SWIFT24

Privacy Policy

Last update: 2025/05/12

Information about this Policy

For answers to common privacy questions, including an overview of our privacy practices and your privacy rights, please visit our Privacy Help Center .

This Policy applies to your use of our Services in conjunction with such "User Agreement", including the Cookie Policy and SWIFT24 User Agreement, SWIFT24 Flex User Agreement, SWIFT24 Flex Plus User Agreement, SWIFT24 Business Profile User Agreement (and any additional terms of use referred to in our User Agreement).

Any other words or phrases that begin in capital letters (such as contracts, accounts, profiles, services, and transactions) used in this Policy shall have the same meaning as given in that User Agreement, unless otherwise defined in this Policy.

Notice to California Residents

Notice when collecting personal information: The categories of personal information we collect from you are listed under "Personal data we collect from you" below. We collect personal information about you for business and commercial purposes as described in "How we use or process your personal data" below. For details such as how to opt out of the sale or sharing of your personal information, please refer to the "U.S. Privacy Rights" section below.

About Us

All personal data provided to or collected through our Services is managed by the respective SWIFT24 affiliate, depending on your country of residence. See the table in the "Relationships with Customers" section of this Policy to see which entities manage the collection and use of your personal data.

Personal data we collect from you

The personal data we collect from you varies depending on how you interact with us and our products and services. "Personal Data" or "Personal Information" means any information relating to an identified or identifiable natural person. The following are the categories and specific types of personal data or information we may collect from you:

Basic identifying information: name (including aliases), postal address, email address, telephone number, date of birth, gender, occupation and employer, user name or social media handle or other similar identifier (customer ID automatically generated by us to identify customers on the system), etc.

Customer Support Information: Information you provide when you contact Customer Service or our offices, including call recordings (e.g. when we record customer service calls for quality assurance purposes).

Government issued ID or records: Driving license, state or state issued ID (e.g. passport, driver's license, military or immigrant ID or visa, national ID), photo or record attached to the ID, proof of residence (e.g. royalty bill, loan or mortgage record), tax reference number, social security number or proof of transaction funding method (e.g. bank deposit record or payroll).

Marketing and Communication Information: Information that we lawfully collect through our advertising networks or analytics providers, such as the means by which you wish to receive marketing information from us and third parties.

Payment information: financial or payment method details (debit/credit card) or bank account details.

Promotions and Contests: Your name and email address, other specific personal information that you may be asked to provide in order to participate in a promotion or contest.

Recipient or Authorized User Information: Recipient or Authorized User's name, mailing address, telephone number, selected financial institution or financial account details (e.g. bank account or mobile wallet account) depending on the payment method. In the event of a dispute regarding whether the recipient or the approved user has received the funds, the financial institution may be asked for additional information to verify the identity of the recipient or the approved user.

SWIFT24 Flex Information: Transaction history (including unique transaction reference number), transaction receipts, transaction purpose, average transaction amount and other information we collect to comply with our anti-money laundering and customer verification obligations.

Sensitive personal data: biometric data, facial scanning information extracted from photos and videos provided for authentication purposes, login activities to protect your account and identify suspicious or fraudulent activity, and monitoring your interactions with our site. We do not process your biometric data, but Onfido, our authentication service provider, processes it on our behalf.

Survey and Feedback Information: Name, email address or other contact information, survey responses, reviews, feedback, customer recommendations and other specific other information that you may request from us.

Technical information: the hardware and software used to access the Services, network information, Internet service provider, operating system, type of browser used, unique device identifiers (e.g. the device's IMEI number, MAC address or mobile phone number), IP addresses, other similar unique identifiers, current location (use of GPS technology (some location-enabled services may require personal data)), etc.

Transaction information: such as transaction history (including unique transaction reference numbers), transaction receipts, purpose of remittance, relationship with the recipient or authorized user, average transaction amount, frequency of service use, whether it is sent to multiple recipients or there are multiple authorized users, and other information we collect to comply with our anti-money laundering and customer verification obligations.

Usage Information: Information about your interaction with the Service or the Site, your browsing or search activity, etc.

For California residents, we may collect sensitive personal information, including your Social Security number, driver's license, state ID or passport number, and categories of protected persons under California and federal law, including gender and age.

How we collect your personal data

We collect personal data about you from a variety of sources. For example, we collect and obtain information as follows:

Directly to you

We collect personal data that you provide, such as when you use our Services, create an account or profile, contact us (via chat, etc.), respond to a survey, interact with us at an event, participate in a sweepstakes, contest or other similar campaign or promotion, respond to a survey, post a review, or register to receive email, text messages and/or postal mail.

Use of cookies and other automated data collection technologies

When you visit our website, use our apps, open or click an email we send, or interact with our advertisements, we or third parties working with us automatically collect certain information using technologies such as cookies, web beacons, transparent GIFs, pixels, Internet tags, web server logs, and other data collection tools. Please refer to our Cookie Policy for more information.

from other sources.

We may obtain information about you from other sources, such as data analysis providers, marketing or advertising service providers, social media platforms or networks, fraud prevention or authentication service providers, electronic databases, credit rating agencies, providers providing services on our behalf, or publicly available sources.

How we use or process your personal data

We use your personal data only to the extent permitted by law. Depending on the country in which you reside, we process personal data on the following legal grounds:

Compliance with legal obligations

We use your personal data to comply with legal or regulatory obligations, to establish or exercise our rights and to defend legal rights.

Security and Fraud Prevention

We use your personal data to detect, investigate, prevent or take action against malicious, fraudulent or unlawful acts, such as fraudulent transactions, attempts to manipulate or violate our policies, procedures and terms of use, security incidents, SWIFT24 and damage to the rights, property or safety of users, customers, employees and others.

Compliance with relevant laws

We are committed to "customer verification system", anti-money laundering requirements, sanctions law related matters, of course, risk
We use your personal data to comply with applicable laws and regulations, including various relevant regulatory rules and guidelines relating to investigation, risk assessment, fraud, counter-terrorism financing, consumer protection and complaint handling.

Contract Execution

Service Provided

We use your personal data when you access or use our services, such as transaction processing, account maintenance and administration, offering/executing promotional benefits or rewards and processing payments.

CONTACT US

We use personal data to respond to or follow up on your requests, inquiries, problems or feedback and to contact you to provide customer service.

Consent or Fair Understanding

Marketing and promotional purposes

We use your personal data for marketing and promotional purposes, such as sending you marketing, advertising and promotional communications by email, text message or postal mail, displaying advertisements on social media and other websites for goods and/or services tailored to your interests, and administering new customer promotions, prize draws, contests and other similar promotions.

Analytics and Personalization

We use your personal data to conduct research and analysis, including to improve our services and product benefits, to improve our websites, apps and marketing campaigns (business and marketing analytics), to understand how you interact with our websites, mobile apps, advertising and communications, to personalize your experience, to save time when visiting our websites and apps, to tailor the marketing and advertising we display to you, and to understand how you use our apps and websites.

Other business or commercial purposes

Upon your instructions or consent, we may process certain personal data to achieve other business or commercial purposes.

For more information on the legal basis for the processing of personal data, please refer to the "Legal basis for the processing of personal data" section below.

Who we share your personal data with

In addition to certain situations discussed in other parts of this Privacy Policy, we disclose personal data in the following situations:

Corporate Affiliates

We may share personal data with our corporate affiliates, such as our parent companies, subsidiaries and affiliates. Those corporate affiliates process personal data on our behalf in order to provide the services or in other cases where we have your consent or are permitted or required by law.

Service Providers

We share certain personal data with third parties performing the Services to support our core business functions and internal operations. This includes banks, payment providers or other financial institutions (including payment processors) that complete your wire transfer or other financial service requests, identity authentication or KYC service providers, third-party and outsourced customer service providers that provide software and tools related to postal, email and text message transmission or customer data analysis, marketing support, delay management, fraud investigation, and conducting customer surveys.

Third Party Partners

We may share personal data with third parties with whom we partner to jointly create and deliver products, services or joint promotions. We may also share personal data with our banks or distribution partners if we suspect that you have violated our terms or engaged in fraudulent activity in connection with our business. If a third party uses your information, it is subject to its own privacy policy and not this Privacy Policy.

Social Media Platforms and Networks

Some of our websites have features such as plugins, widgets or other tools provided by third parties that may collect or share information between us and third parties. If a third party uses your information, it is subject to its own privacy policy and not this Privacy Policy.

Business Transactions

If we are involved in a merger, corporate transaction, or other situation involving the transfer of some or all of our business assets, we may share your information with companies or individuals involved in the negotiation or transfer.

Legal Procedures

We may disclose personal data in response to subpoenas, subpoenas, court orders, government inquiries or investigations, or to comply with applicable laws and regulations. We may also disclose information in order to establish, exercise or protect our rights or those of others, defend legal rights, protect the safety and security of visitors, detect and prevent fraud, and take action against possible illegal acts or violations of policies.

Other Cases

We may ask you if you wish to share information with other third parties that are not described in other parts of this Policy.

Reasons to Process Sensitive Personal Data

We may ask you to provide biometric data to one of our authentication providers. If data protection law allows us to process biometric data only with your consent, we will seek your consent before processing.

For example, SWIFT24 uses Onfido's services for authentication. Onfido may process your biometric information in accordance with Onfido's Facial Scanning and Voice Recording Policy and Onfido's Privacy Policy to verify that your identity is valid and that your selfie photo and/or video matches the photo on the identity card. The verification results are then shared with SWIFT24. Your photo and ID will be shared with Onfido not only for these purposes, but also to enable Onfido to maintain, protect and improve the Services.

Automated decision making on your behalf

We use automated processes to verify that your access to and use of the Services meets our essential criteria, such as authentication, and to help prevent fraud or other illegal activities. These processes may use automated decision-making to reject your proposed transaction, block suspicious account login attempts, or close your account.

My Privacy Rights

Customers in certain regions have certain data privacy rights in accordance with applicable data protection laws and regulations. We strive to implement best privacy practices as a standard for all our customers.

Data Access and Data Migration

You can request a copy of the personal data we process. This information is provided without delay, but certain exceptions or restrictions apply, such as where the provision of data adversely affects the rights and freedoms of others.

Data Correction/Data Adjustment

You have the right to request that your personal data be updated and that inaccuracies be corrected. You may update certain information related to your account by logging into your account on our site or app, or by contacting us as described in the Privacy Rights Events section below.

Data Deletion/Termination

You may request the deletion of your personal data in accordance with applicable law. When you close an account, that account appears as "closed" in the database, but certain account information is retained for a certain period of time. Such measures are necessary to prevent fraud and to comply with our legal obligations by preventing anyone who attempts to commit fraud from closing an account and opening a new one. However, if you close your account, we will not use your personal data and will not share it with third parties unless required by law or as necessary to prevent fraud and support law enforcement in accordance with this Policy.

Objection to data processing

You have the right to object to our processing or transfer of your personal data under certain circumstances. If you are in a special situation that affects your fundamental rights and freedoms when processing personal data on such a legal basis, you may object to the processing of information based on a legal interest.

Direct Marketing Subscription Cancellation

You have the right to ask us not to process your personal data for marketing purposes. You can exercise this right at any time by taking the 'unsubscribe' action provided to you (e.g. clicking on the 'unsubscribe' link in each promotional email you receive). We respect your choices and take such contact seriously. If you ask us not to contact you by email at a particular email address, we will keep a copy of that email address on our 'Forbidden List' in order to comply with your request for a contact ban. You are free to change your marketing choices at any time.

You may also check your default settings in your account to manage how we use your personal data as part of the Services (e.g. how we contact you). You can’t just shut down all communication. For example, we may need to send you email notifications about our services in order to comply with legal obligations under domestic laws and regulatory guidelines.

Automated personal decision-making, including profiling

In some jurisdictions, you have the right not to be the subject of decisions based solely on automated processing of personal data, including profiling that has a legal or similarly significant impact on you, with the exception of applicable exceptions under applicable data protection law. We may refuse your request in accordance with applicable law. For example, there may be cases where disclosure of information may compromise trade secrets or interfere with the prevention or detection of fraud or other crimes. However, typically in such situations, we verify that our algorithms and source data are working as expected without errors or biases, or modify our procedures if required by law.

Withdrawal of consent

If the legal basis for the processing of personal data is based on your consent, you have the right to withdraw your consent to data processing. Even if you withdraw your consent, it will not affect the lawfulness of the processing of personal data that you have undertaken before you withdraw your consent. If you withdraw your consent, we may not be able to provide you with certain products or services.

US Oregon Residents: Third Party List

If you are a resident of Oregon, you have the right to obtain, at our option, a list of certain third parties who are not (i) your personal data or (ii) any natural person who has disclosed your personal data.

Privacy Rights Events

To exercise the above privacy rights
Please request in one of the following ways:

Contact us via chat or phone call.
We generally do not charge you a fee for exercising your privacy rights, but we may charge a reasonable fee for requests that are excessive or without obvious grounds where permitted by law.

Authentication

In order to process some requests, we need to verify your identity to verify that the request came from you. You can contact us by phone or email to verify your request. If we are unable to contact you or if you do not respond to our authentication request, we may not be able to process your request.

How we protect your data

We use industry-recognized technical and organizational measures to protect the information you submit to us. We use encryption and storage data encryption during transmission to protect sensitive personal data such as bank account numbers, credit card numbers, date of birth and government identification numbers. We use access controls to give access to personal data only to those who need to know. We also require you to use security credentials (e.g., including a username and password) for each user who wishes to access information on our Sites and/or Apps.

If we have provided you with security credentials (such as passwords) to enable you to access certain parts of the Service (or if you choose), you are responsible for keeping such details confidential and secure. Also, if you allow fingerprint access to our Services on your device (e.g., via Apple Touch ID), you should not allow fingerprints to be registered on that device, and you may be responsible for that. However, methods of transmission over the Internet or electronic storage are not 100% secure. Therefore, we cannot guarantee absolute security and the risks associated with the transfer of personal information are your responsibility.

This site is protected by reCAPTCHA Enterprise and is governed by the Google Privacy Policy and Terms of Service.

International transfer of personal data

We share your personal data within our SWIFT24 family of products, including SWIFT24 group entities and subsidiaries, and with external third parties (the categories referred to in this Policy). This may include transferring your personal data internationally, including to areas outside your country of residence. Whenever your personal data is transferred internationally, we ensure that a similar level of protection is provided. In some cases, your personal information may be transferred (as described in the Customer Relations section below) to a country that the relevant data protection authority or government agency deems to provide an adequate level of protection for your personal information. Otherwise, we will ensure that more than one legal safeguard is implemented. This may include the use of in-house contracts, contractual safeguards or (as described in the Customer Relations section below) specific contracts approved by the respective data protection authority or government agency (e.g. standard contractual clauses), which allow your personal data to receive the same protection as in your country of residence.

Period of retention of your data

We only retain personal data for as long as is necessary to fulfill the purposes of data collection, such as meeting legal, accounting or reporting requirements. Depending on your country of residence, we will consider the following to determine the appropriate retention period for your personal data:

Obligations and/or retention periods imposed on us by relevant legal and/or regulatory authorities
The amount, nature and sensitivity of personal data
Potential risk of harm from unauthorized use or disclosure of personal data
the purposes for which the personal data are processed and whether such purposes can be achieved by other means;
As a regulated financial institution, we have a legal obligation to retain some of your personal and transactional data even after you close your account. By using our Services, you expressly consent to us retaining your personal information (including data relating to your transactions and our collection and authentication) for more than seven years after the termination of your legal relationship with us.

Changes to this Policy

We may revise this Policy at any time and will notify you when we do so by posting a revised version on our Sites and Apps. As the policy may have been updated since you first registered for our Services or since your last trade, please review this policy whenever you trade.

Links to Third Party Websites and Services

Some of our services use Google Maps Services, including the Google Maps API. Use of this feature is subject to the Google Maps Additional Terms of Use and the Google Privacy Policy. By using this Site and the Services, you also agree to the Google Terms (as amended from time to time).

Our Sites and Apps contain links to other websites whose privacy practices may differ from those of the SWIFT24.

When you submit personal information to these websites, that information is subject to the privacy policies of third parties, and we are not responsible for those policies or any personal information (such as contact and location data) that may be collected and processed through those websites or services. Please read carefully the privacy policy of any website or software application you use or visit.

This policy does not address the practices of third parties that you may engage with when using the Services, such as your mobile network operator or other users of our Services. You should consult that third party about their privacy policy before providing any personal information.

Children

We ask that anyone under the age of 18 (whom we treat as children and minors) not use our services or submit any personal information to us. You are not permitted to use our Services if you are under the age of 18, and if you confirm that you have registered an account or profile with us, that account or profile will be terminated.

Privacy Policy Translation

This policy is written in English and translations into other languages may be provided. You agree to take precedence over the English version of this Policy in the event of any inconsistency between the English language and the translation in any dispute relating to this Policy.