Revised September 19th, 2023
Pagos Solutions, Inc. (“Pagos”) believes that protecting Our customer data is important. We employ industry standard protections to ensure that Your data is maintained in a safe and trustworthy environment and utilize de-identification or anonymization of Your data in providing You certain Services. We understand the importance of safeguarding Your data, which is why we have implemented the necessary controls to provide the industry standard security for Our users and customers. The following is an overview of the main areas of our privacy and security protocols.
GDPR compliance: Our third-party providers are compliant with the EU’s General Data Protection Regulation. Pagos does not normally process, store or obtain any consumer private identifying information in a readily readable format except where needed for the processing of the selected services. Personal data is always encrypted.
Credit cards and other sensitive payment instrument identifiers: Pagos does not process any credit card details or bank account details belonging to You or Your Users. Your Customers’ card details, if any, are stored in a PCI compliant data vault.
Passwords: Your password is encrypted and never stored in Our database in a readable/unencrypted format. You are responsible for choosing a strong password and keeping it secret.
Subject to the limitations of liability provisions in the Pagos Service Agreement and rights to seek indemnification by Pagos, Pagos acknowledges its responsibility to secure cardholder data to the limited extent if Pagos stores, processes, or transmits any such information or data or to the extent that such data could impact the cardholder’s data environment.
Pagos briefly retains the customer data it collects for as long as necessary for the purposes for which it was collected, subject to reasonable legal limitation periods, statutory or regulatory retention requirements and legitimate business requirements, and may irreversibly de-identify or anonymize any Personal Information or private information as may be required by Pagos.
Pagos will use reasonable efforts to ensure that customer data which is no longer required will be disposed of or destroyed in a secure manner.