fbpx

Privacy policy

Privacy policy

CONTROLLER’S
IDENTITY

PayEye sp. z o.o. with its registered office in Wrocław, (“We”, “PayEye”), ul. Zwycięska 43, 53-033 Wrocław, entered into the Register of Entrepreneurs of the National Court Register by the District Court for Wrocław-Fabryczna in Wrocław, 6th Commercial Division of the National Court Register under KRS number 0000773560, NIP 8943138845, REGON 382724489, with the share capital of PLN 9 700, website: www.payeye.com

CONTROLLER’S CONTACT DETAILS

PayEye, ul. Zwycięska 43, 53-033 Wrocław

+48 666 959 850

PURPOSES OF PROCESSING
AND LEGAL BASIS.

Personal data obtained in connection with the use of the service are processed for the purpose of:

1. fulfilling Our obligations under the concluded service agreement – the legal basis is the necessity of the processing for the performance of the agreement (Article 6(1)(b) of the GDPR), and to the extent that the processing concerns Our biometric data – the legal basis is consent (Article 9(2)(a) of the GDPR);

2. providing You with the functionality of the website and maintaining the connection – the legal basis is the implementation of Our legally justified interest (Article 6(1)(f) of the GDPR, where Our legally justified interest is to display the content requested by You);

3. performing Our obligations under the law, including tax law, accounting and financial reporting regulations, anti-money laundering and anti-terrorist financing regulations or regulations governing Our obligations (e.g. reporting of statistical data) as a small payment institution – the legal basis is the necessity to perform Our obligations under the law (Article 6(1)(c) of the GDPR);

4. establishing, investigating or defending against claims – the legal basis is the necessity of the processing for the performance of the contract or the exercise of a legitimate interest by Us (Article 6(1)(b) or Article 6(1)(f) GDPR, where the legitimate interest of PayEye is to exercise Our rights);

5. marketing PayEye’s own products and services – the legal basis is the fulfilment of Our legitimate interest (Article 6(1)(f) of the GDPR, where Our legitimate interest is direct marketing), with the proviso that the transmission of commercial information by means of electronic communication and the use of telecommunication terminal equipment and automatic calling devices for marketing purposes by Us is only possible with Our consent;

6. for other purposes, to which You have given Our consent, provided that We ask You to consent to the processing of Our personal data and You give Our consent – the legal basis for the processing of Our Personal Data is Our consent (based on Article 6(1)(a) of the GDPR). The granting of consent in such cases is voluntary, although it may be necessary for the purpose of the processing.

DATA RECIPIENTS

Our personal data may be transferred to entities that process personal data on Our behalf: – Amazon Web Services EMEA SARL, established in Luxembourg (38 avenue John F. Kennedy L-1855 Luxembourg) – DotPay Sp. z o.o. with its registered office in Kraków (30-552 at ul. Wielicka 28b)

We may also transfer Our information on to entities designated by You, including other payment service users and merchants, and, if You use the payment transaction initiation service or account information access service, to those service providers. Our personal data may also be transferred to entities entitled to request such data under applicable law (for example courts, supervisory authorities).

RECIPIENTS OF DATA FROM OUTSIDE THE EUROPEAN UNION

Our data will not be transferred to recipients outside the European Union.

TYPE AND SOURCE OF PERSONAL DATA

In connection with the provision of services, We also process data from other users and payment service providers, which includes data that may be considered personal data, including identification and transaction data.

DATA RETENTION PERIOD

Our data will be retained for a period depending on the purpose of the processing, i.e. for the purpose of:

1. fulfilling Our obligations under the service agreement – for the duration of the agreement, with the data related to the payment services provided being retained for a period of 5 years from the date of their creation or receipt;

2. providing You with website functionality and maintaining the connection – for the duration of the connection;

3. performing Our obligations under the law, including tax law, accounting and financial reporting regulations, anti-money laundering and anti-terrorist financing regulations or regulations governing Our obligations (e.g. reporting of statistical data) as a small payment institution – We may also process Our data for the period necessary to fulfil Our obligations under these regulations;

4. establishing, investigating or defending against claims – for the period of limitation of possible claims;

5. marketing Our own products and services – until You withdraw Our consent or until the purpose of the data processing is fully achieved (if possible).

If You have consented to the processing of Our data, We will process Our data until You withdraw Our consent or until the purpose of the processing is fully achieved (if possible).

RIGHTS OF DATA SUBJECTS

You have the right of access to Our data and the right to request its rectification if it is incorrect, deletion or restriction of its processing, as well as the right to transfer it. If We process Our personal data on the basis of Our consent, You have the right to withdraw it at any time. You can withdraw Our consent by sending Us an e-mail to support@payeye.com. Withdrawal of consent does not affect the lawfulness of the processing of Our data before the moment of withdrawal of consent, nor does it affect the extent to which We process Our personal data on another basis (e.g. to fulfil Our legal obligations).

In addition, You have the right to object at any time – for reasons related to Our specific situation – to the processing of Our personal data if it is based on a so-called legitimate aim clause (Article 6(1)(f) of the GDPR) or a public interest (Article 6(1)(e) of the GDPR), including profiling, on the basis of these provisions. In this case, We will not process Our objectionable data on that basis. Regulations grant Us the right to refuse to execute this request if there are compelling legitimate grounds for further processing by Us overriding Our interests, rights and freedoms or grounds for establishing, investigating or defending a claim.

If Our personal data is processed for the purposes of direct marketing, You may object to the processing of Our data for such purposes at any time. Once We accept such a request, We will not process Our data for direct marketing purposes.

RIGHT OF COMPLAINT TO THE SUPERVISORY AUTHORITY

You also have the right to lodge a complaint with the data protection supervisory authority in the Member State of Our habitual residence, place of work or place of the alleged infringement. In the case of Poland, this body is:

President of the Personal Data Protection Office (PUODO)
Address: Stawki 2, 00-193 Warsaw
Telephone: 22 531 03 00

INFORMATION ON THE FREEDOM OR OBLIGATION TO PROVIDE DATA

The provision of personal data is voluntary; however, the processing of such data is a condition for providing the service.

COOKIES

We use cookies on Our website.

Cookies are small text files used in connection with Our use of the website. Such files are created and stored in the user’s device (e.g. in the memory of a web browser), and the website or the owners of the cookies can access them. Depending on the type, the cookies are deleted at the end of the browser session (so-called session cookies) or after a longer period of time (so-called persistent cookies). You can find more information about how cookies work, at https://en.wikipedia.org/wiki/HTTP_cookie.

You can give or refuse permission to use cookies by setting Our browser. Depending on the browser used, You may also be able to specify more detailed conditions for storing cookies, for example, by blocking only cookies used by individual websites, blocking only specific cookies or removing individual cookies that are already stored on Our device. If Our browser accepts certain cookies, it means that You agree to the use of these cookies in accordance with Polish law. Detailed instructions on how to set storage conditions are available on the websites of the software manufacturer or developer.

If You do not agree to the use of cookies, some of the website’s functionality may not work properly or may stop working. In order to use the full functionality of the website, We recommend that You agree to store and access cookies.

Cookies can be used by Us as well as by other entities. Cookies allow Us to adjust the website to Our expectations. The exact purposes of using cookies are defined in the table below:

Type of cookiesEntityPurpose
of use
Who has access
to the cookie?
Period of validity
Own cookiesPayEyeWebsite traffic analysisPayEye onlyfor a period of 5 years from the date of creation or receipt
Demographic analysis of site visitors
Analysis of users’ geographical data
Analysis of technologies used by users
External cookiesFacebook, Inc.Monitoring of user-call events on the websitePayEye onlyfor a period of 5 years from the date of creation or receipt
LinkedIn Ireland Unlimited CompanyMonitoring of user-call events on the websitePayEye onlyfor a period of 5 years from the date of creation or receipt
Google Ireland LimitedWebsite traffic analysis

Demographic analysis of site visitors

Analysis of users’ geographical data

Analysis of technologies used by users
PayEye onlyfor a period of 5 years from the date of creation or receipt

Type of cookies

Own cookies

Entity

PayEye

Purpose of use

Website traffic analysis

Demographic analysis of site visitors

Analysis of users’ geographical data

Analysis of technologies used by users

Who has access to the cookie?

PayEye only

Period of validity

for a period of 5 years from the date of creation or receipt

Type of cookies

External cookies

Entity

Facebook

Purpose of use

Website traffic analysis

Demographic analysis of site visitors

Analysis of users’ geographical data

Analysis of technologies used by users

Who has access to the cookie?

PayEye only

Period of validity

for a period of 5 years from the date of creation or receipt

Entity

LinkedIn Ireland Unlimited Company

Purpose of use

Website traffic analysis

Demographic analysis of site visitors

Analysis of users’ geographical data

Analysis of technologies used by users

Who has access to the cookie?

PayEye only

Period of validity

for a period of 5 years from the date of creation or receipt

EXPLANATION OF ABBREVIATIONS

You – any natural person whose personal data is processed by PayEye

GDPR – Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation)

We, PayEye – PayEye sp. z o.o. with its registered office in Wrocław, ul. Zwycięska 43, 53-033 Wrocław, entered into the Register of Entrepreneurs of the National Court Register by the District Court for Wrocław-Fabryczna in Wrocław, 6th Commercial Division of the National Court Register under KRS number 0000773560, NIP 8943138845, REGON 382724489.