Effective: November 13, 2024

Pay-i is committed to protecting your privacy. This Privacy Policy applies to the personal information and other data collected by Pay-i when you interact with our Site and Services, and any other websites or services that link to this Privacy Policy. This includes when you:

  • interact with us on our Site or communicate with us (for example, via email);
  • use our Services as a Customer; and
  • when you use any other websites or services that link to this Privacy Policy.

This Privacy Policy describes how we collect, receive, use, store, share, transfer, and process your Personal Information. This Privacy Policy also describes your choices and rights with respect to your Personal Information, including your rights of access, deletion and correction of your Personal Information. For the purposes of this Privacy Policy "Personal Information" means any information relating to an identified or identifiable individual.

This Privacy Policy is incorporated into and governed by the Pay-i Terms of Service (https://pay-i.com/tos). Capitalized terms not otherwise defined in this Privacy Policy will have the meaning in the Terms of Service. If you do not agree with this Privacy Policy, you should not use our website or Services, or any other websites or services that link to this Privacy Policy.

For purposes of this Privacy Policy, the terms “Pay-i,” “us,” “we,” or “our” refer to Pay-i Incorporated, the owner and operator of the Site and the Services. The terms “You,” “Your,” or “Customer” refer to the person accessing or using the Site and/or Services, or the company or organization on whose behalf that person accesses the Site and Services and may include both end users of Apps (“End Users”), as well as developers of Apps which use the Services (“Developers”), as applicable.

We may update this Privacy Policy from time to time. If the changes are material, we will provide an email advising registered End Users and other registered persons of the changes.

If you have any questions about this Privacy Policy or to exercise your privacy rights and choices under applicable law, please contact us at:

Pay-i Incorporated

2018 156th Avenue NE, Suite 100 Bldg. F

Bellevue, WA 98007

Email: support@pay-i.com

 

What Information We Collect and Process

As further described below, Pay-i will collect certain Personal Information of its Customers, including account registration information, for the purposes of providing access to and use of the Services and when you visit our Site. Our commitment is to maintain the confidentiality and integrity of all data processed through our Services, including any Personal Information.

When You Visit Our Site

We automatically collect certain Personal Information from you when you visit our Site, such as IP Address, your device's operating system, your Internet service provider and location, browser type and language, and website content you access) and information about the date, time and duration of your visit to our Site.

Account and User Information

To access and use the Services, you will need to create an account with us. Your email address will be your user ID (“User ID”) and you pick a unique password. In the alternative, you may also sign into the Services through your authenticated credentials from Google, Apple, or Facebook (or any other third-party service credentials that we accept from time to time in our sole discretion). Any Personal Information you provide to these third parties and are passed on to us are governed by their Privacy Policies.

Please be sure any Personal Information you provide is accurate and complete. You may update your Personal Information and your communications preferences by logging into your account and make the appropriate updates or by contacting us via email: support@pay-i.com.

When You Use the Services

We collect usage data when you interact with the Services. Usage data includes metrics and information regarding your use and interactions with the Services, such as what features you use the most.

We may engage third party providers to collect usage data and for analytics services. For more information about how we protect your information with these service providers, please see Section 3 "How We Share Personal Information”.

Our Services are designed to function without the need for Pay-i to interact with the content of the data transmitted to GenAI providers and the providers’ responses. The role of Pay-i is to facilitate cost calculations, usage tracking, and End User billing related to the use of the Developer's application, as detailed in our Terms of Service.

Only where requested by a Customer, Pay-i will retain the Customer’s submitted content to GenAI providers and the providers’ responses, including if that submitted content includes any Personal Information, and will provide the submitted content and responses to the Customer upon request. Pay-i does not otherwise read, store, access or use this Customer information in any form.

Payment Information

For processing payments, we use the payment services of Stripe. We do not process, record or maintain your credit card, bank account or any other financial information. For more information on how payments are handled, or to understand the data security and privacy afforded such information, please refer to https://stripe.com/us/privacy. c. Information We Collect and Process When You Use the Subscription Service

Information We Collect from Other Sources

We may receive information from third party service providers, from related companies, and from our business and solution partners.

How We Use Personal Information

To Provide the Services

We use your account information and Personal Information to provide the Services to you. For example, we use the email address you provide to create your user account. We also use this information to authenticate you when you log in to your account and to provide customer support.

To Communicate with You About the Services

We use your account information to send you transactional emails about billing, account management, and other administrative matters. We may also send you updates regarding our Terms of Service or other legal agreements and may also communicate with you about security incidents via email.

In addition, we use your information to provide customer support, such as resolving technical issues you encounter and analyzing product outages or bugs.

To Improve the Services

We collect usage data about how you interact with the Services. We use this data to develop and improve our Services. For example, we use usage data to assess trends and usage to help us determine what new features or integrations our users may be interested in.

We may publish data about how our Services are being used across our customer base. When we share statistical information externally in this way, the data will be aggregated, and we will not identify individual users or Customers. For example, we may publish blog posts on trends or insights into how users are interacting with Services.

To Protect the Services and Users

We use your account information to investigate and help prevent security incidents. We may also use this information to meet legal requirements. We use your information to verify user accounts, new account registrations, and to detect and prevent abuse. This includes enforcing our Acceptable Use Policy.

To Market and Promote the Services

We may use the information you provide to Pay-i to market and promote the Services and other offerings to you. For example, we may send you communications about enhancements to the Services or other new products or services which we think may be of interest to you by post, email, or other means.

You may opt out of receiving these marketing communications by following the “Unsubscribe” instructions contained in each email or by contacting us at: support@pay-i.com. Please be advised, however, if you unsubscribe from our marketing communications, we will continue to contact you regarding administrative matters, and to respond to your requests.

Where required by law, we will only send marketing communications with your prior consent. Otherwise, we will market and advertise our products and services on the basis of our legitimate business interests.

How We Share Personal Information

Service Providers

We may share Personal Information with our third-party service providers to support our Site and Services. For example, we use service providers for data hosting, application development, marketing, sales support and customer support. These service providers are prohibited from using your Personal Information except for these purposes, and they are required to maintain the confidentiality of your information. In all cases where we share your information in this way, we explicitly require the third-party service providers to acknowledge and adhere to our privacy and data protection policies and standards.

Legally Required Disclosure

We reserve the right to use or disclose your Personal Information if required by law or if we reasonably believe that use or disclosure is necessary to protect our rights, protect your safety or the safety of others, investigate fraud, or comply with a law, court order, or legal process.

Corporate Transaction

We may disclose Personal Information if we are involved in a merger, reorganization, dissolution, or other fundamental corporate change, or sell a website or business unit, or if all or a portion of our business, assets or stock are acquired by a third party. In accordance with applicable laws, we will use reasonable efforts to notify you of any transfer of Personal Information to an unaffiliated third party.

How We Secure and Store Personal Information

Data Security

We are committed to ensuring the highest level of security for customer data across all platforms. We employ robust measures to protect data both at rest and in transit:

  • Data Encryption at Rest: All data stored in our databases and storage services is encrypted using industry-standard 256-bit Advanced Encryption Standard (AES-256) encryption. This includes encryption of data, backups, and transaction logs. Managed encryption keys are used and are rotated appropriately to maintain security. Our encryption processes are transparent and comply with federal security standards such as FIPS 140-2, ensuring that cryptographic operations meet stringent regulatory requirements.
  • Data Isolation: We ensure logical separation of databases and storage resources, so each customer's data is isolated and secure from other users. This logical isolation safeguards data integrity and privacy for all our customers.
  • Secure Data Transmission: All data transmitted between services and over networks enforces the use of Transport Layer Security (TLS) 1.2, with a negotiation to TLS 1.3 whenever possible. This ensures that data in transit is securely encrypted and protected from interception or unauthorized access.
  • Secure Microservices Architecture: Our microservices are securely isolated within private virtual networks, ensuring that all internal communications occur within a controlled and secure environment. Inter-service communication is facilitated through private network links, guaranteeing that data does not traverse the public Internet. Network security controls are implemented to restrict and manage service interconnections, adding an extra layer of security to our internal network infrastructure.
  • Role-Based Access Control: To uphold the principle of least privilege, we utilize role-specific managed identities. This means each service and component has access only to the resources it requires, minimizing the risk of unauthorized access and enhancing overall security.
  • Web Application Protection: The front end of our application is safeguarded by advanced security services combined with web application firewalls. This provides robust protection against web-based threats and attacks, including Distributed Denial of Service (DDoS) attacks, injection attacks, and other common vulnerabilities.
  • Secure API Management: Developer APIs are secured using comprehensive API management solutions. This enhances both the security and manageability of our application's interfaces, allowing for controlled access, monitoring, and protection against potential threats.

Our multi-layered security approach ensures that regardless of the underlying technologies or cloud platforms utilized, your data remains protected through industry best practices and stringent security standards.

Our Site and Services are hosted by third party cloud providers. These service providers implement a variety of industry recognized physical, technical and organizational security measures and procedures to protect your Personal Information from unauthorized access, use or disclosure.

Be advised that there is always a risk inherent to providing information online. To reduce potential exposure, we encourage you to use an email address and password for your account that is not used anywhere else on the internet. Do not provide your login information, including your password, to another person. We cannot be responsible for a data breach or other incident if a password is used by unauthorized persons.

Retention of Personal Information

We will retain your Personal Information for a period of time consistent with the original purpose of collection to provide you with the Services you have requested. Further, we will otherwise retain Personal Information that you provide to us where we have an ongoing legitimate business need to do so (for example, as needed to comply with our legal obligations, resolve disputes and enforce our agreements).

When we have no ongoing legitimate business need to process your Personal Information, we securely delete the information or anonymize it or, if this is not possible, securely store your Personal Information and isolate it from any further processing until deletion is possible. We will delete this information at an earlier date if you request, as described in the section "Privacy Rights and Choices" below.

For Customers that have requested that we retain their submitted content to GenAI providers and the providers’ responses, we will retain their information until instructed by the Customer to delete it.

Unless you have opted out of receiving marketing communications from us, we retain information about your marketing preferences for a reasonable period of time from the date you last expressed interest in our content, products, or services, such as when you last opened an email from us or ceased using your Pay-i account. We retain information derived from cookies and other tracking technologies for a reasonable period of time from the date such information was created.

We do not store credit card information or billing addresses.

Cookies and Other Tracking Technologies

A cookie is a piece of data stored on your computer’s hard drive that contains information about you and your computer. The cookies used on the Site do not contain any identification that would be useful to another individual or organization. We use cookies, for example, to remember your login information so you do not have to enter a username and password each time you return to the Site or access the Services (should you choose this option). We also use cookies to provide statistical information on site usage and personalize and enhance the online experience. Some of these cookies may be active during the time you are viewing a website (“session cookies”). Other cookies may remain on your computer after you have closed your browser or turned off your computer (“persistent cookies”).

We do not use cookies or sell or share Personal Information for purposes of online advertising, whether on our behalf or by third parties.

The following cookies are deployed on the Site:

  • Strictly Necessary Cookies: These cookies are strictly necessary to provide the Website. For example, they are used to authenticate and identify returning users.
  • Performance and Functionality Cookies: These cookies provide statistical information on site usage, such as web analytics. They also help us to personalize and enhance your online experience.

Just like any other usage information we collect, information from cookies allows us to improve the Site and Services and customize your online experience. You can set your browser to accept all cookies, reject all cookies, or notify you when a cookie is set. See www.allaboutcookies.org to learn how to disable cookies on your browser or otherwise opt out of cookies. if you set your browser to disable all cookies or opt out, some features of the Site or Services may not function properly.

We also use web beacons and pixels on our Site and in emails. For example, we may place a pixel in marketing emails that notify us when you click on a link in the email. We use these technologies to operate and improve our Site and marketing emails.

This Privacy Policy does not cover the use of cookies used by third parties, and we are not responsible for their privacy policies and practices. Please be aware that cookies placed by third parties may continue to track your activities online even after you have left our Site.

Google Analytics

We use Google Analytics to track Site views and general/aggregate data on website users. For more information on how Google uses data when using its partners' sites or apps, please visit this webpage. To provide Site visitors more choice on how their data is collected by Google Analytics, Google has developed an Opt-out Browser add-on to enable you to opt-out of Google’s programs.

 

Your Privacy Rights and Choices

We will honor the following data protection rights:

  • Access, Correction or Deletion. You can request access, correction, updates or deletion of your Personal Information.
  • You can object to our processing of your Personal Information, ask us to restrict processing of your Personal Information or request portability of your Personal Information.
  • Withdraw Consent. If we have collected and processed your Personal Information with your consent, then you can withdraw your consent at any time. Withdrawing your consent will not affect the lawfulness of any processing we conducted prior to your withdrawal, nor will it affect processing of your Personal Information conducted in reliance on lawful processing grounds other than consent.
  • You have the right to complain to a data protection authority about our collection and use of your Personal Information. In the United States

Note: We do not “sell” or “share” your Personal Information, as defined in applicable law.

To exercise any of these rights, please email as at: admin@pay-i.com.

We may verify your identity by a method appropriate to the type of request you are making. Depending on where you reside, you may be entitled to empower an “authorized agent” to submit requests on your behalf. We will require authorized agents to confirm their identity and authority, in accordance with applicable laws. You are entitled to exercise the rights described above free from discrimination.

We will respond to your request to change, correct, or delete your data within a reasonable timeframe and notify you of the action we have taken. In some instances, your rights may be limited, such as where fulfilling your request would impair the rights of others, our ability to provide a service you have requested, or our ability to comply with our legal obligations and enforce our legal rights. You are entitled to exercise the rights described above free from discrimination regarding your access to and use of the Site and Services.

Be advised, however, that applicable law may not permit us to completely or comprehensively delete your Personal Information from our systems or records. Also, it may not be technologically possible to remove each and every record of the information you have provided to us from our systems or records. The need to back up our systems to protect information from inadvertent loss means that a copy of your Personal Information may exist in a non-erasable form that will be difficult or impossible for us to locate.

Updating Your Information

You may update your Personal Information and your communications preferences by logging into your account and make the appropriate updates or by contacting us via email: admin@pay-i.com.

To Unsubscribe from Marketing Communications

You may unsubscribe from our marketing communications through one of the following methods:

  • By clicking on the "Unsubscribe" link located on the bottom of our e-mails;
  • By updating your communication preferences in your account; or
  • By emailing us at: support@pay-i.com

Note, however, Customers cannot opt out of receiving transactional emails related to their account with us, their use of the Services or payment issues.

California and Other US State Privacy Rights

As of the Effective Date of this Privacy Policy set forth above, Pay-i does not qualify as a “business” or “controller” subject to the California Consumer Privacy Act (“CCPA”) or other US state privacy laws. Nonetheless, we will honor privacy rights requests from Customers regardless of their state of residence, as described above in “Your Privacy Rights and Choices”.

We do not “sell” or “share” your Personal Information, as defined in California and other US state privacy laws.

Other California Notices

We do not currently honor browsers’ Do Not Track signals with respect to our Site.

Under California Civil Code sections 1798.83-1798.84 (“Shine The Light”), California residents who have an established business relationship with Pay-i are entitled to ask us for a notice describing what categories of Personal Information we share with third parties for their direct marketing purposes. This notice will identify the categories of information shared with and will include a list of the third parties with which it is shared, along with their names and addresses. If you are a California resident and would like a copy of this notice, please submit your request via email to: info@ballotready.org.

Located in the United States

The Site and Services are owned and operated by Pay-i in the United States (US) and are governed by US law. If you are outside the US when you visit the Site, access the Services or engage in communications with us, be aware that your Personal Information may be transferred to, stored, and processed by our third-party cloud providers in the US. Any information you provide to us, or that we collect through your use of the Site or Services, will be stored, processed, and transferred within, or to, the United States. Please be aware that the United States and jurisdictions other than the one in which you are located may not provide the same level of data protection as the location from which you are accessing the Site or Services. Note also that your Personal Information may be available to the US Government or its agencies under legal processes in the United States.

Third-Party Websites

The Site or Services may contain links to several other websites, content or services that are owned or controlled by third parties and not Pay-i. Any such links are not an endorsement, authorization or representation that we are affiliated with that third party. Pay-i is not responsible for the privacy practices of sites other than its own. You understand that when you click on these links, any data which you provide to the third party is subject to that third-party’s privacy policy and not to ours. We can take no responsibility for the content, safety, privacy or security of any third-party application, service or website. We encourage you to review and understand the privacy practices of any third-party websites before providing any information to or through them.

No Rights of Third Parties

This Privacy Policy does not create rights enforceable by third parties or require disclosure of any personally identifiable information relating to users of the Site or Services.

Children

The Site and Services are not intended for or targeted at children under 18, and we do not knowingly or intentionally collect Personal Information about children under 18. If you believe that we have collected Personal Information about a child under 18, please contact us here, so that we may delete the information.

(Version 2.0)