PRIVACY POLICY
The purpose of this Privacy Policy is to determine the terms and conditions regarding the use of personal data shared by the users/members/visitors (“Data Owner”) with PayFi Payment Systems LLC (“Company” or “PayFi”) or generated by the Company during the operation of the website
https://www.payfi.ge/ (“Site”).
Which Data Are Processed?
This section lists the data processed by the Company that are considered personal data under the Personal Data Protection Law. Unless explicitly stated otherwise, the term “personal data” within the scope of this Privacy Policy includes the following information.
- Identity Information
- Contact Information
- User Information
- User Transaction Information
- Transaction Security Information
- Marketing Information
- Request/Complaint Management Information
- Event Management Information
Data that are anonymized irreversibly as per Articles 3 and 7 of the Personal Data Protection Law will not be considered personal data in accordance with the provisions of the said law, and processing activities related to such data will be carried out without being bound by this Privacy Policy.
The Company obtains information regarding the use of the Site through cookies, which are technical communication files, and collects IP information in this manner.
For What Purposes Are the Data Used?
Your personal data;
- To enable you to benefit from the services provided by the Company,
- To facilitate communication with the Company,
-
To plan and execute the necessary activities for you to benefit effectively from the Site and the services of the Company,
- To inform business partners about the provision of services,
-
To execute the necessary activities for the improvement of the usage experience of the Company's services and the Site (development of communication management processes, conducting satisfaction surveys),
for these purposes
(“Purposes”)
may be processed within the conditions specified in Articles 5 and 6 of the Law.
The Company may use cookies, including those used for analytical and marketing purposes, and may process data in this context and transfer them to third parties to the extent required by the analysis services provided by third parties. These technical communication files are small text files sent to the device to be stored in the main memory. The technical communication file facilitates the use of the internet by storing status and preference settings about a website or device. The technical communication file is designed to obtain statistical information about how many people use the websites at temporal intervals, for what purpose, how many times a person visits a particular website, and how long they stay. It helps generate dynamically generated advertisements and content from specially designed user pages. The technical communication file is not designed to retrieve any other personal data from the main memory. Most browsers are initially designed to accept technical communication files, but users can change their browser settings to block technical communication files or to receive a warning when a technical communication file is sent if they wish.
Who Can Access the Data?
The Company may transfer personal data belonging to the Data Owner and new data obtained using these personal data to third parties from whom the Company benefits from the services for the purposes specified in this Privacy Policy, limited to the purpose of providing these services.
The Company may share personal data with third parties such as outsourcing service providers, hosting service providers (hosting services), law firms, research companies, and call centers, including those sending SMS, to improve the Data Owner's experience (including improvement and personalization), ensure the Data Owner's security, detect fraudulent or unauthorized uses, conduct operational evaluations, fix Site service errors, and achieve any of the purposes specified in this Privacy Policy.
Access Rights to Data and Correction Requests
In accordance with Article 11 of the Law, data owners have the following rights:
- To learn whether personal data are processed,
- To request information if personal data have been processed,
- To learn the purpose of processing personal data and whether they are used in accordance with their purpose,
- To know the third parties to whom personal data are transferred, domestically or abroad,
-
To request the correction of personal data if they are incomplete or incorrectly processed and to request that the process carried out within this scope be notified to third parties to whom personal data are transferred,
-
Despite being processed in accordance with the provisions of the Law and other relevant laws, to request the deletion or destruction of personal data if the reasons for processing no longer exist and to request that the process carried out within this scope be notified to third parties to whom personal data are transferred,
-
To object to the emergence of a result against the person by analyzing the processed data exclusively through automated systems,
-
To demand the compensation of damages if the person suffers damage due to the unlawful processing of personal data.
These rights will be evaluated and concluded within 30 (thirty) days if personal data owners submit them through the methods specified in the Company’s Policy on Processing and Protection of Personal Data under Law No. 6698, available at Globals.FirmAddress. It is essential that no fees are charged for such requests; however, the Company reserves the right to charge a fee based on the tariff determined by the Personal Data Protection Board.
The Data Owner undertakes that the information subject to this Privacy Policy is complete, accurate, and up-to-date and will immediately update them in case of any changes in these information. The Company will not have any responsibility if the Data Owner has not provided updated information.
The Data Owner acknowledges that if they make a request that results in the Company being unable to use any of their personal data, they may not be able to fully benefit from the operation of the Site, and they declare that any responsibility arising in this context will belong to them.
Retention Period of Personal Data
The Company will retain the personal data provided by the Data Owner for the duration required by the above-mentioned processing purposes.
In addition, the Company may retain personal data for the duration of the statute of limitations determined by the relevant legislation, limited to the purpose of making the necessary defenses in any dispute that may arise between the Company and the Data Owner.
Measures and Commitments Regarding Data Security
The Company undertakes to take necessary technical and administrative measures to ensure an appropriate level of security to prevent the unlawful processing of personal data, to prevent unlawful access to personal data, and to ensure the protection of personal data as specified in the relevant legislation or this Privacy Policy.
- To prevent unlawful processing of personal data,
- To prevent unlawful access to personal data, and
- To ensure the protection of personal data.
The Company cannot disclose the personal data obtained about the Data Owner to anyone else in violation of this Privacy Policy and the provisions of the Personal Data Protection Law and cannot use them for purposes other than processing.
If links to other applications are provided through the Site, the Company is not responsible for the privacy policies and contents of these applications.
Changes to the Privacy Policy
The Company may change the provisions of this Privacy Policy at any time. The current Privacy Policy takes effect on the date it is presented to the Data Owner by any method.