This Privacy Policy outlines how GloPay.com (“Website”), operated by eucoop OÜ, a company registered in Estonia (registry code: 14101041; registered address: Hobujaama 4, Kesklinna linnaosa, Tallinn, 10151, Estonia), collects, uses, and shares your personal information in compliance with the EU General Data Protection Regulation (“GDPR”). 

For convenience, within these General Terms and Conditions, eucoop OÜ is referred to as GloPay. However, it is acknowledged that outside of this document and website, the term ‘GloPay’ does not necessarily refer to eucoop OÜ in all contexts.

Definition

Unless otherwise defined in this Privacy Policy, terms used herein shall have the same meaning as those defined in the General Data Protection Regulation (EU) 2016/679 (“GDPR”).

What Information Do We Collect 

GloPay collects various types of personal data and business information necessary to provide our services. The information we collect includes:

Personal Details: Full name, date of birth, nationality, contact address, email address, and mobile phone number.

Identification Data: Information from identification documents (e.g., passport or ID card), such as document number, issue and expiry dates, issuing authority, and a photo.

Verification Data: Information required to comply with anti-money laundering and know-your-customer (KYC) regulations, including checks against relevant databases.

Payment Data: Bank account details (such as IBAN and account holder name), transaction details, and payment history related to your use of GloPay services.

Business Information: Details about your business activities and description, as required to provide our services.

Device and Usage Data: Information about the device you use to access GloPay (including device model and IP address), as well as data about your interactions with our website and app.

Preference and Support Data: Your preferences within the platform and any communications you have with our customer support team.

Data from Third Parties: Where necessary, we may collect information from third-party sources, such as publicly available databases or partners, to verify your identity or comply with legal requirements.

Data Collection Methods

GloPay collects personal data through various methods to provide and improve our services, including:

• When you fill out registration or sign-up forms on our website.
• During your use of our services, such as (but not limited to) creating invoices or making payments.
• When you contact us via support or inquiry forms.
• Automatically through cookies and similar tracking technologies when you visit or interact with our website and platform.
• From third-party sources, where applicable, to verify your identity or comply with legal obligations.

Purposes of Data Collection and Use

GloPay collects and processes personal data for the following purposes and on the corresponding legal basis:

• To provide and manage our invoicing, payment, and related financial services, including facilitating purchases and service delivery. (Legal basis: Contractual necessity)
• To perform Know Your Business (KYB) and Know Your Customer (KYC) checks, verifying your identity to ensure you are a real person and to maintain traceability in case of disputes or legal issues. (Legal basis: Legal obligation)
• To comply with applicable legal and regulatory obligations, including anti-money laundering (AML) and tax reporting requirements. (Legal basis: Legal obligation)
• To improve and develop our services, including analyzing usage patterns, enhancing user experience, and maintaining platform security and reliability. (Legal basis: Legitimate interests)
• To communicate with you regarding your account, transactions, updates, and support inquiries. (Legal basis: Contractual necessity and/or Consent)
• To prevent fraud, abuse, and unauthorized access to GloPay services. (Legal basis: Legitimate interests)
• Where applicable, to collect and process your data based on your explicit consent for specific purposes. (Legal basis: Consent)

All data processing is conducted lawfully, fairly, and transparently, with data minimization and purpose limitation principles strictly observed in accordance with GDPR requirements.

Third-Party Data Processors

Your personal data may be shared to and processed by third-party service providers to support the delivery and improvement of our services. These third parties commit to complying with the General Data Protection Regulation (GDPR) through their own terms and conditions and take appropriate measures to protect your personal data.

• Veriff.com: We use Veriff.com for identity verification purposes when you opt in to services that require us to confirm your identity.
• Matomo: Matomo is utilized for anonymous web usage analytics, helping us enhance user experience and platform performance.
• Digital Ocean: Our website and databases are hosted on Digital Ocean servers. While your data is stored on their infrastructure, it is not shared directly with the company operating the hosting platform.

Data Retention 

GloPay retains your personal data for as long as you maintain an active account with GloPay, regardless of whether you are actively using our services. This retention period ensures we can continue to provide you with our services, comply with contractual obligations, and support your account as needed.

After you cancel your account, GloPay will retain your personal data only for as long as necessary to:

• Comply with legal, regulatory, and tax obligations (such as record-keeping requirements);
• Resolve any disputes or enforce our agreements;
• Prevent fraud and abuse; and
• Fulfill any other legitimate business purposes consistent with applicable laws.

Once these purposes have been fulfilled, GloPay will securely delete or anonymize your personal data in accordance with our data protection policies.

Data Subject Rights

As a data subject, you have the following rights regarding your personal data:

• Right of Access: You can request access to the personal data we hold about you.
• Right to Rectification: You may request correction of inaccurate or incomplete data.
• Right to Erasure: You can ask us to delete your personal data, subject to certain legal exceptions.
• Right to Restrict Processing: You have the right to limit how we use your data in specific circumstances.
• Right to Data Portability: You may request a copy of your data in a structured, commonly used format.
• Right to Object: You can object to our processing of your data based on legitimate interests or direct marketing.
• Right to Withdraw Consent: If processing is based on your consent, you can withdraw it at any time without affecting the lawfulness of prior processing.
• Right to Lodge a Complaint: You have the right to file a complaint with a relevant data protection authority if you believe your rights have been violated.

To exercise any of these rights, please contact us at [email protected]. We will respond promptly and in accordance with applicable laws.

Data Security Measures

We implement appropriate technical and organizational measures designed to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These measures include, but are not limited to, encryption, secure servers, access controls, regular security assessments, and staff training. Our data security practices comply with GDPR requirements to ensure the confidentiality, integrity, and availability of your personal information.

Cookies and Tracking Technologies

GloPay uses Matomo, a GDPR-compliant web analytics platform, to collect anonymous usage data that helps us improve our services and enhance your user experience. Matomo processes data such as IP addresses in an anonymized form and uses first-party cookies by default. You can manage or disable Matomo tracking at any time through your browser settings; however, some features of the site may not function properly if cookies are disabled.

Changes to This Policy

We may update this Privacy Policy periodically to reflect changes in our practices, legal requirements, or service improvements. Any updates will be posted on this page with a revised effective date. GloPay encourages you to review this policy regularly to stay informed about how we protect your data. For any material changes, we will provide you with a direct notification where feasible.

Contact Us

If you have any questions about this Privacy Policy or wish to exercise your rights under the GDPR, you may contact us at any time. Please use our website contact form or email us at [email protected]. We will respond to your inquiry promptly and in accordance with applicable data protection laws