The data protection declaration – Website

Status: May 2018

 

The present data protection declaration describes the details of the collection, processing and storage of personal data through the website www.xpaycard.de for our offer of the XPAY Card Prepaid Mastercard®.
This website is operated by XPAY Solutions GmbH, Stefan-George-Ring 2, 81929 Munich.

 

In accordance with Article 4.1 of the European General Data Protection Regulation (Regulation (EU) 2016/679), personal data means any information relating to an identified or identifiable natural person (hereinafter “data subject”); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

 

On our website you can receive information about our card programme, XPAY Card Prepaid Mastercard® ( the “Card programme”), and according to your desire, you can get in contact with us or you can order the card programme for your company.

 

 

Which personal data we collect, process or use

During the mere informational use of the website, that means when you do not order the XPAY Card Prepaid Mastercard® card programme or if you transfer us other information, we do not collect any personal data, with the exception of the data that your browser transfers in order to enable you to visit the website, and also the analyse tools used on our website.

 

These are:

  • IP-Address
  • Date and time of the query
  • Time zone difference to Greenwich Mean Time (GMT)
  • Result of the query (content of the site)
  • Status of access / HTTP-Status code
  • the respective quantity of data transmitted
  • URL of the website, from which the query was received
  • browser, and its version and language
  • operation system and its surface

 

If you apply on our website for a card programme for your company, then you will be invited to send us the following personal data:

  • the ordering company (“Buyer”), address and company of the buyer
  • the managing director of the buyer and his birthday and his means of identification, like his identity card number
  • the buyer’s contact details
  • the buyer’s payment details like the account number or credit card information

 

Purpose of the collection and of use

We collect and process the collected personal data by means of the website, in order to make the ordering of the card programme easier for you and in order to be able to draft the programme according to your sent order.

This includes also a verification on the company, the right of representation and, where necessary, the creditworthiness of the customer, which is either set by legal obligations or is in our legitimate interest.

 

In addition, we collect and process personal data, which refer to the use of the website, to the technical preparation of the website, to the activity analysis on the website, in order to present them in a user-friendly manner, and to be able to display advertisements.

 

 

Transfer of personal data to a third party

We transfer your personal data to third parties for the above-mentioned purposes in compliance with the present data protection declaration and upon observance of statutory regulations, to the extent that this is required by laws, regulations or governmental or court orders.

 

This includes particularly the following transfers:

  • To HD Card Services Ltd. in London for the distribution of XPAY Card Prepaid Mastercard®
  • To Wirecard Card Solutions Ltd. in Newcastle upon Tyne for the delivery of the XPAY Card Prepaid Mastercard®

 

We will not forward your personal data to third companies without your approval, for advertisement purposes and marketing purposes.

 

 

The use of cookies

In order to present our website in a user-friendly way, we use the so-called Cookies.

These are the information that will be stored on your computer or other computing device through your page views and individual user configurations.

Cookies are small text files which for instance are saved on your computer or on your mobile phone and which enables an identification of your computer or of your mobile phone.

 

There are two types of cookies: the session cookies and the long-term cookies. A session cookie will be automatically deleted when a website is closed. A long-term cookie will be stored for a definite period on your computer or on your mobile phone. These two types of cookies could be placed on a website of different providers (the so-called “First-Party” or “Third-Party” providers, in order to be stored on the storage media (for instance on the hard drive of your computer). A “First-Party”-Cookie will be placed by the operator of your website that you used or visited. A “Third-Party”-Cookie will be placed by a third-party provider who does not manage the website you visited.

 

These cookies are additionally subdivided into optional cookies and those which are absolutely necessary for the operation of the website.

Regarding the optional cookies you have the choice, if those should be placed on your computer and should stay or not. You could deactivate these cookies on your end device, but in this case, probably, some functions of our website will not be available anymore.

Regarding the absolutely necessary cookies, you cannot decide if these should be placed and should stay, because they are necessary for the use of the website.

 

Cookies are assigned an adequate expiration date by us, after its expiration the cookie will be automatically deleted.

The following table shows the different categories of cookies that we use, the purpose of their use and the provider, who, for instance, can place the cookie.

 

Name Storage period Company Purpose Type Party Optional?
language permanent XPAY Solutions Stores the standard language. Session 1st No
_ga 2 years Google This Cookie is in connection with  Google Analytics. It is used in order to differentiate unique users, by allocating a randomly generated number as Client-ID.

It is included in each page request of a website and it is used to calculate the visitor data, session data and campaign data for the analytics reports of the website.      

analytics 3rd No
_gat 1 – 10 Minutes Google It is used in order to reduce the request rate and/or to limit the collection of data on the websites with heavy data traffic. analytics 3rd No
_gid 1 day Google This cookie is in connection with Google Universal Analytics. It stores and updates a unique value for each visited site. analytics 3rd No
AMP_
TOKEN
30 seconds to 1 year Google It contains one token, that is used for accessing a Client-ID from AMP-Client-ID-Service. Other further values are Opt-Out, Inflight Request or an error when accessing a client ID from AMP Client ID Service. analytics 3rd No
_gac_
<property-id>
90 days Google It contains information related to the campaign for the user.

If you linked your Google Analytics- and the AdWords-account, the AdWords-Website-Conversion-Tags read this cookie, unless you log out.

analytics 3rd No

 

 

The use of Google Analytics

This website uses Google Analytics, a web analysis service of Google Inc. (“Google”). Google Analytics uses Cookies, text files, which are stored on your computer or on your mobile phone and which enable an analysis of the use of the website.

The information generated by the cookie concerning your use of this website is normally transmitted to a server of Google in the USA and stored there.

In case of activation of the IP anonymisation on this website, your IP address of Google will be previously reduced within the member states of the European Union or in the other states parties to the agreement within the European Economic Area (EEA).

Only in exceptional cases the complete IP Address is transmitted to a server of Google in the USA and reduced there.

Under the authority of the provider of this website, that is VK Ltd, Google will use this information, in order to evaluate your use of the website, to generate reports about the website activities, and to provide additional services in connection with the use of the website and the internet in relation to the provider of this website, that is VK Ltd.

The IP-Address submitted by your browser as part of Google Analytics will not be linked with other data from Google.

 

You can prevent the storage of cookies by appropriately adjusting your Browser Software under “settings”; but we would like to draw your attention to the fact that, in this case, probably, you will not be able to completely use all the functions of this website.

 

Furthermore, you can prevent the collection of relevant data that cookies generate about your use of the website

(including your IP address) to Google and also prevent the processing of this data by Google, by downloading and installing the Browser-Plug-In available under the following link:

https://tools.google.com/dlpage/gaoptout?hl=de.

 

This website uses Google Analytics with the extension _anonymizeIp()”. Through this the IP addresses are processed further in abbreviated form to prevent them from being directly linked to a particular individual.

 

The use of Google Analytics takes place in accordance with the requirements on which the German data protection authorities agreed with Google.

 

Information of third-party providers: Google Dublin, Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001.

User conditions: https://www.google.com/analytics/terms/de.html

Overview on data protection: https://www.google.com/intl/de/analytics/learn/privacy.html

Data protection declaration: https://www.google.de/intl/de/policies/privacy.

 

Security and data storage

We take the protection of your personal data very seriously.

We secure your data in both technical and organisational terms and we protect your data against unauthorized access, unauthorized use or unauthorized disclosure.

All personal information will be transferred by means of a Secure Socket-Layer- (SSL) encryption protocol.

Your personal data will be stored for as long as you need them to be stored, for the purposes for which they have been collected, thus especially for the period of the contractual relationship with the buyer.

 

Additionally, they are stored in accordance with the statutory period set by the law and with account being taken of the statutory regulations.

 

The right to information

You have the right to receive at any time information about your personal data stored by us, and also information about the origin, the recipients or categories of recipients, to whom these data are transferred and the purpose for storage, collection or usage.

 

For this, please contact us via e-mail to: service@xpay-group.com or by  post to: XPAY Solutions GmbH, Stefan-George-Ring 2, 81929 Munich. Normally you can also perform updates of your data in your user account.

 

Right to correction, blocking, and deletion

In accordance with article12-20 of DSGVO you have the right to correction, blocking, and deletion of your personal data and data portability.

 

Additionally, you can object to the processing of your data and you can ask us for the limitation of processing.

These rights are partially subject to limitations.

Please send your request, identifying yourself clearly, by e-mail, to service@xpay-group.com or by post to: XPAY Solutions GmbH, Stefan-George-Ring 2, 81929 Munich.

Additionally, you can file a complaint concerning the collection and use of the data to one of the Data Protection Authorities. 

 

Changes of the data protection declaration

We reserve the right to bring the necessary amendments to this data protection declaration, notably in the event of legislative amendment or in the event of use or application of new technologies in our products.

 

You should visit this site occasionally to inform yourself of the possible updates. Additionally, we will inform you by e-mail about any modifications. 

 

About us

Service provider of this website, also www.xpaycard.de, according to §§ 2 S. 1 Nr. 1, 13 of German Telemedia Act (TMG and the person responsible according to Article 4 7. DSGVO is XPAY Solutions GmbH, Stefan-George-Ring 2, 81929 Munich.

 

 

Client support

If you have a concrete question on the issue of data privacy and data protection or you wish to make a complaint, please contact us by e-mail: service@xpay-group.com.

We are looking forward to hearing from you!

Contact sales

  • Would you like to be personally consulted?
    Please fill out the form and our experts will get in touch with you shortly.

Contact support

  • You need support for your product?
    Please fill out the form and our support team
    will get in touch with you shortly.

Order your XPAY Card now Step 1/2


  • After placing the order your personal account manager will get in touch with you shortly to discuss further questions.