Privacy Statement Policy
Payment International Enterprise BSC CLOSED (PIE), a company incorporated in the Kingdom of Bahrain under Commercial Registraiton Number 89364-1 which is a licensed and regulated as an ancillary service provider – payment service provider by the Central Bank of Bahrain; having its registered office at Al Saffar House, Al Seef, Bahrain – P.O.Box 3140
PIE is the Data Manager & Data Processor of Personal Data collected in the Kingdom of Bahrain through its channels – mainly self service machine (kiosk)
1. Purpose of this Statement
PIE respects your privacy and is committed to maintaining the confidentiality and security of the Personal Data of its existing, prospective and former customers defined as “Data Owners”. This Privacy Statement informs you about how we process Personal Data, how we look after it and explains about your rights with respect to your Personal Data. PIE encourages you to review this Privacy Statement and become familiar with it.
2. Personal Data processed by PIE
2.1 Determine the meaning of Personal Data:
Personal Data is known as any information referring to an identified or identifiable natural person (referred to as data owner). An identifiable natural person is one who can be identified, directly or indirectly such as a name, an identification number, location data, an online identifier or to one more factor specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
PIE collects Personal Data from Data Owners mainly via its channel. For more information on these sources of Personal Data, please refer to the sections below.
Where PIE needs to collect Personal Data by law or under the terms of a contract we have with you, and if you fail to provide that Personal Data, PIE may not be able to fulfil the required service upon which the cancellation may take place.
2.2 Personal Data collected by PIE:
To provide the services requested by our customers, PIE collects the following Personal Data through its channels:
2.2.1 Information Collected Automatically:
- Information we collect automatically:
When a customer visit PIE Kiosk, we collect information sent to us by customers while inputting post service selection. - Information customers provide to us:
We may collect and store any information you enter on the PIE Kiosk. When customer visit Pie Kiosk, we also collect information about customers transactions and your activities.
We may also collect information from or about customer via different ways. E.g. contacting with our customer support team, customers results when they respond to a survey, or other companies. Furthermore, for quality and training purposes or for its own protection, PIE may monitor or record the telephone conversations with customers. By communicating with PIE, the customer acknowledge that his/her communication may be overheard, monitored, or recorded without further notice and warning.
2.2.2 Information Collected from Other Sources:
PIE may also obtain information about customers via third parties, e.g. credit bureaus and identity verification services.
2.2.3 Purpose of Data Processing:
We may use the personal information to the following:
- Monitoring and improving our services
- Sending information to Data Owners about PIE products and services.
- Customer care initiatives to improve PIE services.
- Meeting legal, regulatory, self-regulatory, risk management, fraud prevention and security requirements, which may include (among other measures) verifying the identity of the customer
- Maintaining business and transaction records for reasonable periods, and generally managing and administering PIE business.
- Meeting audit requirements.
- Otherwise as permitted or required by law.
2.2.4 Authentication and Fraud Detection:
In order to protect customers from fraud or misuse of their personal information, we keep collecting customers information, through our several interaction channels.
3. Legal basis for processing Personal Data
Personal Data will be processed by PIE only if it is required by national rules and regulations and to the extent that at least one of the following applies:
3.1 Contract
PIE may process Personal Data as required to ensure we comply with our contractual obligations towards Data Owners
3.2 Compliance with Legal Obligations
PIE may process Data Owners’ Personal Data when necessary to comply with a legal obligation, e.g. Anti-Money Laundering screening and reporting requirements and where required to comply with court order or judicial proceedings.
3.3 Legitimate Interest
PIE may process Data Owners’ Personal Data in pursuance of its legitimate business interests where such processing is necessary, and our interests does not conflict with the fundamental rights and freedoms of the Data Owner. E.g., our legitimate business interests may include communication with our customers in relation to requested transactions, pursuit of customer care initiatives, internal record keeping purposes and fraud prevention
4. Usage of Received Personal Information
Our primary purpose in collecting personal information is to provide our customers with a secure, flexible, efficient experience. PIE usually uses Personal Data from Data Owners for providing a service. This may include the following:
- Provide it to PIE Services and its Customer Support team;
- To process transactions and send notices about customers transactions;
- For the purpose of resolving disputes, collect fees and troubleshoot problems;
- Prevent potentially prohibited or illegal activities, and to enforce our user agreement;
- Customize, measure and improve PIE services and the content, layout, and operation of our websites and applications;
- Deliver service update notices, and promotional offers based on customers communication preferences;
- Compare information for accuracy and verify it with third parties.
5. Data Owner's Rights
Data Owners have certain rights with respect to their Personal Data. As following:
- To be informed: Data Owners have the right to receive certain information about how their Personal Data is processed. Therefore, we are providing customers with this Privacy Statement.
- Access: Data Owners have the right to access and receive a copy of their Personal Data.
- Rectify: Data Owners have the right to amend their Personal Data when there is found an error within his/her information.
- Restriction of processing (blocking): Data Owners can restrict or limit the way that PIE processes their Personal Data in certain circumstances.
- Approval (Consent): If PIE relies on consent to process Personal Data, Data Owners have the right to withdraw their approval at any time by contacting us using the details below.
Data Owners are also entitled to lodge a complaint with a regulatory authority, in the jurisdiction where they live or work or where they consider PIE is processing their Personal Data unlawfully. We would, however, appreciate the chance to deal with customers concerns before he/she approaches the regulator, so please contact us in the first instance.
6. PIE Contact
In case of any customer willing to exercise any of your rights, or if you have any queries or suggestions about this Privacy Statement, you can contact PIE at: [email protected]
7. Retention of Personal Data
In general, the period for which PIE retains Data Owners’ Personal Data is aligned with PIE’s data retention obligations under anti-money laundering laws, i.e. 5 years. In all cases, PIE only retains Personal Data for as long as is necessary for the purposes described in this Privacy Statement. When determining the appropriate retention periods, PIE will consider different factors, including: contractual obligations and rights; our legal obligations (for example, anti-money laundering laws); statute of limitations under applicable law; potential disputes; guidelines issued by relevant data protection authorities; and PIE’s legitimate business interests.
8. Stored and Protected Personal Information:
Throughout this policy, we use the term “personal information” to describe information that can be associated with a specific person and can be used to identify that person. We do not consider personal information to include information that has been made anonymous so that it does not identify a specific user.
Some of the safeguards we use are firewalls and data encryption, physical access controls to our data centers, and information access authorization controls.
9. Changes to this Privacy Statement
PIE reviews and updates this Privacy Statement from time to time. We encourage Data Owners to periodically review this Privacy Statement to make sure they are aware of the latest version. If we make any material changes, we will bring this to your attention.