Privacy Policy

In order to show our firm position to conduct the business according to world standards, we have updated our Data Protection Policy in accordance with the new General Data Protection Regulation (GDPR) which entered into force on May 25, 2018. We believe that the correct business relationship is built only on the basis of honesty and trust. Therefore, the confidentiality of Your information is extremely important for us. We take all measures to ensure the safety of your data.

Data Protection Policy

This Policy contains provisions applicable to this website www.elpaso.co.uk The controller and the processor of the personal data of the users on the website www.elpaso.co.uk is the company ELECTRONIC PAYMENT SOLUTIONS LTD registered in England and Wales (Company number 11070048) and is having its registered address at Office 526, Mocatta House, Trafalgar Place, Brighton, United Kingdom, BN1 4DU (hereinafter referred to as the "Company" or "We"). Personal data subjects are visitors of this website and/ or persons who use the functionality of this website (hereinafter referred to as "Users" or "You"). «The Company» and «the User» are together referred to as «Parties», and «the Party» when being mentioned separately. This Policy explains how we use and protect any personal data we collect about this website`s users.

We comply with the principles established by the General Data Protection Regulation (Regulation (EU) 2016/679), namely, personal data:

  1. are processed legally, honestly and "transparently" by us;
  2. are collected for certain, explicit and legitimate purposes and are not processed further in a way that is incompatible with these purposes ("purposes limitation");
  3. are adequate, appropriate and limited to what is necessary for the purposes for which they are processed ("data minimization");
  4. are accurate and, if necessary, updated; every reasonable step should be taken to ensure that personal data which were inaccurate, taking into account the purposes for which they were processed, were erased or corrected without delay ("accuracy");
  5. are stored in a form that allows identification of users no longer than it is necessary for the purposes for which personal data are processed; ("limitation of storage");
  6. are processed in a way that provides proper protection of personal data, including protection from unauthorized or illegal processing, as well as from accidental loss, destruction or damage using appropriate technical or organizational measures ("integrity and confidentiality").

Collection of Personal Data

Personal data refers to data about an individual who can be identified from either that particular data or from that data and other information that the Company has or is likely to have access to. Such personal data shall also refer to the data which is already in the Company’s possession or the data to be collected by the Company. This Privacy Policy supplements but does not supersede nor replace any other consent that the Client may have previously provided to the Company, nor does it affect any right that the Company may have at law in connection with the collection, use, disclosure and/or retention of the Client’s personal data.

The Company only collects personal data which is knowingly and specifically supplied to it by the Client for the purpose as specified prior to the supply by the Client, that is necessary to provide the Services or that is necessary for compliance with a legal obligation. Without limitation, this can occur during or before the Client:

 

  • sets up an Account;
  • uses our Services;
  • provides any feedback or complaints with regard to the Services through the Website;
  • uploads or submits any material through the Website; and/or participates in any marketing activity held by the Company.

Commonly collected personal data may include the following:

  • the Client’s name, email and postal addresses, telephone number, country of residence, nationality, age, gender, date of birth, copy of passport, business information, bank account information and other payment information;
  • details of any transaction the Client makes using the Services;
  • and/or details of any correspondence, queries, or any other forms of communication (i.e. telephone, email etc.) the Client makes with the Company regarding the Services.

 

In addition to personal data provided to the Company, certain information related to the Client that is not considered personal data may also be collected. The Company collects this information to improve its Website and Services. Such non-personal data may include information such as details of the Client’s operating system, domain name, IP address, the internet browser used, details of the Client’s interaction with the Website and the details of any website the Client has linked from to the Website.

Use of Cookies

The Services and Website may use data collection devices such as “cookies” and other technologies such as pixel tags and web beacons to personalize a Client’s online experience.

Use of Personal Data

The Company collects personal data from existing and prospective clients and employees for various reasons. Any personal data will not be further processed in a manner that is incompatible with the purpose as stated before processing, for the performance of the Services, or to comply with a legal obligation. Without limitation, these purposes can include:

  • confirming the Client’s identity during the creation of his/its Account and to ensure the Client’s eligibility to use the Services provided;
  • communicating with you and responding to your queries;
  • improving the Services and the Client’s experience on the Website;
  • providing you with information and updates on selected products and services that the Company thinks may be of interest to you;
  • administering and processing credit transactions in connection with the Client’s use of the Services;
  • analyzing the effectiveness of our advertisements and promotions;
  • customising the Client’s Website experience, as well as evaluating statistics on Website activity, such as what time you visited it, whether you have visited it before and what website referred you to it;
  • conducting required anti-money laundering checks;
  • notifying you of any changes to the Services that may be relevant to you;
  • conducting surveys, research and statistical analysis with the aim of helping the Company monitor and improve the Services;
  • supplying the Client with information that is relevant to the Client’s existing relationship with the Company; and/or
  • any other purposes as permitted by applicable laws.

Where the Company collects personal data for a specific purpose, the Company will not keep it for longer than is necessary to fulfil that purpose, unless we have to keep it for legitimate business or legal reasons.

 

We are allowed to process your personal data on the following lawful grounds:

 

  • as necessary to perform our contract with you for our Services;
  • in order to comply with our legal obligations;
  • as necessary for our legitimate interests. This means we have good, sensible, practical reasons for processing your data in the interests of the Company. To do so, we have considered the impact on your interests and rights, and have in place appropriate safeguards to protect them.

Sharing your personal data

The Company takes securing your personal data and preserving your privacy very seriously. The Company will not offer, publish or share your personal data with third parties, without seeking the Client’s explicit permission, unless the Company expressly states otherwise elsewhere in this Privacy Policy, the Terms or the agreement between the Company and the Client, or the Company is obliged by law. The Company will never sell your data.

 

If agreed upon, or based on law, the Company may process, use and disclose your personal information with third parties. Such third parties may be based abroad and may include but are not limited to the following:

 

  • third parties providing regulated financial services where we provide related administration services and customer services, such as Currencycloud;
  • regulatory authorities and enforcement agencies;
  • any court of law or any relevant party in connection with any claim or legal proceeding;
  • contractors, service providers, consultants, auditors and advisors on a need to know basis;
  • advertising, marketing and promotional agencies to help us deliver and analyze the effectiveness of our advertising campaigns and promotions;
  • our subsidiaries, parent company or related companies;
  • professional service providers;
  • third parties required to process the Services for you or otherwise provide any Services to you;
  • web analytics tool providers, such as Google.

 

We may share your personal data for the following reasons:

  • reasons provided under ‘using your personal data’;
  • to enforce any provision of the Terms and/or Agreement;
  • to protect the rights or property of any member of the Company (including but not limited to any intellectual property rights);
  • to conduct investigations in respect of any possible breach of applicable laws (only if legally obliged); and/or
  • to comply with a court order or other legal or regulatory requirements in the jurisdictions we operate (only if legally obliged).

In situations where a third party under contract with the Company collects and/or receives personal data about you, the Company will require the third party to act according to laws regarding personal data and to exercise reasonable care in protecting your information.

You are responsible for providing accurate and complete information about yourself and any other person whose personal information you provide us, and to notify us (either by the Website or by letter) if there are any changes to your personal information.

Complaints 

Should you have a complaint, please send an e-mail to complaints@elpaso.co.uk. Please clearly state that you are submitting a complaint, to assure the soonest resolution and best support possible.

An employee of ELPASO will confirm receipt of a complaint via email within 24 hours of receiving it and will aim to resolve the complaint within three business days.

On occasion, a complaint may need to be escalated and so we may extend the timeline to resolve the complaint by the end of 15 business days following receipt of the complaint.

In exceptional circumstances, where we are unable to issue a final response within 15 business days of receipt of the complaint, we have up to a maximum 35 business days from the date of receipt to issue a final response.

If you would like to alarm us about your suspicion of fraud attempt against your account access or funds, or any other reason to believe that your complaint is of extreme urgency and requires immediate attention, please give us an urgent call at +44 1273 004 434.

If our resolution of your complaint has not been satisfactory to you, you have a right to involve Financial Ombudsman Service.

Security

The Company endeavors to take all reasonable steps to protect your personal data and to store it securely. However, no method of transmission over the Internet or method of electronic storage is 100% secure. While security cannot be guaranteed, the Company strives to protect your personal data and are constantly reviewing and enhancing our security protocols to ensure that your personal data is not subject to unnecessary risks. In using the Services, you accept the inherent security implications of engaging in transactions online over the internet and you agree that you will not hold the Company responsible for any breach of security unless we have been grossly negligent or in willful default.

Amendments to Personal Data / opt-out

 

If you wish to access, correct (including update) and remove the personal data held by the Company or you do not want your personal data to be shared according to this Privacy Policy, you may contact us as follows:

 

by e-mail to: support@elpaso.co.uk

 

or by postal mail to:

The Data Protection Officer

ELECTRONIC PAYMENT SOLUTIONS LTD

Office 526,

Mocatta House,

Trafalgar Place,

BN1 4DU Brighton,

United Kingdom

You may also decline to receive e-mails by clicking on ‘unsubscribe’ in any marketing e-mail you receive.

Rights to amend this Privacy Policy

 

The Company reserves the right to update this Privacy Policy at any time to take into account any changes in law or for any other reason. If we update this Privacy Policy, we will post a new version on the Website. We will also post a notice of the changes on our Website or notify you by email (sent to the email address specified in your Account). We encourage you to periodically review this page for the latest information on our privacy practices.

 

Your continued use of the Website and Services after any changes to this Privacy Policy constitutes your consent to any such changes, to the extent such consent is not otherwise provided. If there is a conflict between two versions of the Privacy Policy to which you have agreed or been deemed to agree, the more recent version shall take precedence unless it is expressly stated otherwise.

Policy concerning Children

ELPASO does not provide services to anyone under the age of 18.

Governing law and Jurisdiction

This Privacy Policy shall be governed by and construed in accordance with the laws of the United Kingdom.

Contact us

If you wish to communicate with us about anything related to this Privacy Policy, you may contact us by email at support@elpaso.co.uk