Privacy Policy

Effective Date: 16 July 2021

Privacy Notice

This everblueRewards® Program Privacy Notice (the “Privacy Notice”) describes how your personal data is handled and the rights and choices available to you in connection with the everblueRewards® Program and its associated fulfillment services (collectively, the “Program”). Fiserv Solutions, Inc. (“Fiserv” or “we,” “us,” or “our”) is providing the Program on behalf of your financial institution, and the information in this Privacy Notice is intended to supplement privacy information that was previously provided to you by your financial institution. [In addition, please also refer to the “Terms & Conditions” found on the Program’s website for more information about your rights and obligations with respect to other issues.]

Fiserv and your financial institution provide separate privacy notices that apply to other products or services, in which case this Privacy Notice does not apply. Where this Privacy Notice applies, we also may provide additional or supplemental privacy notices to individuals at the time we collect their data, which will govern how we may process the information provided at that time.

    I.      The personal data we collect

We may collect several categories of information when you use the Program:

  • Information that we or our service providers collect directly from you, your financial institution, or the parties with which we do business. For example:
    • Contact information, including name, address, telephone number, and email address;

    • Profile and identification information, such as username and password, the last four digits of your Social Security Number, and your mother’s maiden name;

    • Demographic details, such as date of birth and zip code;

    • Application Information – additional information you provide to us on applications and through other means that will help us determine if you are eligible for services you request;

    • Financial account information, such as payment card or bank account details, when you enroll in an account with everblueRewards;

    • Transaction data, including your rewards account numbers, account balances, payment history, account usage information (e.g., transaction data associated with enrolled cards), accumulated points, and information regarding your rewards redemptions;

    • Correspondence you send to us.

  • Information we collect from other sources. We and our service providers may collect information about individuals that is publicly available, for example, by searching media and the internet. We and or our third-party verification providers may also collect information from private or commercially available sources. For example, we may obtain consumer report information, such as your credit score and credit history, from consumer reporting agencies.

    We may also maintain pages for our company and our products and services on a variety of third-party platforms, such as LinkedIn, Facebook, Twitter, YouTube, Instagram, and other social networking services. When you interact with our pages on those third-party platforms, the third-party’s privacy policy will govern your interactions on the relevant platform. If the third-party platform provides us with information about our pages on those platforms or your interactions with them, we will treat that information in accordance with this Privacy Notice.

  • Information collected via automated means. When you access the Program (e.g. on our websites), we, our service providers, and our partners may automatically collect information about you, your computer or mobile device, and activity on our websites or mobile applications. Typically, this information includes your computer or mobile device operating system type and version number, manufacturer and model, device identifier, browser type, screen resolution, IP address, the website you visited before browsing to our website, general location information such as city, state or geographic area; and information about your use of and actions on or in our websites or mobile applications, such as pages or screens you accessed, how long you spent on a page or screen, navigation paths between pages or screens, information about your activity on a page or screen, access times, and length of access.

    Our service providers and business partners may collect this type of information over time and across third-party websites. This information is collected via various mechanisms, such as via cookies, proxy session ID, and similar technologies. This type of information may also be collected when you read our HTML-enabled emails.

    II.      How we use your personal data

We use and otherwise process the information that we collect for a variety of business purposes, including:

  • Providing and improving our products and services. For example, by:

    • Operating, evaluating, maintaining, improving, and providing the products and services, such as new Program features and functionality;

    • Providing support and maintenance for our products and services, including responding to your requests, questions and feedback; conducting analytics; and managing our relationship with you and your financial institution; and

    • Communicating with you about your account.

  • Research and Development. We use the information we collect for research and development purposes, including to develop and create analytics and related reporting, such as regarding industry and fraud trends.

  • Marketing. For example, we may use your information to form a view on what rewards may be of interest to you. We may also contact you with marketing communications using the information you have provided to us, although you may opt-out of receiving commercial email marketing messages by following the opt-out processes described under “Your rights and choices” below;

  • Compliance, fraud prevention and safety. We use your information to ensure the integrity of our products and services. For example, we may verify your identify; enforce the terms and conditions that govern our products and services; protect our rights, privacy, safety or property, and/or that of you or others; and protect, investigate and deter against fraudulent, harmful, unauthorized, unethical or illegal activity.

  • Complying with law. We use your information to comply with applicable laws, lawful requests and legal process, such as to respond to subpoenas or requests from government authorities.

  • To create anonymous or de-identified data. We may create anonymous or de-identified data from your personal data and other individuals whose personal data we collect. Information that no longer identifies you is not covered by this Privacy Notice.

  • As otherwise authorized by you.

    III.      How we share your personal data

We are committed to maintaining your trust, and we want you to understand when and with whom we may share the information we collect.

  • Our clients. When we perform services for our clients, such as your financial institution, we may share your information with those entities. We are not responsible for the privacy practices of our clients.

  • To effectuate rewards and other transactions. We share your information with companies to effectuate rewards and transactions you request. For example, we may share your information with redemption partners as necessary to allow for redemption of points and other rewards. We also may share information with redemption partners (e.g. e-commerce or online marketplace providers which have their own points and redemption platforms), third-party wallet, or similar platform providers to allow you to redeem rewards points through their platforms.

  • Affiliated companies. We may disclose your personal data to our subsidiaries and corporate affiliates for purposes consistent with this Privacy Notice.

  • Service providers. We may employ third party companies and individuals (possibly including parties outside of the United States) to administer and provide services on our behalf, for example, to provide customer support or IT systems, or to calculate the redemption points that you have earned. These third parties may use your information only as directed by us and in a manner consistent with this Privacy Notice, and are prohibited from using or disclosing your information for other purposes.

  • Credit reference, fraud protection, risk management, and identity and verification agencies. We share personal data with credit reference, fraud protection, risk management, and identity verification agencies to help guard against, detect, and respond to fraud or money laundering, and/or manage our or our clients’ risk, and ensure we comply with contractual, legal, or regulatory requirements.

  • Compliance with laws and law enforcement; protection and safety. We may disclose information about you to government or law enforcement officials (including tax authorities) or private parties as required by law, and disclose and use such information as we believe necessary or appropriate to (a) comply with applicable laws and lawful requests and legal process, such as to respond to subpoenas or requests from government authorities; (b) enforce the terms and conditions that govern our products and services; (c) protect our rights, privacy, safety or property, and/or that of you or others; and (d) protect, investigate and deter against fraudulent, harmful, unauthorized, unethical or illegal activity.

  • Professional advisors. We may disclose your information to professional advisors, such as lawyers, bankers, auditors and insurers, where necessary in the course of the professional services that they render to us.

  • Business transfers. We may sell or transfer some or all of our business or assets, including your information, in connection with a business transaction (or potential business transaction) such as a merger, consolidation, acquisition, reorganization or sale of assets or in the event of bankruptcy, in which case we will make reasonable efforts to require the recipient to honor this Privacy Notice.

  • To other parties with your permission or to fulfill a contract they have with you. We may transfer your information to any third party who is not otherwise covered by this Notice where you have given us permission to do so, or with whom you have entered into a contract when we need to transfer your information to that party in order to fulfil that contract.

  • As otherwise authorized by you.

    IV.      Your rights and choices

The following options are available to you:

  • If you have any questions about this Privacy Notice or the privacy of your information, you may contact Fiserv via email at the following address: [email protected].

  • If you believe that Program records contain inaccurate or incomplete information about you, please notify your financial institution to correct any inaccuracies.

  • If at any time you would like to stop receiving everblueRewards marketing and promotional email messages, you may go to the everblueRewards “Profile” page and change your email preference. Alternative instructions may also appear in individual messages that you receive.

  • If you would like to stop the sharing of your personal information as described in this Privacy Notice, you may contact your financial institution and ask to be removed from the Program.

Additionally, to the extent required by law, you may be entitled to request access to, deletion of, and portability of your information or more information about our information practices. Requests should be submitted by your or an authorized agent in writing as set out in the “Contact Information” section below. If you make a request, you will be asked to provide sufficient information to allow us to reasonably verify that the individual is the person about whom we collected information. These rights are not absolute, and we may decline your request as permitted by applicable laws.

    V.      How we keep your data safe

We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorized way, altered or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors and other third parties who have a business need to know. However, you should understand that no data storage system or transmission of data over the Internet or any other public network can be guaranteed to be 100 percent secure, accurate, complete, or current. Please note that information collected by third parties may not have the same security protections as information you submit to us, and we are not responsible for protecting the security of such information.

We have put in place procedures to deal with any suspected personal data breach and to notify you and any applicable regulator of a breach where we are legally required to do so.

    VI.      Your acceptance of these terms

By using the everblueRewards Program, you signify your acceptance of our Privacy Notice. If you do not agree with this Notice, please withdraw from the Program and do not use the website or other Program services. In all cases, your continued use of our products or services after the posting of any modified Privacy Notice indicates your acceptance of the terms of the modified Privacy Notice.

    VII.      Changes to this Privacy Notice

We may modify this Privacy Notice from time to time. When we update the Privacy Notice, we will revise the “Effective Date” date above and post the new Privacy Notice on this website. We recommend that you review the Privacy Notice each time you access or use the Program to stay informed of our privacy practices.

    VIII.      Compliance with applicable laws

We comply with applicable laws and regulations pertaining to information about you, including U.S. federal laws pertaining to “nonpublic personal information” and “consumer report information.”

    IX.      Contact us

If you have any questions about this Privacy Notice or our practices, please email us at [email protected].