Maldopay needs to collect, use and in the required cases disclose personal information about its clients (natural persons) in order to deliver services, exercise its responsibilities and fulfil its legal and contractual obligations.
By collecting personal data, Maldopay shall obtain explicit consent by the Clients their data to be processed. Maldopay shall secure the possibility for its Clients to inform themselves for the purposes their data is being collected. In addition the personal data collected by Maldopay shall be used only for the purposes state herein and in the relevant data protection legislation.
In order to use Maldopay’s payment instruments and services, the Client may need to provide at different stages of his registration the following personal data: names, mobile phone number, date of birth, address, e-mail address, government issued identification and other details. Furthermore in case the Client chooses to use, buy or fund its payment instrument by his/her credit or debit card, Maldopay will process and may store the cardholder’s data (like card number etc.). MaldoPay will collect also Transaction information including amount, time, date, currency used, exchange rate, beneficiary details, details and location of the merchant associated with the transaction, IP address of sender and receiver, sender's and receiver's name and registration information, messages sent or received with the payment, device information used to facilitate the payment and the payment instrument used;
Maldopay is legally obligated to prevent fraud and money laundering and to protect all its customers against potential fraud. Due to this fact Maldopay may request issued by the state personal identification documents or international passport and completion of forms.
Maldopay shall ensure that the legal rights given to the natural persons by the Data protection Acts could be fully exercised.
Maldopay shall use the collected personal data for the purposes of providing its services as follows:
• To verify the identity of the Client;
• To make anti-money laundering and fraud checks;
• To execute instructions from the Client for undertaking and receiving payments and transfers using the services of Maldopay;
• To comply with financial and payment services regulations including retention of financial information and transaction information;
• To be compliant regarding Maldopay’s relevant obligations by law and those resulting from the agreement with the Client;
Maldopay shall undertake measures to secure and to prevent unauthorized access or disclosure of the collected personal data from the Clients. The following data security tools are employed: the network environment is compliant with the highest security standards since Maldopay is PCI DSS Compliant and the information collected will be transmitted and handled by applying TLS (Transport layer security) and secure encryption procedures.
Furthermore the processing of collected data shall be done by appropriately trained and supervised employees. Only specific specially authorized employees shall have access to personal data.
The personnel with access to personal data shall be aware that in case of breach of the rules and procedures for handling personal data this may lead to imposing fines against him.
Personal data shall be stored only for the legally required time period after which it will be disposed.
Maldopay shall do its best to protect the client’s personal data although, even with these measures, it cannot guarantee the absolute security of the personal data. By using Maldopay’s services, the client acknowledges and agrees that there is always a hypothetical risk of data leakage and if client uses Maldopay’s websites and services at his/her own risk. When Maldopay collects personal information, it shall use strict procedures and security features to try to prevent unauthorised access to it.
Maldopay shall not be entitled to sell or rent any of personal data about the client to third parties in breach of its legal obligations. Maldopay will provide access to the personal data about the Client only to those employees who need it in order to provide the services of Maldopay. These employees are trained to keep the clients personal data secured from data breaches and process it according to the relevant legislation. Personal data may be disclosed about the Client only in limited amount of cases listed in this policy or in the law.
Maldopay may disclose personal information about Client to its auditing company which will conduct audits for Maldopay and will assess its policies for Anti Money Laundering (AML) and Know Your Customer (KYC) policies. The auditing company shall has a contractual obligation to retain the secrecy of the accessed personal data.
Maldopay may disclose personal information about the Client to third parties if it is necessary to Maldopay in order to, among other things, fulfill the request of the Client, process Client’s payment details, provide support services and monitor fraudulent activities.
Maldopay may share aggregated data on turnovers made via its services to third parties that act as sub-contractors of Maldopay and have a contractual obligation to retain the confidentiality and where this information will be used by them only for the purposes of distributing the services of Maldopay and/or support of the Client for use of the services.
In case Client makes a transaction to a merchant to whom Client wishes to pay, Maldopay will, at a minimum, pass on to the merchant (and in some cases the intermediary participating in the transaction) the mobile phone number, the email address and the identification number of the transaction/account of Client. Depending on the type of payment involved, Maldopay may also send other personal details such as names, address and country of residence of Client if the recipients request this information from Maldopay in order to improve the payment process, to reconcile payments with the commercial transaction or to conduct their own anti-fraud and anti-money laundering checks.
Maldopay will disclose information about the Client in the event that it is obligated by an effective law to do so. Such disclosure includes, without limitation, personal information and the contents of communications, transaction information, account information to: regulatory authorities the court; security forces; the police; competent governmental, intergovernmental or supranational bodies; competent agencies (other than tax related authorities), departments. If false or inaccurate information is provided by Client and fraud is identified, Maldopay will pass details to fraud prevention agencies and law enforcement agencies may access and use that information. Maldopay and other organizations may also access and use this information (including information from other countries) to prevent fraud and money laundering.
Maldopay’s clients have the right to be aware what personal information Maldopay holds about them. This may happen by filling a request through our website and after a review the requested information will be provided. Your right of access can be exercised in accordance with the Data protection laws. Any access request may be subject to a fee to meet our costs in providing you with details of the information we hold about you.
Clients could request correction of the personal data that it is stored about them. This enables them to have any incomplete or inaccurate data we hold about them corrected, though we may need to verify the accuracy of the new data it is provided to us. If you require this, then please reach out to our Support team through our website.
The Client shall be responsible for informing Maldopay about changes in his/her personal data that has been provided to Maldopay so the data can be kept current. On the other hand Maldopay shall ensure that the collected information for the clients is current by conducting occasional checks.
Maldopay’s clients have the right to demand their personal data to be deleted from the company’s registries and servers. This right could be exercised in case all the lawful prerequisites are met. The client has to reliably proven his identity before the company and has to fill a request for review and evaluation by contacting us through MaldoPay website. Have in mind however, that MaldoPay may not always be able to comply with your request of erasure for specific legal reasons which will be notified to you, if applicable. As a regulated company, MaldoPay is under certain obligations to retain certain data for a minimum of 6 years. Please note that these retention requirements supersede any right to erasure requests under applicable data protection laws.
MaldoPay may need to request specific information from the Clients to help us confirm their identity and ensure right to access of their personal data (or to exercise any of their other rights). This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it. We may also contact Clients to ask for further information in relation to their request to speed up our response.
A cookie is a small file of letters and numbers that we store on your browser or the hard drive of your computer if you agree. Cookies contain information that is transferred to your computer's hard drive.
We use the following cookies:
• Strictly necessary cookies. These are cookies that are required for the operation of our website. They include, for example, cookies that enable you to log into secure areas of our website to make a deposit or provide sensitive data.
• Analytical/performance cookies. They allow us to recognise and count the number of visitors and to see how visitors move around our website when they are using it. This helps us to improve the way our website works, for example, by ensuring that users are finding what they are looking for easily.
• Functionality cookies. These are used to recognise you when you return to our website. This enables us to personalise our content for you, greet you by name and remember your preferences (for example, your choice of language or region).
• Targeting cookies. These cookies record your visit to our website, the pages you have visited and the links you have followed. We will use this information to make our website and the advertising displayed on it more relevant to your interests. We may also share this information with third parties for this purpose.
You may block cookies by activating the relevant setting on your browser that allows you to refuse the setting of all or some cookies. However, if you use your browser settings to block all cookies (including essential cookies) you may not be able to access all or parts of our site.
Except for essential cookies, all cookies will expire after you end your session and close your browser.