1. Acceptance of Policy

By visiting the Website and/or utilizing any Services offered by the Company, you agree to and accept our terms of use governing your use of the Website and/or utilizing any Services offered by the Company. As a user of the Website and/or the Services, your access to or use of the Website and Services offered by the company is conditional upon your acceptance of and continued compliance with this Policy. By using the Website and/or the Services, you agree to be bound by this Policy and all rules, guidelines and/or policies of the Company, as may be modified by us from time to time, unconditionally and at all times, and further agree and confirm that you consent to providing the company with your Personal Information for the purpose set out in this Policy and you understand that such collection, storage and handling is lawful, necessary and permissible under the applicable laws.

2. Our Services

When we use the term Services, we are referring to only the services we offer in relation to payment aggregation. This privacy policy does not cover or address:

• personal information collected, used, disclosed or otherwise processed by our merchants who may use services to process personal information
• personal information and privacy practices of third-party websites and online services
• personal information and privacy practices relating to job applicants, employees and other personnel

3. Our Collection of Personal Information

When we use the term “Personal Information” in this privacy policy, we mean information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, to you. It does not include aggregated or deidentified information that is maintained in a form that is not reasonably capable of being associated with or linked to you. Personal Information may include:

1. Contact Information (such as Your Name, phone number, email address);
2. Transaction Data (payment method information, last four digits of the debit/credit card number)
3. Mobile and device unique identifiers
4. Geo-location data
5. IP address, browser type, operating system
6. Other information such as tracking behaviour, cookie preferences, language preferences, etc.
7. Financial information such as bank account, credit or debit card number, CVV or other payment instrument details which are encrypted in accordance with PCI DSS standard.
8. Unique identifiers like transaction id, customer id etc.

4. Customer Data

Data protection laws sometimes differentiate between “controllers” and “processors” of Personal Information. A “controller” determines the purposes and means (or the why and the how) of processing personal information. A “processor”, which is sometimes referred to as a “service provider,” processes personal information on behalf of a controller subject to contractual restrictions.

Our merchants rely on our Services to help them manage and process data, which may include personal information. We refer to this type of data and personal information as “Customer Data.” When we process Customer Data, we generally act as a processor. This means we process Customer Data on behalf of our merchants subject to restrictions set forth in our contracts with them.

This privacy policy does not cover or address how we or our merchant process Customer Data. In addition, we might not be permitted to respond to individual data subject requests relating to Customer Data. As a result, we recommend referring to the privacy policy of the merchant with which you have a relationship for information on how they engage processors, like us, to process Customer Data on their behalf.

5. Our Use of Personal Information

We use Personal Information to:

• Process payment transactions (including authorization, processing refunds and dispute resolution processes). For example, when you choose to use a payment method for the transaction (e.g. credit card, debit card, buy now pay later, UPI), we will receive the transaction data (name, transaction ID, customer ID, payment instrument, unique identifiers, etc.) that includes your Personal Information. Please review your payment method’s privacy policy to learn more about how they use and share this information.
• Generation of invoices, transaction confirmation notices, access keys, product download files and associated documentation relating to transactions, refunds and dispute records etc.
• Communicate with you, respond to inquiries and send service notices, issue notices about functions and services you are registered to use including significant developments about the services.
• When the Company acts as payment service provider, we may need to share relevant customer information with the specific merchants involved in the transaction in order for them to fulfill the transaction. The merchant you choose to do business with will also receive transaction data that includes your Personal Information and the merchant may share that Personal Information with others. Please review your merchant’s privacy policy to learn more.
• Check applications for use of Company Services, information for merchant onboarding, protect against and prevent customer and transaction fraud, investigating potentially prohibited or illegal activities, unauthorized transactions, claims, manage risk exposure, conduct periodic risk reviews.
• Evaluate business, product development, improve services, run billing, invoicing and account reconciliation functions.
• Compliance with legislation, regulations, legal requirements and law enforcement measures, orders from judicial and governmental authorities, enforcement and defense of contractual and legal rights and claims.
• Perform data analysis and generation of aggregated data reports based on anonymized information for benefit of Company, merchants, regulators, auditing practices, conducting business intelligence.
• Compliance with internal policies, card industry and payment scheme requirements
• Payment Card Industry (PCI) assessment and validation
• Consensual storage of payment information for subsequent or recurring transactions.
• Provide information to regulators, card networks, investors and professional advisers.

We do not sell your Personal Information, nor do we intend to do so.

6. Disclosure of Personal Information to Third Partiess

Company does not sell or otherwise disclose Personal Information we collect about you except as disclosed in this Privacy Policy or as may be disclosed to you at the time information is collected.

Company may share Personal Information collected with entities that process payment transactions as well as relevant merchants, fraud prevention services, card and payment services, and payment processors/acquirers.

Company may share certain information with service providers who provide or perform services on behalf of Company. We authorize such service providers to use or disclose such information only as necessary to perform services on our behalf or to comply with legal requirements. Such entities are required by contract and/or law to safeguard the privacy and security of Personal Information processed on our behalf. We may also share Personal Information with other parties with your express consent.

We may process data, including Personal Information in India, to operate and manage this Service. When you access or use our website or the Service, or otherwise provide information to us, you are consenting, on behalf of yourself and your authorized representatives or end-users, to the processing and transfer of information in and to India which may have different privacy laws from your country of residence. We will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Policy.

We reserve the right to disclose your Personal Information as required by applicable law and when we believe that disclosure is necessary to protect our rights and/or to comply with a judicial proceeding, court order, or other legal process served on us.

Your Personal Information may also be shared between Company subsidiaries/affiliates for the activities permitted under this Policy.

In the event that Company enters into a transaction that alters the structure of our business, such as reorganization, merger, sale, transfer, change of control, or other disposition of all or any portion of our business, we shall transfer, share, assign data including Personal Information that we access, process, collect, store, use or otherwise deal with, to the relevant entity. Such entity(ies) shall ensure that there is no adverse material change in the manner of managing, accessing, storing or handling the data and shall implement adequate measures to protect the confidentiality and security of the information, in accordance with applicable law.

7. Privacy Rights

Privacy rights may be available to you based on where you are located. We will respond to requests we receive from individuals wishing to exercise their privacy rights in accordance with applicable privacy laws. We may deny certain requests, or fulfil a request only in part, based on our legal rights and obligations. You will not be discriminated against for exercising your privacy rights. We will not deny you any products or services, nor charge you different prices, in retaliation for exercising your privacy rights.

Eligible individuals can request to exercise the below-described privacy rights by sending an email to privacy@hyperpg.in

8. Retention Period

We retain Personal Information for as long as we have an ongoing legitimate business need to do so. The criteria we use to determine whether we have an ongoing legitimate business need to retain Personal Information include among others: (i) regulatory requirements that we are subject to, including laws and regulations related to tax, employment, accounting, etc. (ii) whether a legal claim might be brought against us, for which the Personal Information would be relevant, (iii) the necessity of the Personal Information to provide our services and (iv) the types and sensitivity of Personal Information being processed.

When we have no ongoing legitimate business need to process your Personal Information, we will either delete or anonymize it.

9. Children’s Personal Information

Our Website and Services are not directed to, and we do not intend to, or knowingly, collect or solicit Personal Information from children under the age of 18. If you are under the age of 18, please do not use our Website or Service or otherwise provide us with any Personal Information either directly or by other means. If a child under the age of 18 has provided Personal Information to us, we encourage the child’s parent or guardian to contact us to request that we remove the Personal Information from our systems. If we learn that any Personal Information we collect has been provided by a child under the age of 18, we will promptly delete that Personal Information.

10. Third-Party Websites

Our Website and Service may include links to third-party websites, plug-ins and applications. Except where we post, link to or expressly adopt or refer to this privacy policy, this privacy policy does not apply to, and we are not responsible for, any personal information practices of third-party websites and online services or the practices of other third parties. To learn about the personal information practices of third parties, please visit their respective privacy policies.

11. Protection of Personal Information

We are aware of the importance of the data we collect from the Website and therefore we use advanced technology to protect such information. We take reasonable precautions to protect such information from loss, misuse and unauthorised access, disclosure, alteration and destruction.

We will strive to do our best to protect your data. Your privacy is of utmost importance to us. If you have questions about our security you can contact us at privacy@hyperpg.in.

12. Updates to This privacy policy

We may update this privacy policy from time to time. Company reserves the right to change, modify, add, or remove portions of this privacy policy at any time for any reason. Such changes shall be effective immediately upon posting. We suggest that you review this policy periodically for changes. The current version of this Notice can be accessed from the link on our website pages. You acknowledge that, by accessing our website after we have posted changes to this Notice, you are agreeing to the terms of the privacy policy as modified.

13. Grievance

You may address any complaints or discrepancies in relation to the processing of Your Personal Information to the grievance officer, mentioned herein below.

Contact Us

If you have any questions or requests in connection with this privacy policy or other privacy-related matters, please send an email to privacy@hyperpg.in. Alternatively, inquiries may be addressed to: