Protection of personal data in accordance with the General Data Protection Regulation of the European Parliament and the Council No. 2016/679-Regulation and Implementation of the General Data Protection Regulation
WSPay, as the executor of credit card authorization and billing, handles personal data in the capacity of processor and personal data in accordance with the General Data Protection Regulation of the European Parliament and the Council No. 2016/679 and according to the strict rules of the PCI DSS L1 regulation on protecting registration and data transfer.
WSPay uses an SSL certificate with 256-bit encryption and TLS 1.2 cryptographic protocol as the highest level of protection when registering and transferring data.
Personal data used for the purpose of authorization and billing, i.e. in the performance of obligations from the Agreement or based on the Agreement, are considered confidential data.
The following personal data of the customer are required for the execution of the Agreement (authorization and payment):
Name and surname
Duration of the card
CVV card code
WSPay does not process or use this personal data except for the purpose of executing the authorization contract and billing.
WSPay guarantees the fulfillment of all conditions specified by the current regulations on the protection of personal data for the executors of personal data processing, and in particular the undertaking of all necessary technical, organizational and security measures, and this is especially confirmed by PCI DSS L1 certificate.