Shift4 Corporation

Active Participant

Participation

EU-U.S. Privacy Shield Framework: Active

Original Certification Date: 6/30/2017
Next Certification Due Date: 6/30/2018
Data Collected: NON-HR

Purpose of Data Collection

Shift4 processes, stores, and transmits cardholder data in compliance with the internationally recognized PCI Data Security Standard. Other than authorization and settlements services, cardholder data is never used for any other purpose and is never disclosed to or shared with third parties not directly involved with credit card processing.

Privacy Policy

Non-HR Data

Document: Shift4 Payments, LLC, Privacy Shield Policy
Description:

This privacy policy is comprised of the seven common principles of the Privacy Shield Program Framework. It also affirms Shift4 Payments, LLC, (Shift4’s) commitment to the Privacy Shield Program as a data processor. The Privacy Shield Program Framework also includes 16 equally binding principles that explain and augment the first seven. Shift4 confirms its eligibility as a data processor under FTC jurisdiction, which covers acts or practices in or affecting commerce by any “person, partnership, or corporation.” The Data Protection Officer of Shift4 Payments, LLC, is Stephen Ames, Vice President of Compliance.

Effective Date: 6/6/2018
Document: Shift4 Privacy Shield Policy
Description:

This policy is comprised of the seven common principles of the Privacy Shield Program Framework and affirms Shift4’s commitment to the program. The Privacy Shield Program Framework also includes 16 equally binding principles that explain and augment the first seven. Shift4 confirms its eligibility under FTC jurisdiction, which covers acts or practices in or affecting commerce by any “person, partnership, or corporation.” This privacy policy, as updated, will be publicly maintained in the Shift4 Security Corner http://www.shift4.com/insight/security/. The Privacy Shield Framework can be found at https://www.privacyshield.gov/welcome.

Effective Date: 6/1/2017

Verification Method

Self-Assessment

Dispute Resolution

Questions or Complaints?

If you have a question or complaint regarding the covered data, please contact Shift4 Corporation at:

Stephen Ames
VP of Compliance
Shift4 Corporation
Corporate Service Compliance Office
1491 Center Crossing Road
Las Vegas, Nevada 89144
privacyshield@shift4.com
Phone: (702) 597-2480
Fax: 702-597-2499

Privacy Shield organizations must respond within 45 days of receiving a complaint.

If you have not received a timely or satisfactory response from Shift4 Corporation to your question or complaint, please contact the independent recourse mechanism listed below


NON-HR RECOURSE MECHANISM

EU Data Protection Authorities (DPAs)
PrivacyTrust Privacy Shield Program
TRUSTe


Appropriate statutory body with jurisdiction to investigate any claims against Shift4 Corporation regarding possible unfair or deceptive practices and violations of laws or regulations covering privacy Federal Trade Commission