GFT Pay Inc. Privacy Policy

Effective Date: 6/2/2025

GFT Pay Inc. ("GFT," "we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, share, and protect your personal information when you use GFT's products and services, including our website, mobile application, digital gift cards, and wallet integrations (collectively, the "Services").

1. Information We Collect

• a. Information You Provide:
  • Name, phone number, and email address
  • Billing and shipping information
  • When required, date of birth and Social Security Number (SSN) (collected and processed by third-party KYC vendors)
• b. Information Collected Automatically:
  • Device data (IP address, device ID, browser type, operating system)
  • App usage data and clickstream behavior
  • Location data, if you opt in via your device
• c. Payment and Card Data:
  • Card number, expiration date, and CVV (collected by our payment processors, not stored by GFT)

2. How We Use Your Information

• Operate and deliver our Services
• Verify your identity and perform fraud prevention
• Issue and manage digital cards and payments
• Provide customer support
• Send important service-related notifications
• Analyze usage trends and improve our products
• Send marketing communications (if you opt in)

3. How We Share Your Information

• Issuing Bank: Florida Capital Bank, N.A.
• Payment Networks: Discover and affiliated partners
• Third-Party Vendors: Including identity verification (KYC) partners, analytics providers, customer support platforms, and blockchain wallet validators
• Service Providers: That help operate our platform and are contractually obligated to protect your information
• Legal Obligations: We may disclose information if required by law or in response to valid legal requests

We do not sell your personal information.

4. Cookies and Tracking

We may use cookies or similar tracking technologies on our website and app to understand usage patterns, improve features, and support analytics. You can manage your cookie preferences through your browser settings.

5. Your Rights and Choices

For California Residents (CCPA):

• Right to know what personal information we collect
• Right to request deletion of your data
• Right to opt out of sale of personal data (we do not sell personal data)
• Right to non-discrimination for exercising privacy rights

For EEA Residents (GDPR):

• Right to access, correct, or delete your data
• Right to data portability
• Right to restrict or object to processing
• Right to lodge a complaint with a supervisory authority

To exercise these rights, contact us at privacy@gftpay.com. We may need to verify your identity before fulfilling your request.

6. Data Retention

We retain your data only as long as necessary to provide our Services, meet legal obligations, resolve disputes, and enforce our agreements.

7. Data Security

We implement reasonable administrative, technical, and physical safeguards to protect your personal information. While we strive to use commercially acceptable means to protect your information, no method of transmission over the internet or electronic storage is 100% secure.

8. Children’s Privacy

Our Services are not intended for children under 13, and we do not knowingly collect personal information from children.

9. International Users

While our Services are intended primarily for users located in the United States, they may be accessible from other regions. If you use our Services from outside the U.S., you understand that your data will be processed and stored in the U.S.

10. Changes to This Policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify you via email or through our Services. Continued use of the Services after such changes constitutes your acceptance of the revised policy.

11. Contact Us

If you have any questions or concerns about this Privacy Policy, please contact us at:

GFT Pay Inc.
250 E Pearson St, Suite 1601, Chicago IL 60611
Email: privacy@gftpay.com