iCASH PRIVACY STATEMENT


Last Updated: 10 August 2021

I-Remit, Inc. (I-Remit”) and its affiliates and associates (“We,” “Our,” or “Us”) recognize the importance of protecting the privacy and the rights of individuals in relation to their personal information. We respect your rights to privacy.

Privacy laws such as the Data Privacy Act of 2012 (DPA) in the Philippines, Personal Information and Protection of Electronic Documents Act (“PIPEDA”) in Canada, the Privacy Act 1988 in Australia, the Act on the Protection of Personal Information (“APPI) in Japan, The Personal Data Protection Act 2012 in Singapore, the Personal Data (Privacy) Ordinance (Cap. 486 of the Laws of Hong Kong) (Ordinance) in Hong Kong, the General Data Protection Regulation (GDPR) in the United Kingdom, and various relevant privacy laws regulate the way that private organizations can collect, use, store, secure, and disclose information. We recognize the importance of keeping the information provided by our customers secure and confidential and complying with our obligations under the said privacy laws.

We respect your rights to privacy. We are bound by the said privacy laws, as well as the applicable Anti-Money Laundering and Counter-Terrorism Financing (AML/CTF) laws and their respective Regulations, and shall protect your personal information in accordance with said relevant regulations. We endeavor to comply with all of the requirements of privacy laws in respect of the collection, management and disclosure of your personal information.

By accepting and consenting to this Privacy Terms and Conditions, you expressly consent to our use and disclosure of your personal information and direct us to do so in the manner described in this Privacy Terms and Conditions.

What is “personal information?”

Personal information as defined under the DPA refers to any information whether recorded in a material form or not, from which the identity of an individual is apparent or can be reasonably and directly ascertained by the entity holding the information, or when put together with other information would directly and certainly identify an individual. In general, it is any information that can be used to personally identify you. This may include your name, address, telephone/mobile number, e-mail address, occupation, etc. If the information we collect personally identifies you, or you can be reasonably identified from it, the information is considered personal information.

What is an “electronic document?”

Electronic Document as defined under Republic Act 8792 (Electronic Commerce Act of 200) refers to information or the representation of information, data, figures, symbols or other modes of written expression, described or however represented, by which a right is established or an obligation extinguished, or by which a fact may be prove and affirmed, which is receive, recorded, transmitted, stored, processed, retrieved or produced electronically. It is data that is recorded or stored on any medium in or by a computer system or other similar device and that can be read or perceived by a person or a computer system or other similar device. It includes a display, print out or other output of that data. It includes a display, digitally signed documents and any print-out or output, readable by sight or other means, which accurately reflects the electronic data message or electronic document.

Electronic Data message as defined under the Electronic Commerce Act of 200 refers to information generated, sent, received or stored by electronic, optical or similar means.

What personal information do we collect and hold?

We may collect the following types of personal information

  1. Identification details, such as your name, date of birth, gender, signature, nationality, or your identity document such as driver’s licence, passport, or any card, licence or permit issued under a law of a State or Territory;

  2. Contact details, such as your residential or postal address, e-mail address, or telephone/mobile number;

  3. Employment information, such as the nature of your work or profession, name of employer;

  4. Banking and financial information, such as source of income, or the source of funds being remitted through us, or your bank account details;

  5. Personal information contained in any e-mail entering or exiting our servers.

We also collect information on the person/s who will receive the money that you are sending such as contact details, address, banking and financial information, and your relationship to such person.

We may also collect any additional information relating to you that you provide to us directly through our websites or indirectly through the use of our websites or other online facilities, through our representatives or otherwise.

How do we collect your personal information?

We collect your personal information directly from you unless it is unreasonable or impracticable to do so. For example, we collect your personal information when you apply for or use a product or service, or when you talk to us or our representative in person or on the phone. We also collect information from you electronically; for instance, when you visit our website, send us an e-mail, or whenever you apply for access to our products and services electronically.

We may also collect information about you from other people or organizations. This may happen without your direct involvement. For instance, we may collect personal information about you from: our related bodies corporate, agents, and other representatives; publicly-available sources of information, such as public registers; your representatives (including your legal adviser, financial adviser, executor, administrator, guardian, trustee, or attorney; your employer; credit reporting agencies; other organisations, who jointly with us, provide products or services to you; commercial information service providers, such as companies that provide fraud prevention reports; law enforcement agencies and other government entities.

It is understood that you authorise us to verify personal information that you have provided from any government regulatory body for purposes of complying with the customer identification requirements of the applicable AML/CTF regulations.

For what purposes do we collect, hold, use, and disclose personal information?

We collect personal information about you so that we can perform our business activities and providing you with the product or service that you need. Generally, we only collect information to provide you with a specific product or service and you have consented to that collection.

We collect, hold, use, and disclose your personal information for the following purposes:

  1. Identifying you in compliance with the applicable AML/CTF regulations, and our internal AML/CTF policies and guidelines;

  2. Identifying the person/s who will receive the money that you are sending;

  3. Sending communications requested by you;

  4. Administering the products and services that we provide or any other services provided by our related bodies corporate and our service providers;

  5. Managing your relationship with us or our related bodies corporate;

  6. Conducting market research, data processing, and statistical analysis;

  7. Providing you with information about products and services that we believe may be of interest to you including from our related bodies corporate and business partners (If you ask us not to provide you with this information, we will comply with your request);

  8. Updating our records and keeping your contact details up to date;

  9. Providing your updated personal information to our related bodies corporate, contractors, or service providers;

  10. Complying with any law, rule, regulation, lawful and binding determination, decision or direction of a regulator or in co-operation with any governmental authority of any country (or political subdivision of a country).

What happens if we cannot collect your personal information?

If you do not provide us with the personal information described above, we may not be able to comply with our legal obligations and properly manage our business risks. Hence, we may not be able to provide you with our products and services.

To whom may we disclose your personal information?

We may disclose your personal information to:

  1. Our employees, related bodies corporate, contractors or service providers for the purposes of operation of our business (both within the Philippines and overseas), including, without limitation, web hosting providers, IT systems administrators, couriers, payment processors, data entry service providers, call centers, electronic network administrators, our auditors, and our professional advisors such as accountants, solicitors, business advisors and consultants; and

  2. The Bangko Sentral ng Pilipinas (BSP), Anti-Money Laundering Council (AMLC), any law enforcement agency, and any government authority that requires us to do so.

We may combine or share any information that we collect from you with information collected by any of our related bodies corporate (within the Philippines as well as overseas).

How can you access and correct your personal information?

You may request access to any personal information we hold about you at any time by contacting us (see details below). Where we hold information that you are entitled to access, we will provide you with suitable means of accessing it (e.g., by phone, post or sending it to you by e-mail). We will not charge for simply making the request and will not charge for making corrections to your personal information provided the correction will not have any material effect on your transaction.

There may be instances where we cannot grant you access to the personal information we hold. For example, we may need to refuse access if granting access would interfere with the privacy of others or if it would result in a breach of confidentiality. In such cases, we will provide you written reasons for any refusal.

If you believe that personal information we hold about you is incorrect, incomplete, or inaccurate, then you may request us to amend it. We will consider if the information requires amendment. If we do not agree that there are reasonable grounds for amendment, then we will let you know.

What is the process for complaining about a breach of privacy?

If you believe that your privacy has been breached, please contact us using the contact information below and provide details of the incident so that we can investigate it.

We will attempt to confirm as appropriate with you your understanding of the conduct relevant to the complaint and what you expect as an outcome. We will inform you whether we will conduct an investigation, the name, title, and contact details of the investigating officer and the estimated completion date for the investigation process.

After we have completed our inquiries, we will contact you, usually in writing, to advise the outcome and invite a response to our conclusions about the complaint.

If we receive a response from you, we will assess it and advise if we have changed our view. If you are not satisfied with the outcome, we will advise you about further options including, if appropriate, lodging a complaint with the National Privacy Commission by accessing https://www.privacy.gov.ph/complaints-main/.

Do we disclose your personal information to anyone outside the Philippines?

As mentioned earlier, we disclose personal information to our related bodies corporate and third party suppliers and service providers which may be located overseas in order to process your transactions and for the purposes listed above.

We take reasonable steps to ensure that the overseas recipients of your personal information do not breach the privacy obligations relating to your personal information.

The full list of the countries in which I-Remit operates can be found in www.iremitx.com. Much of the information we hold about you are stored electronically in secure data centres which are located in the Philippines and owned by I-Remit or external service providers. Some information we hold about you are stored in paper files.

Some information we hold about you are stored in paper files. We also hold your personal information in electronic documents and files that are stored in secured facilities owned by iRemit or its external service providers.

I-Remit adheres to industry best practice in securing the privacy of electronically transmitted data ensuring protection both at the network and database levels. We use a range of physical and electronic security measures to protect the security of the personal information. We hold and prevent misuse, loss, unauthorized access, modification, or disclosure. I-Remit engages an independent third party to conduct vulnerability assessment and penetration testing to ensure that its systems and IT infrastructure have been properly secured.

What are my rights regarding my personal information?

  • You have the right to request a copy of your personal information you have previously provided to us for purposes to which you have consented or where our use is required for a contract with you. This can be provided in an easy readable electronic format or transferred to a third party nominated by you. We may charge you an administrative fee for providing the information, or not act upon your request, if the request is manifestly unfounded or excessive.

  • You have the right to request a copy of your personal information you have previously provided to us for purposes to which you have consented or where our use is required for a contract with you. This can be provided in an easy readable electronic format or transferred to a third party nominated by you. We may charge you an administrative fee for providing the information, or not act upon your request, if the request is manifestly unfounded or excessive.

  • You have the right to ask us to update, correct or supplement the data we hold about you.

  • You have the right to request the deletion of your personal data. After receiving and reviewing your request, if legitimate, it will be our responsibility to promptly cease processing and to delete your personal information.

  • Where you have consented to the processing of your personal information, you have the right to withdraw your consent at any time.

  • You have the right to opt out of sales and marketing communications from us at any time.

  • To ensure that the data of our users are not subject to breaches or illegitimate use by third parties, we will ask you to confirm your identity before carrying out your request.

If you have any questions or concerns regarding our privacy policy, the treatment of your privacy, or a possible breach of your privacy, please contact our Data Privacy Officer by sending an e-mail at: DPIRT@iremit-inc.com