Last Updated 28 July 2020
Last Updated 28 July 2020
Your personal data is important to CardsPal and it is our policy to respect and protect your personal data. This Policy outlines how we manage the personal data we hold in compliance with applicable laws and regulations.
We may collect your name, mobile number, email address, the types of cards which you own, location data, payment information, preferences, and other information which you voluntarily disclose to us.
We will only collect, use, and disclose your personal data for the purposes you have been notified of and consented to or which are permitted under applicable laws and regulations.
We will not sell, rent or give away personal data to third parties for commercial purposes without your consent.
We may process your personal data for the following:
Depending on the purpose of processing your personal data, personal data may be disclosed to:
Personal data may be transferred to, or stored at, a location outside of your country of residence, which may not have data protection law. The security of your personal data is important to us. We have technical and organisational security measures in place to safeguard your personal data. When using external service providers, we require that they adhere to security standards mandated by us. We may do this through contractual provisions, including any required by a privacy regulator, and oversight of the service provider. Regardless of where personal data is transferred, we take all steps reasonably necessary to ensure that personal data is kept securely.
However, you will appreciate that it is not for us to perfectly secure your personal data from cyberattacks, such as hacking, spyware and viruses. Accordingly, you will not hold us liable for any unauthorised disclosure, loss or destruction of your personal data arising from such risks.
We retain your personal data in line with our legal and regulatory obligations and for business and operational purposes. In the majority of cases this will be for seven years from the end of your relationship with us. We will cease to retain your personal data when we no longer require such personal data for the purposes we originally notified you of or for any business or legal needs.
We will not send you marketing material if you have specifically asked us not to do so. You have the right to opt out of receiving marketing material at any time.
To make a request to access or correct the personal data we hold about you, or to make a request to withdraw your consent previously given, please contact our Data Protection Officer (details below).
This Policy may be updated from time to time and amendments take effect from the date they are placed on this site. You are advised to visit this site regularly to check for any amendments. This policy was last updated on 24 November 2019.
This Policy does not apply to any linked third-party websites which we do not operate or control.
You may contact our Data Protection Officer at firstname.lastname@example.org