Who is PFS?
Prepaid Financial Services Limited (PFS) is a fast-growing technology company and e-money payments institution with offices in the UK, Malta and Ireland. PFS is authorised and regulated by the Financial Conduct Authority in the UK, as an electronic money institution, under reference number 900036. We provide own label and white label e-money financial solutions, including e-wallets, prepaid cards, and current accounts. PFS provides complete end to end solutions for clients by designing, developing, implementing, and managing these programmes.
It is important that you know exactly what we do with the personal information you and others make available to us, why we collect it and what it means for you. This document outlines the PFS approach to Data Privacy to fulfil our obligations under the EU General Data Protection Regulation (GDPR) 2018, as implemented on the 25th of May 2018. We were delighted to welcome the advent of GDPR, as it provided PFS with a further an opportunity to reassure our customers of the importance we place on keeping your personal data secure, and of the strict guidelines we apply to its use.
The personal data we would like to collect from you is:
The personal data we collect will be used for the following purposes:
Our legal basis for processing the personal data:
Any legitimate interests pursued by us, or third parties we use, are as follows:
By consenting to this privacy notice you are giving us permission to process your personal data specifically for the purposes identified above. Consent is required for PFS to process personal data, but it must be explicitly given. Where we are asking you for sensitive personal data, we will always tell you why and how the information will be used.
Consent for Children Under 16
If you are giving consent on behalf of a child under sixteen (16) years of age then please be aware that Children need specific protection with regard to their personal data, as they may be less aware of the risks, consequences and safeguards concerned, and also of their rights in relation to the processing of personal data for the purposes of using these services. By consenting to this privacy notice, on behalf of a minor, you are giving permission for their data to be used for the purposes described above.
Withdrawal of Consent Conditions
You may withdraw consent from direct marketing at any time by contacting our Data Protection Officer. Please note, where you have consented to your data being used for carrying out financial transactions, then the right to withdraw consent does not exist. As a payment service provider, PFS are obliged to retain data concerning financial transactions for 6 years in accordance with national law for the purpose of preventing, detecting and investigating, possible money laundering or terrorist financing.
International Data Transfers & Third-Party Disclosures
In limited situations where PFS stores or transfers personal information outside the EEA or the EU, robust procedures and safeguarding measures apply to secure, encrypt and maintain the integrity of the data. PFS will complete continual reviews of the countries with sufficient adequacy decisions, such as the Privacy Shield in the US, and provisions for binding corporate rules, standard data protection clauses or approved codes of conduct. PFS will further perform due diligence checks with all recipients of personal data to assess and verify that they have appropriate safeguards in place to protect the information. PFS undertakes that it shall not transfer Personal Data outside of the EEA or the EU in full compliance with Article 46 of the GDPR, and shall not transfer data outside of the EEA or EU unless the following conditions are fulfilled:
Where PFS is required to transfer Personal Data to the United States of America, PFS shall only send such Personal Data to third-party sub-contractors that meet the minimum requirements contained under the Privacy Shield, or in the standard contractual clauses for the transfer of personal data to processors established in third countries under Directive 95/46/EC of the European Parliament.
In the event that the Privacy Shield is repealed at any future date, for whatever reason, PFS shall only contract with third-party sub-contractors that satisfy the requirements contained in the standard contractual clauses for the transfer of personal data to processors established in third countries under Directive 95/46/EC of the European Parliament and of the Customer.
PFS will process personal data for the duration of the contract for services and will store the personal data for six (6) years after that date of termination of the contract.
Your Rights as a Data Subject
At any point while we are in possession of or processing your personal data, you, the data subject, have the following rights:
All of the above requests will be forwarded on should there be a third party involved in the processing of your personal data. You will find a copy of our Subject Access Request Form here: Choose your favourite Text editor:
In the event that you wish to make a complaint about how your personal data is being processed by PFS (or third parties as above), or how your complaint has been handled, you have the right to lodge a complaint directly with the supervisory authority and PFS’s Data Protection Officer by email to [email protected]