Request Demo

Privacy Policy

When you visit this website https://www.global-e.com/ (“website”) hosted by Global-e Online Ltd. and its affiliated group companies worldwide (“Global-e”, “our”, “we” or “us”), correspond with us or become (or are in the process of becoming) one of our merchants or partners, we process personal data about you as a data controller. It is important to us that the personal data of the visitors to our websites, our (prospective) merchants and our (future) partners (“you”) is treated with care and that you are well informed about the way we process personal data related to you. We have written this privacy statement to tell you which data we process, how, why and how long we do this and your rights.

However, this policy is not intended and is not covering, personal data provided to us when you interact with us as a consumer of products sold through our services. Please refer to the website of the merchant from which your products were purchased and our consumers’ privacy policy available here.

Personal Data Collection

Which Types of Personal Data do We Collect and for What Purposes?

We collect the personal data related to you (including your name, email address, mobile or other telephone number, country, IP address and other information as further detailed under this section below) through your engagement with our website, for various business purposes, as further detailed under this section below.

How do We Collect Personal Data?

We collect the personal data related to you, directly from you, and through the use of “cookies” on our website.

With Whom do We Share Personal Data?

We share personal data with our vendors as necessary to facilitate our business. We may share personal data with our partners and affiliated companies. We will share information when we change our corporate structure, and we will share the information with our affiliated entities.

How Long do We Keep Personal Data Related to You?

We retain different types of personal data for different periods, depending on the purposes for processing the information, our legitimate business purposes as well as pursuant to legal requirements.

Specific Provisions for EU Residents

If we process personal data related to you when you are in the EU, further terms apply to our processing in relation to your rights as a data subject under EU data protection laws.

Specific Provisions for California Residents

If you are a California resident, you are entitled to specific privacy rights.

Which Types of Personal Data do We Collect and for What Purposes?

Data we collect when you use our website and about how you use our website. When you browse our website, we process your IP address, Google Analytics ID, advertisement ID, Mac ID, internet browser and device type, location data and your use of our website, including which pages you visited, how you got to our website, the time and length of your visit and your language preferences. We use this data for our legitimate interests of making sure our website works properly, including debugging, to be able to deliver you content and for DDOS mitigation on our website, and improving our website, and to perform statistical analyses for optimizing our website.

We collect information about how you use our website, for example, which landing pages you visit and which items you look at and how long, to make a determination about what we could likely do for you. For example, if you read about our products and services on our website, we might classify you as a website visitor who is interested in our products and services and therefore as a potential merchant. Based on the audience we expect you belong to, we may act, for example by contacting you with offers about our products and services, if we have your consent for this.

Data we collect when you contact us or request us to contact you. Via our website, you can contact us or ask us to contact you regarding questions, queries, (support) requests, comments or complaints, fill out an application to become a merchant or a partner or sign up for a test account. When you do this, we collect the information that you fill out, including your name, company, contact details, the reason you are contacting us, verification that you are not a robot and other information you decide to provide us. You can also contact us by using, for example, the contact details listed on our website. If you do so, we will collect your name, company, and any other information we need to be of further assistance to you and/or communicate with you.

We use this data above to answer your question, comment or complaint and respond to your queries and (support) requests and to assess your application to become a merchant or partner.

Data we process for our marketing purposes. You can sign up for our marketing communications using your name and e-mail address via the sign-up form on our website. If you are already one of our merchants, we will contact you in relation to relevant products or services, for our legitimate interest in developing our business. We can do this via e-mail or, if your e-mail is registered on LinkedIn, we connect to you on LinkedIn and/or to send you messages on LinkedIn. If you are not yet one of our merchants, we will only contact you, for example via e-mail or LinkedIn, with offers or about our products or services if you have given us your permission to do so. When we contact you in this context via e-mail, you always have an opportunity to opt out of our communications at any moment by following the instructions in the e-mail, or by contacting us using the contact details below.

You can also download content, for example, white papers and research reports, from our website using the forms designed for this purpose. We collect the data you fill out on the form, including your name, company, country and e-mail address.

Other purposes. If necessary, we can also process any of the information related to you for our legitimate interest in protecting our legal rights, for example in connection with legal claims, and when we have a legal obligation to process information related to you. We will also transfer personal data related to you in the event of a company reorganization, merger, or sale.

Social media buttons. We may use plugins on our website from social media networks such as Facebook, LinkedIn and Twitter. You can recognize these plugins by their logos. We also may use plugins for the embedded video players which can be found on our website. The plugins will not collect personal data about you, unless you click on these logos or videos. If you click on them, these plugins are activated and automatically transmit data to the plugin provider.

We do not have any influence (or are responsible) over which data these providers collect from you, and we are also not aware of the extent of their data processing. If you would like more information about their data processing, this can be found in the respective privacy policies on the websites of these providers.

How Do We Collect Personal Data?

We collect the personal data related to you mainly directly from you, when you use our website, fill in a form, become a merchant, or otherwise contact us through our website. In addition, we collect personal data using cookies and similar technologies, including tags/beacons and JavaScripts. For more information, please visit our <<Cookies Policy>>>.

With Whom Do We Share Personal Data?

  • We need the help of third parties to be able to offer you our website and our products and services. Where necessary we will share personal data related to you with our service providers (e.g. IT providers, CRM providers, marketing support providers (such as agencies that manage our social media accounts), social media providers such as LinkedIn, analysts, and other standard analytics tools of customer service providers, business development providers, and legal service providers). We have concluded agreements with our service providers to protect personal data related to you.
  • With our business partners with whom we jointly offer products or services.
  • With our affiliated companies that require the information for providing you the services;
  • To the extent necessary, with regulators, courts or competent authorities, to comply with applicable laws, regulations and rules (including, without limitation, federal, state or local laws), and requests of law enforcement, regulatory and other governmental agencies or if required to do so by court order;
  • If, in the future, we sell or transfer, or we consider selling or transferring, some or all of our business, shares or assets to a third party, we will disclose your personal data to such third party (whether actual or potential) in connection with the foregoing events;
  • In the event that we are acquired by, or merged with, a third party entity, or in the event of bankruptcy or a comparable event, we reserve the right to transfer, disclose or assign your personal data in connection with the foregoing events, including, in connection with, or during negotiations of, any merger, sale of company assets, consolidation or restructuring, financing, or acquisition of all or a portion of our business by or to another company; and/or
  • Where you have provided your consent to us sharing or transferring your personal data (e.g., where you provide us with marketing consents or opt-in to optional additional services or functionality).

Aggregated and Analytical Information

As aforesaid, we use standard analytics tools such as Google Analytics and others, to learn about how you and other users use our service, how we should improve your user experience and which improvements we should prioritize. The privacy practices of these tools are subject to their own privacy policies and they use their own cookies to provide their service (for further information about cookies, please see the ‘Cookies Policy’ section in this policy). Further information about how Google uses data when you use our service, is located at http://www.google.com/policies/privacy/partners/.

Please note that some of the abovementioned personal data will be used for detecting, taking steps to prevent, and prosecution of fraud or other illegal activity, to identify and repair errors, to conduct audits, and for security purposes. personal data may also be used to comply with applicable laws, with investigations performed by the relevant authorities, law enforcement purposes, and/or to exercise or defend legal claims. In certain cases, we may or will anonymize or de-identify your personal data and further use it for internal and external purposes, including, without limitation, to improve the services and for research purposes. “Anonymous Information” means information which does not enable identification of an individual user, such as aggregated information about the use of our services. We may use Anonymous Information and/or disclose it to third parties without restrictions (for example, in order to improve our services and enhance your experience with them).

Where do We Transfer Personal Data To?

Some of the information you provide to us will be shared outside of the European Economic Area (“EEA”) when this is necessary for the purposes mentioned above. These countries include the countries in which we have operations. It also includes the countries in which some of our service providers are located, such as the United States.

To protect personal data related to you when such data is transferred to countries outside of the EEA and to provide it with an adequate level of protection, we have implemented appropriate safeguards in accordance with applicable privacy laws, for example, we rely on (i) Adequacy Decisions as adopted by European Commission on the basis of Article 45 of Regulation (EU) 2016/679 (GDPR) (for example, when we access from Israel), (ii) Standard Contractual Clauses issued by the European Commission, or (iii) Data Privacy Framework, as further described below. We also continually monitors the circumstances surrounding such transfers in order to ensure that these maintain, in practice, a level of protection that is essentially equivalent to the one guaranteed by the GDPR.

If you are a resident in a jurisdiction where the transfer of Personal Information related to you to another jurisdiction requires your consent, then to the maximum extent permitted by law, by agreeing to comply with this Privacy Policy, you provide us your express and unambiguous consent to such transfers.

Data Protection Framework (DPF). Global-e US Inc. our US subsidiary, complies with the EU-U.S. Data Privacy Framework (EU-U.S. DPF) and the UK Extension to the EU-U.S. DPF, as set forth by the U.S. Department of Commerce and will be further liable in cases of onward transfers of your personal data to third parties (including our Service Providers).

Global-e US Inc. has certified to the U.S. Department of Commerce that it adheres to the EU-U.S. Data Privacy Framework Principles (EU-U.S. DPF Principles) with regard to the processing of personal data received from the European Union and the United Kingdom in reliance on the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF. If there is any conflict between the terms in this privacy policy and the EU-U.S. DPF Principles, the Principles shall govern. To learn more about the Data Privacy Framework (DPF) Program, and to view our certification, please visit https://www.dataprivacyframework.gov/.

Complaints about transfers of data from the EU or the UK to the US & dispute resolution: In compliance with the DPF Principles, we commit to resolve complaints about our collection or use of your personal data. EEA and UK individuals with inquiries or complaints regarding our DPF compliance should submit enquiries to [email protected].

If a privacy complaint or dispute relating to personal data received by us in reliance on the DPF cannot be resolved through our internal processes, you did not receive a timely acknowledgement of your EU-US DPF-Principles related complaint from us, or we did not address your EU-US DPF Principles related complaint to your satisfaction, in compliance with the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF, Global-e US Inc. commits to refer unresolved complaints concerning our handling of personal data received in reliance on the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF to JAMS, an alternative dispute resolution provider based in United States, If you do not receive timely acknowledgment of your DPF Principles-related complaint from us, or if we have not addressed your DPF Principles-related complaint to your satisfaction, please visit https://www.jamsadr.com/DPF-Dispute-Resolution for more information or to file a complaint. The services of JAMS are provided at no cost to you.

Please note that under certain conditions (as described under the DPF Principles Global-e US Inc. adheres to) you can invoke a binding arbitration by delivering a notice to Global-e US Inc. Inc. via [email protected].  Please also note that Global-e US Inc. is subject to the investigatory and enforcement powers of the Federal Trade Commission (FTC).

How do We Protect Personal Data Related to You?

We are committed to securing personal data related to you and have taken steps in this regard. In order to prevent unauthorized people or parties from being able to access personal data related to you, we have put in place a range of technical and organizational measures to safeguard and secure the information we process from you. However, please note that we cannot guarantee that the information will not be compromised as a result of unauthorized penetration to our servers. As the security of information depends in part on the security of the computer, device or network you use to communicate with us and the security you use to protect your user IDs and passwords, please make sure to take appropriate measures to protect this information.

Your Choice

At any time, you can unsubscribe from receiving our communications by following the instructions provided in any of the communications, or request that the personal data related to you will not be shared with our affiliates or service providers, by contacting us at: [email protected]. It may take up to 7 business days for your opt-out request to take effect. Please note that certain opt-out requests may require us to terminate your merchant account, for example, if transferring personal data related to you to a service provider is essential to provide related services. At any time, you can stop using our website as well. Thereafter, we will stop collecting any respective personal data related to you.

Please note, that some web browsers offer a “Do Not Track” (“DNT”) signal. A DNT signal is an HTTP header field indicating your preference for tracking your activities on the Services or through cross-site user tracking. Our Services and website do not respond to DNT signals.

Accessing Personal Data Related to You

  • If you find that the personal data that we keep about you is not accurate, complete, or up to date, please provide us with the necessary information to correct it.
  • You can request to access the personal data that we keep about you.
  • You have the right to request the erasure/deletion of your personal data (e.g. from our records). Please note that there may be circumstances in which we are required to retain your personal data, for example for the establishment, exercise or defense of legal claims.

You can exercise your rights by contacting us at: [email protected].  To protect your privacy, we may take steps to verify your identity before fulfilling your request. Subject to legal and other permissible considerations, we will make every reasonable effort to honor your request promptly in accordance with applicable law or inform you if we require further information in order to fulfil your request. When processing your request, we may ask you for additional information to confirm or verify your identity and for security purposes, before processing and/or honoring your request. We reserve the right to charge a fee where permitted by law, for instance if your request is manifestly unfounded or excessive. In the event that your request would adversely affect the rights and freedoms of others (for example, would impact the duty of confidentiality we owe to others) or if we are legally entitled to deal with your request in a different way than initial requested, we will address your request to the maximum extent possible, all in accordance with applicable law. 

Specific Provisions for EU Residents

Under EU and UK data protection laws (“GDPR”), we will be considered a Data Controller with respect to your use of our website as such term is defined therein. The lawful bases we rely on for processing personal information are (if and when applicable):

  • The data subject has given consent to the processing of his or her personal data;
  • Processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract;
  • processing is necessary for compliance with a legal obligation to which the controller is subject; and/or
  • Processing is necessary for the purposes of legitimate interest including for the following purposes:
  • Communications with you, including direct marketing, or conducting marketing research so we can improve our products and services and be able to offer our (future) merchants tailored products and services, or where you make contact with us through our website and other digital assets;
  • Cybersecurity;
  • Support, customer relations, website operations;
  • Enhancements and improvements to your and others experience with our website;
  • Fraud detection and misuse of our website.

At any time, you can contact our DPO at: [email protected], and request to exercise your rights in accordance with the provisions provided by law:

  • You have a right to access personal data held about you. Your right of access may normally be exercised free of charge, however we reserve the right to charge an appropriate administrative fee where permitted by applicable law;
  • You have the right to request that we rectify any personal data we hold that is inaccurate or misleading;
  • You have the right to request the erasure/deletion of your personal data (e.g. from our records). Please note that there may be circumstances in which we are required to retain your personal data, for example for the establishment, exercise or defense of legal claims;
  • You have the right to object, to or to request restriction, of the processing;
  • You have the right to data portability. This means that you may have the right to receive your personal data in a structured, commonly used and machine-readable format, and that you have the right to transmit that data to another controller;
  • You have the right to object to profiling;
  • You have the right to withdraw your consent at any time. Please note that there may be circumstances in which we are entitled to continue processing your data, in particular if the processing is required to meet our legal and regulatory obligations. Also, please note that the withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal;
  • You also have a right to request certain details of the basis on which your personal data is transferred outside the European Economic Area, but data transfer agreements and/or other details may need to be partially redacted for reasons of commercial confidentiality; and
  • You have a right to lodge a complaint with your local data protection supervisory authority (i.e., your place of habitual residence, place or work or place of alleged infringement) at any time or before the relevant institutions in your place of residence. We ask that you please attempt to resolve any issues with us before you contact your local supervisory authority and/or relevant institution.

We will look into your query and make good-faith efforts to resolve any existing or potential dispute with you. Note that when you send us a request to exercise your rights, we will need to reasonably authenticate your identity and location. We will ask you to provide us credentials to make sure that you are who you claim to be and will further ask you questions to understand the nature and scope of your request. If you have any concerns about the way we process personal data related to you, you are welcome to contact our DPO  at: [email protected].

Specific Provision for California Residents

This section applies solely to all visitors who reside in the State of California. We adopted this section to comply with the California Consumer Privacy Act of 2018 and its amendments, modifications and regulations (“CCPA”) and any terms defined in the CCPA have the same meaning when used in this section.

We have collected the following categories of personal information from consumers within the last twelve (12) months:

  • Identifiers and Personal information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e)), such as a real name, alias, signature, telephone number, postal address, online identifier Internet Protocol address, business email address, account name and financial information.
  • Internet or other electronic network activity information, including, but not limited to, browsing history, search history, and information regarding a consumer’s interaction with our website.
  • Geolocation data, namely your physical location or movements.
  • Inferences drawn from any of the above-mentioned information.
  • For more information, please read Section 1 above.

We obtain the categories of personal information listed above from the following categories of sources:

  • Directly and indirectly from you and your activity on our website.
  • Third parties such as service providers.
  • Our affiliated companies.

We use the personal information we collect or receive for the purposes mentioned under the section “Which types of personal data do we collect and why?” of this privacy policy.

We disclose personal information to third parties as described above under the section titled “With whom do we share personal data?”.

Sale of Personal Information.

We do not sell your personal information in exchange for monetary compensation. We may, however, share your personal information with certain third parties (such as certain advertising services, vendors and other tracking technologies) or allow them to collect personal information via automated technologies on the website for marketing / cross-context behavioral advertising purposes, internal technological purposes. We also directly share information with some of our vendors in order to obtain marketing services and/or analytics information. This kind of sharing may be considered a “sale” or “sharing” under California law, even when the personal data is exchanged for non-monetary consideration. In some cases, we share such information with such third parties for the purpose of cross-context behavioral advertising. The categories of personal information we “sell” or “share” includes: identifiers such as a name, address, unique personal and online identifiers (such as a device identifier, beacons, pixel tags, mobile ad identifiers and similar technology), email address, account name, location data (which includes the location of the mobile device or tablet derived from GPS or WiFi use; the IP address of the device or internet service used to access the website and the advertising ID). Categories of third parties to whom personal information was disclosed that may be considered “sale” or “sharing” under CCPA are: marketing partners, data analytics providers, and other tracking technology providers.

You have the right to opt-out of the sale of your personal information or sharing of your personal data for cross-context behavioral advertising. You can exercise your right by contacting us via our Privacy Center.. You will not be required to create an account for exercising the opt-out right.

We do not knowingly sell or share (for cross-context behavioral advertising) the personal data of consumers under 16 years of age. For more information about treatment of children’s personal data, see below.

If you are a California resident, you are entitled to the following specific rights under the CCPA regarding personal information related to you:

  • You have the right to know what personal information is being collected about you, This include the right to request that we disclose what personal data we collect, use, disclose, and sell;
  • You have the right to request the erasure/deletion of your personal information (e.g. from our records and the records of our service providers). Please note that there may be circumstances in which we are required to retain your personal information, for example for the establishment, exercise or defense of legal claims;
  • You have the right to correct inaccurate personal information that we maintain about you.
  • You have the right to know whether your personal information is sold or disclosed and to whom;
  • You have the right to restriction of, or object to, processing of your personal information, including the right to opt out of sale of your personal information to third parties, if applicable, where such requests are permitted by law by contacting us at: [email protected].; and
  • We will not discriminate you. If you decide to exercise your rights, you will not receive any discriminatory treatment by us for the exercise of the privacy rights conferred by the CCPA.

To exercise the access, data portability, and deletion rights described above, please submit your request to us by email to: [email protected]. Only you or a person authorized to act on your behalf may make a request related to personal information related to you. You may also make a verifiable consumer request on behalf of your minor child. A request for access can be made by you only twice within a 12-month period. The verifiable consumer request must: (i) Provide sufficient information that allows us to reasonably verify you are the person about whom we collected personal information or an authorized representative. (ii) Describe your request with sufficient detail that allows us to properly understand, evaluate, and respond to it. We cannot respond to your request or provide you with the requested personal information if we cannot verify your identity or authority to make the request and confirm the personal information relates to you.  We will only use the personal information provided in your request to verify your identity or authority to make the request. We do not charge a fee to process or respond to your request unless it is excessive, repetitive, or manifestly unfounded.  If we determine that the request warrants a fee, we will inform you of the reasons for such a decision and provide you with a cost estimate before completing your request.

How Long do We Keep Personal Data Related to You?

Your personal data will be stored until we delete the record and we proactively delete it or you send a valid deletion request, please note that in some circumstances we may store your personal data for longer periods of time, for example (i) where we are required to do so in accordance with legal, regulatory, tax or accounting requirements, or (ii) for us to have an accurate record of your dealings with us in the event of any complaints or challenges, or (iii) if we reasonably believe there is a prospect of litigation relating to your personal data or dealings. We have an internal data retention policy to ensure that we do not retain your personal data perpetually.

Changes to This Policy

We may change this Policy from time to time to reflect operational, legal, or regulatory changes. Any modifications will take effect upon posting the updated version on this page, unless otherwise required by applicable law. The effective date at the top of the page will indicate when the latest changes were made. In cases where significant changes materially impact your rights, we will make reasonable efforts to notify you, such as via email or through a notice on our website.

If you do not agree with the updated Policy, you may choose to stop using our website before the changes take effect. Your continued use of our website after the effective date of the updated Policy constitutes your acceptance of the changes. If the update is required to comply with legal obligations, it will take effect immediately or as mandated by law. 

Use By Children

We do not offer our products or services for use by children and, therefore, we do not knowingly collect personal data from, and/or about children under the age of eighteen (18). If you are under the age of eighteen (18), do not provide any personal data to us without involvement of a parent or a guardian. For the purposes of the GDPR, we do not intend to offer information society services directly to children. In the event that we become aware that you provide personal data in violation of applicable privacy laws, we reserve the right to delete it. If you believe that we might have any such information, please contact us at [email protected].

Contacting Us, Questions and Complaints

Questions, comments, requests or complaints concerning this privacy notice and the way we process personal data related to you are welcomed and can be addressed to our DPO at [email protected] .

Global-e UK acts as our UK representative and can be contacted at [email protected].

In addition, you may contact our European representative, RICKERT Rechtsanwaltsgesellschaft m.b.H. Kaiserplatz 7 – 9, 53113 Bonn, Germany. Telephone No: 0049 228 74 898 0 Email: [email protected]

If you have a complaint about the way we handle personal data related to you, you also have the right to address this with the data protection authority of the country in which you live or work or the country in which we are located.

Last update: March 13, 2025

Request Demo