Last Updated: 31 August, 2018

Qkr! Mobile App Privacy Notice

MasterCard International Incorporated and its affiliates (“MasterCard”) respect your privacy. This Privacy Notice applies to registered users of the Qkr! mobile application (collectively, “Qkr! Services”), available through your app store. It describes the types of personal data we collect in connection with the Qkr! Services, the purposes for which we collect that personal data, the other parties with whom we may share it and the measures we take to protect the security of the data. It also tells you about your rights and choices with respect to your personal data, and how you can reach us to update your contact information or get answers to questions you may have about our privacy practices. The entity responsible for the collection and use of your personal data in the context of the Qkr! Services is:


MasterCard International Inc

2000 Purchase Avenue

Purchase NY 10577

U.S.A.


This Privacy Notice does not cover the collection and use of your personal data by third parties on the application, on other MasterCard branded websites, by your MasterCard Card issuers (e.g. your bank), or any other information or communications that may reference MasterCard outside the Qkr! Services.


Click on one of the links below to jump to the listed section:


1. Personal Data We Collect



For the purpose of this Privacy Notice, “personal data” means any information relating to an identified or identifiable individual. In connection with your use of Qkr! Services, we ask you to provide certain personal data when you register on the application, such as your name, email address, password, country, postal address and payment card information. You also have the option to provide a photograph of yourself during the registration process.


If you are using certain functionality (e.g. ordering school services), you may also provide personal data relating to your child such as your child’s name, gender, and class in school. As an optional requirement, you may also provide a photograph of your child when you sign up for the school services. By providing this information, you acknowledge that you have the necessary authority to provide us with the personal data of your child.



We receive certain data from merchants about your transactions using the Qkr! Services, including but not limited to, description of items, quantity, price and subtotal and payment cards registered with Qkr!, merchant name, currency, amount, date and time of order and information about whether or not the order was completed.


2. Information We Collect Automatically


When you use the Qkr! Services, we may collect certain information by automated means such as device ID, network information, information on actions taken on the application, and dates and times of actions, and other mobile analytics. We use this information to improve our Qkr! Services based on an understanding of factors such as how many users access or use our service, which content and features of our service most interest our visitors, and how our service performs from a technical point of view. Upon your consent, we may collect the IP address or GPS coordinates assigned to a device by the third party providing Internet access to the device to determine your location in order to provide you with up-to-date list of merchants using Qkr! at your current location.


3. How We Use the Personal Data We Collect


We may use the personal data we obtain about you to:


During the registration process, you may choose to receive marketing communications from us and/or merchants using Qkr! In order to send you these marketing communications, we use your personal data such as your name, e-mail address, and preferences. You can, at any time and free of charge, choose not to receive any notifications by clicking on the unsubscribe link within the e-mail sent to you, or by e-mailing us using: https://www.mastercard.com/au/personal/en/general/email-opt-out.html. You can also use the “Settings” section to opt-out from receiving marketing communications or to specify which, if any, marketing communications you would like to receive.


4. Personal Data We Share


We do not sell or otherwise disclose personal data we collect about you, except as described in this Privacy Notice or otherwise disclosed to you at the time the data is collected.


We share information to provide access to the Qkr! Services, and the functionalities that you request (e.g. payment with Qkr!).


We may share the personal data we collect with our affiliates, providers, financial institutions that issue payment cards or merchants that process payment card transactions. We share personal data to perform and/or facilitate payment card transactions (including card fraud detection and prevention). For example, in the course of supplying the Qkr! Services, we may provide an individual's card data to financial institutions about their cardholders' transactions that MasterCard processes. In the course of supplying some of our products we may also provide personal data to a merchant to facilitate a payment card transaction that you request. If you are using certain functionality (e.g. ordering school services), we will share transaction reports to the merchant about the transactions which are made at that merchant.

We also may share aggregated or de-identified data with participating merchants and financial institutions that issue your card.

We also may share personal data with our service providers who perform services on our behalf. We do not authorize these service providers to use or disclose the data except as necessary to perform certain services on our behalf or comply with legal requirements. We require these service providers by contract to appropriately safeguard the privacy and security of personal data they process on our behalf.


We also may disclose data about you: (i) if we are required to do so by law or legal process, or (ii) when we believe disclosure is necessary or appropriate to prevent physical harm or financial loss, or in connection with an investigation of suspected or actual fraudulent or illegal activity.


We also reserve the right to transfer personal data we have about you in the event we sell or transfer all or a portion of our business or assets. Should such a sale or transfer occur, we will use reasonable efforts to direct the transferee to use personal information you have provided to us in a manner that is consistent with this Privacy Notice.


5. Your Rights and Choices


You may have certain rights under applicable law regarding the personal data we maintain about you. We offer you certain choices about what personal data we collect from you, how we use that information, and how we communicate with you.


You may choose not to provide personal data to MasterCard. However, if you do not provide personal data when requested, you may not be able to benefit from the full functionality of the mobile application and the Qkr! Services and/or we may not be able to provide you with relevant information, products and/or services.


At any time, you can access your account by logging into your account. You can view or change your personal details and manage your marketing preferences through your account. You can at any time tell us not to send you marketing communications by e-mail by clicking on the unsubscribe link within the marketing e-mails you receive from us or by changing your settings on your preferences page on your account. We will apply your preferences going forward. You can withdraw any consent you may have given to us. In some circumstances, withdrawing your consent to our use or disclosure of your personal data may mean that you cannot take advantage of certain products or services.


Where required by law, MasterCard obtains your prior opt-in consent at the time of collection for the processing of (i) personal data for marketing purposes and (ii) personal data deemed sensitive pursuant to applicable law.


Subject to applicable law, you may have the right to request access to and receive information about the personal data we maintain about you, update and correct inaccuracies in your personal data, and have the information blocked or deleted, as appropriate. The right to access personal information may be limited in some circumstances by local law requirements. To update your preferences, ask us to remove your information from our mailing lists, delete your account or submit an access request, please contact us as specified in the “How to Contact Us” section below.


6. How We Hold and Protect Personal Data


We may hold your personal data in a variety of ways, including in electronic form. We maintain appropriate administrative, technical and physical safeguards to protect personal data against accidental or unlawful destruction, accidental loss, unauthorized alteration, unauthorized disclosure or access, misuse, and any other unlawful form of processing of the personal data in our possession. The types of measures we take vary with the type of information, and how it is collected and stored.


We restrict access to personal data about you to those employees who need to know that information to provide products or services to you. We also take measures to destroy or permanently de-identify personal information when there is no longer a business need to keep the information. The types of measures we take vary with the type of information, and how it is collected and stored. Unfortunately, no data transmission can be guaranteed to be 100% secure. Thus, while we strive to protect your personal data, we cannot ensure or warrant the security of any data transmission.


7. Data Transfers


We may transfer or disclose personal data to recipients in countries other than the country in which the data was originally collected. These countries may not have the same data protection laws as the country in which you initially provided the information. When we transfer or disclose your personal data to other countries, we will protect that information as described in this Privacy Notice.


MasterCard is a global business. To offer our services, we may need to transfer your personal data among several countries, including the United States, where we are headquartered. We comply with applicable legal requirements providing adequate safeguards for the transfer of personal data to countries outside of the European Economic Area or Switzerland.


8. Features and Links to Other Websites


Within the mobile application, you may choose to use certain features for which we partner with other entities or participating merchants, or click on links to other websites for your convenience and information. These features, which may include social networking and geographic location tools, and other websites, may operate independently from MasterCard. They may have their own privacy notices or policies, which we strongly suggest you review. To the extent any features or linked websites you visit are not owned or operated by MasterCard, we are not responsible for the sites’ content, any use of the sites, or the privacy practices of the sites.


9. Updates to Our Privacy Notice


This Privacy Notice may be updated periodically and without prior notice to you to reflect changes in our personal data practices. We will post a prominent notice on our websites to notify you of any significant changes to our Privacy Notice and indicate at the top of the notice when it was most recently updated.


10. How to Contact Us


If you have any questions or comments or complaints about this Privacy Notice or our privacy practices or if you would like to exercise your rights or to update the information we have about you or your preferences, please click here. You may also contact us by writing to:


Global Privacy Officer
MasterCard Worldwide
2000 Purchase Street
Purchase, New York 10577
USA


To assist us in responding to your request, please give full details of the issue. MasterCard will review and respond to all complaints within a reasonable time. If you are not satisfied with how we respond, you may take your complaint to the applicable regulator in your jurisdiction.


For more information on MasterCard’s privacy practices in other contexts, please refer to our Global Privacy Notice available here.