🍁 Proudly Canadian Owned & Founded

Privacy Policy

Your privacy and data security are fundamental to our business. Learn how we protect and handle your information.

Last Updated: January 2025

SavPay – Where service meets savings.

Secure by Design

Bank-level encryption and security measures protect your data

Transparent Practices

Clear information about what we collect and why

Your Rights

Full control over your personal information and privacy

SavPay Privacy Policy

Introduction

SavPay, a trade name of 9499-8390 Québec Inc., is committed to protecting your privacy and personal information. 9499-8390 Québec Inc. operates as an Independent Sales Organization (ISO) of Moneris Solutions Corporation, which acts on behalf of Royal Bank of Canada and Bank of Montreal. SavPay is also an authorized agent of Fiserv Canada Ltd. and Nuvei Corporation.

This Privacy Policy explains how we collect, use, disclose, and protect your personal information when you use our payment processing services, visit our website, or interact with us in any capacity.

Information We Collect

Business Information

Business name, address, and contact information
Business registration numbers and tax identification
Industry type and business model details
Financial information including bank account details
Processing volume and transaction history
Beneficial ownership information as required by law

Personal Information

Contact details (name, email, phone number)
Identification documents (driver's license, passport)
Social Insurance Number (when required for underwriting)
Credit reports and financial background checks
Communication preferences and history

Transaction Data

Payment card information (processed securely, not stored)
Transaction amounts, dates, and merchant details
Customer payment information (as required for processing)
Chargeback and dispute information
Risk assessment and fraud prevention data

Technical Information

IP addresses and device information
Browser type and operating system
Website usage data and analytics
Cookies and similar tracking technologies
Security logs and access records

How We Use Your Information

Payment Processing Services

Processing payments and managing transactions
Merchant account setup and ongoing management
Risk assessment and fraud prevention
Compliance with payment card industry standards (PCI DSS)
Dispute resolution and chargeback management

Legal and Regulatory Compliance

Know Your Customer (KYC) and Anti-Money Laundering (AML) requirements
Proceeds of Crime (Money Laundering) and Terrorist Financing Act compliance
Personal Information Protection and Electronic Documents Act (PIPEDA) compliance
Quebec privacy law (Law 25) compliance
Financial reporting and audit requirements

Business Operations

Customer service and technical support
Account management and relationship building
Product development and service improvement
Marketing and communication (with consent)
Internal analytics and business intelligence

Information Sharing and Disclosure

We may share your information with trusted third parties in the following circumstances:

Payment Processing Partners

Moneris Solutions Corporation and its sponsoring financial institutions (Royal Bank of Canada and Bank of Montreal)
Fiserv Canada Ltd. and Nuvei Corporation (authorized processing partners)
Payment card networks (Visa, Mastercard, American Express)
Banking partners and financial institutions
Payment gateway and technology providers

Service Providers

Credit reporting agencies and background check providers
Identity verification and fraud prevention services
Cloud hosting and data storage providers
Customer support and communication platforms
Legal, accounting, and professional service providers

Legal Requirements

Government agencies and regulatory bodies
Law enforcement and legal proceedings
Court orders, subpoenas, and legal investigations
FINTRAC (Financial Transactions and Reports Analysis Centre of Canada)

Data Security and Protection

We implement industry-leading security measures to protect your information:

Technical Safeguards

256-bit SSL/TLS encryption
PCI DSS Level 1 compliance
Multi-factor authentication
Regular security audits and penetration testing
Secure data centers with 24/7 monitoring

Administrative Safeguards

Employee background checks and training
Role-based access controls
Incident response procedures
Regular policy reviews and updates
Third-party security assessments

Your Privacy Rights

Under Canadian privacy laws, including PIPEDA and Quebec's Law 25, you have the following rights:

Access and Correction

Request access to your personal information
Correct inaccurate or incomplete information
Receive a copy of your data in a portable format

Control and Deletion

Withdraw consent for marketing communications
Request deletion of personal information (subject to legal requirements)
Object to certain uses of your information

Important Note: Some information cannot be deleted due to legal and regulatory requirements in the payment processing industry, including transaction records, compliance documentation, and fraud prevention data.

Data Retention

We retain your information for different periods based on the type of data and legal requirements:

Transaction Records

Retained for 7 years as required by Canadian financial regulations

KYC/AML Documentation

Retained for 5 years after account closure as required by FINTRAC

Marketing Data

Retained until consent is withdrawn or for 3 years of inactivity

Support Communications

Retained for 2 years for quality assurance and training purposes

International Data Transfers

Some of our service providers and payment processing partners are located outside of Canada, including in the United States. When we transfer your information internationally:

We ensure appropriate safeguards are in place
We use contractual protections and data processing agreements
We comply with cross-border data transfer requirements
We notify you when your data may be accessed by foreign governments

Cookies and Online Tracking

Our website uses cookies and similar technologies to improve your experience and provide our services:

Essential Cookies

Required for website functionality and security

Analytics Cookies

Help us understand how visitors use our website (with consent)

Marketing Cookies

Used to deliver relevant advertising and measure campaign effectiveness (with consent)

You can control cookie settings through your browser preferences or by contacting us directly.

Contact Us

If you have questions about this Privacy Policy or want to exercise your privacy rights, please contact us:

Privacy Officer

SavPay (9499-8390 Quebec Inc.)

Email:

privacy@savpay.ca

Phone:

Sales & merchant support: +1 (514) 863-6540 | Devices & activations: +1 (438) 410-3400

Business Hours:

Monday - Friday: 9:30 AM - 4:30 PM (EST)

Saturday - Sunday: Closed

Outside business hours, calls are automatically transferred to processors' 24/7 support.

Privacy Complaints: If you believe we have not addressed your privacy concerns adequately, you may file a complaint with the Office of the Privacy Commissioner of Canada or the Commission d'accès à l'information du Québec.

Policy Updates

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will:

Post the updated policy on our website
Update the "Last Updated" date at the top
Notify you of material changes via email or account notification
Obtain new consent where required by law

Your continued use of our services after policy updates constitutes acceptance of the revised terms.

This Privacy Policy is governed by Canadian privacy laws and regulations. For questions about specific legal requirements, please consult with qualified legal counsel.

Cookie Policy Compliance & Security AML/ATF Statement