Privacy Policy

OptiPay Technologies > Privacy Policy

1.0.  INTRODUCTION

Optipay offers technology that enables businesses to collect and disburse payments in a simple, secure and a reliable manner. We value the privacy of our customers and parties who use our website and related sites, applications, services and tools.

This Data Privacy Policy outlines how we collect, use, store, and protect your personal information.

‘’Our Commitment to You’’

Thank you for showing interest in our services. In order for us to provide you with any of our services, we are required to collect and process certain personal data about you and your activity. By entrusting us with your personal data, we would like to assure you of our commitment to keep such information private. We have taken considerable steps to protect the confidentiality, security, and integrity of your data. We encourage you to review the following information carefully.

  • DATA PRIVACY

Data privacy refers to an individual’s ability to control how their personal information is collected, used, and shared. This encompasses details such as names, addresses, contact information, and online behaviors. It ensures that personal data is handled in ways that align with the individual’s expectations and consent.

While data privacy focuses on the appropriate use and governance of personal information, data security involves implementing measures to protect this data from unauthorized access and breaches. Both are integral components of a comprehensive data governance strategy.

In today’s digital landscape, safeguarding data privacy is crucial for maintaining trust and protecting individuals’ rights.

How is Data Privacy Compliance Achieved?

In the commitment of helping OPTIPAY Technologies fulfill the requirements of data protection regulations like the GDPR, we have built a comprehensive data protection strategy and implemented it throughout the organization. our compliance strategy include:

  1. Enterprise-wide understanding of obligations—This Is through ensuring that everyone in our organization knows what their responsibilities and the need to comply with additional, local regulations in the country of operation, or affecting the industry and also ensuring that every employee knows how to respond to data security events, and is at least familiar with the seven key principles of the GDPR.
  2. Identify risk areas—Identification of the risks involved with any activity that uses personal data to help identify gaps in our existing security policies, so we can update our compliance measures.
  3. Maintain visibility and transparency—Through the use of measures such as data mapping to keep track of all personal data that our organization processes. This should include documenting what types of data we collect, where we store it, and why we need to process it.
  4. Appoint a Data Protection Officer (DPO) The DPO is responsible for monitoring and providing advice on compliance with the GDPR.
  5. Plan for privacy—the GDPR advocates a “privacy by default and by design” approach, which involves implementing data protection measures throughout the lifecycle of our data processing activities.

1.2.  DATA SECURITY

Data security is the process of securing digital data and preventing the loss of data through unauthorized access. It includes protecting data from attacks, such as ransomware (which prevents access to information) or attacks that may modify data, making it unreliable. Data security also assures that data is available to everyone in the organization who is authorized to access it.

Some industries require a high level of security as part of data protection regulations . For example, organizations that handle payment card information must use and store the data securely, or face legal repercussions. However, even if you are not obligated by law to comply with stringent regulations, the survival of your business often hinges on the security you offer your customers. Data security is essential for organizations of every size and type.

We have put in place appropriate security measures to prevent your Personal Data from being accidentally lost, used, or accessed in an unauthorized way, altered, or disclosed. In addition, we limit access to your personal Data to those employees, agents, and contractors who require it to fulfill their job responsibilities and other third parties who have a business need to know. They will only process your personal data on our instructions, and they are subject to a duty of confidentiality.

In compliance with the Payment Card Industry Data Security Standard (PCI DSS Requirements), we implement access control measures, security protocols and standards including the use of encryption and firewall technologies to ensure your card information and any other personal information shared with us is safe and secure in our servers, additionally, we implement periodical security updates to ensure that our security infrastructures are in line with industry standards.

You need to help us prevent unauthorized access to your account by protecting your password appropriately and limiting access to your account (for example, by signing out after you have finished accessing your account). You will be solely responsible for keeping your password confidential and for all use of your password and your account, including any unauthorized use. While we seek to protect your information to ensure that it is kept confidential, we cannot absolutely guarantee its security. You should be aware that there is always some risk involved in transmitting information over the internet. While we strive to protect your personal information, we cannot ensure or warrant the security and privacy of your personal information or other content you transmit using the service, and you do so at your own risk.

2.0. GROUNDS FOR DATA COLLECTION

Processing your personal information (meaning, any data which may potentially allow your identification with reasonable means; hereinafter “Personal Information”) is necessary for the performance of our contractual obligations towards you and providing you with our services, to protect our legitimate interests and for compliance with legal and financial regulatory obligations to which we are subject. When you use our services, you consent to the collection, storage, use, disclosure, and other uses of your Personal Information as described in this Privacy Policy.

3.0. INFORMATION WE COLLECT

We may collect and process various information from our customers in order to provide our services, below are some of the categories of personal data that we may collect among other information that is useful for the provision of services to you.

  • Personal Data/ Personal Identification Information – Personally identifiable information, such as your name, shipping address, postal address, email address, telephone number, demographic information, age (in order to verify that you are over 18 years of age and eligible to participate in our service), gender, hometown, and interests, that you voluntarily give to us when you register with the Site or when you choose to participate in various activities related to the Site, such as online chat and message boards.
  • Payment Information/ Transactional Information – We collect data necessary to process your payment if you make purchases, such as your payment instrument number (e.g., a credit card number), Details of purchases, payment methods, and order history and the security code associated with your payment instrument.
  • Derivative Data/ Mobile Device Data/ Technical information – These are Information our servers automatically collect when you access the Site, such as your IP address, MAC address, mobile device ID, model your browser type, your operating system, your access times, device approximate location and manufacturer and the pages you have viewed directly before and after accessing the Site.
  • Tracking Technologies – When you visit or access our services, we use (and authorize third parties to use) pixels, cookies, events and other technologies (hereinafter referred to as “Tracking Technologies”). Those allow us to automatically collect information about you, your device and your online behavior, in order to enhance your navigation with our services, improve our website’s performance, perform analytics and customize your experience on it. In addition, we may merge information we have with information collected through said Tracking Technologies with information we may obtain from other sources and, as a result, such information may become personal information.
  • Communications Data: Messages, feedback, and communication preferences

4.0. HOW THE PERSONAL INFORMATION WE COLLECT IS USED

Optipay collects and uses information/data collected for the following purpose:

  • Prevent, detect, and manage risk against fraud, financial losses for you, us, and our Business, and illegal activities using internal and third-party screening tools.
  • Compliance with Legal Obligations- We use Personal data to meet our contractual and legal obligations related to anti-money laundering, Know-Your-Customer (KYC) laws, anti- terrorism, export control and prohibitions on doing business with restricted persons or in certain business areas and other legal obligations. We strive to make our Services safe, secure, and compliant, and the collection and use of Personal data is critical to this effort. we also use your personal information to investigate violations and prevent money laundering and perform due diligence checks, as required by law, regulation or by a governmental authority, or to comply with a subpoena or similar legal process
  • Create and manage any accounts and business you may have with us, verify your identity, provide our services, and respond to your we will use your personal information that you provide us with towards the provision and improvement of our services to you.
  • Process your payment transactions and send you related information, including purchase confirmations and invoices this also includes chargebacks and other related dispute resolution activities.
  • Verifying your identity information through publicly available and/or restricted government databases to comply with applicable regulatory requirement In business practices including quality control, training, ensuring effective systems operations, to improve our website, products or services, and user experiences through gathering of feedback.
  • Send you marketing and promotional communications.- Marketing purposes -. You may choose not to receive our promotional or marketing emails (all or any part thereof) by clicking on the “unsubscribe” link in the emails that you receive from us. Please note that even if you unsubscribe from our newsletter, we may continue to send you service-related updates and notifications or reply to your queries and feedback you provide us. • Opt-out of receiving marketing materials – If you do not want us to use or share your personal information for marketing purposes, you may opt-out in accordance with this Please note that even if you opt out, we may still use and share your personal information with third parties for non-marketing purposes (for example, to fulfil your requests, communicate with you and respond to your inquiries, etc.). In such cases, the companies with whom we share your personal information are authorized to use your personal information only as necessary to provide these non-marketing services.
  • Monitor and analyze usage and trends to improve your experience with the – Analytics, surveys and research – we are always trying to improve our services and think of new and exciting features for our users. From time to time, we may conduct surveys or test features, and analyze the information we have, in an effort to develop, evaluate and improve these features.
  • Protecting our interests – we use your personal information when we believe it to be necessary, in order to take precautions against liabilities, investigate and defend ourselves against any third-party claims or allegations, investigate and protect ourselves from fraud, protect the security or integrity of our services and protect the rights and property of the Company and its users and/or partners.
  • Facilitate account creation and the login
  • Improve our website and –

5.0.  DISCLOSURE OF YOUR INFORMATION

Optipay does not sell, trade, or rent personal data to anyone. Further, we will not share or disclose your personal data with a third party without your consent except as necessary to provide the Services or as described in this Privacy Policy. We may have to share your personal data with the parties set out below for various reasons.

Disclosure of your information shall be in accordance with applicable law and regulations. Optipay shall assess and review each application for information and may decline to grant such information to the requesting party.

We may disclose your information to:

  • Law-enforcement agencies, regulatory authorities, courts, or other statutory authorities in response to a demand issued with the appropriate lawful mandate.
  • Our subsidiaries, Associates, Partners, Software Developers or Agents who are involved in delivering Optipay services you order or use.
  • Fraud prevention and Anti money laundering
  • Publicly available and/or restricted government databases to verify your identity information to comply with regulatory requirements.
  • Service providers that we may share personal data with such as Vendors or Agents working on our behalf for the purposes described in this statement. For example, companies we’ve hired to provide, data Analysis, email delivery, hosting services, marketing assistance and customer service support to assist in protecting and securing our systems and services, or to perform sanctions screening and identity verification services may need access to personal data to provide those functions.
  • Financial services & payment processing-When you provide payment data, we will share payment and transactional data with banks and other entities as necessary for payment.
  • Business Transfers/ Merger and acquisitions: We may share or transfer your information in connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business to another Any party that acquires our assets as part of such a transaction may continue to use your information in accordance with the terms of this Privacy Policy.
  • Internal concerned parties – we share your information with companies in our group, as well as our employees, although such information is limited to those employees or partners who need to know the information in order to provide you with our services.

6.0. RETENTION

We will retain your personal information for as long as necessary to provide our services, and as necessary to comply with our legal obligations, resolve disputes, and enforce our policies. Retention periods will be determined considering the type of information that is collected and the purpose for which it is collected, bearing in mind the requirements applicable to the situation and the need to destroy outdated, unused information at the earliest reasonable time. Under applicable regulations, we will keep records containing client personal data, trading information, account opening documents, communications, and anything else as required by applicable laws and regulations.

7.0. STORAGE LIMITATION AND ITS DETERMINANTS

By law we must keep basic information about our members (including Contact, Identity, Financial and Transaction Data) for 7 years after they cease being members or after completion of the transaction. Optipay is statutorily obliged to retain the data you provide to process transactions, ensure settlements, make refunds, identify fraud and to comply with applicable laws, tax, reporting and regulatory guidelines.

8.1. PERIOD FOR STORING INFORMATION.

  • As long as reasonably necessary for the purpose of providing our services to
  • For the duration your account is active, and we have your
  • For the period needed to comply with our legal and statutory obligations
  • As needed to verify your information with a Financial Institution

8.2. DETERMINANTS OF STORAGE LENGTH:

  • The contract terms agreed between Optipay and the Merchant or if it is needed for the purpose for which it was obtained,
  • Whether the transaction or relationship has statutory implication or a required retention period
  • Whether there is an express request for deletion of personal data by the Merchant, provided that such request will only be treated where the Data Subject is not under any investigation which may require Optipay to retain such personal data, or there is no subsisting contractual arrangement with the Data Subject that would require the processing of the personal data.
  • Whether Optipay has another lawful basis for retaining that information beyond the period for which it is necessary to serve the original purpose.

9.0. POLICY FOR CHILDREN

We do not knowingly solicit information from or market to children under the age of 18. If we learn that we have collected personal information from a child under age 18 without verification of parental consent, we will delete that information as quickly as possible.

10.0. YOUR RIGHTS

Optipay shall keep records of personal data processing activities and develop appropriate procedures to ensure it can satisfy your rights as a data subject where applicable, namely:

  • Right to request correction or update inaccurate personal data that we hold about you, update your personal data that is inaccurate, incomplete, or outdated information,
  • Right to restriction or object processing of your personal data and erasure,
  • Right to request the movement of data from Optipay to a third party,
  • Right to object to direct marketing, and to request that Optipay restricts the processing of their information,
  • Right to opt out at any point they feel uncomfortable,
  • Right to request access to your personal data (commonly known as a “data subject access request
  • Right to request deletion of data (subject to legal obligations).

11.0. LEGAL BASES FOR PROCESSING

We process your personal data based on the following legal grounds:

  • Contractual Necessity: To fulfill contractual
  • Legitimate Interests: For business operations and
  • Consent: Where required by law for marketing
  • Legal Compliance: To meet legal

12.0. Cross-Border Data Transfers

Where necessary, data may be transferred to jurisdictions outside your country. We ensure appropriate safeguards for such transfers.

13.0. CHANGES AND UPDATE TO THIS POLICY

We may need to update, modify, or amend our Privacy Policy as our technology evolves, as required by law or time to time in order to reflect changes to our practices or for other operational, legal, or regulatory reasons. If we materially change the ways in which we use or share personal data previously collected from you through our Services, we will provide notice or obtain consent regarding such changes as may be required by law. The Privacy Policy will apply from the effective date provided on our website.

By continuing to access or use our services after any revisions become effective, you agree to be bound by the updated Privacy Policy

14.0. WEB BROWSER COOKIES

Cookies are small files placed on your computer, mobile phone or tablet which can log certain information about your visit. This information is often essential to the smooth operation of a website, for example a cookie may store the items you have in a shopping cart or your user details for a password protected area of a website. You can turn off cookies although we do not recommend this as it can cause some websites to operate incorrectly.

15.0.  HOW TO CONTACT US

If you have any questions relating to this Privacy Policy, complaints, need clarification or would like to find out more about exercising your data privacy rights, please reach out to us via email at operations@optipay.tech