Privacy Policy for MyPaymentSavvy.com

Last Updated: 2025

At MyPaymentSavvy.com ("we," "us," or "our"), we are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website, mypaymentsavvy.com (the "Website"), or use our services. By accessing or using our Website, you agree to the terms of this Privacy Policy. We strive to comply with applicable data protection laws, including the California Privacy Rights Act (CPRA) and the General Data Protection Regulation (GDPR).

1. Information We Collect

We may collect the following types of information:

1. Personal Information

• Contact Information: Name, email address, phone number, or mailing address provided when you fill out forms, create an account, or contact us.
• Payment Information: Billing details, such as credit card numbers or bank account information, processed securely through our third-party payment processors.
• Account Information: Username, password, and other details provided during account creation or management.

1. Non-Personal Information

• Usage Data: Information about how you interact with our Website, such as pages visited, time spent, and click patterns.
• Device Information: IP address, browser type, operating system, and device identifiers.
• Cookies and Tracking Technologies: Data collected via cookies, web beacons, or similar technologies to enhance user experience and analyze Website performance.

2. How We Use Your Information

We use the information we collect to:

• Provide, operate, and maintain our Website and services.
• Process payments and manage your account.
• Respond to inquiries, provide customer support, and communicate with you about updates or promotions (with your consent where required).
• Analyze Website usage to improve functionality, content, and user experience.
• Comply with legal obligations, including those under CPRA and GDPR, and protect against fraudulent or unauthorized activity.

3. Legal Basis for Processing (GDPR)

For users in the European Economic Area (EEA) or other regions covered by GDPR, we process your personal information based on the following legal bases:

• Consent: Where you have given explicit consent, such as for marketing communications or certain cookies.
• Contractual Necessity: To fulfill our obligations under a contract with you, such as processing payments or providing services.
• Legitimate Interests: For purposes such as improving our Website, preventing fraud, or ensuring security, where our interests do not override your rights.
• Legal Obligation: To comply with applicable laws or regulations.

4. How We Share Your Information

We do not sell, trade, or rent your personal information to third parties, except as described below:

• Service Providers: With trusted third-party vendors (e.g., payment processors, hosting providers, or analytics services) who assist us in operating the Website and delivering services. These providers are contractually obligated to protect your data and comply with CPRA and GDPR where applicable.
• Legal Requirements: When required by law, such as to comply with a subpoena, court order, or other legal process, including obligations under CPRA or GDPR.
• Business Transfers: In connection with a merger, acquisition, or sale of assets, where your information may be transferred as part of the transaction, with safeguards to ensure continued compliance with CPRA and GDPR.
• With Your Consent: When you explicitly agree to share your information.

Under CPRA, we do not "sell" or "share" your personal information for cross-context behavioral advertising, as defined by the law, unless explicitly disclosed and with your consent.

5. Cookies and Tracking Technologies

We use cookies and similar technologies to:

• Remember your preferences and login information.
• Track Website usage and performance.
• Deliver personalized content and advertisements (with your consent where required under GDPR).

For California residents under CPRA, you have the right to opt out of the sharing of personal information for targeted advertising. For EEA users under GDPR, we obtain your consent for non-essential cookies in accordance with applicable laws. You can manage cookie preferences through your browser settings or our cookie consent tool. Disabling cookies may affect the functionality of certain Website features.

6. Data Security

We implement reasonable technical and organizational measures to protect your personal information from unauthorized access, loss, or misuse, in compliance with CPRA and GDPR requirements. These include encryption, secure servers, and access controls. However, no method of transmission over the internet or electronic storage is completely secure, and we cannot guarantee absolute security.

7. Your Rights Under CPRA and GDPR
8. California Privacy Rights Act (CPRA)

If you are a California resident, you have the following rights under CPRA:

• Right to Know: Request access to the categories and specific pieces of personal information we have collected about you, including how it is used and shared.
• Right to Delete: Request deletion of your personal information, subject to certain exceptions.
• Right to Correct: Request correction of inaccurate personal information.
• Right to Opt-Out: Opt out of the sale or sharing of your personal information for targeted advertising.
• Right to Limit: Limit the use or disclosure of sensitive personal information.
• Right to Non-Discrimination: We will not discriminate against you for exercising your CPRA rights.

1. General Data Protection Regulation (GDPR)

If you are in the EEA or another region covered by GDPR, you have the following rights:

• Access: Request access to the personal information we hold about you.
• Rectification: Request correction of inaccurate or incomplete information.
• Erasure: Request deletion of your personal information, subject to legal obligations.
• Restriction: Request restriction of processing under certain circumstances.
• Data Portability: Request a copy of your personal information in a structured, commonly used, and machine-readable format.
• Objection: Object to processing based on legitimate interests, including for direct marketing.
• Withdraw Consent: Withdraw consent at any time where we rely on it for processing, without affecting the lawfulness of prior processing.

To exercise your CPRA or GDPR rights, please contact us at [insert contact email, e.g., [email protected]]. We will respond within the timeframes required by law (e.g., 45 days for CPRA requests, 30 days for GDPR requests).

8. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, comply with legal obligations, or resolve disputes. For GDPR compliance, we periodically review data retention practices to ensure they align with data minimization principles. For CPRA, we ensure sensitive personal information is not retained beyond what is necessary for the disclosed purpose.

9. Third-Party Links

Our Website may contain links to third-party websites or services. We are not responsible for their privacy practices or content. We encourage you to review their privacy policies, especially to understand their compliance with CPRA and GDPR, before providing any personal information.

10. Children's Privacy

Our Website is not intended for individuals under the age of 16. We do not knowingly collect personal information from children under 16, in compliance with CPRA and GDPR. If we learn that we have collected such information, we will take steps to delete it promptly.

11. International Data Transfers

If you are accessing our Website from outside the United States, your information may be transferred to, stored, and processed in the United States, where our servers are located. For EEA users under GDPR, we ensure that any international data transfers comply with GDPR requirements, such as using Standard Contractual Clauses or other approved mechanisms to safeguard your data.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements, including CPRA and GDPR obligations. We will notify you of significant changes by posting the updated policy on our Website with a revised "Last Updated" date and, where required, by obtaining your consent or providing additional notice.

13. Contact Us

If you have questions or concerns about this Privacy Policy, our data practices, or your rights under CPRA or GDPR, please contact us at:

Email: [email protected]]
Mailing Address: 5760 Legacy Drive Suite B3-341, Plano TX 75024
Phone: 866-303-2558

For GDPR-related inquiries, you may also contact our Data Protection Officer at the above email address.

By using MyPaymentSavvy.com, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy.