GENERAL PROVISIONS
The Confidentiality Policy
(hereinafter referred to as the “Policy”) outlines how Paymnts.pro handles
the collection, use, and transfer of personal data from users who
access the company’s software products on the website located at
https://paymnts.pro/ (hereinafter referred to as the “Website” or
“Platform”) or other software products owned by the company, whether in
applications or on the websites of third-party service providers.
The company places high value on the
privacy of all individuals who visit the Website and use its services.
In this regard, Paymnts is committed to safeguarding the
confidentiality of personal data, which includes information that can
identify an individual. The company strives to create an environment
that ensures comfortable and secure use of the Website’s services for
every user.
This Privacy and Data Protection
Policy (hereinafter referred to as the “Policy”) details the procedures
for processing personal data, the types of data collected, the purposes
of data usage, the company’s interaction with third parties, security
measures to protect personal data, conditions for accessing personal
data, and provides users with contact information to access, amend,
block, or delete their personal data or address any inquiries related to
data protection.
1. COLLECTION AND PROCESSING OF PERSONAL DATA
Purposes of Processing Personal Data
The company processes and collects
information, including personal data, from users in various ways.
"Personal data" as defined in this Policy aligns with the GDPR and other
applicable laws, encompassing any information that, alone or combined
with other information, identifies or can identify a user.
The company processes users'
personal data in full compliance with relevant data protection and
privacy laws. Certain personal data is necessary to provide users with
access to the Platform and related services.
Collection of Personal Data
The company collects information
from users when they engage with services on the Platform. Additionally,
if users utilize services from third-party providers where GlobexPay
services are integrated, the company automatically receives the relevant
data needed to deliver its services.
Use of Personal Data
The company may use personal data for the following purposes:
• Operating, maintaining, and improving the Platform, products, and services;
• Providing services to users;
• Processing payments or transactions made via the Platform;
• Complying with applicable laws and
responding to legal requests, including from government authorities;
• Enforcing compliance with this Policy;
• Protecting the rights, privacy, security, or property of individuals;
• As outlined in the "Sharing of Personal Data" section below.
2. SHARING OF PERSONAL DATA
The company may share users' personal data as follows:
• Third parties designated by users:
The company may share personal data with third parties upon user
consent.
• Service providers for the company:
Personal data may be shared with service providers such as banks or
financial institutions to process transactions and perform other
services.
• Other cases: The company may
disclose personal data if deemed necessary to: (A) comply with laws; (B)
respond to legal requests, including from government authorities for
national security purposes; (C) ensure compliance with the Policy; or
(D) protect the rights, privacy, security, or property of individuals.
3. THIRD-PARTY PLATFORMS
The Platform may contain links to
third-party websites and services. This Policy does not apply to the
privacy practices of such third parties. These services have their own
privacy policies, and the company assumes no responsibility for their
websites, features, or policies. Users are encouraged to review the
privacy policies of these services before providing any personal data.
4. INTERNATIONAL DATA TRANSFERS
The personal data collected by the
company may be transferred, stored, and processed outside of the user's
home country, where data protection laws may differ. By using the
Platform and providing consent, users agree to such transfers, storage,
and processing. The company will take all necessary steps to ensure that
personal data is handled securely and in accordance with this Policy.
5. SECURITY
To ensure the security of payment
cardholder data, the Paymnts software product complies with the
Payment Card Industry Data Security Standard (PCI DSS) and maintains
this compliance on an ongoing basis.
Compliance with PCI DSS entails:
• Meeting all requirements of VISA
and Mastercard regarding payment processing and data protection;
• Developing and enforcing the company’s security policy;
• Implementing secure encryption methods for data transmission;
• Limiting access to data based on job responsibilities and real-time access control;
• Implementing stringent software development, testing, and multi-stage security controls;
• Conducting regular system scans to identify and address vulnerabilities;
• Continuously monitoring the security of user data during and after transactions;
• Ensuring software updates to the most current and secure versions.
6. STORAGE OF PERSONAL DATA
The company will store users’
personal data for as long as necessary to allow access to the Platform,
unless a longer retention period is required or permitted by law (e.g.,
for regulatory purposes).
7. RIGHTS OF DATA SUBJECTS
Under the GDPR, users have the following rights concerning their personal data:
• To know the sources, purpose, and
location of their personal data, and the identity of the data
controller;
• To receive information about third parties who have access to their personal data;
• To access their personal data;
• To receive a response within 30
days regarding whether their personal data is being processed and to
receive the content of such data;
• To object to the processing of their personal data;
• To request amendments or deletion of inaccurate or illegally processed data;
• To seek protection from unlawful data processing;
• To file complaints regarding the processing of their personal data;
• To withdraw consent for data processing;
• To be informed about automated processing mechanisms;
• To be protected from decisions based on automated processing with legal implications.
For requests to access, amend,
block, or delete personal data, or to withdraw consent, users can
contact the company at support@paymnts.pro.
8. POLICY CHANGES
The company reserves the right to
make changes or additions to this Policy, including to reflect changes
in legislation, without prior notice. In case of significant amendments,
a notice will be posted on the Website, specifying the effective date
of the changes. Users are encouraged to periodically review the Policy
for updates.