Privacy statement

Movitz Payments AB ("Movitz Payments") processes personal data to provide secure and efficient payment services. We are committed to
transparency regarding the processing of personal data. This Privacy Statement explains how we handle personal data in compliance with applicable
data protection laws. If you have any questions, please contact us.

 

1. What is the processing of personal data?

 

Personal Data

 

Personal data refers to any information related to an identifiable individual. Examples include names, IBANs, email addresses, and transaction details.
If you operate as a sole proprietorship, partnership, or other non-legal entity, your business-related data may also be considered personal data.

Processing

 

Processing includes collecting, storing, using, transmitting, and deleting personal data.

 

Controller & Processor

 

  • Controller: Movitz Payments acts as a controller when determining the purpose and means of processing personal data.

  • Processor: When processing data on behalf of banks or financial institutions, Movitz Payments may act as a data processor.

 

2. Whose personal data do we process?

 

We process personal data of individuals whose information is provided by banks, financial institutions, or businesses that utilize our payment
verification services, including IBAN-Name checks and fraud prevention tools.

 

3. What types of personal data do we process?

 

Movitz Payments may process the following personal data:

 

  • Full name

  • Bank account details

  • Transaction details

  • Business identifiers (e.g., VAT number, national company identifiers)

  • Personal identifiers (e.g., national personal identifiers, postal addresses)

  • Email addresses and phone numbers (when applicable)

 

4. How do we obtain your personal data?

 

We receive personal data from banks, financial institutions, and other businesses that request our services. We do not collect data directly from
individuals unless they interact with our services directly.

 

5. Why do we process personal data?

 

We process personal data for the following purposes:

  • Account Verification: Ensuring that payment details match account holders.

  • Fraud Prevention: Detecting and preventing fraudulent transactions.

  • Customer Support: Addressing inquiries, complaints, and security concerns.

 

6. How long do we store personal data?

 

Personal data is retained only for as long as necessary to fulfill the purposes outlined in this Privacy Statement, in line with legal and contractual
requirements. In general, we only process and relay the API requests and do not store and retain any personal data on Movitz Payments systems.

 

7. Do we process sensitive personal data?

 

Movitz Payments does not process special categories of personal data, such as health records, racial/ethnic data, or criminal records.

 

8. Do we use automated decision-making?

 

Currently, Movitz Payments does not engage in fully automated decision-making processes that significantly impact individuals. If this changes, we
will update this Privacy Statement accordingly.

 

9. Who has access to your personal data?

 

Only authorized personnel within Movitz Payments have access to personal data. These employees are bound by confidentiality obligations.

 

10. Do we share personal data with third parties?

 

We may share personal data with:

  • Financial institutions for payment verification and fraud prevention.

  • Regulatory authorities if required by Swedish or EU law.

  • Third-party service providers who process data on our behalf under strict data protection agreements.

 

If we transfer data outside the European Economic Area (EEA), we ensure that appropriate safeguards are in place, such as Standard Contractual
Clauses (SCCs).

 

11. What are your rights?

 

Under data protection laws, you have the following rights:

  • Right to Information: Understand how we process your data.

  • Right of Access: Request details of your personal data.

  • Right to Rectification: Correct inaccurate or incomplete data.

  • Right to Erasure: Request deletion of your data under certain conditions.

  • Right to Restriction: Limit processing in specific situations.

  • Right to Object: Oppose data processing in certain circumstances.

  • Right to Data Portability: Receive your data in a structured format.

 

To exercise these rights, contact us at security@movitzpayments.com. We will respond within one month.

 

12. How can you file a complaint?

 

If you have concerns about how we handle your personal data, please contact our Privacy Officer at security@movitzpayments.com. If you are
unsatisfied with our response, you can file a complaint with Integritetsskyddsmyndigheten (Swedish Authority for Privacy Protection, IMY).

 

13. Updates to this Privacy Statement

 

Movitz Payments reserves the right to update this Privacy Statement as necessary. The latest version will always be available on our website:
www.movitzpayments.com.

 

Contact Information:

Movitz Payments AB

Email: info@movitzpayments.com

Website: www.movitzpayments.com

Registered Office: Sweden

Last updated: 30.01.2025