What personal information do we collect from you on our website or our mobile application?
The following table lists the data we may collect about you and when we collect such data:
|Type of data||Description of data||When collected|
|Identity Data||Name||On initial registration of a user account or when user updates such account information|
|Contact Data||Your email||When a user account is created|
|Your billing address||When registering a credit product|
|Credit Product Data||If you registered a credit product in your user account, the last 4 digits of that credit product. With respect to certain credit products, you may be required to provide the full account number as well as other account information depending on the financial institution that issued the account||Upon initial registration of a credit product by the Cardholder, or when the Cardholder updates such credit product information|
|Name on the credit product|
|Expiration date of the credit product|
|CVV, or the security code of the credit product|
|Billing address associated with the credit product|
|Profile Data||User name||Created by the user during user account registration|
|Virtual Card Data ("VCN")||Recipient email and Registered Cardholder email||Entered by Registered Cardholder when creating VCNs, or by Recipient when requesting VCNs|
|Either last four digits of VCN or full card number of VCN||Created upon request by Registered Cardholder and transmitted to the accounts of both the Registered Cardholder’s user account and to the Recipient’s user account|
|Billing address (which will be the same as the billing address of the registered credit product)|
|Transaction Data||Date of transaction and when the transaction is posted on the card account||At the time of transaction, and transmitted to the accounts of both the Registered Cardholder's user account and to the Recipient's user account|
|Merchant name and location|
|Receipt image||Photo of paper receipt||Input by user via app or website interface|
When first opening a user account with us, we will ask you to enter your first name, last name, a valid phone number, a valid email address, and the creation of a password. If you register a Registered Card within Extend, we will ask you for your credit card information including the billing address associated with that user account, and may display some of that information in the Extend application. Also, each time you request to create or use a Virtual Card, the Virtual Card information will be displayed in the Extend application, including a CVV or security code, along with the billing address of the Registered Card, which some merchants may require be included as part of a purchase transaction. At the time you make a transaction or attach receipts in the App, the transaction data and receipts will be instantly made visible to both the Cardholder and the Recipient.
When do we collect information?
We collect information when you enter information into the Extend application; from the financial institution that issued the Registered Card when you register that card in Extend; and from the card network every time a transaction occurs using a Virtual Card.
How do we use your information?
We may use the information we collect from you when you register, transact, or use certain other application features in the following ways:
- To improve our services in order to better serve you.
- To allow us to better service you in responding to your customer service requests.
- To quickly execute your requests to register, transfer, or deregister a Registered Card or to send, receive, modify, or cancel Virtual Cards through Extend.
- To ask for ratings and reviews of our services.
How do we protect your information?
Your personal information is encrypted in transit to and from our services via Secure Socket Layer (SSL) technology. All data is encrypted on the Extend database and any card transaction data sent through Extend is transmitted in compliance with the Payment Card Industry Data Security Standards, or PCI-DSS v3.2.1.
Our application and website may utilize “cookies” or other technology that serve a similar function, which help us to provide the services to you and to better understand user behavior so that we may provide and improve our services to you.
We do not sell, trade, or otherwise transfer to outside parties your personally identifiable information unless we provide you with prior notice.
In connection with providing our services to you, we may share or transfer your personally identifiable information to the following third parties: the financial institution that provides the Cardholder with the Registered Card used in the Extend services or applications; merchants; your employer or the company through which you are utilizing the Extend services or applications; or card networks such as Visa, MasterCard or American Express.
In addition, other third parties with which we may share or transfer your personally identifiable information may include entities that assist us in operating our mobile or web applications, conducting our business, or serving our users, so long as those parties agree to keep this information confidential. We may also release information when required to comply with law.
We may use, or provide to third parties, non-personally identifiable information that we collect about our users and their transactions.
[Effective on July 1, 2019]