We define "PII" to mean any information relating to an identified or identifiable natural person; an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, economic or social identity of that natural person.
Our Services include online payment transactions, which may involve a transfer of data across international borders, as well backing up of data at our secured data centers in the EU. This means that data may be transferred, processed and stored outside the EU, the European Economic Area (EEA) and Switzerland. By submitting your data directly or through a third party such as a digital platform you are agreeing to such transfer, processing and storage.
We act as a technology provider supplying secure online and mobile digital payment gateway and processing services to individuals and businesses known as merchants for the purpose of directly selling their goods and services to their customers or through other digital platforms such as marketplaces and software providers.
- PII We Collect and How We Use It. The personal information collected by us depends on how you are using our services. To provide and improve our Services and to comply with regulatory requirements, we collect and process PII, including the following types of PII:
Summary: We collect personal data about our customers and their customers. We also collect personal data provided by our customers.
We use PII to provide and improve our Services, and to meet our contractual, ethical and legal obligations.
1.1 Information You Provide
1.1.1 To satisfy Company's regulatory requirements, we ask you to provide PII, which may include: credit card number, shareholder information, email address, mailing address, bank account number, first name, last name, passport number or other ID number, date of birth and driver's license. From time to time based on specific regulations, we may request such additional information as prescribed by such regulation.
1.1.2 If you are a merchant or shopper utilizing the Services, we may ask you to provide the following PII in order for the Company to provide the Services: billing address, shipping address, location, email address, type of bank, bank branch, and transaction logs.
1.2 Third Parties. We sometimes supplement the information that you provide with information that is received from the Services through an application programming interface. If you provide your PII to Company’s customers (e.g. merchants and platforms) we may receive information from these respective customers, including, device details, browser details, IP address, expiration date of credit card, and cardholder name.
1.3 User Information. When you use our Services, we may automatically receive and record information from your browser, including without limitation information and statistics about your online status, your IP address, internet service provider, search history, type of browser, location, device details, browser ID, device ID, cookie information, regional and language settings and software and hardware attributes, network status, and operating system information. Our systems may automatically record and store technical information regarding the method and nature of your use of the Services. An IP address is a numeric code that identifies your device on a network, or in this case, the Internet. Your IP address is also used to gather broad demographic information.
User communications. When you send an email or other communication to the Company, we may retain those communications to process your inquiries, respond to your requests and improve our Services. We may send you push notifications to send you news and updates related emails and notifications in respect of the Services. We may also send you newsletters and promotional communications if you joined our mailing list, you may opt out of this service at any time by submitting a request at the following link: firstname.lastname@example.org.
1.4 Aggregate and Analytical Data. In an ongoing effort to better understand and serve the customers of the Services, we often conduct research on our customer demographics, interests and behavior, use of the Services, and other statistics, based on the PII and other information provided to us. This research may be compiled and analyzed on an aggregate basis, and we may share this aggregate data with our affiliates, agents, and business partners. This aggregate information does not identify you or any other individual personally. We may also disclose aggregated user statistics to describe our Services to current and prospective business partners, and to other third parties for other lawful purposes.
- Cookies and Web Beacons
To collect or use the data described herein, we may use temporary cookies that remain on your browser for a limited period of time. We may also use persistent cookies that remain on your browser until the cookies are removed via your browser's settings, to manage and maintain the Services, record your use of the Services and content you may have gained access to, and to understand the usage trends and preferences of our users. Cookies by themselves cannot be used to discover the identity of the user. A cookie is a small piece of information which is sent to and stored on your browser. Cookies do not damage your browser. Most browsers enable you to block cookies but you may not be able to use some features on the Services if you block them. You may set most browsers to notify you if you receive a cookie (this enables you to decide if you want to accept it or not). We may also use web beacons via the Services to collect information. Web beacons or "gifs", are electronic images that may be used in our Services or in our emails. We use web beacons to deliver cookies, count visits and to tell if an email has been opened and acted upon. We may use third-party cookies.
- Age Restriction. If you are a minor under the age of 18, you must obtain parental consent prior to using our Services. The Company will not knowingly market, contact, or engage with minors under the age of 18 without said parental consent and does not intentionally gather, collect/use or share PII from minors under the age of 18 without such consent. If you have reason to believe that a child has provided us with their PII, please contact us at the address given above and we will endeavor to delete that PII from our databases.
- PII Sharing
Summary: We may transfer your PII to third parties who assist us in providing the Services. We have a contract with those third parties to govern their processing on our behalf. We may also transfer and share all or part of the PII to comply with legal and regulatory requirements which apply to us. We may also transfer PII to comply with any obligations by which we are bound to an investor, a shareholder, or in connection with a merger or acquisition or similar transaction.
- Data Security. We follow generally accepted industry standards to protect against unauthorized access to or unauthorized alteration, disclosure, or destruction of PII. However, no method of transmission over the Internet, or method of electronic storage, is 100% secure. Therefore, while we strive to use commercially acceptable means to protect your PII, we cannot guarantee its absolute security. We retain your PII only for as long as reasonably necessary for the purposes for which it was collected or to comply with any applicable legal or ethical reporting or document retention requirements.
- Data Retention
We retain PII only for as long as necessary to meet our legal and regulatory obligations, which for different types of PII, will be different periods.
7.1 Company will retain PII in accordance with its record retention policy. PII associated with Company's customers will be retained for the duration required by Company to comply with regulatory requirements. Company performs periodic reviews of its databases and has established specific time limits for data retention, based on the criticality of the PII and the purposes of the data processing. We will also retain PII to meet any legal, regulatory, commercial audit, commercial or legal compliance requirement, and business best practices.
7.2 PII with respect to which Company is the processor will be deleted only on instruction of the controller, except where such data must be retained by Company, in Company’s judgment, as above.
- Your Rights
9.1 Right of Access and Rectification. You have the right to know what PII we collect about you and to ensure that such data is accurate and relevant for the purposes for which we collected it. We allow our users the option to access and obtain a copy of their PII and to rectify such PII if it is not accurate, complete or updated. However, we may first ask you to provide us with certain credentials to permit us to identify your PII.
9.2 Right to Delete PII or Restrict Processing. You have the right to delete your PII or restrict its processing. We may postpone or deny your request if your PII is in current use for the purposes for which it was collected or for other legitimate purposes such as compliance with legal obligations.
9.3 Right to Withdraw Consent. You have the right to withdraw your consent to the processing of your PII. Exercising this right will not affect the lawfulness of processing your PII based on your consent before its withdrawal.
9.4 Right of Data Portability. Where technically feasible, you have the right to ask to transfer your PII in accordance with your right to data portability.
You may exercise the above rights by sending a request to email@example.com.
9.5 Right to Lodge Complaint. You also have the right to lodge a complaint with a data protection supervisory authority regarding the processing of your PII.
Last Date Updated: October 17, 2021.