Root Privacy Policy

Last updated: April 11, 2024

Root (Creatormonet Technologies Pvt Ltd) (“Root”, “we”, “us”, or “our”) is committed to protecting your privacy. This Privacy Policy (“Policy”) describes how we collect, use, and disclose data. This Policy applies to your use of Root’s products, services, and Website located at on all platforms (collectively, “Services”).

Root is an Indian private limited (limited liability) company subject to the laws of the Republic of India. India may not offer a level of privacy protection as great as that offered in other jurisdictions. Since our servers are located in the United States, your data may be transferred to, stored, or processed in the United States. By using our Services, you understand and consent to the collection, storage, processing, and transfer of your data to our facilities in the United States and those third parties we share your data with as described in this Policy and our Terms of Service Agreement.


a. Customer: a person or entity that is registered with Root to use the Services.
b. Distribution List: a list of Subscribers and all data related to those Subscribers.
c. Personal Data: any information relating to an identified or identifiable natural person.
d. Subscriber: any person or entity on your (our Customer’s) engagement List.
e. You: a Root Customer or other person or entity who visits our Services.


Please note that we DO NOT collect personally identifiable information of your subscribers (for e.g a visitor who browses your website/e-commerce store). All references to information and data in this document refers to you, our customer (for e.g the merchant operating the website/e-commerce store & using Root platform) and not the Subscriber .

The Services collects two kinds of information about you, our customer: (a) Personal Data; and (b) Non-Personal Data.

a. Personal Data. Personal Data is any information relating to an identified or identifiable natural person. Personal Data we may collect includes:

  1. Identification and Contact Data: name, date of birth, gender, address, title, contact details, username, or other demographic information;
  2. Financial Information: credit card details, account details, payment information;
  3. Aggregate Information: data about how you use the Services combined with data about how others use the Services in order to help us better develop new features and tailor the Services.
  4. IT Information: IP address, cookie data; and
  5. Personal Interests or Preferences: purchase history, social media profile information.

b. Non-Personal Data. Non-Personal Data is any information not relating to an identified or identifiable natural person. Non-Personal Data we may collect includes:

  1. Browser and Device Data: IP address, device type, unique user device number, device manufacturer and model, type of browser or operating system, dates and times of use, screen resolution, plug- ins, add-ons, location, and the version of the Services you are using.
  2. Cookies and Tracking Technologies: time spent on the Services, pages visited, app/widget loads and email campaign performance.
  3. Employment Details: employer, job, title, geographic location, area of responsibility;


a. Personal Data. We may use your Personal Data to:
i. Provide the Services;
ii. Resolve disputes, calculate and collect fees, and troubleshoot problems;
iii. Verify your identity and the information you provide;
iv. Encourage a safe online experience and enforce our policies;
v. Customize your experience and analyze usage of, improve and measure
interest in, and inform you about the Services;
vi. Provide you with information that may affect your use of the Services;
vii. Communicate marketing and promotional offers;
viii. Provide customer service, including receipts;
ix. Develop new products; and
x. Perform certain other business activities.

b. Non-Personal Data. We may use your Non-Personal Data for any purpose, including, but not limited to:

i. Measuring traffic patterns;
ii. Understanding demographics, customer interest, and other trends among users;
iii. Providing, improving, and modifying the Services; and
iv. For promotional and marketing purposes.


a. Personal Data. We may disclose, and you consent to our disclosing of, your Personal Data to:

i. Service Providers and others who help with our business operations and assist in the delivery of our products and services including, but not limited to, application development, site hosting, maintenance, data analysis, infrastructure provision, IT services, customer service, email delivery services, payment processing, marketing, analytics, and enforcement of our Terms of Service Agreement and other agreements;

ii. Third parties in the event of a reorganization, merger, sale, debt financing of assets, joint venture, assignment, transfer, or other disposition of all or any portion of our business or assets (including in connection with any insolvency, bankruptcy, receivership, or similar proceeding);

iii. A Root subsidiary, affiliate, or business partner;

iv. Other users of the site to identify you to anyone to whom you send messages or make comments through the Services;

v. Persons or entities with whom you consent to have your Personal Data shared;

vi. Third parties in order to prevent damage to our property (tangible and intangible), for safety reasons, or to collect amounts owed to us;

vii. Merchants and payment processors; and

viii. Third parties as we believe necessary or appropriate, in any manner permitted under applicable law, including laws outside your country of residence to: comply with legal process; respond to requests from public and government authorities, including public and government authorities outside your country of residence; enforce our Terms of Service Agreement and other agreements; protect our operations; protect our rights, privacy, safety or property, and/or that of our affiliates, you, or others; and allow us to pursue available remedies or limit the damages that we may sustain. 
We will never sell, rent, or lease your Personal Data to a third party.

b. Non-Personal Data. We may disclose Non-Personal Data for any purpose. Remember, Non-Personal Data cannot be used to identify you or another person.


a. Opting out of Receiving Electronic Communications from us. If you no longer want to receive marketing-related emails from us, you may opt-out via the unsubscribe link or by notifying us at We may still send you important messages regarding administrative matters, updates, disputes, and customer service issues that are required to provide you with the Services.

b. Cookies and Other Tracking Technologies. Root and its partners may use cookies and other tracking technologies such as pixels and web beacons on the Services to administer the Services, track your movements around the Services, analyze trends, serve targeted advertisements, and gather demographic information. You can control the use of cookies at the individual browser level. Our third-party partners may use cookies or other tracking technologies to provide you with advertising on other sites based upon your browsing activities and interests. If you want to opt-out of interest-based advertising, please visit, or if located in the European Union, visit

c. Web Beacons. When we send emails to Customers, we may use web beacons to track who opened the emails and clicked links to measure campaign performance and improve features for Customers. We also use web beacons in the emails we deliver for Customers to create reports about campaign performance and determine what actions Subscribers took.


a. Our Relationship with Subscribers. Customers may import into the Services Personal Data they have collected from their Subscribers or other individuals. We have no direct relationship with Customers’ Subscribers or any individuals other than our Customers. Customers are responsible for making sure they have the necessary permissions for us to collect, store, and process Personal Data about Subscribers or other individuals.

A Subscriber should contact the Customer directly to change, update, or delete the Subscriber’s data via the app dashboard. If a Subscriber contacts us, we will refer you to that Customer and support them in responding to your request if necessary.

b. Use and Transfer of Data. Consistent with this Privacy Policy, we may transfer Customer or Subscriber Personal Data to entities that help us promote, provide, or support our Services or the services of our Customers (“Service Providers”). All Service Providers agree to protect Personal Data in accordance with this Privacy Policy.

We will never sell, rent, or lease Customers’ Distribution Lists.


a. Public Data. We may provide areas on the Services where you can publicly post information. This information may be read, collected, and used by anyone. We do not control or endorse the information posted by third-party users, are not liable for your or third-party posts to the Services, and specifically disclaim any liability resulting from such posts.

b. Third-Party Sites. Upon your consent, the Services may access third- party information through application interfaces. We may also provide links to third-party sites. When you click on links to third-party sites, you may leave the Services.


The inclusion of a link or accessibility of third-party sites does not imply endorsement of such third-party sites by us. All trademarks, trade names, and logos of third parties featured on the Services belong to their respective owners.

Each merchant and third-party payment processor collects and shares your information according to its own privacy policy and terms of service. Root is not responsible for the actions of third-party processors or merchants, including how such entities treat your information. You are responsible for knowing and understanding their policies and terms.


We will retain your Personal Data for the period necessary to fulfill the purposes outlined in this Privacy Policy unless a longer retention period is required or allowed by law.


Our Services are not directed to and we do not knowingly collect Personal Data from children under the age of 13. If we become aware that a child under the age of 13 has provided us with Personal Data, we will take steps to remove such data. If you become aware that your child has provided us with Personal Data without your consent, please contact us at By using the Services, you are representing to us that you are not under the age of 13.


We employ commercially reasonable security measures to protect your information; however, no system is impenetrable. If you create an account on the Services, you are responsible for protecting the security of your account, its content, and all activities that occur under the account or in connection with the Services. You must immediately notify Root of any unauthorized uses of your account or any other breaches of security by emailing us at


The California Consumer Privacy Act (“CCPA”) provides California residents with specific rights regarding their Personal Data, including the right to request certain information from businesses subject to CCPA that collect Personal Data from you, the right to ask such businesses to delete Personal Data collected from you (subject to exceptions), the right to opt-out if a business sells your Personal Data, and the right of non-discrimination if you exercise any of these privacy rights.

Root acts as a “service provider” under CCPA when offering the Services to its Customers and our receipt and collection of any Personal Data is completed on behalf of our Customers in order for us to provide the Services. If you are a Subscriber of one of our Customers, please contact the Customer directly with your request for access or deletion under the CCPA. If you contact us, we will refer you to that Customer and support them in responding to your access or denial request if necessary.

If you exercise your rights under the CCPA, Root will not discriminate against you, deny, charge different prices for, or provide a different quality of the Services. If Root ever offers a financial incentive or product enhancement that is contingent upon you providing your Personal Data, we will not do so unless the benefits to you are reasonably related to the value of the Personal Data you provide to us. Root does not sell your Personal Data.

Root does offer a Data Processing Agreement for those Customers that are considered “businesses” under the CCPA and that process Personal Data on behalf of California residents. To request our Data Processing Agreement, please fill out this for


We are committed to subjecting all Personal Data received from the EU/EEA, the United Kingdom, and Switzerland to the Privacy Shield Principles. If there is any conflict between the terms in this Privacy Policy and the Privacy Shield Principles, the Privacy Shield Principles shall govern.
To learn more about the Privacy Shield program, visit

a. Accountability for Onward Transfer

Root is responsible for the processing of Personal Data we receive under each Privacy Shield Framework and subsequent transfer to a third party acting as an agent on our behalf. We comply with the Privacy Shield Principles for all onward transfers of Personal Information from the EEA, United Kingdom, and Switzerland, including the onward transfer liability provisions.

In certain situations, we may need to disclose Personal Data in response to lawful requests by public authorities, including to meet national security and law enforcement requirements, or otherwise comply with the law or a court order.

b. Security

We use reasonable and appropriate physical, electronic, and administrative safeguards to protect personal data from loss, misuse and unauthorized access, disclosure, alteration and destruction, taking into account the nature of the Personal Data and risks involved in processing that information.

c. Data Integrity and Purpose Limitation

We only collect Personal Data that is relevant for providing the Services. We process Personal Data in a way that is compatible with providing the Services or as otherwise authorized by you. We take reasonable steps to ensure that Personal Data is reliable for its intended use, accurate, complete, and current. We adhere to the Privacy Shield Principles for as long as we retain Personal Data.

d. Access to Personal Data

If you would like to review, correct, delete, or update personal data that you have previously disclosed to us, please email us at We may limit or deny access to Personal Data where providing such access is unreasonably burdensome, expensive, or as otherwise permitted by the Privacy Shield Principles.

We will assist our Customers in responding to EU/EEA, United Kingdom, and Swiss individuals exercising their rights under the Privacy Shield Principles.

If you are a Subscriber of one of our Customers, please contact the Customer directly with your request to access or limit the use or disclosure of your Personal Data. If you contact us, we will refer you to that Customer and support them in responding to your access request if necessary.

We need to retain certain information about you for legal and internal business reasons. We will retain your Personal Data for as long as necessary to provide you with the Services and as needed to comply with our legal obligations and enforce our agreements.

e. Recourse, Enforcement, and Dispute Resolution

If EU/EEA, United Kingdom, or Swiss individuals have questions or complaints about our compliance with the Privacy Shield Principles, please email us as

f. Data Processing Agreement

Root offers a Data Processing Agreement for those Customers processing Personal Data on behalf of EU/EEA and Swiss individuals. To request our Data Processing Agreement, please email us at

g. Notice and Choice

i. The types of Personal Data we collect are described in Section 2 of this Privacy Policy.

ii. The purposes for which we collect and use Personal Data are described in Sections 3 and 4 of this Privacy Policy.

iii. The choices we offer individuals for limiting the use and disclosure of Personal Data are described in Section 5 of this Privacy Policy.


Under the General Data Protection Regulation (EU) 2016/679 (“GDPR”), Root generally acts as a processor on behalf of our Customers. When Root processes Personal Data as a data controller, we do so on the following legal bases:

a. To perform our contract with you for the use of the Services:

b. In reliance on our legitimate interests in administering, operating, and supporting the Services;

c. In reliance on our legitimate interests in providing certain features;

d. In reliance on our legitimate interests in enforcing our Terms of Service Agreement and applicable law;

e. In reliance on our legitimate interests in preventing fraud and abuse;

f. In reliance on our legitimate interests in meeting legal requirements;

g. In reliance on our legitimate interests in improving the Services;

h. In reliance on our legitimate interests in supporting our marketing activities;

i. In reliance on our legitimate interests in providing network and information security; and

j. You provided us with your consent.


Currently, there is no industry standard for recognizing Do Not Track browser signals, so we do not respond to them.


Root may change this Privacy Policy at any time. The most recent version of the Privacy Policy is indicated by the “Last Updated” date at the top of the Privacy Policy. All changes are effective immediately upon posting. Please review this Privacy Policy frequently to stay updated on changes that may affect you. Your continued use of the Services signifies your continuing consent to be bound by this Privacy Policy.


If you have any questions about this Privacy Policy, please email us at

Are you ready?
Let’s get started
Get started - it’s free!
Copyright © 2023-24. CreatorMonet Technologies Private Limited. All rights reserved.