Privacy Notice
(April 2026)
This data privacy notice (“Privacy Notice”) explains how we treat personal data (“Personal Data”) related to your use of our services. In this Privacy Notice, we also describe whether your Personal Data might be shared with other parties and the privacy policies we have in place to protect your Personal Data.
By using any product or service offered by us (collectively, the “Services”), you acknowledge that you have read, understand, and agree to be bound by this Privacy Notice. You should not provide us with any of your information if you do not agree with the terms of this Privacy Notice.
We encourage you to review and check regularly for any updates to this Privacy Notice.
Frequently asked questions (FAQs)
How can I contact the company regarding my Data? To make any request or consultation, you may:
- contact us by email to apac_dpo@euronetworldwide.com.
- by phone are available here
Who are we? We are Euronet Services India Pvt. Limited, a part of Euronet Worldwide group of companies.
What type of Personal Data is collected? We collect only the Personal Data necessary to provide you with the Service and to comply with applicable law.
Why does Euronet collect Personal Data? We collect Personal Data for specific contractual and legal purposes. With your consent, we also collect data for additional purposes.
How long does Euronet keep Personal Data? We keep Personal Data only for as long as necessary or as required by applicable law.
With whom does Euronet share Personal Data? We share Personal Data with other Euronet Group companies, legal authorities, and partners where necessary to meet regulatory requirements or contractual commitments.
Where does Euronet store Personal Data? We store Personal Data in secure locations with strict security measures in place. If we need to transfer Personal Data to other locations, we take all necessary measures to comply with legal obligations and ensure a proper level of security.
What are your Personal Data rights? You have the right to access, delete, withdraw, among others. A description of all your Personal Data rights is set out in section 8 below.
1. What Personal Data we collect, how we collect it and why?
The categories, sources, and reasons for collecting Personal Data are listed below. Where the collection of Personal Data is based on your consent, you may withdraw your consent at any time. EURONET does not and will not “sell” or “share” Personal Data, as those terms are defined under applicable laws. We retain Personal Data for as long as reasonably necessary to provide the Services and meet our legal obligations.
If you have questions or concerns regarding the processing of your Personal Data, you may contact us any time at apac_dpo@euronetworldwide.com.
EURONET collects Personal Data from the following sources:
- Directly from you through direct interactions and forms.
- Internet websites, through passive collection of information about Your interactions, including page clicks, time spent, or other automatically collected meta-data.
- Advertising networks, social media services.
- Internet service providers; Operating systems and platforms.
- Data analytics providers.
- Government databases.
- Service providers.
Identification data
This may include name, title, residential and/or business address, email, telephone and/or fax numbers and other contact data, date of birth, gender, signature, passport/visa details, and official credentials. We will only use strictly necessary identification data for the described purposes.
| The reason to process your data | Legal basis for using your Personal Data |
| Supply of Services | Contractual obligation |
| Newsletter and marketing purposes | Consent |
| Market research & consumer feedback: Any information that you voluntarily share with us about their experience of using our products and Services | Consent |
| Customer service: We may monitor and record (via automated means or transcripts) our telephone calls, email and chat conversations with you. We may use transcripts of these calls to confirm instructions you provide us. | Contractual obligation |
| Managing your accounts (registration and administration). | Pre-contractual/ Contractual obligation |
| To fulfill any legal and compliance obligations. | Legal obligation |
| Regulatory Compliance | Legal obligation |
| Identity verification | Legal obligation |
Behavioral and Technical Information
IP address, internet, or other similar network, browsing, or search activity, behavioral information (to understand the way you behave while using our products and services), browser type and version, time zone setting, screen resolution settings, browser plug-in types and versions, operating system, and platform.
Our Cookie Policy is available here Cookie Policy – Prezzy Cards.
| PURPOSE OF PROCESSING | LEGAL BASIS |
|---|---|
| To perform analytics to measure the use of our website and Services, including number of visits, average time spent on the Website, pages viewed, page interaction data (such as scrolling, clicks, and mouse-hovers), etc., and to improve the content we offer to you. | Legitimate Interest |
| To help ensure the safety and security of our Website. | Consent Legitimate Interest |
| To provide the Services. | Contractual obligation |
Financial details
| Supply of Services | Contractual obligation |
| Managing your account | Contractual obligation |
| To fulfill any legal and compliance obligations | Legal obligation |
| Identity Verification | Legal obligation |
| Credit Checks | Legal obligation |
Non identifiable data
Whenever possible, we use data where you cannot be directly identified (such as anonymous demographic and usage data) rather than Personal Data. This non-identifiable data be used to improve our internal processes or delivery of Services, without further notice to you.
We use aggregate data for a variety of purposes, including but not limited to evaluation and improvement of the Services and analyze traffic to our services.
2. Accuracy of your Personal Data
We are committed to have your Personal Data accurate and up to date. For that, we take reasonable steps to ensure the accuracy of your Personal Data, by ensuring that the latest Personal Data we have received is dully noted and when considered necessary, run periodically checks to keep it updated.
If you notice that your Personal Data is not accurate, you can exercise your right to rectification by sending an email to apac_dpo@euronetworldwide.com.
3. How long does Prezzy/Euronet keep Personal Data?
Personal Data is used for a variety of purposes and is governed by a variety of rules and regulations. It is kept for as long as it is necessary to provide customers with the Services they have requested and to comply with applicable legal, accounting, or reporting obligations. For example:
- Legal and Regulatory Requirements: Your Personal Data is kept if necessary to comply with all our legal obligations.
- Customer Service (administration of customer relationship, complaint handling, etc.): We will keep your Personal Data as long as you remain our customer.
- Marketing: We will process your Personal Data for marketing purposes as long as you haven’t asked us to opt-out, according to section 9 of this Privacy Notice.
- Contractual obligation: We will keep Personal Data for the duration of the contractual agreement and thereafter as per our Data Retention Policy.
4. Does Prezzy/ Euronet share my personal data with other parties?
| Euronet Group | |
| We share customer’s Personal Data with Euronet and Euronet Group affiliates for compliance with group obligations. | Legal Obligation |
| As a result of a sale, acquisition, merger, or reorganization involving Euronet, a company within the Euronet Group, or any of their respective assets, we may transfer customer Personal Data to a third party. In doing so, we will take reasonable steps to ensure that their information is adequately protected. | Contractual Obligation |
| Third Party Service Providers | |
| When purchasing any Service, the information we share with the final company providing the Service is not considered Personal Data as we don’t provide them with any of the Personal Data you have entrusted us. We use a system of pseudonymized tokens in order to protect your Personal Data. | Contractual Obligation |
| Communications, infrastructure, and fulfillment providers including services and systems to enable the processing of the transaction | Contractual Obligation |
| To maintain the required level of performance in our Services (maintenance, security, and support) | Contractual obligation |
| For data analysis for marketing, operational improvement and enhancement of our compliance and antifraud systems | Legitimate interest Legal obligation |
| To personalize the placed advertisement in digital services and adapt to your preferences | |
| Corporate Programme Partners and Programme Administration | |
| Where Prezzy Cards are issued, distributed, activated or administered under a corporate, reseller, distributor or programme arrangement, Euronet may receive certain Personal Data relating to Cardholders from the applicable Corporate Partner, employer, reseller, distributor or programme administrator for purposes including card issuance, activation, customer/account registration, identity verification, authentication, transaction processing, fraud prevention, regulatory compliance and operation of the Prezzy Card programme. | Provision of Services Legal obligation, where applicable |
| Such Personal Data may include, where applicable, the Cardholder’s name, mobile number, email address, date of birth, employee/customer identifier and other information reasonably required for provision of the Services. | Provision of Services |
| In connection with administration of the applicable corporate prepaid card programme, the relevant Corporate Partner, reseller, distributor and/or programme administrator may have access to or visibility into certain information relating to Cards issued under its programme, including issuance status, activation status, balance information, redemption status, transaction/activity information and other operational usage data. | Provision of Services Programme administration |
| Such access and visibility shall be limited to legitimate business, operational, reconciliation, programme administration, customer support, compliance, fraud prevention, incentive administration and related administrative purposes. | Provision of Services Legal obligation, where applicable |
| Euronet processes, uses and shares such information only to the extent reasonably necessary for operation, servicing, security, compliance and management of the Prezzy Card programme and in accordance with applicable law, this Privacy Notice and the applicable Card Terms and Conditions. | |
| Legal and Regulatory Authorities | |
| We also disclose Personal Data to the authorities when disclosure is necessary to identify, contact, or bring legal action against someone who may be causing injury or interfering with the rights or property of Prezzy, the Service, or yours. | Legal Obligation |
| Professional Partners | |
| We will share your Personal Data with advisers, lawyers, consultants, auditors, marketing services or accountants to comply with our legal obligations and to provide your Service according to your expectations and our contractual obligations and best practices. | Legal Obligation |
5. Know Your Customer (KYC) process
For our digital services, and where legally permitted and required, we may verify your identity using an electronic Know Your Customer (e-KYC) process. This may involve submitting a valid photo ID, video or selfie through a secure identity‑verification service provider acting on our behalf. This process helps us confirm your identity, detect and prevent fraud, and comply with applicable anti‑money laundering and similar legal obligations.
As part of e‑KYC, we (and/or our service provider) may process biometric data (for example, facial scan data derived from your selfie/video) to verify that you are the authorized user and to help prevent impersonation. Where required by applicable law, we will request your explicit consent before collecting or using biometric data. If you do not wish to provide biometric data, you may contact our customer care team to discuss available alternatives; however, in some cases we may be unable to provide certain Services without completing identity verification.
During the verification process, a video (which may include audio) may be recorded to help confirm liveness, ensure the integrity of the procedure, and meet compliance requirements. Biometric data and verification recordings are used only for identity verification, fraud prevention, and compliance purposes, and access to such data is restricted to authorized personnel and service providers with appropriate safeguards. Neither we nor our service providers will sell, lease, or trade your biometric information.
We retain biometric data and related verification records only for as long as necessary to complete verification and to meet applicable legal, regulatory, audit, and dispute‑resolution requirements, after which we delete or irreversibly anonymize such data in accordance with our retention policies and applicable law. Where e‑KYC processing involves transfers to service providers or storage in other locations, we apply appropriate contractual and technical safeguards consistent with this Privacy Notice.
In line with applicable privacy laws, you may have rights in relation to your personal data (including, where applicable, biometric data), such as the right to access, correction, deletion, or withdrawal of consent (where processing is based on consent). For more information, refer to the “What are my rights?” section. For questions about the e‑KYC process, contact us at apac_dpo@euronetworldwide.com.
Physical (in‑person) KYC
In some cases, and where legally permitted and required, we may also verify your identity through a physical (in‑person) KYC process. This may involve collecting and reviewing copies of your identity and address documents, verifying original documents, capturing a photograph, and/or obtaining your signature at an authorized location or through an authorized representative/service provider acting on our behalf. We use this information only to verify your identity, prevent fraud, and comply with applicable legal and regulatory requirements. We retain physical KYC records only for as long as necessary for these purposes and as required by applicable law, and we apply appropriate physical, technical, and organizational safeguards to protect them.
6. Minors
We do not provide services directly to children under 18 or proactively collect their Personal Data. If you are under 18, please do not use the Sites or Offerings or share Personal Data with us. If you learn that anyone younger than 18 has unlawfully provided us Personal Data, please contact us at apac_dpo@euronetworldwide.com.
7. Data Security
We are committed to protecting your Personal Data and have put in place safeguards to prevent any loss, abuse, and alteration of the information you have entrusted to us. We maintain our commitment to data security by implementing appropriate physical, electronic and technical measures to safeguard and secure your personal information.
To safeguard our systems from improper access we use secure, sophisticated, and cutting-edge logical, technical, organizational, and contractual security measures. which are continually enhanced to ensure the highest level of security. All Personal Data is kept in a secure location protected by firewalls and other sophisticated security mechanisms with limited administrative access.
Personnel who have access to your data as well as how they are processed are contractually bound to keep your data private and adhere to the privacy policy we have implemented in our organization.
While we aim to achieve the highest standard of data protection by adopting industry-standard measures to protect your privacy, no security system is completely flawless or impenetrable. As a result, we cannot (and do not) guarantee that Personal Data is completely secure.
8. Marketing
We may contact you from time to time (by email, SMS text, letter, or phone as necessary and according to your specific instructions) and when required, when you have provided us with your express consent to provide targeted marketing about our Services. You can withdraw your consent at any time by sending an email to apac_dpo@euronetworldwide.com or following the instructions in the marketing email we have sent you.
9. What are my rights?
Customers may seek to know, access, update, rectification, restrict or erase (if permitted) your Personal Data. These rights are subject to the applicable laws and regulations.
Customers also have the right to file a complaint with a competent data protection authority or the courts if you feel we have failed to comply with our duties under this Privacy Notice or the applicable law. We encourage customers to notify us of any complaints that they may have, even if it is not required, and we will respond in accordance with our Complaints Procedure.
We will respond to your request as soon as possible and in any case no later than 20 working days after the day on which the request is received.
To exercise any of your rights, you must send an email to apac_dpo@euronetworldwide.com. To help protect your privacy and maintain security we will take steps to verify your identity and/or ask you to provide other details before granting you access or modifying any Personal Data. Unfortunately, if we don’t have a copy of your ID or any legal valid document that proves your identity, we will not be able to answer your request.