🍁 Proudly Canadian Owned & Founded
Back to Home

Privacy Policy

Your privacy and data security are fundamental to our business. Learn how we protect and handle your information.

Last Updated: January 2025

SavPay – Where service meets savings.

Secure by Design

Bank-level encryption and security measures protect your data

Transparent Practices

Clear information about what we collect and why

Your Rights

Full control over your personal information and privacy

SavPay Privacy Policy

Introduction

SavPay, operated by 9499-8390 Quebec Inc., is committed to protecting your privacy and personal information. As an authorized partner working with Fiserv Inc. and Nuvei Corporation, we adhere to the highest standards of data protection and privacy compliance required in the payment processing industry.

This Privacy Policy explains how we collect, use, disclose, and protect your personal information when you use our payment processing services, visit our website, or interact with us in any capacity.

Information We Collect

Business Information

  • Business name, address, and contact information
  • Business registration numbers and tax identification
  • Industry type and business model details
  • Financial information including bank account details
  • Processing volume and transaction history
  • Beneficial ownership information as required by law

Personal Information

  • Contact details (name, email, phone number)
  • Identification documents (driver's license, passport)
  • Social Insurance Number (when required for underwriting)
  • Credit reports and financial background checks
  • Communication preferences and history

Transaction Data

  • Payment card information (processed securely, not stored)
  • Transaction amounts, dates, and merchant details
  • Customer payment information (as required for processing)
  • Chargeback and dispute information
  • Risk assessment and fraud prevention data

Technical Information

  • IP addresses and device information
  • Browser type and operating system
  • Website usage data and analytics
  • Cookies and similar tracking technologies
  • Security logs and access records

How We Use Your Information

Payment Processing Services

  • Processing payments and managing transactions
  • Merchant account setup and ongoing management
  • Risk assessment and fraud prevention
  • Compliance with payment card industry standards (PCI DSS)
  • Dispute resolution and chargeback management

Legal and Regulatory Compliance

  • Know Your Customer (KYC) and Anti-Money Laundering (AML) requirements
  • Proceeds of Crime (Money Laundering) and Terrorist Financing Act compliance
  • Personal Information Protection and Electronic Documents Act (PIPEDA) compliance
  • Quebec privacy law (Law 25) compliance
  • Financial reporting and audit requirements

Business Operations

  • Customer service and technical support
  • Account management and relationship building
  • Product development and service improvement
  • Marketing and communication (with consent)
  • Internal analytics and business intelligence

Information Sharing and Disclosure

We may share your information with trusted third parties in the following circumstances:

Payment Processing Partners

  • Fiserv Inc. and Nuvei Corporation (our authorized processing partners)
  • Payment card networks (Visa, Mastercard, American Express)
  • Banking partners and financial institutions
  • Payment gateway and technology providers

Service Providers

  • Credit reporting agencies and background check providers
  • Identity verification and fraud prevention services
  • Cloud hosting and data storage providers
  • Customer support and communication platforms
  • Legal, accounting, and professional service providers

Legal Requirements

  • Government agencies and regulatory bodies
  • Law enforcement and legal proceedings
  • Court orders, subpoenas, and legal investigations
  • FINTRAC (Financial Transactions and Reports Analysis Centre of Canada)

Data Security and Protection

We implement industry-leading security measures to protect your information:

Technical Safeguards

  • 256-bit SSL/TLS encryption
  • PCI DSS Level 1 compliance
  • Multi-factor authentication
  • Regular security audits and penetration testing
  • Secure data centers with 24/7 monitoring

Administrative Safeguards

  • Employee background checks and training
  • Role-based access controls
  • Incident response procedures
  • Regular policy reviews and updates
  • Third-party security assessments

Your Privacy Rights

Under Canadian privacy laws, including PIPEDA and Quebec's Law 25, you have the following rights:

Access and Correction

  • Request access to your personal information
  • Correct inaccurate or incomplete information
  • Receive a copy of your data in a portable format

Control and Deletion

  • Withdraw consent for marketing communications
  • Request deletion of personal information (subject to legal requirements)
  • Object to certain uses of your information

Important Note: Some information cannot be deleted due to legal and regulatory requirements in the payment processing industry, including transaction records, compliance documentation, and fraud prevention data.

Data Retention

We retain your information for different periods based on the type of data and legal requirements:

Transaction Records

Retained for 7 years as required by Canadian financial regulations

KYC/AML Documentation

Retained for 5 years after account closure as required by FINTRAC

Marketing Data

Retained until consent is withdrawn or for 3 years of inactivity

Support Communications

Retained for 2 years for quality assurance and training purposes

International Data Transfers

Some of our service providers and payment processing partners are located outside of Canada, including in the United States. When we transfer your information internationally:

  • We ensure appropriate safeguards are in place
  • We use contractual protections and data processing agreements
  • We comply with cross-border data transfer requirements
  • We notify you when your data may be accessed by foreign governments

Cookies and Online Tracking

Our website uses cookies and similar technologies to improve your experience and provide our services:

Essential Cookies

Required for website functionality and security

Analytics Cookies

Help us understand how visitors use our website (with consent)

Marketing Cookies

Used to deliver relevant advertising and measure campaign effectiveness (with consent)

You can control cookie settings through your browser preferences or by contacting us directly.

Contact Us

If you have questions about this Privacy Policy or want to exercise your privacy rights, please contact us:

Privacy Officer

SavPay (9499-8390 Quebec Inc.)

Email:

privacy@savpay.ca

Phone:

514-863-6540 or 438-410-3400

Business Hours:

Monday - Friday: 9:30 AM - 4:30 PM (EST)

Headquarters:

SavPay HQ: Montreal, QC

Privacy Complaints: If you believe we have not addressed your privacy concerns adequately, you may file a complaint with the Office of the Privacy Commissioner of Canada or the Commission d'accÚs à l'information du Québec.

Policy Updates

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will:

  • Post the updated policy on our website
  • Update the "Last Updated" date at the top
  • Notify you of material changes via email or account notification
  • Obtain new consent where required by law

Your continued use of our services after policy updates constitutes acceptance of the revised terms.

This Privacy Policy is governed by Canadian privacy laws and regulations. For questions about specific legal requirements, please consult with qualified legal counsel.