we require that you provide your name and address as well as three of the following pieces of information that we will use to verify your identity: phone number, email address, date of birth, and/or last four digits of your social security number.

If you are a California resident and wish to seek to exercise these rights, please reach us in one of the following ways:

https://www.mercurycards.com/mercurycard/#/manage/privacy/ccpa

  • 1(877)677-0982

For more information regarding this California Privacy Rights Policy, or if you have any questions or concerns, you may contact us in the following ways:

  • 1(877)677-0982

Table 1 – Disclosure Matrix

Categories of Personal Information

Purpose of Collection

Internal Analytics

* Identifiers
* Internet or Electronic Activity
* Geolocation

Audit, compliance, policy, procedures or regulation

* Identifiers
* Internet or Electronic Activity
* Geolocation

Marketing our products or services

* Identifiers

* Commercial

* Internet or Electronic Activity
* Inferences
* Geolocation

Website Optimization

* Identifiers
* Interest or Electronic Activity

System and data security

* Identifiers
* Internet or Electronic Activity
* Geolocation

Categories of Sources

Potential credit applicants and users of our website, including our mobile application, mobile website and or other means

* Identifiers

* Commercial
* Internet or Electronic Activity
* Geolocation

Our service providers, which includes customer relationship management, providers, marketing providers, analytics providers, website hosting providers, systems administrators and communications delivery services

* Identifiers
* Internet or Electronic Activity

Nonaffiliated companies with which we have a business relationship

* Identifiers
* Internet or Electronic Activity

Other third parties including online advertising partners and other data suppliers

* Identifiers
* Internet or Electronic Activity

Employees and job applicants

* Identifiers

Advertising and marketing companies

* Identifiers
* Internet or Electronic Activity

Categories of Third Parties

Advertising and marketing companies

* Identifiers

* Commercial

Nonaffiliated companies with which we have a business relationship, including who you have a preexisting relationship with before applying for credit

* Identifiers

* Commercial