Richmond House, Lawnswood Business Park, Redvers Close, Leeds, LS16 6QY +44 (0)113 819 7156 sales@axcessms.com

Select your language

Privacy Statement for Axcess Merchant Services Limited (www.axcessms.com | .eu | .si)

IMPORTANT INFORMATION

Last updated:  1st March 2024

Axcess is part of the Axcess Payments Group Ltd. and is a trading name of Axcess Merchant Services Limited registered in England 06238333. Registered Office: Regent House, Bath Avenue, Wolverhampton, WV1 4EG.

In event of any dispute or litigation the English language version shall be the sole reference and the only document of record. You can access a Slovenian translation here.

Please contact us if you need a copy of this notice as of a particular date.

You can contact us by using the contact form or e-mail shown on our website(s) or by writing to;  The Data Controller, Axcess, Richmond House, Lawnswood Business Park, Redvers Close, Leeds, LS16 6QY.

OUR POLICY – ONLINE PRIVICY

Axcess Merchant Services, which includes Axcess Payments Group and all affiliated companies (“Axcess”, “we”, “our”, or “us”) respects your privacy and is committed to protecting your personal data. This privacy policy will inform you about how we treat your personal data when you use our platforms and services (collectively referred to as “Services”) and when you use our website. This policy does not apply to third-party websites, products, or services.

The following information applicable to all Axcess companies and is complemented by the specific provisions described in the section “Country Specific Notices”.

Axcess is committed to adequately protecting your personal data regardless of where it is processed and regardless of your location.

Axcess is the controller of personal information collected and processed for the Services, unless stated otherwise.

WHAT PERSONAL DATA DO WE COLLECT?

Personal data, or personal information, means any information about an individual from which that person can be identified. It does not include data from which the identity of the individual cannot be discerned (anonymous data).

We use different methods to collect data from and about you. Data is collected through the following:

OUR WEBSITE(s):

When you use our website(s), we may collect, use, store and transfer the following data:

Information you give us while using our website. We may ask you to provide us with personally identifiable information while you use our website. This includes your full name, e-mail address, phone number and your website.

AUTOMATED TECHNOLOGIES OR INTERACTIONS.

We may use cookies, server logs and other technologies, such as web beacons, to collect information that your browser sends us when you are using our website. This includes your computer’s internet protocol, browser type, browser version, the country from which you visited our website, how you arrived at our website, length of your visit and which pages you viewed.

We only collect the information that is required by us to start processing an application; further details may be taken as your application progresses.

MARKETING PURPOSES:

  • Feedback and correspondence, such as information you provide when you request information from us, receive customer support, or otherwise correspond with us, including by interacting with our pages on social networking online sites or services.
  • We may also maintain pages for our company and our products and services on a variety of third-party platforms, such as LinkedIn, Facebook, Twitter, YouTube, Instagram, and other social networking services. When you interact with our pages on those third-party platforms, the third-party’s privacy policy will govern your interactions on the relevant platform. If the third-party platform provides us with information about our pages on those platforms or your interactions with them (e.g. for lead generation purposes), we will treat that information in accordance with this Privacy Notice.
  • Our service providers and business partners may collect this type of information over time and across third-party websites. This information is collected via various mechanisms, such as via cookies, pixels, tags, web beacons, embedded scripts, through our mobile applications, and similar technologies. This type of information may also be collected when you read our HTML-enabled emails.
  • You can choose to disable cookies or to opt out of the use of your browsing behaviour for purposes of targeted advertising.

Our carefully selected partners and service providers may process personal information about you on our behalf as described below:
“Digital Marketing Service Providers
We periodically appoint digital marketing agents to conduct marketing activity on our behalf, such activity may result in the compliant processing of personal information. Our appointed data processors include:
(i)Prospect Global Ltd (trading as Sopro) Reg. UK Co. 09648733. You can contact Sopro and view their privacy policy here: http://sopro.io. Sopro are registered with the ICO Reg: ZA346877 their Data Protection Officer can be emailed at: This email address is being protected from spambots. You need JavaScript enabled to view it..

TARGETED ONLINE ADVERTISING.

Some of the business partners that collect information about users’ activities on our websites or in our mobile applications may be members of organizations or programs that provide choices to individuals regarding the use of their browsing behaviour or mobile application usage for purposes of targeted advertising.

Users may opt out of receiving targeted advertising on websites through participating members of the following organizations or programs:

USE OF PERSONAL INFORMATION

We only use your personal information to service your application and to improve our service to you. As part of our normal business operation, we do share some financial information with banks, card processing and verification services.

We will process your personal data in the following circumstances:

  • Monitor illegitimate activities and prevent information security risks related to our website and Services.
  • Respond to inquiries, send service notices and provide customer support.
  • Notify you about changes to the nature or terms of our Service.
  • To administer our website, including troubleshooting, data analysis, testing, research, statistical and survey purposes.
  • To improve our website to ensure that content is presented in the most effective manner.
  • To send marketing communications.
  • To conduct aggregate analysis and develop business intelligence that enable us to operate, protect, make informed decisions, and report on the performance of our business.
  • For our legitimate interests, including to:

– Enforce the terms of our website and Services.

– Manage our everyday business needs, such as monitoring and analysing; and

– Anonymise personal data to provide aggregated statistical data to third parties, for example to our clients.

Unless required by law, these organisations may not use your information for secondary purposes. Though we make every effort to preserve your privacy we may need to disclose personal information when required by law when we believe that such action is necessary to comply with current judicial proceedings, a court order or legal process. Otherwise, under no circumstances will information you provided to Axcess Merchant Services Limited be transmitted in any way to a third party without your prior consent.

AGGREGATE STATISTICAL INFORMATION

We may collect aggregated statistical information for purposes of improving our service and your experience with Axcess Merchant Services Limited. This data does not contain personally identifying information, such as your name or email address.

Axcess Merchant Services Limited uses cookies. A cookie is a small text file that can be stored on your computer’s hard drive. It may be stored and updated at various times as you access the website. Each time you visit the website, the server may deliver certain customised information to your computer based on the data stored in your cookie.

We never use cookies to retrieve information from your computer which was not originally contained in the cookie. We use cookies and IP addresses for system administration and to monitor aggregate non-personalised information (such as anonymous statistics related to the take up or use of services, or to patterns of browsing).

LINKS

This web site may contain links to other websites; however, Axcess Merchant Services Limited is not responsible for the privacy practices or content of these external websites. We recommend you, our users, to be aware that when you leave our site to read the privacy statements of every web site that collects personally identifiable information. This privacy statement applies solely to information collected by this web site.

NOTICE TO OUR MERCHANTS

We may collect, use, and disclose certain personal data about your customers when acting as your service provider. You are responsible for making sure that your customer’s privacy rights are respected, including ensuring appropriate disclosures about third party data collection and use. You must comply with the personal data protection laws of your country of origin and of those countries in which you offer products or services and when processing and sending personal data to us in the context of using the Services and submitting transactions. If you entered into our Merchant Services Agreement, you are also responsible for compliance with the requirements set out in our Merchant Services Agreement and for the notification of your customers of the Mastercard and Visa Binding Corporate, including your customers’ right to enforce these rules as third-party beneficiaries.

DISCLOSURES OF YOUR PERSONAL DATA

We share your personal data with trusted third parties for the purpose of providing our Services and promoting our business, as follows:

Advertising and remarketing networks. Our website uses remarketing and conversion tracking technologies provided by Google AdWords (for further details about the Remarketing product we use, see here; for the product’s privacy policy, see here) and Facebook Pixel and LinkedIn In-Sights (for further details about the Facebook and LinkedIn product we use, see here & here).

This technology allows us to display targeted advertising to users who have already visited our website when they use the websites of the partner networks of Google and Facebook across the internet. We may add similar providers to those mentioned here in the future. Third-party vendors, including Google and Facebook, use cookies to serve you ads based your visits to our website.

RETENTION OF YOUR INFORMATION

We retain your personal data in an identifiable format for the least amount of time necessary to fulfil our legal or regulatory obligations and for our business purposes. We may retain your personal data for a longer period when there is a specific legal requirement to do so, for example in the event of a complaint or if we reasonably believe there is a prospect of litigation in respect to our relationship with you.

We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, tax, regulatory or reporting requirements. To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.

DATA SECURITY

Protecting your information and your privacy is extremely important to us. Being entrusted with some of your most valuable data, we have set high standards for data security. We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed, altered or disclosed in an unauthorised manner.

In addition, we limit access to your personal information to those employees and third parties who have a business need to know. They will only process your personal information on our instructions, and they are subject to a duty of confidentiality.

We also have procedures in place to deal with any suspected data security breach and will notify you and any applicable regulator of a suspected breach where we are legally required to do so.

COUNTRY-SPECIFIC NOTICES

Notice relating to our operations in the European Union

Axcess is providing the following supplemental information for individuals whose personal information is collected or held by Axcess or any of its affiliated companies.

Where you are such an individual:

When processing personal data of data subjects who are in the European Union (EU) or in connection with Axcess, we will act either as data controller or data processor. When Axcess determine the purpose and the manner of processing of your personal data, Axcess is deemed to be a data controller. Axcess will apply a similar approach to protecting your data whether acting as a data processor or a data controller.

Instruction on the processing of your Personal Data after your death. For data subjects in France or if your data is processed by Axcess, you have the right to issue general or specific instructions regarding the fate of your Personal Data after your death, in accordance with the terms of Article 85 of French Law No. 78-17.

You have the possibility to contact the French Data Protection Authority (CNIL) if you consider that your rights relating to the protection of your personal data are not respected. The CNIL’s contact details are available at the following address: https://www.cnil.fr/.

 Notice relating to our operations in the United Kingdom

Axcess is providing the following supplemental information for individuals whose personal information is collected or held by Axcess Ltd or any of its affiliated companies.

Where you are such an individual:

When processing personal data of data subjects who are in the United Kingdom or in connection with Axcess Services, Axcess will act either as data controller or data processor. When Axcess determines the purpose and the manner of processing of your personal data, Axcess is deemed to be a data controller. We apply a similar approach to protecting your data whether acting as a data processor or a data controller.

You have the right to make a complaint at any time to the ICO, however, please consider contacting us in the first instance so that we may address your concerns directly.

Notice relating to our operations in Australia

Axcess is providing the following supplemental information for individuals whose personal information is collected or held by Axcess, or any of their affiliated companies, at a time when the collecting or holding entity has an ‘Australian link’ within the meaning of the Australian Privacy Act 1988.

Where you are such an individual:

You may make a complaint to us about a breach of the Australian Privacy Principals by using the contact details of our DPO, as set out above. We will investigate your complaint and endeavour to resolve any issue to your satisfaction. If we do not adequately answer your concerns, you will have the right to make a complaint in writing to the Office of the Australian Information Commissioner.

It is likely that personal information about you will be collected and held in countries within the EEA or the United Kingdom. It may also be disclosed to persons in other counties in the circumstances described in this Privacy Policy.

Notice relating to our operations in Hong Kong

Axcess is providing the following supplemental information for individuals whose personal data (as defined in the Hong Kong Personal Data (Privacy) Ordinance) is collected or held by Axcess, or any of their affiliated companies, in or from Hong Kong.

It is likely that your personal data will be collected, held and transferred outside Hong Kong, including in and to countries within the EEA, or the United Kingdom.  It may also be disclosed to persons in other countries in the circumstances described in this Privacy Policy.

Notice relating to our operations in Singapore.

Axcess is providing the following supplemental information for individuals whose personal information is collected or held by Axcess, or any of their affiliated companies.

Where you are such an individual:

Contact us. You may make a complaint to us about a breach of the Singapore Personal Data Protection Act 2012 (No. 26 of 2012) by using the contact details on our contact page.  We will investigate your complaint and endeavour to resolve any issue to your satisfaction.

Processing of personal data. We will collect, use or disclose your personal data where you have provided us with consent (which may be express or deemed), and/or for the purposes permitted under applicable laws, for instance, to comply with legal or regulatory obligations such as detecting and preventing fraud.

Withdrawal of consent. Upon receipt of a notice of withdrawal of consent, we will inform you of the likely consequences of withdrawing consent. For instance, if you withdraw your consent, we may not be able to provide certain products or services to you. Once we have received notification that you have withdrawn your consent, we will no longer process your information for the purpose or purposes you had originally agreed to, unless we do so under an applicable exemption. We will also inform our data processors and agents about the withdrawal of your consent and for them to cease to process your information for the purpose or purposes that you had originally agreed to.

Instruction on the processing of your personal data after your death. An individual appointed under your will, or your nearest relative may exercise rights in relation to the protection and disclosure of your personal data after your death.

Notice relating to our operations under the California Consumer Privacy Act (“CCPA”)

Axcess is providing the following supplemental information for individuals whose personal data is collected or held by Axcess in the State of California as defined in the CCPA.

Your right to access the personal information we hold about you. You may request a copy of the personal information that we have collected about you.

Your right to request the deletion of your personal information. Subject to certain limitations under applicable law, you may request that we delete the personal confirmation we have collected from you.

Non-discrimination. You have the right not to be discriminated against for exercising any of your rights under CCPA.

Contact. To submit a request to exercise any of your rights, you can contact us on our contact page.

Notice relating to our operations in New Zealand

Axcess is providing the following supplemental information for individuals whose personal information is collected in the course of carrying on business in New Zealand.

Where you are such an individual:

Your personal information will be collected and held by Axcess.

It is likely that personal information about you will be collected and held in countries within the EEA or the United Kingdom. It may also be disclosed to persons in other counties in the circumstances described in this Privacy Policy.

We will only disclose your personal information to a third party where it is part of the purpose for which your personal information was collected, where you have authorised the disclosure, and/or where otherwise permitted by applicable law.

We will respond to all legitimate requests from you within a reasonable time period.