Privacy Policy – BillPay Rewards
‍
1. Purpose of This Policy & Company Information

‍This Privacy Policy explains how We collect, use, disclose, and safeguard Your information when You use the BillPay Rewards platform (the “Platform”). By using the Platform, You agree to the terms of this Privacy Policy.

The Platform and related services are owned and operated by:
EonX Services Corporation
Registered in South Dakota, USA
Email: privacy@eonx.com
‍
2. Information We Collect
‍We collect the following categories of information:
‍
‍A. Identity & Contact Information
Business name and address
Authorized representative’s name
Email address and phone number
‍
‍B. Verification & Compliance Information (KYC/AML/OFAC)
‍Government-issued identification documents
Tax identification numbers
Bank account details for ACH/card processing
Incorporation certificates and business licenses
Ownership details and beneficial ownership structure
‍
‍C. Transaction Information
‍ACH, debit, and credit card transaction data
Payment history, chargebacks, and reversals
Rewards earning and redemption activity
‍
‍D. Device & Usage Information
‍IP address, browser type, device identifiersPlatform usage logs for fraud preventionSession timestamps and security monitoring data

‍3. Why We Collect This Information
‍We process Your data for:
✔ Payment Processing (ACH, debit, credit)
✔ Regulatory Compliance (KYC, AML, OFAC, NACHA, Card Schemes)
✔ Fraud Detection & Prevention
✔ Rewards Program Administration
✔ Platform Security and Risk Management
✔ Customer Support and Service Communication

‍4. Legal Basis for Processing
Contractual Necessity: To provide payment and rewards services
‍Legal Obligation: To comply with AML, OFAC, NACHA, UCC Article 4A, Visa/Mastercard BPSP/BPA rules
‍Legitimate Interest: Fraud detection, dispute resolution, and compliance enforcement
‍Consent: For optional marketing communications (where required by law)

‍5. How We Use Your Information
‍We use Your data to:
✔ Execute ACH and card transactions
✔ Verify Your identity and meet regulatory obligations
✔ Provide transaction confirmations and status updates
✔ Maintain transaction and audit logs for a minimum of 5 years
✔ Monitor fraud and suspicious activity
✔ Support legal investigations and chargeback disputes

‍6. How We Share Your Information
‍We do not sell Your data. We share only as necessary:
‍Payment Networks & Banks: For ACH and card processing
‍Regulators & Law Enforcement: For AML/OFAC compliance or legal obligations
‍Verification Vendors: For identity, sanctions, and fraud checks
‍Service Providers: Hosting, infrastructure, cybersecurity, under strict confidentiality agreements
‍Loyalty Partners: To fulfill rewards redemptions (airlines, hotels, gift card merchants)

‍7. International Data Transfers
‍Your data may be processed outside the U.S. with safeguards including:
✔ Encryption during transfer
✔ Access control policies
✔ Standard Contractual Clauses (GDPR compliance)

‍8. Data Retention
‍We retain transaction and identity data for at least 5 years post-account closure, as required by AML and banking laws.
Dispute-related data, including chargebacks, may be retained longer for regulatory defense.
Marketing and non-essential data is purged when legally permissible.

‍9. Data Security
‍We employ industry-leading security measures:
✔ PCI DSS Level 1 Certified
✔ SOC 2 Type II Audited
✔ ISO 9001 & ISO 27001 Compliant
✔ Encryption (data in transit and at rest)
✔ Multi-factor authentication and role-based access

‍Breach Disclaimer: While We take robust security measures, We are not liable for breaches caused by factors beyond Our control.

‍10. Your Rights
‍Subject to applicable law, You may:
✔ Access and correct Your personal data
✔ Request deletion where permissible
✔ Opt out of marketing communications
✔ Request a copy of Your data (data portability)

Contact privacy@eonx.com for such requests.

‍11. GDPR Compliance (EU Residents)
‍We process Your data lawfully under GDPR Articles 5–6.
Rights: Access, rectification, erasure, restriction, objection, portability.
Complaints: Contact Your local supervisory authority.

‍12. CCPA Compliance (California Residents)
‍California residents have rights under CCPA, including:
✔ Right to know what data We collect
✔ Right to request deletion (except for legal obligations)
✔ Right to opt out of data sale (We do not sell data)
Submit CCPA requests to privacy@eonx.com.

‍13. Children’s Privacy
‍The Platform is strictly for registered businesses. We do not knowingly collect data from individuals under 18.

‍14. Chargebacks, Fraud & Dispute Data
‍In the event of disputes, We retain relevant data, including:
IP logs, payment fingerprints
ACH authorizations and card chargeback documentation
Communications with banks and regulators
This data is retained for compliance and enforcement purposes.

‍15. Rewards Program Clarification
‍BillPay Rewards Points:
✔ Issued free as a promotional incentive
✔ Have no monetary value and cannot be purchased or redeemed for cash
✔ Do not constitute stored value or property
✔ Subject to forfeiture upon termination (See Terms & Conditions Section 11)

‍16. Marketing & Communication
‍By using the Platform, You consent to electronic communications for service notifications and compliance purposes.
You may opt out of marketing at any time without affecting core services.
‍
17. Changes to This Policy
‍We may update this Privacy Policy periodically. Material changes will be communicated via email or Platform notice. Continued use constitutes acceptance.

‍18. Contact Usprivacy@eonx.com
EonX Services Corporation, 101 S. Reid Street, Suite 307, Sioux Falls, South Dakota, USA
Tel: +1 803 676 7776

Privacy Policy – BillPay Rewards
‍
1. Purpose of This Policy & Company Information

‍This Privacy Policy explains how We collect, use, disclose, and safeguard Your information when You use the BillPay Rewards platform (the “Platform”). By using the Platform, You agree to the terms of this Privacy Policy.

The Platform and related services are owned and operated by:
EonX Services Corporation
Registered in South Dakota, USA
Email: privacy@eonx.com
‍
2. Information We Collect
‍We collect the following categories of information:
‍
‍A. Identity & Contact Information
Business name and address
Authorized representative’s name
Email address and phone number
‍
‍B. Verification & Compliance Information (KYC/AML/OFAC)
‍Government-issued identification documents
Tax identification numbers
Bank account details for ACH/card processing
Incorporation certificates and business licenses
Ownership details and beneficial ownership structure
‍
‍C. Transaction Information
‍ACH, debit, and credit card transaction data
Payment history, chargebacks, and reversals
Rewards earning and redemption activity
‍
‍D. Device & Usage Information
‍IP address, browser type, device identifiersPlatform usage logs for fraud preventionSession timestamps and security monitoring data

‍3. Why We Collect This Information
‍We process Your data for:
✔ Payment Processing (ACH, debit, credit)
✔ Regulatory Compliance (KYC, AML, OFAC, NACHA, Card Schemes)
✔ Fraud Detection & Prevention
✔ Rewards Program Administration
✔ Platform Security and Risk Management
✔ Customer Support and Service Communication

‍4. Legal Basis for Processing
Contractual Necessity: To provide payment and rewards services
‍Legal Obligation: To comply with AML, OFAC, NACHA, UCC Article 4A, Visa/Mastercard BPSP/BPA rules
‍Legitimate Interest: Fraud detection, dispute resolution, and compliance enforcement
‍Consent: For optional marketing communications (where required by law)

‍5. How We Use Your Information
‍We use Your data to:
✔ Execute ACH and card transactions
✔ Verify Your identity and meet regulatory obligations
✔ Provide transaction confirmations and status updates
✔ Maintain transaction and audit logs for a minimum of 5 years
✔ Monitor fraud and suspicious activity
✔ Support legal investigations and chargeback disputes

‍6. How We Share Your Information
‍We do not sell Your data. We share only as necessary:
‍Payment Networks & Banks: For ACH and card processing
‍Regulators & Law Enforcement: For AML/OFAC compliance or legal obligations
‍Verification Vendors: For identity, sanctions, and fraud checks
‍Service Providers: Hosting, infrastructure, cybersecurity, under strict confidentiality agreements
‍Loyalty Partners: To fulfill rewards redemptions (airlines, hotels, gift card merchants)

‍7. International Data Transfers
‍Your data may be processed outside the U.S. with safeguards including:
✔ Encryption during transfer
✔ Access control policies
✔ Standard Contractual Clauses (GDPR compliance)

‍8. Data Retention
‍We retain transaction and identity data for at least 5 years post-account closure, as required by AML and banking laws.
Dispute-related data, including chargebacks, may be retained longer for regulatory defense.
Marketing and non-essential data is purged when legally permissible.

‍9. Data Security
‍We employ industry-leading security measures:
✔ PCI DSS Level 1 Certified
✔ SOC 2 Type II Audited
✔ ISO 9001 & ISO 27001 Compliant
✔ Encryption (data in transit and at rest)
✔ Multi-factor authentication and role-based access

‍Breach Disclaimer: While We take robust security measures, We are not liable for breaches caused by factors beyond Our control.

‍10. Your Rights
‍Subject to applicable law, You may:
✔ Access and correct Your personal data
✔ Request deletion where permissible
✔ Opt out of marketing communications
✔ Request a copy of Your data (data portability)

Contact privacy@eonx.com for such requests.

‍11. GDPR Compliance (EU Residents)
‍We process Your data lawfully under GDPR Articles 5–6.
Rights: Access, rectification, erasure, restriction, objection, portability.
Complaints: Contact Your local supervisory authority.

‍12. CCPA Compliance (California Residents)
‍California residents have rights under CCPA, including:
✔ Right to know what data We collect
✔ Right to request deletion (except for legal obligations)
✔ Right to opt out of data sale (We do not sell data)
Submit CCPA requests to privacy@eonx.com.

‍13. Children’s Privacy
‍The Platform is strictly for registered businesses. We do not knowingly collect data from individuals under 18.

‍14. Chargebacks, Fraud & Dispute Data
‍In the event of disputes, We retain relevant data, including:
IP logs, payment fingerprints
ACH authorizations and card chargeback documentation
Communications with banks and regulators
This data is retained for compliance and enforcement purposes.

‍15. Rewards Program Clarification
‍BillPay Rewards Points:
✔ Issued free as a promotional incentive
✔ Have no monetary value and cannot be purchased or redeemed for cash
✔ Do not constitute stored value or property
✔ Subject to forfeiture upon termination (See Terms & Conditions Section 11)

‍16. Marketing & Communication
‍By using the Platform, You consent to electronic communications for service notifications and compliance purposes.
You may opt out of marketing at any time without affecting core services.
‍
17. Changes to This Policy
‍We may update this Privacy Policy periodically. Material changes will be communicated via email or Platform notice. Continued use constitutes acceptance.

‍18. Contact Usprivacy@eonx.com
EonX Services Corporation, 101 S. Reid Street, Suite 307, Sioux Falls, South Dakota, USA
Tel: +1 803 676 7776