Chase Paymentech Europe Limited Privacy Statement

Chase Paymentech Europe Limited, trading as J.P. Morgan, is committed to safeguarding the privacy and security of the information we collect. This statement explains the policies we follow with respect to the handling of customer information collected by J.P. Morgan.


Commitment to Privacy and Security
Chase Paymentech Europe Limited and its operating entities Chase Paymentech Solutions, LLC , Paymentech, LLC and Chase Alliance Partners, LLC (collectively, “J.P. Morgan”) are committed to safeguarding the privacy and security of the information we collect. This statement explains the policies we follow with respect to the handling of customer information collected by J.P. Morgan.

Information We Collect
J.P. Morgan’s customers ("Merchants") are businesses and other legal entities desiring to accept credit or debit cards or other payment methods, as payment for goods or services. J.P. Morgan does not have direct relationships with, or collect information directly from, individual consumers other than in their capacity as owners or operators of a commercial enterprise. J.P. Morgan does not provide services for consumer, personal, family or household purposes. The information we receive and collect is strictly related to our business customers and the payment transactions that we assist them in executing, as well as from prospective or potential business customers who may be interested in learning more about our services. The transaction information we receive from our Merchants may include personal financial information about their customers (e.g., credit or debit card account numbers) who may be individual consumers. J.P. Morgan understands that such information is sensitive and takes appropriate steps to protect the confidentiality and security of all information collected by J.P. Morgan in accordance with this Privacy Statement.

Use and Disclosure of Information
Use and disclosure of the information collected by J.P. Morgan varies based on the information source and type, as set forth below:

  1. Browsing the Website. When you browse J.P. Morgan’s website, we may collect information regarding the domain and host from which you access the Internet, the Internet Protocol address of the computer or Internet Service Provider you are using, and anonymous site statistical data. In addition, we may collect information that you voluntarily provide us via online forms and questionnaires, including information you may provide about your business in order to apply to become a Merchant, or thereafter if you use any of our online Merchant services. J.P. Morgan’s website is intended for commercial use only, and we collect, retain and use information about visitors to our websites only for specific business purposes, including: (i) to contact you and/or to respond to requests for information about our products and services (see "Your Inquiries" below), (ii) to administer the website or improve site performance, (iii) to provide customer support (e.g., to allow a prospective Merchant to complete an online account application, to allow a Merchant to view and manage records, accounts and funds, or to help enhance our products and services); (iii) for security purposes and to combat fraud (e.g., to protect against unauthorised access to J.P. Morgan systems, or Merchant accounts and information), (iv) to generate broad statistical and demographic information, and (v) to comply with certain laws, regulations, and card association rules and regulations. In addition, when you link to J.P. Morgan’s website from the website of any third-party advertiser, we may receive information about you from such third-party, including your contact information and information stored in "cookies" on such third-party's website. Please check the privacy policy of these websites concerning what information may be collected by the third-party and shared with J.P. Morgan. Such information is used by us only for the purposes set forth above with respect to information collected directly from you at our own website.
  2. Your Inquiries. When you complete and submit a form or otherwise provide us with information about you on our website, or contact us by e-mail, fax, or telephone to solicit information about our services or the company in general, J.P. Morgan may store the inquiries and their contents. Information you submit via an inquiry is collected only with your knowledge and active participation, and may be used by J.P. Morgan to respond to your inquiries, to contact you, to inform you of services of J.P. Morgan or its partners that may be of use to you, and for similar business purposes. Information collected during the course of an inquiry will not be sold or otherwise disclosed to any third party except that such information may be shared by us (i) with our third-party service providers for storage purposes only (and subject to their agreement to maintain the strict confidentiality of such information) and/or (ii), internally with our affiliated entities for the business purposes set forth above.
  3. 3. Opening an Account or Using J.P. Morgan Services. When you submit an application to become a Merchant, you will be required to provide us with certain information about your business, and its owners and officers, which may also act as guarantors of the Merchant's obligations. J.P. Morgan may also obtain and store information about the Merchant, and its officers, owners and guarantors, from consumer reporting agencies, credit bureaus, relevant financial institutions, and other entities. J.P. Morgan may use, retain and disclose this information to (i) comply with any applicable legislation requiring J.P. Morgan to obtain, verify, and record information that identifies each entity with which it establishes a Merchant relationship, (ii) evaluate your eligibility for a Merchant account, which may involve disclosure to consumer reporting agencies, commercial credit bureaus, and relevant financial institutions. J.P. Morgan may also use your information to contact you about other J.P. Morgan offerings and services. If you are, or become a Merchant, J.P. Morgan may disclose your information during the course of providing such services to card associations, banks and other financial institutions that are involved in the course of processing or screening the transaction, and to third parties that have contracted with J.P. Morgan to perform certain functions of our services on our behalf. In addition, J.P. Morgan may use, or disclose your information to third parties for the additional purposes of facilitating and completing merchant-initiated or authorised transactions, complying with local laws, including credit reporting laws and card association rules, assisting in preventing fraud, or informing you about general company news, product updates and developments, card association rules, and industry trends, offering you products and services that may be of interest to you, or as otherwise may be permitted or required by applicable law.
  4. Customers of Our Merchants. If you purchase a product or service from a Merchant using a credit or debit card, or any other method of payment for which we provide the Merchant with transaction processing services, you will likely provide that Merchant with certain personal information which may include, for example, your name and credit card number. Our Merchants may transmit certain of this information ("Order Information"), to J.P. Morgan for the purpose of processing the transaction. We will use Order Information during the course of providing processing services to such Merchant. During the course of providing processing services to our Merchants, we may disclose Order Information to banks, processors, credit and debit card organizations and associations, and other financial institutions that are involved in the course of effecting the transaction represented by the Order Information. In addition, we may disclose some or all of the information we collect, to our affiliated companies or to non-affiliated third parties (subject to contractual confidentiality provisions to protect such information) such as a vendor or service company that we hire to provide support or services for one or more of our products. We will not disclose Order Information to any third party, except to facilitate and complete transactions submitted to us by Merchants, or otherwise in the course of providing services to our Merchants, or to comply with local laws or the rules and regulations of the respective card organisations or other payment entities (e.g. Visa, MasterCard®, American Express, etc.).

In addition, J.P. Morgan may share information related to its Merchant customers or applicants with its affiliated entities for the purposes allowed by this Privacy Policy.

Protection of Cardholder and Customer Data
J.P. Morgan has implemented various measures, including appropriate administrative, technical and physical safeguards, designed to ensure the security and confidentiality of cardholder and customer data, protect against anticipated threats or hazards to the security or integrity of such information, and protect against unauthorised access to or use of such information. Such measures may include, among others, encryption, physical access security and other appropriate technologies. J.P. Morgan continually reviews and enhances its security systems, as necessary. J.P. Morgan is subject to the detailed rules and regulations of the various credit and debit card organizations and networks (i.e. VISA, MasterCard®, American Express, etc.), relating to the security and safeguarding of cardholder information, including the Payment Card Industry Data Security Standards ("PCI-DSS"). J.P. Morgan endeavors to comply with all such rules at all times. Pursuant to such rules and regulations, J.P. Morgan is required to undergo periodic third-party assessments and periodic network scans to ensure that, among other things, J.P. Morgan has installed and maintains a firewall configuration to protect data; does not use vendor-supplied defaults for system passwords and other security parameters; protects stored data; encrypts transmission of cardholder data and sensitive information across public networks; uses and regularly updates anti-virus software; develops and maintains secure systems and applications; restricts access to data to those with a business need-to-know; tracks and monitors all access to network resources and cardholder data; regularly tests security systems and processes; assigns a unique ID to each person with computer access; restricts physical access to cardholder data; and maintains a policy that addresses information security. Additional information regarding the requirements of PCI-DSS and other data security requirements imposed by the VISA and MasterCard® rules and regulations can be found on the VISA and MasterCard® International Web sites.

Responsibility of Merchants
Merchants are also required to comply with various rules and regulations of the various credit and debit card organisations and networks relating to the security and safeguarding cardholder information, including PCI-DSS. Merchants may be required to undergo periodic third-party data security assessments and periodic network scans to ensure that appropriate security measures are in place.

Additional Internet Privacy Policies

Cookies. Please click here to see J.P. Morgan's Cookies Policy.

Third-Party Web Sites. J.P. Morgan may create links to third-party Web sites. In addition, J.P. Morgan may authorise third-parties to create links to J.P. Morgan websites. J.P. Morgan is not responsible for the content or privacy practices employed by third-party Web sites. Neither does J.P. Morgan control or warrant the utility, merchantability or workmanship of the products or services offered at third-party Web sites.

Web Optimisation. J.P. Morgan also may use cookies to track advertising leads and campaigns from banner advertisements, third party advertisement services and third party web optimisation services. J.P. Morgan may hire third party companies to track and report performance of advertising and marketing campaigns to and from J.P. Morgan and third party web sites. These companies may also set cookies and use related technology, such as tracking pixels.

These tracking pixels (also known as action tags, web beacons, or transparent GIF files) and other similar tracking technologies may be used to collect and store information about user visits, such as the user's anonymous cookie ID, page visits and duration, and the specific ad or link(s) that the user clicked on to visit the site. No personally identifiable information is stored on these cookies or web pixels. This user activity information is reported to us in aggregate and is anonymous. We use this information in aggregate to understand, for example, the effectiveness of our advertising and marketing.

Children. J.P. Morgan does not solicit or knowingly accept information from persons under the age of eighteen (18). Our web sites are not designed with the intent to attract or encourage viewing by children.

Modifications to Privacy Policy
J.P. Morgan reserves the right to change this privacy policy without notice at any time and from time to time, including as needed to comply with the rules and regulations of the various debit and credit card organisations, or to comply with applicable laws and regulations.

How can you access and correct your Personal Information?
Under the applicable Data Protection regulations, you have a right to seek access to information which we hold about you. You also have the right to ask us to correct information about you which is inaccurate, incomplete or out of date. Any such request should be made to us in writing to: Chief Compliance Officer, Chase Paymentech Europe Limited. JP Morgan House, 1 George’s Dock, I.F.S.C., Dublin 1, D01 W213, Ireland, or by contacting us at +353 1 726 2900.

You also have the right, in certain circumstances to request that we delete your personal information. To obtain a copy of your personal information (or to request that we delete your personal information) you should write to us at: Chief Compliance Officer, Chase Paymentech Europe Limited, JP Morgan House, 1 George’s Dock, I.F.S.C., Dublin 1, D01 W213, Ireland, or alternatively you may contact us via our website at www.chasepaymentech.co.uk giving us your name, address, and contact details.

To provide you with access to your personal information, we would ordinarily provide you with a print-out of the relevant personal information from our current databases, or with photocopies of records which are held only on current paper files.

If you have any questions about this privacy policy, if you wish to complain about how we have handled personal information about you, or if you wish to access or correct your personal information, please contact Chief Compliance Officer, Chase Paymentech Europe Limited. JP Morgan House, 1 George’s Dock, I.F.S.C., Dublin 1, D01 W213, Ireland, or by contacting us at +353 1 726 2900 or by using address supplied above.

Inquiries
If you have a question or comment regarding this Privacy Statement, please contact:

Chase Paymentech Europe Limited
Chief Compliance Officer
JP Morgan House,
1 George’s Dock, I.F.S.C.
Dublin 1, D01 W213, Ireland

(Last modified January 2017)

Chase Paymentech Europe Limited, trading as J.P. Morgan, is regulated by the Central Bank of Ireland. Registered Office: JP Morgan House, 1 George’s Dock, I.F.S.C., Dublin 1, D01 W213, Ireland.
Registered in Ireland with the CRO under the Registration No. 474128.
Directors: Catherine Moore (UK), Carin Bryans, Michael Passilla (US), Dara Quinn, Steven Beasty (US)