Privacy and Security Contact

Zashed Alam
zashed.alam@myfundbox.com
Schiller40 Coworking Space, Porschestraße 2c,

38440 Wolfsburg

As a part of our ongoing process and efforts to protect the security and privacy of our users, we are working hard to meet the (General Data Protection Regulation) in short GDPR.

On this page contains information about on what steps we are taking, their process and progress and who to contact for any security concern.

Please click on the link for more information.

Data Processing Partners

 We rely on several trusted third parties to assist with our operations. Depending on the exact nature of your account and what you’ve requested we do, your data may be shared with one of these partners. We carefully evaluate each to make sure they’re handling your personal data with the utmost respect, security, and privacy.

Services
PartnerData SharedPurpose
AnyData center in Frankfurt, Germany
AnyFor Transactions
AnyFor Transactions
AnyFor Transactions
Email, Name  ,Phone number, Address etcFor Email Service Provider
Any explicitly appointed Third partiesAnyDue to the nature of MYFUNDBOX tool, 3rd party partners can be explicitly appointed by you by the act of connecting your MYFUNDBOX account to your account with the 3rd party partner, either through  segment  interface or through API. By explicitly appointing 3rd party partners, you agree to allow MYFUNDBOX to transfer any information needed to provide the MYFUNDBOX services. You might at any time remove the connection between your MYFUNDBOX account and 3rd party partners appointed by you.

How are we compliant?

We rely on several trusted third parties to assist with our operations. Depending on the exact nature of your account and what you’ve requested we do, your data may be shared with one of these partners. We carefully evaluate each to make sure they’re handling your personal data with the utmost respect, security, and privacy.

We summarize here ways in which MYFUNDBOX is meeting these requirements:

  • MYFUNDBOX only collects the minimum information necessary for the provision of our service. Every data field processed by MYFUNDBOX (such as your name, email address, emergency contact details, billing address and payment method) is strictly for the purpose of providing the service.
  • We do not process any special categories (as per Article 9 of GDPR) of personal data.
    We have ensure with our third party partners  to store and process your personal data and that of your customers. We have reached out to them to ensure that they are GDPR-ready. You can find the list of these “sub-processors”.
    • MYFUNDBOX  gives an option to delete your personal data. MYFUNDBOX website along with all the information of your customers stored with us is also deleted. The only information retained is that which is necessary from a compliance or legal standpoint. This includes invoices, subscription information and audit logs.
    • All trial accounts in MYFUNDBOX that expired trial period are automatically deleted.
  • The Import and Export feature allows you the right to portability of all the information that we process on your behalf.
  • MYFUNDBOX  provides, via its app and API, ways of keeping all your personal data and that of your customers accurate. The Self-Serve Portal allows all data to be fully editable.
  • There are unambiguous features built into the app to gather/revoke consent from both you, the merchant and (on behalf of you) from your customers. These features make it as easy for you and your customers to revoke consent as it is to grant.
  • Whenever we capture any form of consent from you or your customers, we log the IP address and the time and date of the action, thereby making granting or revocation of consent demonstrable. These logs are also available on request.
  • To ensure safe transfer of personal data with the EU, we have the EU-U.S. Privacy Shield  certification in place.
    As a data controller, we are able to provide you a copy of your personal data we process. Please contact support@myfundbox.com  for this.

Privacy Features for Data Processing

As data processor, we give you the following features in MYFUNDBOX to help you ensure the privacy of your customers’ personal data.

  • Consent Management: This feature allows you to obtain and revoke explicit consent from your customers and manage it within MYFUNDBOX.
  • Personal Data Management: MYFUNDBOX gives you full control over how personal data of your customers is retained on our systems or erased from it.

Our Security Standards

Certifications help ensure that companies have the right systems in place to demonstrate their abilities in data privacy and security. Here’s how we have been audited by independent third-party auditors:

  • Ensuring security of payment card data through PCI DSS Level 4  compliance. 
  • Our partnerships with Leading Cloud Providers we offer our customers secure PSD2 and PCI Compliant Payment Platform and our data is hosted in Germany.