When the customer applies for and uses Vivid’d products and services, Vivid must collect and process certain personal data, because they are necessary to fulfill Vivid’s contractual and pre-contractual obligations. For example, Vivid relies on this legal basis to process data when customers make payments into and out of their accounts, make purchases with their Vivid cards, buy or sell financial instruments or digital assets, or require customer service assistance.

In certain cases, Vivid and/or Vivid’s partners are required to collect, process and store personal data in order to comply with applicable laws, such as tax reporting obligations, checks and monitoring relating to prevention of money laundering and fraud, etc.

Last but not least, Vivid may need to collect and process personal data to safeguard its legitimate interests.

In order to provide customers with certain functions and services, Vivid has to share customers’ personal data with partners, external third party service providers, related and regulatory entities.

They only process customers’ personal data on the basis of data processing agreements and according to strict instructions, which do not allow them to use the data for any other purposes without notifying customers or asking for their consent.

For example, Vivid has to share the information about customer’s cards with Google Pay and Apple Wallet so that customers can connect their cards to the wallets. Other cases when Vivid shares personal data include card delivery, transfer processing, cashback accruing partners and many other things that make Vivid so handy.

Some of our partners, service providers or other parties we transfer your personal data to may be located in countries throughout the world, including outside the EU or the EEA. Therefore, the data may be sent to countries with different data protection laws than your country of residence.

In such cases, to ensure that your personal data receives a comparable level of protection, we provide appropriate safeguards, such as adequacy decisions and frameworks or Standard Contractual Clauses adopted by the European Commission.

Vivid has the security of your personal data close to heart.

To help protect the privacy of personal data customers provide to Vivid through the use of Vivid’s mobile app or websites, Vivid maintains physical, technical and administrative safeguards. Vivid updates and tests its security technology on an ongoing basis. Vivid restricts access to customers’ personal data to those employees who need to know that information to provide services to customer. In addition, Vivid trains its employees about the importance of confidentiality and maintaining the privacy and security of personal data.

Also, to protect customer’s personal data, Vivid’s Privacy Team makes sure that personal data shared with third parties are only partial and strictly necessary to make using Vivid handy, or anonymised. In other words, even if Vivid shares some part of personal data, it doesn’t allow anybody to identify the customer as a person using the data.

We keep your personal data for as long as it is necessary to achieve the purpose for which it was collected, usually for the duration of our contractual relationship plus any period thereafter as required by anti-money laundering or any other applicable laws and regulations, or in cases of potential or ongoing court litigation. When the purpose for processing is fulfilled, but we are required to keep the data, it will be restricted and stored in a secure archive until it can be deleted.

Vivid reserves the right to amend its privacy policy at any time, for any reason, without notice to customers, other than the posting of the amended Privacy Notice on Vivid’s website or in the mobile app.

Customers can find Vivid’s Privacy Notice under the following link.