Privacy Policy
This Privacy Policy is intended to explain how GlobalPay (hereinafter referred to as "we") collects,
uses, stores, and protects your personal information. It applies to all services you use through the
GlobalPay website and mobile applications (if any). By using our services, you are deemed to agree to
all provisions of this Policy.
1. Scope of Information Collection
We only collect information necessary to provide payment services, including but not limited to:
- Personal Identification Information: Name, email address, mobile phone number, and identification documents (e.g., passport, driver's license) provided during account registration, which are used for identity verification and compliance with customs clearance requirements;
- Payment-Related Information: Bound credit card details (Visa/Mastercard number, expiration date, CVV/CVC code; we do not store full card numbers, only tokenized data), billing address, and transaction records (order number, amount, payment time, currency);
- Device and Usage Information: Device model, IP address, browser type, and operation logs when you access our services, which are used to identify abnormal logins, optimize service experience, and ensure account security.
2. Rules for Information Usage
Collected information is only used for the following purposes and will not exceed the necessary scope:
- Providing Payment Services: Verifying your identity to complete account registration, processing payment orders, initiating refunds, and assisting in resolving transaction disputes;
- Ensuring Account Security: Identifying abnormal logins or fraudulent transactions through device information and operation logs, and triggering real-time risk control measures (e.g., temporary account lock, two-factor verification);
- Optimizing Service Experience: Analyzing user payment habits to simplify operation processes (e.g., saving frequently used payment methods) and sending service updates relevant to your needs (e.g., fee discounts, new feature launches);
- Compliance with Regulatory Requirements: Submitting necessary transaction records and identification information to regulatory authorities in accordance with global anti-money laundering (AML), counter-terrorist financing (CFT), and other regulations, and cooperating with compliance investigations.
3. Information Protection Measures
We adopt multi-layered technical and management measures to protect the security of your information:
- Technical Protection: Personal information and payment data are transmitted using 256-bit SSL encryption. Sensitive payment data is stored using tokenization technology to prevent unauthorized access or tampering;
- Access Control: We strictly restrict internal personnel's access to information. Only authorized personnel in necessary positions can operate within compliance boundaries, and all access activities are logged (retained for at least 1 year);
- Third-Party Constraints: If we need to entrust third parties (e.g., payment institutions, logistics service providers) to process information, we will sign confidentiality agreements with them, requiring compliance with the same security standards, and only provide information necessary to complete the service;
- User-Led Management: You can view and modify your personal information (e.g., updating mobile phone number, unbinding credit cards) at any time through the "Security Center" in your account. You may also apply for account cancellation (after cancellation, we will delete or anonymize your information within 15 working days, except as required by laws and regulations).
4. Information Sharing and Transfer
We will not share your personal information with any third parties except in the following cases:
- Obtaining your explicit written authorization (e.g., authorizing corporate administrators to view account transaction records);
- Complying with laws and regulations or responding to legitimate requests from government regulatory authorities (e.g., court subpoenas, tax investigations);
- Protecting the legitimate rights and interests of GlobalPay, you, or other users (e.g., addressing fraudulent transactions, handling account security incidents);
- In the event of corporate merger, acquisition, or bankruptcy liquidation, information may be transferred along with assets, but the transferee must continue to comply with this Privacy Policy.
5. Policy Updates and Contact
We may revise this Privacy Policy in accordance with changes in laws and regulations or service adjustments. The revised Policy will be published in the "Help Center" of the website and will take effect 7 natural days after publication. If you have questions about this Privacy Policy, you may contact our Privacy Protection Officer via the official email: service@payworldcard.com.