Contact us

To help us direct you question to the best team to provide an answer please select which option best descibes you.

  • I would like to speak to someone about setting up a new account
    Next
  • I'm an existing customer and need help with my account
    Next
  • I’m looking to integrate payments to my software platform or application
    Next
  • I’m a member of the media
    Next

GDPR - What are we doing about it?

Mar 22, 2018

With just over two months until the GDPR deadline, here is a brief understanding as to how we’ve been going about things

With just over two months until the GDPR deadline, here is a brief understanding as to how we’ve been going about things. Look out for our ‘top 10 tips’ on GDPR available here next week and some considerations for what you might need to do.

The GDPR enters into law on 25th May, 2018 and Paysafe has a regulatory programme in place to manage compliance with this new law. 

Initially, we carried out a risk analysis across relevant business areas, by way of gap analysis, assessing Paysafe’s GDPR readiness and designing an appropriate compliance programme to address any gaps. This programme has been independently assessed by a ‘big four’ consultancy, as part of our wider programme assurance. We have also developed a very strong internal governance framework, to ensure the necessary oversight and decision-making is in place up to and including board level. We feel this is crucial for success and in ensuring effective buy-in and oversight.

Paysafe has in place a separate team to deliver its GDPR Programme. Additional to our existing Group Privacy team, their sole focus is to help Paysafe implement the GDPR Programme, under an experienced Programme Leader, reporting to our Group Privacy Officer. 

What’s next? 

We’re reviewing all business relationships with suppliers, merchants, other partners or affiliates and customers, to ensure alignment to GDPR. It’s a big job! If any changes are necessary or appropriate to meet GDPR requirements then we are getting in touch with them.   

Do you need to do anything? 

Well, of course, you need to ensure that your own organisation is also working towards GDPR implementation, to the extent you fall within its scope; i.e. you are a Processor or Controller established in the EU and processing the personal data of EU citizens; or if based outside the EU, you are offering goods and services aimed at EU citizens and/or monitoring their behaviour within the EU (e.g. using cookies or similar technology to track / profile). So, GDPR is different to existing European laws, as it has extra-territorial effect.  

We all know the fines are potentially huge under GDPR (the higher of up to 4% of annual global turnover or EU20mn), although a potentially greater risk is that of being prohibited from processing your database, or not being able to market to it, or prohibited from transferring data internationally. 

Don’t overlook the risk of consumer litigation or claims. Non-profit organisations such as WHICH? can now promote and manage consumer claims. GDPR allows a type of ‘quasi class action’, where offending organisations could find themselves paying large sums to settle 1,000s of claims for, say, misuse of data.  

If you’re not sure about your own GDPR compliance here is an excellent guide to GDPR provided by law firm, Baker McKenzie. It provides commentary and guidance across most areas of GDPR, as well as providing a good initial overview. 

We also released a whitepaper which explores the trifecta of legislation that will fundamentally change the face of digital commerce and payments in 2018. Download it here

The UK’s national Data Protection Authority is the Information Commissioner’s Office and they provide a GDPR Checklist for both Processors and Controllers, which you might wish to cross-check against. Click here to access their GDPR Guide.  

Recommended Articles

The world’s most valuable resource: Not oil, but data

Feb 20, 2018 - In today’s digitally transformed and connected world, data is produced in vast streams daily, at a mind-boggling volume and pace.

  • Elliott Wiseman, General Counsel
Read more

In today’s digitally transformed and connected world, data is produced in vast streams daily, at a mind-boggling volume and pace.

Read more

Expanding access to financial services and technology for women-owned businesses…

Mar 16, 2023 - The number of female entrepreneurs is increasing around the world, yet many women continue to face significant obstacles when starting their own businesses. Fintech providers that champion broader representation within the global SMB community are providing solutions to help level the playing field.

  • Lori Griboski, VP, Petroleum Sales
Read more

The number of female entrepreneurs is increasing around the world, yet many women continue to face significant obstacles when starting their own businesses. Fintech providers that champion broader representation within the global SMB community are providing solutions to help level the playing field.

Read more

Assessing the iGaming payments landscape in the UK

Feb 08, 2023 - Zak Cutler, President of Global Gaming at Paysafe, assesses the key trends from our 2023 ‘All the ways players pay’ research report, and what they mean for UK online sportsbook operators looking to boost acquisition and retention.

  • Zak Cutler, President Global Gaming
Read more

Zak Cutler, President of Global Gaming at Paysafe, assesses the key trends from our 2023 ‘All the ways players pay’ research report, and what they mean for UK online sportsbook operators looking to boost acquisition and retention.

Read more