Privacy and Data Security Statement

This Privacy and Data Security Statement was last updated on June 27, 2024.

Thank you for visiting Route, and for viewing this Privacy and Data Security Statement (“Statement”). This Statement applies to Route App, Inc., and our other Route group entities and affiliates (together, “Company”, “we”, “us”, or “our”), and covers all Route’s products and services (collectively, the “Services”), which include our website and related subdomains, our mobile applications, and all other online and offline offerings. This Statement serves to notify you about the types of personal information we collect, how we use it, who we share it with, what we do to store and protect it, and how you can exercise your privacy rights. For residents of California and other US states with special privacy rights, additional disclosures are available here.

As used in this Statement, “personal information” has the meaning given to it under the law where you live, but typically refers to information that can be used to identify you as an individual; meanwhile our activities taken with respect to your personal information are referred to as “processing.”  

For your convenience, we’ve provided a quick summary of our processing activities below.

Summary of How We Handle Personal Information

We have two main types of users: Merchants and End Users. We offer the Route Services directly to End Users, for example when they download and use the Route App to track and protect their packages. We also work directly with Merchants to offer our Services on their respective storefronts. Our sites and apps also collect information from both End Users and Merchants automatically, which we use to analyze and advertise our Services and promote third-party products and services to End Users.

From Merchants, we collect your business contact and financial information, as well as the orders you ship. Meanwhile, from End Users, we collect your account and shipping information, as well as the details surrounding the packages you wish to track and protect, and any claims you make (which are then shared with Merchants). If, as a End User, you give us access to your email account, we will also scan your messages for shipment-related information. We also allow End Users to sync other third-party online marketplaces, to more efficiently track the status of their packages. 

Note: Merchants enter into a contract with us which is separate from this Statement and has its own terms and conditions with respect to data privacy and security of End Users’ personal information. If you are a End User and have a question regarding how a Merchant has used your personal information, you should contact that Merchant directly. This Statement applies to the personal information we collect and use on our own behalf (i.e., as a data controller).

Contacting Our Privacy Office

If you have any questions or concerns about our privacy and data security policies, procedures, and practices, including anything we say in this privacy statement, or would like to exercise your privacy rights, we encourage you to contact our Privacy Office.

Attention: Privacy Officer, Legal

Address: 1441 W Innovation Way, STE 200, Lehi, Utah 84043, United States of America
Email: [email protected]

Changes to our Privacy Statement. We may revise this Privacy Statement from time to time in our sole discretion. If there are any material changes to this Privacy Statement, we will notify you as required by applicable law, such as by sending you an email and/or a notification within our mobile app. If you continue to use our Services after the new Privacy Statement takes effect, we will assume you have read and acknowledged the new Statement.

Supervisory Authority. If your personal information is subject to the applicable data protection laws of Australia, the European Economic Area, Switzerland, the United Kingdom, or Virginia, you have the right to lodge a complaint with the competent supervisory authority or attorney general if you believe our processing of your personal information violates applicable law.














What Personal Information Do We Collect?

The categories of personal information we collect depend on how you interact with us, our Services, and the requirements of applicable law. We collect information that you provide to us directly, information we obtain automatically when you use our Services, and information from other sources such as third-party services and organizations, as described below.

Personal Information Collected from You Directly

If you choose to participate in or make use of certain activities and features available via our online and mobile resources, you will need to provide us with certain personal information about yourself. The categories of information we collect vary based on whether you are a Merchant, End User, or both.

Below are some other ways you voluntarily give us your personal information as a End User, Merchant, or both:

Automatically Collected Information

When you visit or use our Services, we may collect certain information automatically, such as your Internet protocol (IP) address, user settings, cookie identifiers, mobile carrier, mobile advertising and other unique identifiers, browser or device information, location information (including city-level location derived from IP address), and Internet service provider. We may also automatically collect information regarding your use of our Services, such as:

Additional information about cookies and similar tracking technologies is available in our Cookie Notice.

Information Collected from Third Parties

Third-Party Services and Sources. We may obtain personal information about you from other sources, including through third-party services and organizations. For example, if you access our Services through a third-party application, such as an app store, a third-party login service like Google, or a social networking site like Facebook, we may collect personal information about you from that third-party application that you have made available via your privacy settings.

Likewise, if you sync your End User account with an account you have with a third-party account such as your email provider or online marketplace account, we will receive additional information from that third party. This information might include your name, email address, language preference, and profile picture, as well as details about your shipments as described above.

We maintain a presence on external social media platforms such as Twitter, Facebook, YouTube, and LinkedIn. We may further allow the community features of our online and mobile resources to connect with, or be viewable from, that external social media presence. Similarly, our online and mobile resources may contain links to other websites or apps controlled by third parties.

We are not responsible for either the content on, or the privacy practices of, social media platforms, or any third-party sites or apps to which we link. Those apps, sites, and platforms are not controlled by us and therefore have their own privacy policies and terms of use. If you have questions about how those apps, sites and platforms collect and use personal information, you should carefully read their privacy policies and contact them using the information they provide.

How and Why Do We Use the Personal Information We Collect?

We use your personal information for a variety of business purposes, including to provide our Services, for administrative purposes, and to market our products and Services, as described below.

To Provide Our Services

We use your information to fulfill our contract with you and provide you with our Services, such as:

For Administrative Purposes

We use your information for various administrative purposes, such as:

To Market and Advertise our Services

We may use personal information to tailor and provide you with content and advertisements. We may provide you with these materials as permitted by applicable law. Some of the ways we market to you include email campaigns, text messages, custom audiences advertising, and “interest-based” or “personalized advertising,” including through cross-device tracking.

If you have any questions about our marketing practices, or if you would like to opt out of the use of your personal information for marketing purposes, you may contact us at any time as set forth here

We may use personal information for other purposes that are clearly disclosed to you at the time you provide personal information or with your consent.

Other Purposes

We also use your personal information for other purposes as requested by you or as permitted by applicable law.

When / With Whom Do We Share Personal Information?

We may share your personal information with third parties as described below. 

Disclosures to Provide our Services

Disclosures to Protect Us or Others

We may disclose personal information to government authorities and to other third parties when compelled to do so by such government authorities, or otherwise as required or permitted by applicable law, including responding to court orders and subpoenas. We may also disclose personal information when we have reason to believe that someone is causing injury to or interference with our rights or property or harming or potentially harming other persons or property.

Disclosures in Connection with a Business Sale/Purchase

We may disclose your personal information in connection with an actual or proposed sale of substantially all of our assets, equity interests, or securities, or are acquired by one or more third parties as a result of an acquisition, merger, sale, reorganization, divestiture, consolidation, or liquidation, personal information may be one of the transferred assets. 

Overseas Sharing of Personal Information

We are a global organization and we work with Merchants, service providers and commercial partners across the globe. It is likely that your personal information will be disclosed to overseas recipients, including in the United States and Australia. We endeavor to safeguard your information consistent with the requirements of applicable laws.

If we transfer personal information which originates in the European Economic Area, Switzerland, and/or the United Kingdom to a country that has not been found to provide an adequate level of protection under applicable data protection laws, one of the safeguards we may use to support such transfer is the EU Standard Contractual Clauses

For more information about the safeguards we use for international transfers of your personal information, please contact us as set forth here

How Do We Store and Protect Collected Personal Information?

We store information in paper-based files or other electronic record keeping methods in secure databases (including trusted third-party storage providers). We take reasonable steps to protect your personal information from misuse, interference and loss and from unauthorized access, modification or disclosure. We store the personal information we collect as described in this Privacy Statement for as long as you use our Services, or as necessary to fulfill the purpose(s) for which it was collected, provide our Services, resolve disputes, establish legal defenses, conduct audits, enforce our agreements, and comply with applicable laws.  We endeavor to retain all such personal information in accordance with legal requirements.

Despite the significant investment we’ve made in the Security Program to protect your personal information, we cannot guarantee that your personal information will be free from attempts at unauthorized access, or that loss or accidental destruction will never occur. To the fullest extent permitted by applicable law, we do not accept liability for unauthorized access, use, disclosure, or loss of your personal information.

By using our Services or providing personal information to us, you agree that we may communicate with you electronically regarding security, privacy, and administrative issues relating to your use of our Services. If we learn of a security system’s breach, we may attempt to notify you electronically, for example by posting a notice on our Services, by mail, or by sending an email to you.

Your Privacy Choices and Rights 

Your Privacy Choices. The privacy choices you may have about your personal information are determined by applicable law and are described below. 

Your Privacy Rights. In accordance with applicable law, you may have the right to:

If you would like to exercise any of these rights, please contact us as set forth We will process such requests in accordance with applicable laws.

For additional rights applicable to residents of certain US states, please see here.

Children’s Privacy

United States Federal law imposes special restrictions and obligations on commercial website operators who direct their operations toward and collect and use information from children under the age of 13. We take those age-related requirements very seriously and do not intend for our online and mobile resources to be used by children under the age of 18. We do not knowingly collect personal information from minors under the age of 18. If we become aware that anyone under the age of 18 has submitted personal information to us via our online and mobile resources, we will delete that information, unless we are required to keep it to protect our rights or the rights of others, and will not use it for any other purpose. We encourage parents and legal guardians to talk with their children about the potential risks of providing personal information over the Internet.


This Notice at Collection and Supplemental Notice is for residents of states that have adopted comprehensive privacy legislation and others that may come into effect from time to time, including, but not limited to, California, Connecticut, Colorado, Utah and Virginia (collectively, “Applicable State Laws”).


As more fully described in the section titled What Personal Information Do We Collect, the sources from which we collect personal information include directly from you when you interact with us, automatically from you when you use our sites and Services (for example through cookies and other Technologies), and from third parties (for example, from third-party shipping providers).  

Depending on how you use our Services, the information we may have collected about you, as well as the categories of third parties with whom we have disclosed and/or shared this information, are described in the table below.

Category of Personal Information Collected by RouteCategory of Third Parties Personal Information is Disclosed to for a Business PurposeCategory of Third Parties to Whom Personal Information is Sold And/or Shared
Identifiers. A real name, alias, postal address, unique personal identifier, online identifier, Internet Protocol address, email address, account name, or other similar identifiers. Service providersAffiliates Merchants and End UsersAdvertising networksData analytics providersAdvertising networksData analytics providers
Personal information categories A name, signature, address, telephone number, bank account number, credit card number, debit card number, or any other financial information. Personal information does not include publicly available information that is lawfully made available to the general public from federal, state, or local government records. Note: Some personal information included in this category may overlap with other categories.Service providersAdvertising networksMerchants and End UsersData analytics providersAdvertising networksData analytics providers
Commercial informationRecords of personal property, products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies.Service providersMerchants and End UsersAdvertising networksData analytics providersAdvertising networksData analytics providers
Internet or other electronic network activityBrowsing history, search history, information on a consumer’s interaction with an internet website, application, or advertisement.Service providersAdvertising networksData analytics providersAdvertising networksData analytics providers
Geolocation dataPhysical location or movements.Service providersData analytics providersData analytics providers
Sensory dataAudio, electronic, visual, thermal, olfactory, or similar information.Service providersData analytics providersData analytics providers
Inferences drawn from other personal information to create a profile about a consumerProfile reflecting a consumer’s preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes.Service providersAdvertising networksData analytics providersAdvertising networksData analytics providers


We may use or disclose the personal information we collect for the purposes outlined in How and Why Do We Use the Personal Information above. These purposes include:

Where required under applicable law, we will not collect additional categories of personal information or use the personal information we have collected for materially different, unrelated, or incompatible purposes without first providing you notice.


For purposes of certain state law, Route does not “sell” personal information, nor do we have actual knowledge of any “sale” of personal information of minors under 16 years of age as the term “sell” is commonly understood. That said, for users over 16 years of age, we may share information with third-party advertising partners for the purpose of promoting our Services as described above, such as for cross-context behavioral advertising. You may limit such sharing by utilizing the controls available in our cookie banner, adjusting your browser settings to send a Global Privacy Control signal, or by contacting us as set forth here.


We store the personal information we collect as described in our Privacy Statement for as long as you use our Services, or as necessary to fulfill the purpose(s) for which it was collected, provide our Services, resolve disputes, establish legal defenses, conduct audits, enforce our agreements, and comply with applicable laws, or based upon other criteria, including, but not limited to, the sensitivity and volume of such data.  Additionally, we endeavor to retain all such personal information in accordance with legal requirements.


Scope of This Notice

We, as well as third parties that provide content, advertising, or other functionality on our Services, may use cookies, pixel tags, and other technologies (“Technologies”) to automatically collect information through your use of our Services. 

A cookie is a small text file that is downloaded onto your computer or mobile device when you access a website. Cookies are designed to store your preferences and identify you across different websites in order to facilitate and enhance your experience. 

Websites can use different types of cookies including ‘first-’ and ‘third-’ party cookies and session or persistent cookies. We briefly explain those different types of cookies below:

We also use the following:

Our uses of these Technologies fall into the following general categories: 

We also use Technologies and other third-party tools to process analytics information. Our analytic providers include:

What are my Choices Regarding Cookies and Similar Technologies?

If you do not allow cookies to be set on your computer or device, you may be unable to access certain parts of our online and mobile resources or certain parts of our online and mobile resources may have reduced functionality.

We reserve the right to update this Notice from time to time. Please check our online and mobile resources periodically for such updates since all information collected as described herein is subject to the Notice in place at the time of collection. 

Oops -- something went wrong.
Let’s give this another try. Try again

One more step

See how Route can help your business

Are you a merchant or a shopper?
This site is protected by reCAPTCHA, and the Google Privacy Policy and Terms of Service apply.