PostMerchant LLC — Privacy Policy (Lift Platform)

Effective: June 1, 2026

1. Scope & Our Role

This Policy explains how PostMerchant LLC (“PostMerchant,” “we,” “us”) collects, uses, and discloses information through the Lift platform and merchant portal (the “Platform”). PostMerchant operates Lift; this Policy applies to all merchants, business owners or principals, and portal users of Lift, regardless of the independent sales organization, partner, or agent through whom you applied (your “Sales Organization”). PostMerchant provides the software and processes data to deliver onboarding and portal services; your Sales Organization and its sponsor bank(s) or processor(s) are your payment-processing providers and may maintain their own privacy notices that also apply to you.

2. Information We Collect

  • Identity & contact: name, business and home address, email, phone, title, ownership percentage.
  • Government identifiers: Social Security Number, EIN or Tax ID, driver’s license number and state.
  • Other personal details: date of birth.
  • Business information: legal and DBA name, entity type, website, MCC, business address, and formation details.
  • Financial & banking data: bank account and routing numbers, voided checks, processing volumes, pricing and fees, settlement data, statements, residual or commission data, and transaction records. Full payment-card numbers are tokenized and handled by our processors; we do not store cardholder card numbers in plaintext.
  • Documents you upload: bank statements, licenses, voided checks, and similar supporting files.
  • Verification data: results of identity and tax-ID verification (for example, via TINCheck) used to support onboarding.
  • Account & technical data: login credentials, IP address, device and browser data, user-agent, timestamps, audit logs, and cookies (including electronic-acceptance evidence we capture).

3. How We Collect It

Directly from you and your Sales Organization during application and Platform use; automatically as you use the Platform; and from third parties such as identity and tax-ID verification providers, sponsor banks, and processors.

4. How We Use Information

  • Process merchant applications and support boarding of accounts;
  • Support identity verification and risk and fraud prevention;
  • Provide the portal: statements, transaction history, residuals, support;
  • Communicate about your application, account, and service notices;
  • Comply with law, card-network rules, audits, and legal process;
  • Maintain, improve, and secure the Platform.

Note: Where credit checks or consumer reports are obtained for underwriting, that activity is conducted by your Sales Organization and its processors under their own authorizations and notices; this Policy does not govern it.

5. GLBA & Financial Privacy

Because the Platform supports financial services, nonpublic personal information (“NPI”) is handled consistent with the Gramm-Leach-Bliley Act and its Safeguards Rule. We maintain administrative, technical, and physical safeguards to protect NPI and limit its use and disclosure to the purposes described here and as permitted by law.

6. How We Disclose Information

We share information as needed to provide the services, including with:

  • The Sales Organization, partner, or agent through whom you applied (including for residual or commission purposes);
  • Sponsor bank(s) and payment processors (for example, Fiserv / AccessOne, PaySafe / iPayment) to board and operate your account, and card networks;
  • Identity and tax-ID verification providers (for example, TINCheck);
  • E-signature provider (DocuSign) to execute agreements and disclosures;
  • CRM and communications providers (for example, Pipedrive, SendGrid) for sales-pipeline and transactional messaging;
  • Other service providers acting on our behalf under confidentiality obligations;
  • Regulators, auditors, and law enforcement where required or permitted;
  • An acquirer or successor in a merger, acquisition, or asset sale.

We do not sell personal information.

7. Data Retention

We retain information for as long as your application or account is active and thereafter as required by card-network rules, financial-services record-keeping obligations, and applicable law, after which we delete or de-identify it.

8. Security

We use safeguards such as encryption in transit, card-data tokenization, access controls, multi-tenant isolation, and logging. No system is fully secure, and we cannot guarantee absolute security.

9. Your Choices & Rights

You may request access to or correction of your information and opt out of marketing emails. Depending on your state of residence (for example, California), you may have additional rights to access, delete, or correct certain data; note that much of the information here is business or financial data subject to GLBA or business-to-business exemptions. To exercise rights, contact us at privacy@postmerchant.com. Some requests may be directed to your Sales Organization or processor as the responsible party.

10. Cookies & Tracking

We use cookies and similar technologies for authentication, security, and core functionality.

11. Children

The Platform is for business use and is not directed to children under 16; we do not knowingly collect their information.

12. Changes

We may update this Policy; we will post the new effective date and, for material changes, provide notice.

13. Contact Us

PostMerchant LLC
72 Commercial Street Wharf, Suite 14
Portland, ME 04101
Email: privacy@postmerchant.com
Phone: (207) 466-4749