Privacy Policy

How BriizPay collects, uses, and protects your personal information.

Last Updated: November 2025

At BriizPay, we are committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our payment processing services, website, and related services (collectively, the "Service").

Important: BriizPay services are currently only available to businesses operating within the United Kingdom. This Privacy Policy applies to UK-based users only.

1. Information We Collect

1.1 Information You Provide

We collect information that you provide directly to us, including:

  • Account Information: First name, last name, email address, phone number, business name, and contact details
  • Payment Information: Payment card details for subscription billing, bank account information for settlements, and billing address
  • Business Information: Business type, registration details, tax identification numbers, business address
  • Transaction Information: Details of payments processed through our Service, including amounts, timestamps, customer information (if provided), and payment methods used
  • Device Information: Information about devices registered to your account for payment processing (mobile devices, QR code sticker identifiers)
  • Referral Information: If you participate in our referral program, we collect referral codes and information about referred businesses
  • Communication Data: Records of your communications with our support team, feedback, and feature requests

1.2 Information We Collect Automatically

When you use our Service, we automatically collect certain information, including:

  • Device Information: Device type, operating system, browser type, and device identifiers
  • Usage Information: How you interact with our Service, pages visited, features used, and time spent
  • Location Information: General location data based on IP address
  • Log Data: Server logs, including IP addresses, access times, and error logs
  • Cookies and Tracking Technologies: Information collected through cookies, web beacons, and similar technologies

1.3 Information from Third Parties

We may receive information about you from third-party services, including:

  • Payment processors and financial institutions
  • Identity verification services
  • Credit bureaus and fraud prevention services
  • Business partners and service providers

2. How We Use Your Information

We use the information we collect to:

  • Provide and Improve Our Service: Process payments through mobile and sticker terminals, manage your account, generate payment links, send e-receipts, and enhance our Service
  • Verify Identity: Comply with UK legal and regulatory requirements, including anti-money laundering (AML) and know-your-customer (KYC) obligations
  • Process Transactions: Facilitate payment processing, manage unlimited transactions with 0% fees, and handle settlements
  • Manage Subscriptions: Process subscription payments for Starter (£24.99/month), Growth (£49.99/month), or Enterprise plans
  • Referral Program: Track and process referral rewards (up to £25 per referral) and apply referral discounts
  • Communicate with You: Send service-related notifications, transaction receipts, respond to inquiries, and provide customer support
  • Prevent Fraud: Detect and prevent fraudulent transactions and unauthorized access to protect both you and your customers
  • Comply with Legal Obligations: Meet UK legal, regulatory, and compliance requirements including PCI DSS standards
  • Marketing: Send promotional communications (with your consent) about new features, pricing updates, and referral opportunities
  • Analytics: Analyze usage patterns, transaction volumes, and feature usage to improve our Service and develop new features

3. How We Share Your Information

We may share your information in the following circumstances:

3.1 Service Providers

We share information with third-party service providers who perform services on our behalf, including:

  • Payment processors and financial institutions
  • Cloud hosting and data storage providers
  • Customer support and communication services
  • Analytics and marketing service providers
  • Fraud prevention and identity verification services

3.2 Legal Requirements

We may disclose your information if required by law or in response to:

  • Court orders, subpoenas, or legal processes
  • Government requests or regulatory inquiries
  • Enforcement of our Terms of Service
  • Protection of our rights, property, or safety, or that of our users

3.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity.

3.4 With Your Consent

We may share your information with third parties when you explicitly consent to such sharing.

4. Data Security

We implement appropriate technical and organizational measures to protect your information against unauthorized access, alteration, disclosure, or destruction. These measures include:

  • Encryption of data in transit and at rest
  • Secure authentication and access controls
  • Regular security assessments and updates
  • Employee training on data protection
  • Compliance with industry standards, including PCI DSS for payment card data

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

5. Your Rights and Choices

Depending on your location, you may have certain rights regarding your personal information:

5.1 Access and Portability

You have the right to access and receive a copy of your personal information.

5.2 Correction

You can update or correct your personal information through your account settings or by contacting us.

5.3 Deletion

You may request deletion of your personal information, subject to our legal and regulatory obligations to retain certain data.

5.4 Objection and Restriction

You may object to certain processing activities or request restriction of processing in certain circumstances.

5.5 Marketing Communications

You can opt-out of marketing communications by clicking the unsubscribe link in our emails or contacting us directly.

5.6 Cookies

You can control cookies through your browser settings. However, disabling cookies may affect the functionality of our Service.

6. Data Retention

We retain your personal information for as long as necessary to:

  • Provide our Service to you
  • Comply with legal, regulatory, and tax obligations
  • Resolve disputes and enforce our agreements
  • Prevent fraud and abuse

When we no longer need your information, we will securely delete or anonymize it in accordance with our data retention policies.

7. Data Processing Location

BriizPay services are only available to UK-based businesses. Your personal information is primarily processed and stored within the United Kingdom and the European Economic Area (EEA). We ensure that any data transfers comply with UK GDPR and EU GDPR requirements, maintaining appropriate safeguards to protect your information.

8. Children's Privacy

Our Service is not intended for individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have collected information from a child, we will take steps to delete such information.

9. Third-Party Links

Our Service may contain links to third-party websites or services. We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

  • Posting the new Privacy Policy on this page
  • Updating the "Last Updated" date
  • Sending you an email notification (for significant changes)

Your continued use of our Service after such changes constitutes acceptance of the updated Privacy Policy.

11. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

Email: privacy@briizpay.com
Website: https://briizpay.com
Data Protection Officer: dpo@briizpay.com

For general inquiries: support@briizpay.com

12. Your Rights Under GDPR (EU Users)

If you are located in the European Economic Area (EEA), you have additional rights under the General Data Protection Regulation (GDPR), including:

  • Right to access your personal data
  • Right to rectification
  • Right to erasure ("right to be forgotten")
  • Right to restrict processing
  • Right to data portability
  • Right to object to processing
  • Rights related to automated decision-making

To exercise these rights, please contact us using the information provided above.

13. California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA), including:

  • Right to know what personal information is collected
  • Right to know if personal information is sold or disclosed
  • Right to opt-out of the sale of personal information
  • Right to non-discrimination for exercising your privacy rights

We do not sell your personal information. To exercise your CCPA rights, please contact us using the information provided above.