While information is the cornerstone of our ability to provide superior service, our most important asset is the customers’ trust. At i2c Inc., our top priority is to keep our customer’s Personal Information secure, use it only as the customer would want us to, and honor each individual’s right to access and update their Personal Information at any time. We commit to the following as our policy to each of our customers and constituents:
We will safeguard the Personal Information shared with us in accordance with strict standards of security and confidentiality.
We will limit the collection and use of Personal Information to only what is necessary to deliver superior service to our customers. Such Personal Information may be used for the purposes of administering payment services, advising customers and constituents about our products, services and other opportunities, and to administer our business, which may include implementing and operating web sites; facilitating sales and marketing campaigns including loyalty programs; screening and verifying the identity of persons applying for payment cards and electronic payment accounts which may also be a legal/regulatory requirement; approving and issuing such payment cards and accounts; processing payment authorizations and payment transactions; providing customer service and support; monitoring, detecting and preventing fraud; providing compliance services; providing compliance and security assurance reports under various regulatory regimes including PCI DSS, ISO27001:2013, SSAE16/ISAE3402 SOC1/2 Type II; and other related services.
We will retain each individual’s Personal Information for only as long as needed to fulfill the intended purpose for which it was collected, or as may be required by law.
We will make access available to our customers so they can change their Personal Information at any time, and make other choices about the use and disclosure of their Personal Information. Such access and changes may be made through our online portal or through our Customer Service Center by means of telephone, fax, letter, email, mobile texting and other forms of communication.
We will not reveal Personal Information to a third party unless we have previously informed the individual in advance through disclosures and agreements, have received the individual’s consent, or are required to by law. Examples of third parties we reveal and share Personal Information include payment card and payment account issuers, payment service providers, legal and regulatory authorities and identity verification service bureaus. Our customers agree at the time of service enrollment to allow their Personal Information to be shared with these third-party organizations. If an individual chooses after enrollment to further restrict the use or disclosure of their Personal Information, this may result in the limitation or discontinuance of certain services we provide that individual.
We will provide timely notice to our customers of the type of Personal Information we collect, how we use it, and the types of third party organizations we may share it with.
We will maintain proper safeguarding of our customer’s Personal Information on an on-going basis to protect the privacy and confidentiality of each individual.
We will require any other organization with whom we share Personal Information to have at least the same strict level of security and confidentiality as we do, and require that they allow us to verify their compliance as may be needed.
We will continuously assess ourselves to ensure that our customer’s privacy is being respected. We will conduct our business in a manner that fulfills our Policy in the many nations we do business.
i2c Inc. maintains compliance with the US Department of Commerce International Trade Administration’s Privacy Shield Framework including the seven EU-US Privacy Shield Principles and the sixteen EU-US Privacy Shield Supplemental Principles, regarding the collection, use, retention and sharing of Personal Information from European Union member countries and Switzerland. These Privacy Shield Principles include: Notice; Choice; Accountability of Onward Transfer; Security; Data Integrity and Purpose Limitation; Access; Recourse, Enforcement and Liability. In cases of Onward Transfer, i2c Inc. retains responsibility for the Personal Information we receive and subsequently transfer to a third party acting as an agent on our behalf. For more information about the US Commerce Department International Trade Administration’s Privacy Shield Framework, please visit https://www.privacyshield.gov.
Judicial Arbitration and Mediation Services Inc. (JAMS).
The services of JAMS are provided to you at no cost. If you do not receive a timely acknowledgment of your complaint from us, or if we have not addressed your complaint to your satisfaction, you may, under certain conditions, invoke binding arbitration via i2c’s Alternative Dispute Resolution Provider, JAMS. Should you wish to pursue this option, you may visit the following JAMS webpage for more information or to file a complaint:
i2c Inc. is subject to the investigatory and enforcement powers of the US Federal Trade Commission (FTC) and the US Department of Transportation. We may be required to disclose Personal Information in response to lawful requests by public authorities, including US national security and local/regional law enforcement agencies.
We self-certify compliance with www.privacyshield.gov.