Mastercard Data Processing Agreement

To the extent that you have consented to the processing of personal data for specific purposes, this treatment is lawful on the basis of your consent. The consent given may be revoked in writing at any time. Sometimes we use third-party services to improve the user experience and our online advertising campaigns. To enable these third parties to provide their services, we can integrate their plug-ins and components. These components may also use cookies for similar purposes. Neither these third parties nor Swisscard have access to the data collected by the relevant counterparty using cookies. The purpose of processing cardholder data is to provide acquisition services to the merchant and its customers who pay for products/services on the distributor`s website. These third parties may collect anonymized information about your use of our websites and external sites and provide us with this anonymized data, including, but not only on geographic data, your user behavior on a website or the names of websites that have been shown to you. All concerned have the right to access personal data under Section 8 of the Desase Act (FADP) and to correct the erroneous data in accordance with Article 5 of the FADP.

The revocation of consent has no influence on the processing of the data made until the revocation of consent. We process personal data in accordance with Swiss data protection laws: to determine the weather, it can be difficult to determine according to weather conditions, especially in the area of card acquisition. When a data processor determines the purposes and means of each processing activity in violation of the RGPD, that subcontractor is considered a responsible controller for this processing activity. Organizations must be careful in this provision. In principle, whenever they process personal data in their acquisition activity, they can be qualified as responsible for processing and are therefore subject to the total compliance obligations of a person responsible for processing this processing during the acquisition activity. Treatment objectives related to these obligations include, depending on the product/service, credit quality checks, identity and age checks, the prevention of fraud and money laundering, the enforcement of tax controls and reporting obligations, as well as archiving obligations. What is the purchaser`s role in the RGPD? If it acts as a data processor on behalf of the distributor or responsible for data (with respect to the processing of the cardholder`s personal data), or is there a common relationship depending on the type of data to be processed? A person responsible for processing, in accordance with EU data protection legislation, all personal data collected by the member and/or the visas of cardholders and traders holding visas and its subcontractors as data processors.