Privacy Policy

Website URL: globalflowitsolutions.online

At Global Flow IT Solutions, we are committed to protecting the privacy and security of our merchants and their customers. This Privacy Policy outlines how we collect, use, disclose, and safeguard your information when you use our payment gateway services in Pakistan.

1. Information We Collect

We collect information to provide and improve our services, process transactions, and meet our legal and regulatory obligations. The information we collect falls into three main categories:

A. Information from Merchants (Businesses using our service):

  • Contact Information: Name, business address, email address, and phone number.
  • Business Information: Company registration details, National Tax Number (NTN), business type, and financial statements.
  • Verification/KYC Information: Government-issued identification (CNIC/Passport) for directors/owners, and bank account details for settlements.
  • Technical Information: API keys, integration details, and data about your usage of our platform.

B. Information from Customers (Individuals making payments):

  • Transaction Information: Amount, date, time of transaction, and the merchant involved.
  • Payment Details: Card numbers (encrypted and tokenized), bank account details, or mobile wallet identifiers. Note: We do not store full unencrypted card details; we rely on secure, PCI DSS-compliant tokenization.
  • Contact/Delivery Information (as provided by the Merchant): Name, email, phone number, and shipping address, if required for the transaction.

C. Automatically Collected Information (Usage Data):

  • Device and Log Data: IP address, browser type, operating system, pages viewed, time spent on our site/gateway, and referring URLs.
  • Cookies and Tracking Technologies: We use cookies to enhance user experience, for security, and for analytics (see Section 6).

2. How We Use Your Information

We use the collected information for various purposes, including:

  • To Provide and Maintain Our Services: To process payments, manage disbursements, and settle funds to merchants.
  • Security and Fraud Prevention: To verify identity, monitor transactions for suspicious activity, and protect against fraud, money laundering, and other illegal activities.
  • Compliance and Legal Obligations: To comply with all applicable Pakistani laws, regulatory requirements (including SBP directives), and international compliance standards (like PCI DSS).
  • Customer Support: To respond to inquiries, resolve disputes, and provide technical assistance.
  • Service Improvement: To analyze usage trends, monitor the performance of our gateway, and develop new features and offerings.
  • Marketing (with consent): To send updates, promotional materials, or other information about our services that may be of interest to merchants.

3. How We Share and Disclose Information

We will only disclose your information to third parties in the following circumstances:

  • With Financial Partners: To banks, payment processors, card networks (Visa, Mastercard), and mobile wallet providers (JazzCash, Easypaisa) necessary to process and settle transactions.
  • With Third-Party Service Providers: To vendors who perform essential functions on our behalf, such as cloud hosting, security services, and analytics providers. These providers are strictly bound by confidentiality agreements.
  • For Legal and Compliance Reasons: When required by law, regulatory bodies, or a court order (e.g., in response to a government request or subpoena).
  • For Fraud Prevention: With accredited agencies and partners involved in identifying and preventing fraudulent transactions.
  • Business Transfers: In connection with a merger, acquisition, sale of assets, or other corporate restructuring.

4. Data Security

The security of your data is paramount to Global Flow IT Solutions. We implement industry-standard technical, administrative, and physical security measures, including:

  • Encryption: Data is encrypted both in transit (using SSL/TLS) and at rest.
  • Tokenization: Sensitive payment details are tokenized to minimize the exposure of raw card data.
  • Compliance: We adhere to the Payment Card Industry Data Security Standard (PCI DSS) and other relevant security protocols.
  • Access Control: Strict internal controls and access limitations are in place to ensure that only authorized personnel can access sensitive information.

5. Data Retention

We retain personal and transaction data for as long as necessary to provide our services, maintain business records, and fulfill legal, tax, and regulatory requirements (typically [Insert Number] years, or as mandated by the State Bank of Pakistan). Once no longer required, the data is securely destroyed or anonymized.

6. Cookies and Tracking Technologies

We use “cookies” (small text files stored on your device) and similar technologies (like web beacons) to:

  • Authenticate users and maintain security.
  • Remember preferences and enhance user experience.
  • Analyze site traffic and usage patterns.

You can set your browser to refuse all or some browser cookies, but this may affect the functionality of our website and payment gateway.

7. Your Rights (Applicable to Merchants and Customers)

Depending on your location and the data we hold, you may have the right to:

  • Access: Request a copy of the personal data we hold about you.
  • Correction: Request correction of inaccurate or incomplete data.
  • Withdraw Consent: Withdraw any consent you have previously given for specific processing activities.
  • Lodge a Complaint: Raise concerns with us regarding our handling of your privacy.

To exercise these rights, please contact us using the details below.

8. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices or legal obligations. We will notify you of any material changes by posting the new policy on this page with a revised “Effective Date.”

Powered by
Necessary cookies enable essential site features like secure log-ins and consent preference adjustments. They do not store personal data.
None
Functional cookies support features like content sharing on social media, collecting feedback, and enabling third-party tools.
None
Analytical cookies track visitor interactions, providing insights on metrics like visitor count, bounce rate, and traffic sources.
None
Advertisement cookies deliver personalized ads based on your previous visits and analyze the effectiveness of ad campaigns.
None
Powered by