Privacy Policy
Effective from: May 1st, 2024
1. WHAT DOES THIS PRIVACY NOTICE COVER?
1.1. This privacy notice (“Privacy Notice”) describes how we process the personal data of the users of our services, the visitors of our website www.seon.io (“Website”), our social media sites, webinar participants and any other persons that interact with us directly (“you”).
1.2. In case you are a user of an online service provider that uses SEON as a fraud prevention service provider (“End-user”), please refer to Annex I to this Privacy Notice that specifies the information that applies to you.
1.3. At SEON we are committed to protecting your personal data and respecting your right to privacy.
1.4. When we process your personal data on the basis of our legitimate interest (see below under Section 5), you have the right to object to that processing (for further explanation, see Section 8.5). If you wish to exercise this right, please contact us or our Data Protection Officer at the email contact details specified below.
2. DETAILS OF THE DATA CONTROLLER, DATA PROCESSOR AND THE DATA PROTECTION OFFICER (“DPO”)
2.1. SEON is a data processor, with regard to the processing of non-direct “End-user personal data”.
2.2. The data controller of your personal data (“End-user personal data”) is the customer on whose behalf you use our services. For more detailed information, please see ANNEX I – SEON information notice to END-USERS.
2.3. If you are a user of our services, who subscribed directly to the Website, and not using our services on behalf of a SEON customer, the data controller of your personal data (“Direct user personal data”) is SEON.
2.4. If you use our services on behalf of a SEON customer, the data processor of your personal data is SEON.
2.5. SEON (hereinafter referred to as “SEON”, “we”, “us” or “our” in this Privacy Notice) means SEON Technologies Kft. Registered seat: Europe, Hungary, H-1072 Budapest, Rákóczi út 42. 7. em, Company registration number: 01-09-292732
2.6. For any inquiries about this Privacy Notice, please contact any SEON entity at the following email address: [email protected]
2.7. SEON appointed a DPO. For any inquiries about this Privacy Notice, you may contact our DPO at [email protected]
3. EU-U.S. DATA PRIVACY FRAMEWORK (DPF)
3.1. SEON and its US subsidiaries comply with the EU-U.S. Data Privacy Framework (EU-U.S. DPF) and UK Extension set forth by the U.S. Department of Commerce. SEON has certified to the U.S. Department of Commerce that it adheres to the EU-U.S. Data Privacy Framework Principles (EU-U.S. DPF Principles) concerning the processing of personal data received from the European Union in reliance on the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF. If there is any conflict between the terms in this privacy policy and the EU-U.S. DPF Principles and the DPF Principles, the Principles shall govern. To learn more about the Data Privacy Framework (DPF) program and to view our certification, please visit https://www.dataprivacyframework.gov/.
3.2. SEON is responsible for processing personal data it receives under the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF, and subsequently transfers to a third party acting as an agent on its behalf. Access complies with the EU-U.S. DPF Principles for all onward transfers of personal data from the EU, including the onward transfer liability provisions. The Federal Trade Commission has jurisdiction over SEON compliance with the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF. In certain situations, Access may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.
3.3. SEON Technologies is subject to the investigatory and enforcement powers of the Federal Trade Commission (FTC) with regard to our compliance with the EU-U.S. Data Privacy Framework (DPF).
3.4. In compliance with the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF, SEON commits to resolve DPF Principles-related complaints about our collection and use of your personal information. EU and UK individuals with inquiries or complaints regarding our handling of personal data received in reliance on the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF, should first contact SEON at: [email protected]
3.5. In compliance with the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF, SEON commits to refer unresolved complaints concerning our handling of personal data received in reliance on the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF to an alternative dispute resolution with the panel established by the EU data protection authorities (DPAs) and Information Commissioner’s Office (ICO).
3.6. For complaints, regarding EU-U.S. DPF and the UK Extension to the EU-U.S. DPF compliance not resolved by any of the other DPF mechanisms; you have the possibility, under certain conditions, to invoke binding arbitration. Further information can be found on the official DPF website: https://www.dataprivacyframework.gov/s/article/C-Pre-Arbitration-Requirements-dpf
4. WHY AND HOW ARE WE PROCESSING YOUR PERSONAL DATA?
4.1. We process your personal data for the following purposes: (i) providing the services, including registration on the Website, providing demos, establishing contractual relationships, and concluding contracts; (ii) processing payments from our customers; (iii) enhancing our services; (iv) ensuring information security of the services and preventing frauds; (v) lead generation, sending newsletters and other direct marketing communications; (vi) providing customer support, providing information on service updates; (vii) organizing webinars, events; and(viii) analysis of business performance and managerial decision making. Please find detailed information on the purposes and other relevant circumstances of the processing categorized by the purposes below.
4.2. We do not carry out automated decision-making or profiling based solely on automated processing of your personal data as described by Article 22 GDPR.
- We use cookies and similar technologies to collect and process data on our website. These technologies may include, but are not limited to, cookies, web beacons, pixels, and tags. We ask for your consent and to confirm your preferred setting to use these technologies when you first access our website. We will reconfirm your consent on a yearly basis or in case of any changes to this Privacy Notice. You have the right to withdraw your consent or delete cookies at any time by following the instructions provided in your browser settings. For example, you can delete cookies that have already been placed on your device by following these instructions:
- Deleting cookies in Internet Explorer
- Deleting cookies in Firefox
- Deleting cookies in Chrome
- Deleting cookies in Opera
- Deleting cookies in Safari
Please note that deleting cookies may affect your browsing experience and preferences on our website.
5. DETAILED DATA PROCESSING ACTIVITIES
5.1. Providing the services, including registration on the Website, providing demos, establishing contractual relationships, concluding contracts
Legal basis: | Our legitimate interest in creating and managing the accounts of our users (i.e. you), provide the services as requested by them, and negotiate our contracts. |
Categories of personal data: | Personal data provided by you, for example, contact details, information necessary to create an account, information related to the usage of the services, and communication-related to the services. |
Retention period: | 5 years which is based on the applicable limitation period for enforcing legal claims and the statutory retention period in case of accounting documents. |
5.2. Processing payments from customers
Legal basis: | Our legitimate interest in collecting the fees for the services rendered. |
Categories of personal data: | Personal data provided by you, for example, contact details, information necessary to create an account, information necessary for billing, and information related to the usage of the services. |
Retention period: | 5 years which is based on the applicable limitation period for enforcing legal claims and the statutory retention period in case of accounting documents. |
5.3. Enhancing the services
Legal basis: | Our legitimate interest is in improving the existing features of our services and developing new features in order to remain competitive. |
Categories of personal data: | Personal data provided by you, for example, contact details, information necessary to create an account, information related to the usage of the services, communication related to the services, and data collected via cookies. |
Retention period: | 5 years after you canceled your account at the Website or if you do not have an account, from the last interaction with you. |
5.3. Ensuring information security of the services and preventing fraud
Legal basis: | Our legitimate interest in providing our services securely for our customers and detecting, and avoiding fraudulent use of our services. |
Categories of personal data: | Personal data provided by you and personal data that we collect from other sources, in particular, contact details, information related to the usage of the services, data collected via cookies, and public database information. |
Sources of the categories of personal data not provided by you | Publicly available open source information. |
Retention period: | 5 years after the fraud check query is completed. |
5.4. Lead generation, sending newsletters and other direct marketing communications
Legal basis: | Data Subject’s Consent |
Categories of personal data: | Personal data provided by you and personal data we collected from other sources, in particular, contact details, information necessary to create an account, data collected via cookies, public database information. |
Sources of the categories of personal data not provided by you | Webinar organizing partners, business listing pages, social media providers, company email address databases, marketing lead contact search engines, and other business partners. |
Retention period: | According to the applicable limitation period for enforcing legal claims, or until your consent is revoked. |
Joint controllers | Facebook Ireland Ltd. Address: 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland; Contact: https://www.facebook.com/help/contact/2061665240770586;Contact details of the data protection officer: https://www.facebook.com/help/contact/540977946302970). LinkedIn Ireland Unlimited Company Address: Wilton Plaza, Wilton Place, Dublin 2 Ireland. Contact: https://www.linkedin.com/help/linkedin/ask/ppqContact details of the data protection officer: https://www.linkedin.com/help/linkedin/ask/TSO-DPO. For any inquiries about the joint controller’s privacy practices, or our joint data processing agreements, you may contact the joint controller’s DPO at the above contact details. |
5.5. Providing customer support, providing information on service updates
Legal basis: | Our legitimate interest in helping our customers fix bugs or unintended functioning of the services in an efficient and timely way to increase our customers’ loyalty and retain our customers. |
Categories of personal data: | Personal data provided by you, for example, contact details, information necessary to create an account, information related to the usage of the services, and communication-related to the services. |
Retention period: | According to the applicable limitation period for enforcing legal claims. |
5.6. Organizing webinars, events
Legal basis: | Our legitimate interest in raising awareness about our services and improving user engagement. |
Categories of personal data: | Personal data provided by you, for example, contact details, information necessary to create an account, and communication related to the services. |
Retention period: | According to the applicable limitation period for enforcing legal claims. |
5.7. Analysis of business performance and managerial decision making
Legal basis: | Our legitimate interest in growing our business by making strategic decisions, and complying with contractual obligations and applicable laws. |
Categories of personal data: | Personal data provided by you, for example, contact details, information necessary to create an account, information necessary for billing, information related to the usage of the services, communication related to the services. |
Retention period: | According to the applicable limitation period for enforcing legal claims and the statutory retention period in case of accounting documents. |
6. EU DATA SUBJECTS AND EXTRA-TERRITORIAL
6.1. SEON safeguards personal data received in the United States from the United Kingdom (“UK”), European Union, or European Economic Area (“EU”) about former, current, or prospective corporate customer contacts and which is regulated by the (UK) GDPR. We are committed to protecting such GDPR Personal Data in accordance with our obligations under applicable law, such as GDPR Articles 45 to 50, and the Principles of Notice, Choice, Accountability for Onward Transfer, Security, Data Integrity and Purpose Limitation, Access, and Recourse, Enforcement and Liability.
6.2. SEON has implemented appropriate cross-border transfer solutions in accordance with the GDPR, such as European Commission Standard Contractual Clauses (also known as Model Contractual Clauses) and the UK’s International Data Transfer Addendum (UK Addendum) as the legal basis for transferring personal data to third countries, including the United States. To the extent permitted by applicable law, your use of this site constitutes your consent to the transfer of your Personal Data to SEON in the United States in the context of the EU-US Data Privacy Framework as set out in Commission Implementing Decision of July 10, 2023 pursuant to the GDPR on the adequate level of protection of personal data under the EU-US Data Privacy Framework.
6.3. SEON complies with the EU-U.S. Data Privacy Framework (EU-U.S. DPF) and the UK Extension to the EU-U.S. DPF as set forth by the U.S. Department of Commerce. SEON has certified to the U.S. Department of Commerce that it adheres to the EU-U.S. Data Privacy Framework Principles (EU-U.S. DPF Principles) with regard to the processing of personal data received from the European Union and the United Kingdom in reliance on the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF. If there is any conflict between the terms in this privacy policy and the EU-U.S. DPF Principles and/, the Principles shall govern. To learn more about the Data Privacy Framework (DPF) Program, and to view our certification, please visit https://www.dataprivacyframework.gov/
6.4. In all cases where SEON transfers personal information to a third party acting as a controller, SEON will comply with this Notice. SEON will enter into a contract with the third-party controller that provides that such data may only be processed for limited and specified purposes consistent with the consent provided by you and that the recipient will provide the same level of protection as the Principles and will notify SEON if it makes a determination that it can no longer meet this obligation. The contract also provides that when such a determination is made the third party controller will cease processing or takes other reasonable and appropriate steps to remediate.
6.5. In all cases where SEON transfers personal data to a third party acting as an agent (processor for GDPR purposes), SEON will: (i) transfer such data only for limited and specified purposes; (ii) ascertain that the agent is obligated to provide at least the same level of privacy protection as is required by the Principles; (iii) take reasonable and appropriate steps to ensure that the agent effectively processes the personal information transferred in a manner consistent with the organization’s obligations under the Principles; (iv) require the agent to notify SEON if it makes a determination that it can no longer meet its obligation to provide the same level of protection as is required by the Principles; (v) upon notice, including under (iv), take reasonable and appropriate steps to stop and remediate unauthorized processing; and (vi) provide a summary or a representative copy of the relevant privacy provisions of SEON’s contract with that agent to the U.S. Department of Commerce upon request.
6.6. When we transfer your information to third parties we comply with the requirements of the legal protections that cover your information. For example, when we perform an onward transfer of your information protected under the GDPR, we remain responsible for the processing of your personal information. For information subject to an onward transfer by us under the Data Privacy Framework, we will remain liable under the Data Privacy Framework Principles if a recipient of your protected personal information processes such personal information in a manner inconsistent with the Principles, unless we are able to prove that we are not responsible for the event giving rise to the damage.
7. HOW DO WE SHARE YOUR PERSONAL DATA?
7.1. Your personal data will be primarily processed by the employees at SEON for the above listed purposes. This includes sharing your personal data between SEON group entities. Please note that we may share your personal data with SEON entities outside the EEA, in particular, we may transfer your personal data to the UK. We rely on the adequacy decision adopted by the European Commission for transfers of personal data to the UK.
7.2. We may share your personal data with the following categories of business partners for the above listed purposes:cloud providers, customer relationship management (CRM) providers, e-signature providers, integration tool providers, meeting organizer tool providers, banks, payment processors, invoicing tool providers, instant messaging providers, video conferencing tool providers, UI/UX tool providers, public database providers, social media providers, gift card tool providers, data cleansing providers, online form providers, reporting tool providers, online advertising platforms and agencies, analytics tools providers, webinar partners, marketing lead contact search engines, business listing pages, project management tool providers, legal consultants, financial consultants, and public authorities. Please note that we may share your personal data with some business partners outside the EEA, in particular, we may transfer your personal data to the US and various third countries. We enter into standard contractual clauses adopted by the European Commission with these business partners to ensure the adequate protection of your personal data.
7.3. A copy of the safeguards for international data transfers can be obtained for your review on request by using the contact details specified in this Privacy Notice.
8. YOUR RIGHTS
You have the following rights regarding the processing of your personal data carried out by us:
8.1. Right to access
You have the right to request access to your personal data and obtain information from us regarding (among others): the purpose of processing; what categories of personal data are processed; to whom we transfer or disclose your personal data; for what period we process your personal data; your rights in connection with data processing carried out by us regarding your personal data; your right to lodge a complaint with a supervisory authority regarding the processing; in case we collect your personal data from other sources than from you, any available information as to the source; the existence of automated decision-making and related information, including the logic involved, as well as the significance and the envisaged consequences of such processing for you; whether your personal data is transferred outside the EEA and regarding the conditions of these transfers.We will provide you with a copy of your personal data in case you require us to do so.
8.2. Right to rectification
You have the right to request us to rectify your inaccurate personal data and to request us to complete your incomplete personal data by means of providing us with a supplementary statement.
8.3. Right to erasure
We erase any of your personal data if you request us to do so in the event of the following:
- your personal data is no longer necessary for the purpose concerned;
- you withdraw your consent and there is no other legal basis for the processing;
- you object to the processing and there are no overriding legitimate grounds for the processing (or, in case of direct marketing, you simply object to the processing);
- your personal data has been processed unlawfully;
- your personal data has to be erased according to relevant laws.
Please note that we are entitled to not erase your personal data if it is necessary – inter alia – for exercising the right of freedom of expression and information, for compliance with legal obligations, and for the establishment, exercise or defense of legal claims.
8.4. Right to restriction of processing
You have the right to obtain a restriction of processing from us where one of the following applies:
- you have contested the accuracy of your personal data, in which case you will obtain restriction for a period enabling us to verify the accuracy of your personal data;
- the processing is unlawful, and you oppose the erasure of your personal data and request the restriction of their use instead;
- we no longer need your personal data for the purposes of the processing, but they are required by you for the establishment, exercise or defense of legal claims; or
- you objected to the processing and the verification is pending whether our legitimate grounds override yours.
Where processing has been restricted, personal data shall, with the exception of storage, only be processed with your consent or for the establishment, exercise or defense of legal claims, or for the protection of the rights of another natural or legal person, or for reasons of important public interest of the European Union or of an EU member state.
8.5. Right to object to processing
You have the right to object to the processing of personal data on grounds relating to your particular situation, where the legal basis of the processing activity is our legitimate interest (or the legitimate interest of a third party). We will no longer process the personal data unless we demonstrate compelling legitimate grounds, which override your interests, rights and freedoms or for the establishment, exercise or defense of legal claims.
You do not need to ascertain grounds relating to your particular situation if your personal data is processed for direct marketing purposes, and we will no longer process personal data if you objected to the processing.
8.6. Right to data portability
If certain conditions apply, you have the right to receive your personal data, which you have provided to us, in a structured, commonly used and machine-readable format and have the right to transmit that data to another controller without hindrance from us. You also have the right to have your personal data transmitted directly from us to another controller, where technically feasible.
8.7. Right to withdraw your consent
You have the right to withdraw your consent at any time, without affecting the lawfulness of processing based on your consent before its withdrawal.
8.8. Our actions
If you wish to exercise any of your rights, please contact us at the email contact details indicated in this Privacy Notice.We will provide information on the actions taken on your requestwithout undue delay and in any event within one month of the receipt of your request. This period may be extended with a reasoned notification to you by two months where necessary, taking into account the complexity and number of requests. We will take the necessary actions free of charge except when your request is manifestly unfounded or excessive. In case we have reasonable doubts as to the identity of the natural person making the request, we may request additional information necessary to confirm your identity. We will inform all recipients of all rectification, erasure, or restriction of processing to whom personal data was disclosed except if it is impossible or requires disproportionate effort.
In case we do not take any action regarding your request, we will inform you within one month of the receipt of your request as to the reasons and the possibility of lodging a complaint with a data protection supervisory authority and seeking a judicial remedy.
8.9. Children
Our services and this site are intended for business use, and we do not knowingly collect any Personal Data from children younger than the age of eighteen (18) or otherwise, as prohibited by applicable law.
8.10 Your Rights- California Residents
8.10.1. If you are a resident of California, under the California Consumer Privacy Act (“CCPA”), we are required to provide additional information to you about how we use and disclose your information, and you may have additional rights with regard to how we use your information.
8.10.2. Consistent with the “WHY AND HOW ARE WE PROCESSING YOUR PERSONAL DATA“ section above, we collect certain categories and specific pieces of information about individuals that are considered “Personal Information” in California. As detailed above, we may collect this Personal Information from you and other third parties. We collect, share and disclose Personal Information for the business and commercial purposes described in the “WHY AND HOW ARE WE PROCESSING YOUR PERSONAL DATA” and „HOW DO WE SHARE YOUR PERSONAL DATA?” sections above.
8.10.3. We do not sell Personal Information, as this term is defined under California law.
8.10.4. Subject to certain exceptions, as a California consumer, you have the right to: (i) access your Personal Information; (ii) obtain deletion of your Personal Information; (iii) receive information about the Personal Information about you that we have “sold” (as such term is defined under California law) to third parties within the past 12 months; and (iv) opt-out of the “sale” of your Personal Information, including as detailed above in the “Cookies and Tracking Technologies” section. To the extent permitted by applicable law, we may be required to retain some of your Personal Information, and certain Personal Information is strictly necessary in order for us to fulfill the purposes described in this Privacy Policy.
8.10.5. Should you wish to request the exercise of your other rights as detailed above with regard to your Personal Information, we will not discriminate against you by offering you different pricing, products or services, or by providing you with a different level or quality of products or services, based solely upon this request. Please see the “Contact us” section below if you have questions or wish to exercise such rights.
8.10.6. If you are a California consumer and you wish to exercise your rights as outlined in this section, you may need to provide information such as name and e-mail so that we can verify your identity. We will use the information you provide when exercising your rights for no other purpose other than to verify your identity. You also have the option of designating an authorized agent to exercise your rights on your behalf. For authorized agents submitting requests on behalf of California residents, please contact us as described below, with any evidence you have that you have been authorized by a California consumer to submit a request on their behalf.
8.10.7. We do not rent, sell, or share your Personal Information with nonaffiliated companies for their direct marketing purposes, unless we have your permission. You also may have the right to request that we provide you with (1) a list of certain categories of personal information we have disclosed to third parties for their direct marketing purposes during the immediately preceding calendar year and (2) the identity of those third parties.
8.10.8. You can exercise any of these rights by contacting us through the methods described in the Privacy Notice section below.
9. REMEDIES
9.1. In case you do not agree with our response or action, or if you consider that your rights have been infringed, you may lodge a complaint with the data protection supervisory authority in the UK or the EU Member State of your habitual residence, place of work or place of the alleged infringement, in particular, with the following data protection supervisory authorities:
9.1.1. Hungarian National Authority for Data Protection and Freedom of Information (address: HU-1055 Budapest, Falk Miksa utca 9-11, mailing address: 1363 Budapest, Pf.: 9.; tel.: +36-1-391-1400; e-mail: [email protected]);website: naih.hu);
9.2. Information Commissioners Office (address: Wycliffe House, Water Lane, Wilmslow, Cheshire SK9 5AF, online contact form: https://ico.org.uk/global/contact-us/).
9.3. Please see EU authorities at https://ec.europa.eu/justice/article-29/structure/data-protectionauthorities/index_en.htm.
9.4. In compliance with the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF, SEON commits to cooperate and comply respectively with the advice of the panel established by the EU data protection authorities (DPAs) and the UK Information Commissioner’s Office (ICO) with regard to unresolved complaints concerning our handling of data received in reliance on the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF.
9.5. You may, subject to its terms, invoke binding arbitration in accordance with Annex I of the DPF Principles:https://www.dataprivacyframework.gov/s/article/ANNEX-I-introduction-dpf
9.6. This provides that you may invoke binding arbitration by delivering notice to SEON and following the procedures and subject to conditions set forth in Annex I of the Principles.
10. UPDATES
Please note that we review this Privacy Notice on occasions and amend it as necessary. When we amend this Privacy Notice, we will announce and publish it by the usual means (e.g., via e-mail or on the Website). We encourage you to review this Privacy Notice regularly.
ANNEX I – SEON information notice to END-USERS (INDIRECT DATA SUBJECTS)
WHY DID YOU RECEIVE THIS INFORMATION NOTICE? You received this information notice because an online service provider (where you registered an account or with whom you interacted, such as a financial institution or a webshop) uses certain functionalities of SEON’s services, and, as a result, SEON became the processor of your personal data.
WHO IS SEON? SEON provides state-of-the-art fraud prevention to online service providers.
WHICH SEON FUNCTIONALITIES CONCERN YOUR PERSONAL DATA? There are two functionalities we would like to inform you about in this notice. We provide your online service provider with information (i) on how many times your email address, IP address or phone number was checked in our system, and when it was checked last time, etc. (history data); and (ii) on whether your email address, phone number, IP address, or browser has been flagged as fraudulent in our system, etc. (flag data). We collect these personal data from other online service providers that use these functionalities. We may maintain a database of this data. We do not carry out automated decision-making or profiling based solely on automated processing of your personal data as described by Article 22 of GDPR when providing these functionalities.
HOW DO WE USE YOUR PERSONAL DATA? We use your personal data on behalf of online service providers (where you registered an account or with whom you interacted, such as a financial institution or a webshop) according to and strictly in the scope of their instructions. The online service provider (data controller) determines the purposes and means of processing your personal data. In other words, the data controller decides the how and why of SEON’s data processing operation. The most typical usage of your personal data by a service provider is conducting a fraud check, but sometimes, it may also include data analysis for various kinds of lawful purposes. Purposes and means of processing are always determined by the controllers (service providers) and not by SEON.
HOW DO WE SHARE YOUR PERSONAL DATA? We share your personal data with SEON group companies, and we may transfer your personal data to the UK. We rely on the adequacy decision adopted by the European Commission for transfers of personal data to the UK. We share your personal data with our cloud provider and other online service providers that use these functionalities. We transfer your personal data to the US and various third countries. We enter into standard contractual clauses adopted by the European Commission with these business partners to ensure the adequate protection of your personal data. You can request a copy of the safeguards for international data transfers can by contacting us.
FOR HOW LONG DO WE KEEP YOUR PERSONAL DATA? According to the applicable limitation period for enforcing legal claims.
WHAT ARE YOUR RIGHTS?
Please note that SEON acts only as a “Data Processor” of any of your personal information that may have been collected by SEON in our role as a provider of fraud detection services for our customers. Our customer(s) are considered the “Data Controller” of your personal information under the GDPR and they are the only one(s) that can respond to your request. In such cases, we notify our customer(s) of your request without undue delay. Our customer(s) (your Data Controller) must respond to your request. Again, we notify them on your behalf, and they should execute your request, however for further information about your request, you may want to contact them directly.
Among other data protection rights, you have the right to object that we include your personal data in these functionalities. You can exercise your rights by contacting our customer(s) (the Data Controller) or us. For further information on your rights, remedies and updates to this document please refer to the corresponding sections of our Privacy Notice available on the following link: [Section 8 – Your Rights*]
WHO CAN YOU CONTACT? If a SEON group company (either SEON Technologies Kft., registered seat: H-1072 Budapest, Rákóczi út 42. 7. em; company registration number: 01-09-292732) provides the functionalities to the online service provider you use, you can contact any SEON entity at the following email address: [email protected].
WHERE CAN YOU FIND INFORMATION ON OTHER SEON FUNCTIONALITIES? With regards to other SEON functionalities not detailed above, the online service providers who you interact with will qualify as the controller of your data. These online service providers will provide you further information in their own privacy notices on how their fraud prevention practices affect your personal data.