Last updated: March 24 2020
Welcome to Yaypay, Inc. (“Yaypay”). Yaypay provides accounts receivable management solutions for businesses (“Clients”) including enabling revenue collection communications between Clients and their customers (“Services”).
While providing our Services, we may collect information related to our Client’s customers on behalf of our Clients. Our use of information collected through the Services under the direction of our Clients is limited to the purpose of providing the Services and is governed by our contract with the applicable Client and the Client’s own privacy policies. We are not responsible for the privacy policies or privacy practices of Clients or other third parties.
YayPay is committed to meeting all European Union (EU) General Data Protection Regulation (GDPR) requirements, and the California Consumer Protection Act (CCPA or CaCPA).
When you interact with the Site or the Services, we may collect information that alone or in combination with other information could be used to identify you (“Personal Data”), as described below:
Personal Data That You Provide To Us. We collect information that you enter on our Site or send to us electronically, for example when you complete a web form to give your Personal Data to us directly (such as on our “Contact Us” page), when you request information, including a product demo, register for a webinar or other event, or subscribe to our blog. While the type of data we collect depends on the nature of the inquiry, this typically includes your name, email address, phone number and company information.
We may also collect data from you when you attend one of our events, during phone calls with sales representatives, or when you contact customer support.
When you apply for employment through the Site, our provider of recruiting services will collect your resume and any additional information that you elect to provide to us, including but not limited to employment history and education.
Service Data. In providing the Services, we process on behalf of our Clients information that our Clients’ customers give when they call, text or web chat with our Clients. That data may be transferred to us for processing by our Clients (“Service Data”). Our Clients control the information that they require to enable them to use the Services to manage and collect amounts owed to our Clients by their customers. When a customer’s Service Data is transferred to us for processing, we will only collect the information our Clients have instructed us to collect to enable them to use the Services.
To provide the Services to you and respond to your requests. When you ask for information about the Services (for example, when you request a demo or ask us to send you offers or price information), or register to a webinar or an event, we will use your contact information to respond to your request. For EU data subjects, such use is necessary to respond to or implement your request.
We use account-related data provided by Clients in connection with the purchase, sign-up, use or support of the Client account (such as usernames, email address and billing information) to provide you with access to the Services and/or the Site, contact you regarding your use of the Services and/or the Site or to notify you of important changes to the Services and/or the Site. For EU data subjects, such use is necessary for the performance of the contract between you and us.
We process Service Data on behalf of our Clients for the purpose of providing the Services to Clients in accordance with the applicable Client’s contract. Yaypay’s purpose in collecting this information is simply to enable our Clients to manage and collect amounts owed to them by their customers.
For marketing purposes. We will use your email or mail address to send you information (as applicable) by email and post about new products and services, upcoming events or other promotions. You may opt-out of receiving such emails by following the instructions contained in each promotional email we send you. Our sales representatives may also use your phone number to contact you directly by phone, in connection with such new products and services, upcoming events or other promotions.
Where required by applicable law (for example, if you are an EU data subject), we will only send you marketing information by email or mail, or contact you by phone, if you consent to us doing so at the time you provide us with your Personal Data. When you provide us with your consent to be contacted for marketing purposes, you have the right to withdraw your consent at any time by following the instructions to “opt-out” of receiving marketing communication in each marketing email we send you. In addition, if at any time you do not wish to receive future marketing communications or wish to have your name deleted from our mailing or calling lists, please contact us at email@example.com. Please note that if you opt out from marketing communications, we may still contact you regarding issues related to our Services and to respond to your requests.
To process job applications. When you apply for employment through our Site we will use your contact details and data about your employment history and education to (i) conduct job interviews, evaluate your application, and as is otherwise needed for recruitment (for EU data subjects, this use is necessary to respond to your request to process your application for employment); (ii) communicate with you and inform you of current and future career opportunities (unless you tell us that you do not want us to keep your details for that purpose) and manage and improve our recruiting and hiring processes pursuant to our legitimate interest in doing so; (iii) conduct reference and background checks were required or permitted by applicable local law, pursuant to our legitimate interest in doing so or as required by the law; and (iv) for compliance with corporate governance, legal and regulatory requirements. If you are hired, your personal data will be used as part of your employee record under our employee privacy policies.
If you are an EU data subject, please see the “EU Data Subjects” section below for information on your rights in relation to the Personal Data we hold about you.
We share information with certain third parties, as follows:
Since security and data integrity and openness of data usage are important to YayPay, the company complies with the EU-U.S. Privacy Shield Framework and Swiss-U.S. Privacy Shield Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information transferred from the European Union and Switzerland to the United States. YayPay will do its best to ensure accuracy and to protect personal information from loss, misuse, or unauthorized access or disclosure.
Privacy Shield Framework contains from Privacy Shield Principles.
CHOICE: You, as an individual, is the owner of your Personal Information. YayPay offers individuals the opportunity to choose (opt-out) whether their personal information is (a) to be disclosed to a non-agent third party, or (b) to be used for a purpose other than the purpose for which it was originally collected or subsequently authorized by the individual.
There is a special rule for sensitive personal information applicable in YayPay.
YayPay obtains affirmative express consent (opt in) from individuals if such information is to be (i) disclosed to a third party or (ii) used for a purpose other than those for which it was originally collected or subsequently authorized by the individuals through the exercise of opt-in choice.
Moreover, If personal information received from a third party and is claimed as the sensitive one, YayPay will treat this personal information with honors of sensitive information.
“Sensitive Personal Information” means personal information that reveals race, ethnic origin, sexual orientation, political opinions, religious or philosophical beliefs, trade union membership or that concerns an individual’s health.
ACCOUNTABILITY FOR ONWARD TRANSFER: YayPay remains accountable for Personal Data that it receives under the Privacy Shield and subsequently transfers to a third party agent or controller.
In particular, YayPay remains responsible and liable under the Privacy Shield Principles if third-party agents that it engages to process the personal data on its behalf do so in a manner inconsistent with the Privacy Shield Principles, unless YayPay proves that it is not responsible for the event giving rise to the damage.
SECURITY: We take reasonable administrative and technical steps to protect the Personal Data provided via the YayPay from loss, misuse and unauthorized access, disclosure, alteration, or destruction. These include contractual restrictions and physical, electronic and administrative safeguards such as firewalls, data encryption, SSL and other up-to-date technologies. However, the Internet cannot be guaranteed to be fully secure and we cannot ensure or warrant the security of any information you provide to us. Please keep this in mind when providing us with your Personal Data.
DATA INTEGRITY: YayPay will use personal information only in ways that are compatible with the purposes for which it was collected or subsequently authorized by the individual.
Yaypay will take reasonable steps to ensure that personal information is relevant to its intended use, accurate, complete, and current.
RECOURSE, ENFORCEMENT AND LIABILITY: To comply with the Privacy Shield Principles, YayPay commits to resolve complaints about the collection or usage of your Personal Information. EU and Swiss individuals with inquiries or complaints regarding our Privacy Shield policy should first contact YayPay at: firstname.lastname@example.org. Please allow up to 72 hours for us to respond to your request.
YayPay has committed to cooperate with the panel established by the EU data protection authorities (DPAs) for referring unresolved privacy complaints under the Privacy Shield Principles. If you do not receive timely acknowledgment of your complaint, or if your complaint is not satisfactorily addressed, please visit https://ec.europa.eu/justice/article-29/structure/data-protection-authorities/index_en.htm for more information and to file a complaint. Also, YayPay cooperates with Swiss Federal Data Protection and Information Commissioner (FDPIC) with regard to unresolved Privacy Shield complaints concerning data transferred from Switzerland, please visit https://www.edoeb.admin.ch/edoeb/en/home/the-fdpic/task.html for details. More importantly, DPAs and FDPICs services are provided at no cost to you.
Under certain circumstances, EU individuals may have the option to select binding arbitration under the Privacy Shield Panel for the resolution of their complaint. This procedure will be held through The Privacy Shield Framework and the Annex I. For further information, please see the Privacy Shield website https://www.privacyshield.gov/welcome . To learn more about the Privacy Shield Framework, please visit https://www.privacyshield.gov/EU-US-Framework. In addition, to find out more about the arbitration procedure, you can read the Annex I https://www.privacyshield.gov/article?id=ANNEX-I-introduction.
YayPay will conduct compliance audits of its relevant privacy practices to verify adherence to the Private Policy. Any employee that YayPay determines is in violation of this policy will be subject to disciplinary action up to and including termination of employment.
YayPay complies with the EU-U.S. Privacy Shield Framework and Swiss-U.S. Privacy Shield Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information transferred from the European Union and Switzerland to the United States.
YayPay being subject to the investigatory and enforcement powers of the Federal Trade Commission (FTC)
Scope: This section applies solely to EU data subjects (for these purposes, reference to the EU also includes the European Economic Area countries of Iceland, Liechtenstein and Norway).
Data Controller: Yaypay, Inc. is the data controller for the processing of your Personal Data, but we act as data processor on behalf of Clients for Personal Data that is Service Data we process through the Services. Please see the “Contact Us” section below to find out how to contact us.
Your Rights: Subject to applicable law, you have the following rights in relation to your Personal Data:
You may exercise your rights by contacting us as indicated under “Contact Us” section below.
We take reasonable administrative and technical steps to protect the Personal Data provided via the Site from loss, misuse and unauthorized access, disclosure, alteration, or destruction. These include contractual restrictions and physical, electronic and administrative safeguards such as firewalls, data encryption, SSL and other up-to-date technologies. However, the Internet cannot be guaranteed to be fully secure and we cannot ensure or warrant the security of any information you provide to us. Please keep this in mind when providing us with your Personal Data.
Cookies are pieces of data sent to your browser when you visit a website and stored on your computer’s hard drive. Cookies may store user preferences and other information.
We use analytics cookies to recognize and count the number of visitors and to see how visitors move around the Site when they are using it. This helps us to improve the way our Site works, for example by making sure visitors are finding what they need easily. The information collected through these cookies include anonymous traffic statistics, like number of page views, number of visitors, and time spent on each page.
On most web browsers, you will find a “help” section on the toolbar. Please refer to this section for information on how to receive a notification when you are receiving a new cookie and how to turn cookies off. Please see the links below for guidance on how to modify your web browser’s settings on the most popular browsers:
Please note that if you reject cookies or turn cookies off, you may be unable to access certain parts of the Site and you may not be able to benefit from the full functionality of the Site.
Neither the Site nor the Services are directed to or intended to be used by children who are under the age of 13 and Yaypay does not knowingly collect Personal Data from children under 13. If you have reason to believe that a child under the age of 13 has provided Personal Data to Yaypay through the Site, please contact us at email@example.com and we will endeavor to delete that information from our databases.
As a result of providing your contact information, YayPay may market to you, including sending promotional communications and relevant offers. To opt-out of receiving marketing related communications from YayPay, please click on the “unsubscribe” link in the communication. Please note that if you do unsubscribe from receiving marketing- related emails from us, we may still use your email address to send you important administrative messages. If you wish for us to completely delete your personal record from our database, email firstname.lastname@example.org and we will delete your contact information.
Our main office is located at105 Crawford Street,
Attention: Data Privacy Officer
99 Wall Street #3080
New York, NY 10005
Phone number: +1 (646) 992-8216