USER – a private person, legal entity or organizational unit without the status of a legal entity using an online service through a website or mobile application;
PERSONAL DATA – any information relating to the identified private person or person that needs to be identified;
OPERATOR, ADMINISTRATOR OF PERSONAL DATA OF THE USERS – Meest Transfer Sp. z o.o., with the location in Ostrovets Sventokshysky, at the address: ul. Kilińskiego 30/110, 27-400 Ostrowiec Świętokrzyski, entered in the Register of Entrepreneurs by number KRS 0000326242, NIP PL 9562248359;
SERVICE – online services provided through:
- MeestPay mobile application;
- Web Page meestpay.com
2. General information
2.1. The Operator may receive information about users and the nature of their operations in the following way:
2.1.1. through information and data voluntarily provided in the registration form on the Website or in the Mobile application;
2.1.2. through cookies stored on User’s devices;
2.1.3. by collecting information from server logs;
2.1.4. by using Facebook SDK.
2.2. The Operator makes every effort to ensure the protection of users’ privacy, applying the minimization policy, providing and processing data about Users, as well as transferring them for processing to third parties. The Operator has introduced and is guided by the rules and procedures for the protection of Users’ personal data in accordance with the requirements of Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016 on the protection of individuals in connection with the processing of personal data and on the free movement of such data, and on the abolition of Directive 95/46 /EC (General Data Protection Regulation – “GDPR”).
3. Registration form and data collection
3.1. The Operator, using the registration form, collects and processes only the information voluntarily provided by the User and his/her personal data.
3.2. The Operator may ask the User of the Mobile application to provide access to the contact’s avatars of the phone book to synchronize them with the contacts of recipients of transfers. Access to avatars will make the User’s contacts more recognizable, and the use of the service will be convenient and intuitive. User consent to access contact avatars is voluntary. The access control function is in the settings menu of the Mobile application.
3.3. Use of the Service also provides the ability to collect connection parameters (recording time and IP address).
3.5. When providing data on the Website or in the Mobile Application (including user data for logging in and initiating a transfer), theft and interception protection is provided using SSL encryption with a certificate. The whole process from logging in to leaving the account is encrypted (there is a so-called end-to-end encryption).
4. Server logs
4.1. Information about user behavior is recorded in the server logs. These data are used to administer the Website and provide the most efficient service to Users.
4.2. Viewed resources are identified using the URL. In addition, the following information may be stored:
4.2.1. the time of the request;
4.2.2. time of sending a response;
4.2.3. the name of the client station is identified by the http protocol;
4.2.4. information about errors that occurred during the execution of the transaction – in the case of implementation under the http protocol;
4.2.5. information about the User’s browser;
4.2.6. IP address information.
4.3. The data specified in paragraph 2 above may also be associated and identified with exact Users.
5. Facebook SDK
5.1. The Facebook SDK gives access to the following features:
5.1.1. Facebook App Event Tracking – allows the app or web page to track events, such as installation of the App or completing a purchase.
5.1.2. Facebook App Ads – helping to get more people to install and engage with the App.
5.1.3. Sharing – Enable users to post to Facebook from the app using Facebook’s Share dialogs that give an expressive sharing experience. With the dialogs, it is possible to add quotes to a link share, post photos, and videos at the same time, or add a hashtag to let people connect with a community on Facebook.
5.2. Collection of Information
Interacting through the Service, Facebook SDK may collect or receive the following types of information:
5.2.1. Information the user provides directly to us. For certain activities, the following types of information can be collected: Contact information, such as name and email address, Information provided when sending us correspondence, comments on posts, subscribe to a Service or otherwise participate on the Services.
5.2.2. Information, Facebook SDK collects automatically. Certain information may also be collected automatically when using a Service, such as Internet protocol (IP) address, mobile device identifier, browser type, operating system, Internet service provider, pages that you visit before and after using the Services, the date and time of your visit, information about the links you click and pages you view within the Services, and other standard server log information.
6. Direct marketing, carried out by the Operator, including sending and receiving commercial offers
6.1. The Operator, acting for purposes arising from the legitimate interests of the personal data controller and its business partners as third parties, conducts direct marketing activities in relation to Users, namely, sends free e-mails with marketing content (including informational messages). For the purposes of sending informational messages and other direct marketing messages, the Operator processes the following personal data of the User: Name and surname, e-mail address, mobile phone number. An e-mail address and a mobile phone number are required to send information to the recipient. Name and surname allow personally address the User.
6.2. Messages contain marketing information about the Services of the Operator and business partners (inform for example about promotions, sweepstakes, and activities for Users); as well as non-commercial messages (inform about changes in the service, send greetings or wishes, personally contact the User, etc.).
6.3. Persons who are not Users and wish to receive information messages from the Operator may express their consent to receive such information messages.
6.4. Users interested in obtaining information and commercial offers regarding the products of the Operator or its business partners may submit applications for the following consents:
6.4.1. consent to the processing of personal data by the Operator in order to obtain commercial information about the products and services of the Operator or its business partners defined in Article 6 paragraph 1, section a, of Regulation (EC) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data, and on the repeal of Directive 95/46 / EC (General Data Protection Regulation – “GDPR”),
6.4.2. consent to receive commercial information from the Operator or its business partners by electronic means (including using the provided e-mail address and mobile phone number), which is specified in Art. 10 of the Law of July 18, 2002 on the provision of electronic services (Legislative Journal 2016, Article 1030 as amended).
6.4.3 Using the MeestPay mobile application (settings menu, Account item), Users can manage their consent to receive information and commercial offers by submitting applications described in clauses 5.4.1 and clause 5.4.2 in digital format.
6.5. Users interested in obtaining direct marketing from the Operator or its business partners using telecommunication devices, within the meaning of Art. 172 sec. 1 of the Law of July 16, 2004 of the Telecommunications Act (Legislative Journal 2016, Article 1489 as amended), may express consent to receive calls and SMS/MMS messages to the mobile phone number specified in the registration form.
6.6. All consents given by Users to the Operator, regardless of the grounds for obtaining them, are always voluntary, and the User has the right to withdraw them at any time. Expressing consent to marketing, refusal or revocation of such consent does not affect the use of the Operator’s Services, does not limit or suspend them.
6.7. The User may at any time prohibit the processing and use of his personal data for the purposes of direct marketing specified in Art. 21 paragraph 2, general data protection regulation – “GDPR”.
6.8. The application prohibiting the processing and use of personal data for direct marketing purposes is submitted in any form, but the Operator recommends sending it by e-mail to the e-mail address: [email protected]
6.9. Regardless of marketing activity and sending commercial information, the Operator reserves the right to send users messages relating directly to the Operator’s Services and the operation of its service, as well as highlight technical information (interruptions or changes in the work of the Services, new functionalities) and legal and organizational changes (including information on changes to the regulations or organizational changes of the Operator).
7. Using the User’s phone number
7.1. Phone numbers provided by Users are used to properly provide ordered services, for checking and confirming orders and providing the User with the information on the execution of the order. In this case, the Operator makes both voice calls and sends SMS/MMS messages.
8. Principles of data processing and protection
8.1. Personal data are processed by the Operator only for the purposes for which they were collected, are subject to proper protection and are provided to external companies only to the extent permitted by law.
8.2. The Operator is the Administrator of users’ personal data.
8.3. During all activities related to the processing of personal data, the Operator assures that personal data:
8.3.1. processed in accordance with the law, fairly and transparently for the data subject;
8.3.2. adequately, relevantly and limited to the amount necessary for the purposes of the processing;
8.3.3. all data are correct and up-to-date;
8.3.4. are stored for a period allowing identification of a person no longer than necessary for the purposes of the processing;
8.3.5. are processed in compliance with all security measures.
8.4. Personal data are processed by the Operator only for the following legally permitted purposes:
8.4.1. for a purpose consistent with the consent granted – subject to prior, separate and voluntary consent, in accordance with Article 6, paragraph 1, section b, of General data protection regulation – “GDPR”);
8.4.2. to perform a service for the User or fulfill a request at the request of a person interested in the Operator’s proposal, including answering questions, correspondence and handling complaints, in accordance with Article 6, paragraph 1, section b, of General data protection regulation – “GDPR”);
8.4.3. to perform legal obligations defined by legal norms, for example, tax and accounting, in accordance with Article 6, paragraph 1, section c, of General data protection regulations – “GDPR”);
8.4.4. to exercise the legitimate interests of the Administrator or third parties, to directly market the services of the Administrator or his business partners, or to conduct an investigation and protection against claims, in accordance with Article 6, paragraph 1, section f, of General data protection regulation – “GDPR”);
8.5. Recipients of personal data may be:
8.5.1. entities entrusted by the Operator with the processing of personal data, for example, entities providing accounting, legal, IT or marketing services at the request of the Operator, including personalization services for contact with the User;
8.5.2. entities and bodies authorized in accordance with the law;
8.5.3. other organizations, such as postal operators;
8.5.4. entities cooperating with the Operator, for example, operators of electronic payment systems or business partners.
8.6. The Operator will store personal data for the next period:
8.6.1. in case of data processing based on consent – until the withdrawal of consent, if there are no other grounds for the processing;
8.6.2. in case of data processing for providing the service – until the expiration of the deadline for filing a claim under the agreement;
8.6.3. in case of data processing based on the legitimate interest of the Administrator or third parties – until the termination of such interest (for example, restriction of claims) or until a legal prohibition on further processing is put forward.
8.7. The Operator grants all persons whose data are processed the right to:
8.7.1. access to their data and obtaining a copy thereof;
8.7.2. correction of their data;
8.7.3. data deletion, data processing restrictions;
8.7.4. objections to data processing;
8.7.5. data transfer;
8.7.6. filing a complaint to the supervisory authority about the Operator’s actions regarding data processing.
8.8. In relation to data processing based on consent, the Operator informs that the consent is completely voluntary each time, and regardless of the time of submission of such consent, there is always the right to withdraw it. The withdrawal of consent does not affect the legality of the processing that has been carried out so far.
8.9. The Operator informs that the processing of personal data does not provide for automated decision-making, including profiling of Users.
9.1. Cookies are used on the Operator’s websites.
9.2. Cookies are IT data, in the form of text files, which are stored on the User’s end device and are intended for use when working with the website. Cookies usually store your preferences on the website, language, place and time of stay, etc.
9.3. The Operator can download and receive information from cookies.
9.4. Cookies are used for the following purposes:
9.4.1 creation of statistics that helps to better understand the User’s behavior on the website, and improve the structure and its content;
9.4.2. maintaining a communication session (after logging in), thanks to which the User does not have to re-enter the login and password on each subpage of the Website;
9.5. Websites use two main types of cookies: session cookies and persistent cookies. Session cookies are temporary files that are stored on the User’s end device until you leave the website or disable the web browser. Persistent cookies are stored on the User’s end device for the time specified in the cookie settings or until they are deleted by the User.
9.6. Website browsing software (web browser) usually allows you to store cookies on the User’s end device by default. Users can change the settings on their own. The web browser allows you to delete cookies. You can also automatically block cookies. Detailed information on this issue is in the directory or documentation of the web browser.
9.8. Cookies placed on the User’s end device may also be used by advertisers and business partners cooperating with the Operator.
9.10. Cookies may be used by advertising networks, including the Google network, to display advertising that meets the User’s requests. For this purpose, information about your browsing history or time on a Webpage may be stored.
9.11. All user settings collected by the Google advertising network can be viewed and edited using the tool: https://www.google.com/ads/preferences/
9.13. To manage your cookie settings, read and follow the instructions provided for each web browser.
10. Final provisions
MEEST PAY – Instant Money Transfer Service!