H-Messenger (hereinafter "we") collects data on you when you use our mobile applications, websites and other online products, services (referred together herein as the "Services"), as well as during other interactions and communications between us.
In general, we collect only the data, which allows us to provide our Services for you at the highest level. In addition, it helps us to protect our Services from fraud and spam.
For applications, products, services developed and published for other entities of the Group, which H-Messenger is part of, other entity’s privacy policies are also applicable.
We process the data received from you and generated in the scope of our relationship with you. This involves personal data (for example, name, address, contact details, date and place of birth, etc.) or data that permits identification when used in conjunction with other information (for example, bank account number). In addition we process – insofar as this is necessary to provide our services – personal data that we obtain in an authorized manner from publicly accessible sources (for example, Internet) or which is provided to us by other companies of the Group we are part of or by third parties (for example, cooperation partners).
We collect information on operations related to your use of the Service, including type of the ordered services, date and time of service performance, its cost and other relevant data on the operation. Besides, if anyone uses your code(s), we can connect your name with this person.
We collect information on how you and website visitors interact with our Services, on chosen preferences and settings.
We may collect information on your provider, country (region), information on User’s browser, including IP address and cookies, and transit route of the Users to the Website/mobile application of H-Messenger with visiting activity; mobile device, including, for example, device model, operating system and version, name of software and files and their version, preferred language, unique device identification, identifier for advertisers, serial number, data on device movement and information on mobile network.
H-Messenger collects personal data for the purposes and on the legal basis hereafter, in accordance with the applicable data protection regulations:
Data processing is done for the purpose of providing transactions and financial services in the scope of the execution of our contracts with you or for the execution of pre-contractual measures, which are performed on request. The purposes of the data processing are mainly based on the specific product and may include, among others, an analysis of the needs, advice, management and support of assets, and the execution of transactions. You will find more information on the purposes of data processing in the contractual documents and the applicable Terms and Conditions.
If necessary, H-Messenger will process your data beyond the limits of performance of the contract in order to protect its legitimate interests or the legitimate interests of third parties, for example
If you have given us your consent for the processing of personal data for specific purposes, the lawfulness of this processing is based on your consent. Any consent granted can be revoked at any time. The withdrawal of consent does not have retroactive effect on the use of your data.
The activities are subject to various regulations and requirements (for example, the Swiss Banking Act, the Anti Money Laundering Act, tax law), as well as other directives and regulatory requirements specific to the activity (for example, the Swiss National Bank and FINMA – Swiss Financial Market Supervisory Authority –). The data processing is used, among other things, to verify identity and age, to prevent fraud and money laundering, for compliance with reporting obligations in tax matters, as well as risk assessment and management within the Group H-Messenger is part of.
H-Messenger does not sell any personal information to anyone. We may provide your personal information to third parties not related to H-Messenger to fulfil our contractual and legal obligations. The use of service providers (notably, subcontractors) is in accordance with the provisions of the Swiss Data Protection Act. For example, external service providers are, in turn, required to respect banking secrecy and the requirements of data protection law. These are companies that provide services, notably in the following categories: IT, payment transactions, securities’ settlement, credit risk management, telecommunications, logistics, printing and sending of documents.
H-Messenger only transmits information concerning you or makes it available to third parties if there is a legal basis, if you have given your consent, or if we are authorized to provide such information. Under these conditions, the recipients of personal data may be, for example:
H-Messenger may transfer your data to countries other than Switzerland (so-called third countries) (i) if it is necessary to execute your orders (for example payment orders), (ii) if it is required by law (e.g., reporting obligations) or (iii) if you have given us your consent.
For data transferred abroad, Swiss law is not applicable. These transfers are, however, secured by corresponding guarantees to ensure an appropriate level of data protection.
We only keep your personal data for as long as necessary to fulfil the purpose for which it was collected, taking into account our legitimate interest in keeping it, for example to respond to requests of information or to resolve problems, or to comply with our legal and regulatory obligations.
If the data is no longer necessary for the performance of contractual or legal obligations, it will be deleted at regular intervals, unless it is necessary for temporary further processing, for example:
You have the following rights:
You also have a right of recourse with a data protection supervisory authority. You can revoke your consent for the processing of personal data at any time by contacting us. Please note that such revocation is only effective for the future. The processing that took place before the revocation is not affected.
Helveticard SA
Data protection officer
Boulevard Emile-Jaques-Dalcroze 7
1204 Genève
This policy is regularly reviewed and may be updated at any time without notice.
If you have any questions regarding the processing of your data, please contact the Data protection officer.