Last Updated • June 21, 2022
This policy does not apply to companies that we do not own or control, or to the actions of people we do not employ or manage. This includes any companies from whom you may submit your data to independently or through our Services, and any companies from whom you may have visited through a link made available to you through our Services.
What We Do
WalletThat provides mobile wallet pass issuance and management services (our “Services”) to businesses (our “Customers”) to help them transact with their customers or employees (their “Users”). Our website located at “Skycore.com” and other affiliated sites (our “Website”) are used to market and advertise our Services as well as serve as a channel for support and feedback for Customers and Users.
Data We Collect and How We Use It
Information that you provide to us when you use the Website
Certain parts of our Website allow you to submit personal information voluntarily to learn more about our Service or for support reasons. We may collect personal information about you (such as full name, email address, job, title, country, phone number) so we can fulfill your request. You may also provide information about your employer, such as company name, URL and country. We will use this information to respond to your inquiries and communicate with you about our products.
Information that we collect automatically when you use the Website
Information that our Customers provide to us to perform our Services
Customers may place code provided by us onto their own website or mobile app in order to enable us to collect information about a User or obtain a User’s consent. We may add code to a webpage or mobile application that we manage for a Customer in order to collect information or consent from a Customer’s User on the Customers behalf. Our mobile application SDK may collect phone-related metadata (e.g. battery level, device properties, carrier name, motion and other information), IP address, location data, and unique device identifiers. Similarly, we may enable an email address, phone number or short code for a Customer in order to send or receive communication on their behalf. We will collect the customers phone number, carrier and sometimes device information when they communicate by text message. We will collect the customers email, signature, subject and body when they communicate by email.
Information that we collect about our Customers using the Services
We will collect information, including Personal Information, about each Customer when they register for the Service, such as name, email address, phone number company name, company address, support email. We will use that information for correspondence concerning Customer’s use of the Service, regarding such things as product functionality, security updates, billing, support or other service related or marketing reasons. Any recipients of marketing emails will always be able to opt-out of receiving marketing information at any time. If the Customer pays buy credit card, our payment processor will collect payment information in order to process payments for their usage of the Service.
Types of Information we Process
Users may provide personally identifiable information as well as other sensitive information such health information depending on type of Pass and use case within the Mobile Wallet. WalletThat is the Customer’s data processor in the context of User data submitted. We will cooperate with the Customer in the event a User requests access to their data.
Your Privacy Under CCPA
If you are a resident of California, you have the right to request access, modification, and deletion of any personal information we process about you under the California Consumer Privacy Act. Our CCPA obligations cover any California resident’s personal information we process through the use of our Website, Services, and Mobile Apps. Data submitted to another company independently or through our Services is not covered under this section and all inquiries regarding your data rights should be directed to them.
When you use our Website, Services, and Mobile Apps we collect certain categories of personal information from you including identifying, contact, payment, geographic and navigational information as well as system usage data. We may disclose these categories of personal information for business purposes in order to provide our services to you, business operational reasons, and to provide internal data analytics information. We do not sell your personal information to any third parties.
You have the right to request the disclosure of all personal information we process about you over the past 12 months, including the right to know what personal information we disclosed to third parties for a business purpose. We will review your request and provide a disclosure which contains the categories and specific pieces of personal information we have processed, the sources of personal information, the business purpose for processing, and any third parties with whom we have shared your personal information. To ensure your privacy and security, we will take reasonable steps to verify your identity before processing your request.
You have the right to request the deletion of your personal information we have processed. We will review your request and will delete your personal information as well as direct all service providers to delete your personal information from their systems. Deletion of personal information is subject to certain exceptions, such as complying with law enforcement request or other legal requests.
If you choose to exercise any of your data rights, we will not discriminate against you or your use of our Services in any of the following ways, including denying goods or services to you, charging different prices or rates for goods or services, providing a different level or quality of goods or services to you, or suggesting any of the above.
You can send an email to firstname.lastname@example.org to request a disclosure or deletion of your personal information. Please note that you may only make a CCPA-related data access or data portability disclosure request twice within a 12-month period.
Your Privacy Under GDPR
You may request access to your information to review, modify or request deletion of any personal information we process about you. We will review your request and will respond in accordance with applicable data protection laws. To protect your privacy and security, we take reasonable steps to verify your identity before processing rights requests. We will also stop sending marketing communications to you by clicking “Unsubscribe” in any marketing e -mail communications we send you.
If you are a resident of the EEA, you can object to processing of your personal information, ask us to restrict processing of your personal information or, if applicable, request the portability of your personal information. You can send an email to email@example.com to exercise these rights or fill out our Data Privacy Subject Access Request form. If you are a resident in the EEA, you have the legal right to complain to the data protection authorities in the EEA about our collection and use of your personal information.
You may also have the right to make a GDPR complaint to the relevant Supervisory Authority. A list of Supervisory Authorities is available at: http://ec.europa.eu/justice/data-protection/bodies/authorities/index_en.htm. If you need further assistance regarding your rights, please contact us using the contact information provided below and we will consider your request in accordance with applicable law. In some cases our ability to uphold these rights for you may depend upon our obligations to process personal information for security, safety, fraud prevention reasons, compliance with regulatory or legal requirements, or because processing is necessary to deliver the services you have requested. Where this is the case, we will inform you of specific details in response to your request.
Data Hosting & Security
Information collected from our Website, the Service and the Mobile App is transferred to and hosted in the United States. Additionally, we may use third-party vendors and affiliates in various countries around the world to process your information. We have taken appropriate safeguards to require that your personal information will remain protected in accordance our obligations.
We have legitimate business interests to collect process and retain personal information for the purposes described in this Policy. We retain personal information we collect from you for as long as we have an ongoing legitimate business reason or requirement to do so. While retaining the data, we will securely store your personal information. We use appropriate technical and organizational security measures to protect personal information against unauthorized access, disclosure, alteration, and destruction.
Data Disclosure to Third-Parties
We may use third party vendors, consultants and other service providers to help us with any of the collection and processing activities described herein. Those providers work on our behalf, as instructed by our team. Prior to sharing data with a third party, we assess the provider’s controls to ensure the data is correctly processed and adequately protected. We require that any information disclosed to a provider is used only to provide services to us and only as allowed by applicable law. For a list of third party vendors we use to process personal information see Exhibit 2 of our Data Processing Addendum https://www.skycore.com/terms/dpa/
We may provide your information with a subsidiary, parent company or company under common control with Skycore LLC. Our affiliates will use your information only as described in this Policy.
Change of Control
If we are involved in a merger, acquisition or sale of all or a portion of its assets, your information may be shared or transferred as part of that transaction, as permitted by law and only for the purposes disclosed herein.