PMI Beyond Payments is committed to protecting your privacy. This policy explains clearly what data we collect, why we collect it, how we use it, and your rights over it.
1. Who We Are
PMI Beyond Payments ("PMI," "we," "us," or "our") is a global financial technology company headquartered at Building A1, Dubai Digital Park, Dubai Silicon Oasis, Dubai, United Arab Emirates. We provide integrated payment, collections, card issuing, and SaaS financial solutions across Latin America, the United States, Europe, and the Middle East.
For data protection purposes, PMI Beyond Payments is the data controller for personal data collected through our websites and services.
2. Data We Collect
We collect the following categories of personal data:
- Identity data: Full name, date of birth, national ID or passport number
- Contact data: Email address, phone number, mailing address
- Business data: Company name, job title, website URL
- Financial data: Bank account details, payment card details (tokenized), transaction histories
- Technical data: IP address, browser type and version, device identifiers, time zone, operating system
- Usage data: Information on how you use our website and services
- Communication data: Messages, inquiries, and feedback submitted via our forms or email
- KYC/AML data: Identity verification documents and compliance data required by law
3. How We Collect Data
We collect data through the following channels:
- Direct interactions: When you fill in our contact form, sign up for services, or communicate with us via email or phone
- Automated technologies: Cookies, server logs, and similar tracking technologies as you interact with our websites
- Third parties: Analytics providers, payment processors, identity verification services, and publicly available sources
- API integrations: When your organization's system connects with PMI's platform
4. Why We Collect Data
We use your personal data for the following purposes:
- To provide, operate, and improve our financial services and platform
- To communicate with you about your account or inquiries
- To comply with legal and regulatory obligations (AML, KYC, tax reporting)
- To send relevant service updates and, with your consent, marketing communications
- To detect and prevent fraud, abuse, and security threats
- To analyze usage trends and improve our products and user experience
- To fulfill contractual obligations with clients and partners
5. Legal Basis for Processing
PMI processes your personal data on the following legal grounds:
- Contractual necessity: When processing is required to fulfill a contract with you
- Legal obligation: When we are required to process data under applicable laws (e.g., AML regulations)
- Legitimate interests: For fraud detection, security, and improving our services
- Consent: Where you have provided explicit consent, such as for marketing communications
6. Data Sharing & Disclosure
We do not sell your personal data. We may share your data with:
- Payment processors and financial institutions necessary to execute transactions
- Identity verification providers for KYC/AML compliance
- Cloud hosting and infrastructure providers who process data on our behalf
- Analytics and marketing tools used to improve our services (subject to your consent)
- Government authorities and regulators when required by law
- Professional advisors (legal, accounting, auditing) under confidentiality obligations
- Business partners with your consent or as part of service delivery
7. Cookies & Tracking Technologies
Our website uses cookies and similar technologies to enhance your experience. These include:
- Strictly necessary cookies: Required for the website to function; cannot be disabled
- Analytics cookies: Help us understand website usage (e.g., Google Analytics)
- Functional cookies: Remember your preferences and settings
- Marketing cookies: Used to deliver relevant advertising (with your consent)
You can manage cookie preferences through your browser settings or our cookie consent banner. Note that disabling certain cookies may impact your experience.
8. International Data Transfers
As a global company operating across multiple jurisdictions, PMI may transfer your personal data to countries outside your home country, including the United Arab Emirates, Mexico, the United States, and other countries where we or our partners operate.
Where data is transferred, we ensure appropriate safeguards are in place — including standard contractual clauses, data processing agreements, and adherence to applicable data protection frameworks.
9. Data Retention
We retain personal data for as long as necessary to fulfill the purposes outlined in this policy, including compliance with legal, accounting, and reporting requirements. Specific retention periods include:
- Transaction and financial records: Minimum 7 years (as required by financial regulators)
- KYC/identity documents: Up to 10 years post-relationship termination
- Contact and marketing data: Up to 3 years from last interaction or until consent is withdrawn
- Technical and usage data: Up to 2 years
10. Your Rights
Depending on your jurisdiction, you may have the following rights regarding your personal data:
- Right of access: Request a copy of your personal data
- Right to rectification: Request correction of inaccurate data
- Right to erasure: Request deletion of your data (where legally permissible)
- Right to object: Object to processing based on legitimate interests
- Right to restriction: Request restriction of processing in certain circumstances
- Right to data portability: Receive your data in a structured, machine-readable format
- Right to withdraw consent: Withdraw consent for marketing or non-essential processing at any time
To exercise any of these rights, contact us at info@pmi.ae. We will respond within 30 days.
11. Data Security
PMI implements organizational and technical security measures to protect your personal data from unauthorized access, loss, misuse, alteration, or destruction. These measures include:
- End-to-end encryption for sensitive financial data in transit and at rest
- Multi-factor authentication for platform access
- Regular security audits and penetration testing
- Access controls and role-based permission systems
- Compliance with PCI DSS standards for payment card data
While we take data security seriously, no method of transmission over the internet is 100% secure. We cannot guarantee absolute security but are committed to continuous improvement.
12. Children's Privacy
PMI's services are not directed to individuals under the age of 18. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us immediately at info@pmi.ae and we will take steps to delete such information.
13. Policy Changes
PMI may update this Privacy Policy at any time to reflect changes in our practices, legal obligations, or services. The "Last updated" date at the top of this page will be revised accordingly. For significant changes, we will provide a prominent notice on our website or via direct communication. Your continued use of our services after the update constitutes acceptance of the revised policy.
If you have any questions, requests, or complaints regarding this Privacy Policy or your personal data, please contact our Data Protection team:
PMI Beyond Payments — Data Protection
Building A1, Dubai Digital Park, Dubai Silicon Oasis, Dubai, UAE
Email: info@pmi.ae
You also have the right to lodge a complaint with the relevant data protection authority in your country of residence if you believe your rights have been violated.
