We are Paymaster (Jamaica) Limited, with our registered office at 9 Molynes Avenue, Kingston 10, Saint Andrew, Jamaica. At Paymaster we are part of a larger group of companies called Prism Services Holdings Limited. Prism and its other companies may have their own separate privacy notice, and they will apply if you buy any of their products or services direct from them.
We may collect and use the following types of personal information:
•Contact information such as name, address, email address and telephone number and recipient telephone number or email address (when you top-up or send a digital gift card to someone);
•Social media profile information such as first and last name, email address, user identifier, profile picture, user geolocation, user IP address and profile URL;
•identification information such as passport identification number, tax registration number or social security number, driver’s license, date of birth;
•demographic information such as age range, marital status, gender;
•payment card information and billing address;
•information about your device such as device type/model, operating platform, time zone, user’s language, carrier name and geography, IP address, cookie identifiers, device identifiers; and
how you use our Services such as user app session information, your preferences, your transaction history.
•Collection of images and other photo information from your device’s camera or photo gallery.
We upload personal data of all MyCash accountholders to our servers to provide, maintain and develop the MyCash Services. By registering to use the Services you give us your consent to upload your personal data to the MyCash server to facilitate the registration of your MyCash Account. If at any time you wish to withdraw this consent, please delete your account as outlined in the ‘Terms and Conditions – MyCash Mobile Wallet’.
We typically collect and process information when you:
•interact and visit our website;
•log in using your social media account or when you sign up and create your profile;
•buy, register or use any of our products and services;
•Make customer enquiries, register for information or other services;
•Respond to communications from us (such as SMS, emails, questionnaires or surveys);
•Contact us and provide your information through Paymaster locations;
•Have given permission for third party companies to share your information with us; or
•We also collect information from cookies and other similar tracking technologies used on our website. •For more information on this please check out our ‘Cookies’ section in this policy.
We will use the information that you have given us:
•to verify your identity and validate your payment. We specifically require access to your device’s camera in order to carry out verification of facial identity in real time for Tier 2 Wallets as part of our Know-Your-Customer process;
•for billing purposes;
•to assist with service related issues, account management, customer care and technical support.
•to improve the performance of our services, products and service development, and customer care.
•For the purposes of account management, the device’s camera or gallery may be used, with customer consent, to select or take a picture for their account profile. Further, access to the device’s photo library will enable users to save transaction receipts to their devices.
•to carry out marketing analysis to tailor the services to your preferences and interests;
•to market our products and services; and
•to carry out statistical analysis such as analysing the performance of our products and services and to understand how our customers use them.
We require access to the device’s phonebook or list of contacts for the purposes of maintaining use cases of sending Top Up (favourites and previous transactions), sending invites to join MyCash, and to facilitate P2P transfers.
We will only use your personal data where we have a legal ground to do so. In every case, the legal ground will be one of the following:
•Where you give us your consent – you can withdraw your consent at any time by
•For our legitimate business interest, so that we can run an efficient, effective and legally compliant business.
•For the performance of our contract with you – that is to provide you with the products and services you have requested, bought or subscribed to.
•To comply with our legal and regulatory obligations, including for example tax and accounting requirements, financial services or telecommunications regulations.
•As it concerns Know-Your-Customer processes, to be compliant with anti-money laundering regulations, it is mandatory that the facial identity of a user of a Tier 2 wallet be verified and as such access to the device’s camera is necessary to achieve this. This is a mandatory legal obligation for registering a Tier 2 Wallet and not providing access to the device’s camera to carry out this verification will result in the non-registration of a Tier 2 wallet. Please note the User will still have access to a Tier 1 wallet.
Paymaster does not sell, trade, transfer or otherwise share your information except in the following instances:
•as required by law, such as in conjunction with a subpoena, government inquiry, litigation, dispute resolution or similar legal process;
•when we believe in good faith that disclosure is necessary to protect our rights, protect your security, investigate fraud or respond to a law enforcement request;
•with Paymaster service providers, and contracted third parties who work on our behalf and who do not have an independent right to use the information to which they have access or that we disclose to them. Paymaster ensures that all these third parties have signed contracts that include confidentiality and data protection clauses no less than the standard outlined herein;
•with our business partners for Paymaster’s marketing activities, in such case no specific personally identifiable information is provided, as such information is generally aggregated;
•with third parties for research and development purposes in such case no specific personally identifiable information is provided;
•with our subsidiaries and affiliates.
Third Party Providers
We may have to transfer data to jurisdictions outside of the jurisdiction where we collected such information. In these circumstances, Paymaster will ensure secure data transfers using secure technologies and practices to secure data from unauthorized access or interception. Where such transfer is to a non-Prism company or affiliate, we shall ensure that we have signed contracts containing the relevant data protection clauses.
The above notwithstanding, please be aware that communications over the public Internet, such as email/webmail, facsimile, are not secure unless they have been encrypted. Your communications may route through a number of countries before being delivered – this is the nature of the World Wide Web/Intranet. Paymaster cannot accept responsibility for any unauthorised access or loss of personal information that is beyond our control.
Where you have given us your consent to use your information and you decide to withdraw that consent, we will delete your personal information unless we are required to keep it for reasons we have explained above. We may need to keep a piece of your contact information e.g. your email address in our records so we know that you have withdrawn your consent and ensure we honour your choice.
We are concerned about safeguarding the confidentiality of your information. We provide physical, electronic, and procedural safeguards to protect information we process and maintain. For example, we limit access to this information to authorized employees and contractors who need to know that information to operate, develop or improve our services. We also engage well-known technologies including but not limited to firewalls, anti-virus, intrusion detection, SSL (Secure Sockets Layer), routine network vulnerability assessment and 24 x 7 monitoring of our network. Please be aware that although we endeavor to provide reasonable security for the information we process and maintain, no security system can prevent all potential security breaches.
Paymaster website uses common internet technologies, such as cookies and web beacons, to keep track of user interaction with our website, to remember user preferences and to maximize the user experience and performance of the website and services. For example, using cookies on our website provides benefits to you, such as allowing you to autofill fields on forms, provide details of last time you login online. You can disable the cookies at any time and the information will not be collected. Please refer to your browser ‘Help’ instructions to learn more about cookies and how to manage their use. If you choose to decline cookies, some of the functionality of a website may be impaired.
You can do any of the following at any time by contacting us:
•Request to see a copy of the information we have about you;
•Request to update any incorrect or inaccurate information we have about you;
•Restrict or object to us processing your information in certain circumstances;
•Have us delete any information we have about you in certain circumstances;
•Transfer the information you gave us to another organisation, or to you, in certain circumstances;
•Express any concern you have about our use of your information;
•To opt-out of marketing messages – you can also opt-out by clicking the ‘unsubscribe’ link at the end of any marketing email, or disable push notifications, or change your preferences within your device settings; and
•To opt-out of automated profiling e.g. online behaviour analytics.