User Privacy Notice
Project – trade d.o.o. takes data protection and privacy very seriously. We collect only relevant and necessary data to accomplish the specified purpose and to meet our obligations. Our buyers are informed about the way the collected data is used, moreover, they can control and determine how their personal data is used. Buyers can also decide whether they want their name removed from the list used for marketing campaigns.
All user personal data is kept strictly confidential. It is available only to employees who require such data to perform their work tasks. All employees of Project – trade d.o.o. and business partners are obliged to demonstrate that their activities are compliant with the Data Protection Principles.
Statement about the Protection of Personal Data Transfer
Data protection pursuant to the General Data Protection Regulation of the European Parliament and the Council no. 2016/679- Regulation and implementation of the GDPR
WSPay, being the processor of authorization and payment made by credit cards, uses personal data as the processor pursuant to the General Data Protection Regulation of the European Parliament and the Council no. 2016/679, and compliant with PCI DSS Level 1 Regulations for data transfers.
WSPay uses 256-bit SSL encryption and TLS 1.2 cryptographic protocol as the highest protection standards for data entry and transfer.
Personal data used for the purposes of authorization and payment are deemed to be confidential data.
The following customer’s personal data are necessary to fulfil the Agreement (authorization and payment):
- Name and Surname
- Telephone number
- Post Code
- Type of credit card
- Credit card number
- Expiry date (credit card)
- CVV number for credit card
WSPay does not process or use these personal data except for the purpose of fulfilling the Agreement, the authorization and the payment.
WSPay ensures to meet the requirements determined by applicable personal data protection regulations, for the processors of personal data, especially taking all necessary technical, organizational or security measures confirmed by PCI DSS Level 1 certificate.