The company NEXI CENTRAL EUROPE (“NEXI CENTRALE EUROPE”) with registered office at Röntgenova 1, Bratislava – Petržalka 851 01, ID no. 31 372 074 (hereinafter, “Company”, “we” and “our”), undertakes to protect the user’s privacy.
We have implemented policies and procedures to ensure that we take all appropriate steps to protect your data in what we do.
We are PCI DSS certified (Payment Card Industry Data Security Standard) entity, following a set of controls for keeping cardholder data secure, supported by a regulatory framework that is a requirement for the Company to operate as a card payment processor.
The Company is in the clear majority acting as a Data Processor and upon instruction in written agreement with our customers (namely banks and financial institutions) who act as data controllers.
As a payment transaction processor, we receive your limited personal data in connection with your payment transactions, such as your account number, the name and location of the merchant, the date and total amount of the transaction to execute your payment transactions (including authorization, settlement, chargebacks and other related dispute resolution activities).
Acting as data processor, the controllers are responsible for providing the privacy notice and legal basis for the processing of your personal data. For more information about the processing of your personal data in these contexts, please see their respective privacy policies.
For some situation we act as Data Controller. Please read the privacy notices applicable for those cases.
Individual Rights Requests should be referred to following email address: CE_DPO@nexigroup.com
When the Company acts as a Controller, we can provide information to you as a data subject about your rights in accordance with the GDPR. When the Company acts as a Processor, we are processing your personal data on behalf of our customer(s). If you have used your card which was issued to you by one of our clients (financial institutions), please direct your query to the relevant card issuing bank with whom you do have a contractual relationship.