Merchant Saved Payment Method Terms & Conditions

These Terms and Conditions are effective November 26, 2025.

These Merchant Saved Payment Method Terms & Conditions ("Saved Payment Method Terms") govern your use of the Saved Payment Method service (“Saved Payment Method Service”), which is provided by Stripe, Inc. (“Stripe”) and made available to you through the Cin7 Americas, Inc. (“Cin7,” “we,” or “our”) Core and Omni platforms (together, the “Cin7 Platform”). In addition to all other Cin7 terms and conditions to which you are subject (collectively, the “Cin7 Terms”) and all other Stripe terms to which you are subject governing your use of the Saved Payment Method Service (collectively, the “Stripe Terms”), and without limiting any of our rights under the Cin7 Terms, by enabling and using the Saved Payment Method Service you (a) agree to be bound by these Saved Payment Method Terms in connection with your use of the Saved Payment Method Service and (b) represent that you have the authority to agree to these Saved Payment Method Terms and act on behalf of any entity for whom you are using the Saved Payment Method Service. If you are entering into these Saved Payment Method Terms on behalf of an entity, all references to “you” or “your” in these Saved Payment Method Terms refer to that entity.

1. Merchant Responsibilities and Obligations

1.1 Compliance with Laws, Regulations, Standards, and Other Requirements 

You are responsible for:
a) Complying with all laws, rules, and regulations applicable to your handling of customer payment method information.
b) Maintaining PCI-DSS compliance to the extent applicable to your processing, storage, and transmission of cardholder data.
c) Complying with all applicable privacy laws and regulations regarding the collection, use, storage, and protection of customer information, including payment method information.
d) Complying with the Stripe Terms.
e) Complying with applicable privacy laws in connection with the customer information you collect, use, and store within your own systems.
f) Complying with all other Cin7 Terms, as may be modified by Cin7 from time to time.

1.2 Authorization and Consent

You must:
a) Obtain explicit consent from customers before storing their payment method information. This consent must be clear, informed, and documented.
b) Provide customers with clear information about how their payment method information will be stored, used, and protected.
c) Maintain records of customer consent for storing payment method information for the duration of storage and as required by applicable laws, rules, and regulations.
d) Promptly honor customer requests to delete any saved payment method information associated with that customer, including by taking any actions necessary within the Saved Payment Method Service.

1.3 Transaction Processing

You are responsible for:
a) All transactions initiated using saved payment method information and for verifying that the person authorizing the transaction is the legitimate cardholder or their authorized representative.
b) Ensuring that transactions are only processed for legitimate business purposes and in accordance with the terms agreed upon with your customers.

1.4 Security Requirements

You must:
a) Implement and maintain appropriate technical, physical, and administrative safeguards to protect saved payment method information from unauthorized access, use, disclosure, or theft.
b) Limit access to saved payment method information to only those employees who have a legitimate business need to access such information.

2. Liability and Indemnification

2.1 Merchant Liability

You acknowledge and agree that:
a) You are responsible for preventing unauthorized access or disclosure of saved payment method information within your systems and personnel.
b) You are responsible for fines, penalties, or assessments imposed due to your own actions, misuse, or non-compliance in connection with your use of the Saved Payment Method Service.
c) You are liable for any chargebacks, disputes, or claims related to transactions processed using saved payment method information.

2.2 Indemnification

You agree to indemnify, defend, and hold harmless Cin7 and its and our respective officers, directors, employees, and agents from and against any and all claims, liabilities, damages, losses, costs, expenses, fines, or fees (including reasonable attorneys' fees) arising from or relating to:
a) Your use of the Saved Payment Method Service.
b) Your violation of these Saved Payment Method Terms or any applicable laws, rules, or regulations.
c) Any unauthorized access to, use of, or disclosure of saved payment method information within your systems or personnel in connection with your use of the Saved Payment Method Service.
d) Any transaction processed using saved payment method information in connection with your use of the Saved Payment Method Service.

3. Limitations and Restrictions

3.1 Prohibited Activities

You shall not:
a) Store payment method security codes (CVV/CVC) or PIN data, even temporarily.
b) Store complete magnetic stripe or chip data from payment cards.
c) Use saved payment method information (whether accessed through the Saved Payment Method Service or otherwise) for any purpose other than processing legitimate transactions authorized by the cardholder.
d) Share, sell, or transfer saved payment method information to any third party without explicit authorization from both the cardholder and Cin7, where such sharing is otherwise permitted under applicable payment network rules.
e) Subject to 3.1(a) and applicable payment network rules, store payment method information longer than necessary for legitimate business purposes.

3.2 Service Limitations

You acknowledge that:
a) The Saved Payment Method Service is provided through Stripe, and its availability and functionality are subject to Stripe's Terms.
b) We reserve the right to modify, suspend, or terminate the Saved Payment Method Service at any time, with or without notice.
c) We may impose transaction limits or other restrictions on your use of the Saved Payment Method Service based on risk assessments, compliance requirements, or other factors.

4. Data Breach Response

In the event of a data breach involving payment method information within your systems or environment, you must:
a) Immediately notify us of the breach.
b) Take all necessary steps to contain and mitigate the breach.
c) Cooperate fully with any investigation conducted by us or any applicable card networks or regulatory authorities.
d) Cooperate fully with any remediation efforts conducted by us or, where applicable, Stripe.
You are also responsible for all costs, expenses, losses, and liabilities arising from any data breach within your systems or environment, including investigation, mitigation, notification, card replacement costs, and any fines or penalties, but only to the extent such breach results from your actions, omissions, systems, or non-compliance. 

5. Termination

We may terminate your access to the Saved Payment Method Service immediately and without notice, with or without cause, including for the following reasons:
a) You violate these Saved Payment Method Terms or any applicable laws or regulations.
b) We reasonably believe that your use of the Saved Payment Method Service poses a security risk.
c) Stripe terminates or suspends your access to its services.
d) Our relationship with Stripe terminates or is suspended, or Stripe discontinues the Saved Payment Method Service.
e) Your subscription to the Cin7 Platform terminates for any reason.

6. Disclaimer of Warranties; Limitation of Liability

THE SAVED PAYMENT METHOD SERVICE IS PROVIDED "AS IS" AND "AS AVAILABLE" WITHOUT ANY WARRANTIES OF ANY KIND, EXPRESS, IMPLIED, OR STATUTORY, AND YOUR USE OF THE SAVED PAYMENT METHOD SERVICE IS AT YOUR SOLE RISK. TO THE FULLEST EXTENT PERMITTED BY LAW, WE DISCLAIM ALL WARRANTIES WITH RESPECT TO THE SAVED PAYMENT METHOD SERVICE, INCLUDING BUT NOT LIMITED TO WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, AND NON-INFRINGEMENT AND ANY WARRANTIES ARISING FROM COURSE OF DEALING OR COURSE OF PERFORMANCE.

TO THE MAXIMUM EXTENT PERMITTED BY LAW, IN NO EVENT SHALL CIN7 BE LIABLE OR RESPONSIBLE TO YOU (OR ANY OTHER PERSON) IN CONTRACT, TORT (INCLUDING NEGLIGENCE), OR OTHERWISE, FOR ANY INDIRECT, SPECIAL, INCIDENTAL, CONSEQUENTIAL, OR PUNITIVE DAMAGES OR LOSS (INCLUDING BUT NOT LIMITED TO LOSS OR CORRUPTION OF INFORMATION, LOSS OR CORRUPTION OF DATA, THE COST OF RECOVERING SUCH DATA OR INFORMATION AND ANY LOSS OF BUSINESS PROFITS, SAVINGS, GOODWILL, REPUTATIONAL DAMAGE, REFUNDS OR CHARGEBACKS INCURRED, BUSINESS, OR ANTICIPATED BUSINESS), EVEN IF CIN7 HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES, OR DAMAGE ARISING OUT OF OR IN CONNECTION WITH ANY USE OF, OR RELIANCE ON, OR INABILITY TO USE OR RELY ON THE SAVED PAYMENT METHOD SERVICE. THE MAXIMUM AGGREGATE LIABILITY OF CIN7 TO YOU FOR ANY REASON RELATING TO THE SAVED PAYMENT METHOD SERVICE WILL BE LIMITED TO U.S. $100.

7. Acknowledgment

You acknowledge that you understand the risks associated with the Saved Payment Method Service and accept full responsibility for implementing appropriate security measures in connection with the Saved Payment Method Service. In the event of a conflict between these Saved Payment Method Terms and any other Cin7 Terms, these Saved Payment Method Terms govern. As between you and Stripe, the Stripe Terms govern.