Visa Global Privacy Notice

¹ Visa’s Affiliates are companies that are directly or indirectly controlled by Visa U.S.A. Inc. or its parent company Visa Inc. through ownership—for example, Visa International Service Association, Visa Worldwide Pte. Limited, Visa Canada Corporation, Visa International Servicios de Pago España, S.R.L.,Visa Europe Limited, Visa do Brasil Empreendimentos Ltda, CardinalCommerce Corporation, CyberSource Corporation, and Verifi, Inc.

Depending on our relationship and interactions with you, the categories of Personal Information we collect may include:

  • Contact Information – This includes your name, username, mailing address, email address, telephone number, mobile number, and social medial profile names, along with other personal identifiers.
  • Transaction and Financial Information – This includes:
    • Information about your card, including your 16-digit payment card number, which is also known as a personal account number or “PAN”; an associated non-financial identifier known as payment account reference or “PAR” token; and expiration date, service code, PIN verification data, and CVV; and
    • Information about your transactions, including the date, time, location, and amount of the transaction and information about the merchant. This also may include item-level data in some instances, and billing and shipping information.
  • Relationship Information – This includes information about your shopping and payment preferences and other information that can help us offer you personalized content, such as:
    • Demographic information, such as age range and marital or family status;
    • Likelihood that you may be interested in certain purchases or experiencing life events and other propensity scores; and
    • Data from social media profiles and information about your interests.
  • Interaction Information – This includes information about your interactions with Visa, such as:
    • Information collected when you participate in promotions or programs, such as rewards program account information;
    • Card benefits program information, including qualification data and related records;
    • Information collected when you contact us, such as if you contact our customer service;
    • Visitor logs;
    • Information collected when you attend Visa sponsored events, such as travel-related information for you and any companions gathered at the events; and
    • Other information you provide us, such as data collected for consumer authentication (e.g., passwords or account security questions).
  • Biometric Identifiers – This may include facial recognition data, fingerprints, keystroke timing, scroll position, and behavioral data or other physical patterns, such as when you elect to use biometric authentication with Visa or its clients.
  • Business Customer Data – This includes information about your role within your company, your authorization to use products or services, and your authority to place orders; customer/supplier qualification details; and other data you share with us in connection with the relationship.
  • Inferred and Derived Information – We infer and derive data elements by analyzing our relationship and transactional information. For example, we may generate propensities, attributes, and/or scores for marketing, security, or fraud purposes.
  • Online and Technical Information – This includes information regarding your interactions with our websites, applications, or advertisements, including IP address, device identifiers, settings, characteristics, advertising ID, browsing history, web server logs, server log records, activity log records, keystroke timing, and other information collected using cookies and similar technologies.
  • Audio and Visual Information – This includes audio, electronic, visual, or similar information relating to your interactions with us, including photographs, video images, CCTV recordings, call center recordings, call monitoring records, and voicemails.
  • Government Issued Identification Numbers – This includes social security number, driver’s license number, passport number, and other government issued identifiers as may be needed for compliance or given the nature of the relationship.
  • Geolocation Information – This may include precise geolocation information, which we may collect automatically from your mobile device if you opt-in to allow us to collect it.
  • Professional and Employment Information – This includes professional or employment-related information for employees and prospective employees, including applicant and resume data, such as education and work history; information about qualifications for the position, such as skills and credentials; professional interests and goals; information collected for employee qualifications, such as right to work documentation; and references.
  • Compliance Data – This includes records maintained to demonstrate compliance with applicable laws; records related to consumer preferences, such as your opt-ins and opt-outs of marketing programs; and records related to data subject rights requests.

Some of the Personal Information in these categories may be considered sensitive Personal Information in some jurisdictions.

We may collect Personal Information about you from various sources, depending on our relationship and interaction with you. These sources may include:

  • Your financial institutions, payment card issuer, merchants, acquirers, and other partners when you use a Visa-branded payment product or when we’re acting on their behalf, such as when you tap your Visa card;
  • You, such as when you enroll in card link offer programs from Visa or a co-promotion partner, enroll in a Visa click-to-pay solution, or provide survey responses to us;
  • Your computer or devices when you interact with our platforms, websites, and applications or through other automatic technologies, such as when we record calls to our call center and use CCTV cameras in our facilities; and
  • Other third parties, including data aggregators, social media companies, and other publicly available sources. In addition, Professional and Employment Information may be collected from your references and third parties that help us conduct internal investigations and background screenings, and Business Customer Data may be collected from your employer, trade show and conference organizers, and professional services companies.

Purpose for Collecting and Sharing
Categories of Personal Information
Legal Basis for Processing
(Where required under applicable law)
Operate Visa’s electronic payments networks (including authorization, clearing, and settlement of transactions and tokenization), enable your payment transactions, and for related purposes, such as authentication, dispute resolution, fraud prevention, and security
  • Contact Information
  • Transaction and Financial Information
  • Relationship Information
  • Interaction Information
  • Biometric Identifiers
  • Business Customer Data
  • Inferred and Derived Information
  • Online and Technical Information
  • Audio and Visual Information
  • Government Issued Identification Numbers
  • Geolocation Information
  • Compliance Data
  • To fulfill a contract to which you are a party, such as a contract with you, or as needed to fulfill a contract between you and a merchant or between you and the financial institution or other entity that issued your card, where Visa is providing payment services or acting as a data processor
  • To comply with the laws and regulations that are applicable to us around the world
  • For the purposes of our own legitimate interests or for the legitimate interests of others, such as to protect you, us, or others from threats (such as security threats or fraud); to enable or administer our business, such as for quality control, compliance, consolidated reporting, and customer service; to manage corporate transactions, such as mergers or acquisitions; and to understand and improve our business or customer relationships generally

Provide you with the products, services, programs, offers, or information you request from Visa, and for related purposes such as determining eligibility and customer service
  • Contact Information
  • Transaction and Financial Information
  • Relationship Information
  • Interaction Information
  • Biometric Identifiers
  • Business Customer Data
  • Inferred and Derived Information
  • Online and Technical Information
  • Audio and Visual Information
  • Government Issued Identification Numbers
  • Geolocation Information
  • Compliance Data
  • To fulfill a contract to which you are a party, as described above
  • To comply with the laws and regulations that are applicable to us around the world
  • For the purposes of our own legitimate interests or for the legitimate interests of others, as described above

Provide services to our clients. For example, if you enroll in a card issuer or merchant loyalty program, we will process Card Transaction Data to calculate your rewards and provide targeted offers to you from the client
  • Contact Information
  • Transaction and Financial Information
  • Relationship Information
  • Interaction Information
  • Biometric Identifiers
  • Business Customer Data
  • Inferred and Derived Information
  • Online and Technical Information
  • Audio and Visual Information
  • Government Issued Identification Numbers
  • Geolocation Information
  • Compliance Data
  • To fulfill a contract to which you are a party, as described above
  • To comply with the laws and regulations that are applicable to us around the world
  • For the purposes of our own legitimate interests or for the legitimate interests of others, as described above

Operate Visa solutions such as click to pay, including to enroll you in the solution, to enable you to stay signed in on your device (if you have chosen this), to enable you to check out using the solution, to integrate with other digital wallets (if you have chosen to do this), and to participate in programs related to your use of the solution
  • Contact Information
  • Transaction and Financial Information
  • Relationship Information
  • Interaction Information
  • Biometric Identifiers
  • Business Customer Data
  • Inferred and Derived Information
  • Online and Technical Information
  • Audio and Visual Information
  • Government Issued Identification Numbers
  • Geolocation Information
  • Compliance Data
  • To fulfill a contract to which you are a party, as described above
  • To comply with the laws and regulations that are applicable to us around the world
  • For the purposes of our own legitimate interests or for the legitimate interests of others, as described above

Administer surveys, loyalty programs, sweepstakes, contests, and events
  • Contact Information
  • Transaction and Financial Information
  • Relationship Information
  • Interaction Information
  • Biometric Identifiers
  • Business Customer Data
  • Inferred and Derived Information
  • Online and Technical Information
  • Audio and Visual Information
  • Government Issued Identification Numbers
  • Geolocation Information
  • Compliance Data
  • To fulfill a contract to which you are a party, as described above
  • For the purposes of our own legitimate interests or for the legitimate interests of others, as described above

Based on your choices, deliver marketing communications, personalized offers, and interest-based ads to you
  • Contact Information
  • Transaction and Financial Information
  • Relationship Information
  • Interaction Information
  • Biometric Identifiers
  • Business Customer Data
  • Inferred and Derived Information
  • Online and Technical Information
  • Audio and Visual Information
  • Geolocation Information
  • Compliance Data
  • For the purposes of our own legitimate interests or for the legitimate interests of others, such as to send you news and offers that are relevant to you

Fulfill, develop, or maintain our business relationship with you and/or your company
  • Contact Information
  • Transaction and Financial Information
  • Relationship Information
  • Interaction Information
  • Biometric Identifiers
  • Business Customer Data
  • Inferred and Derived Information
  • Online and Technical Information
  • Audio and Visual Information
  • Government Issued Identification Numbers
  • Geolocation Information
  • Compliance Data
  • To fulfill a contract to which you are a party, as described above
  • For the purposes of our own legitimate interests or for the legitimate interests of others, as described above

Facilitate your employment or contracting relationship with us or evaluate you for a position, including customary human resources purposes, risk management, and compliance
  • Contact Information
  • Relationship Information
  • Interaction Information
  • Biometric Identifiers
  • Online and Technical Information
  • Audio and Visual Information
  • Government Issued Identification Numbers
  • Professional and Employment Information
  • Compliance Data
  • To fulfill a contract to which you are a party, as described above
  • To comply with the laws and regulations that are applicable to us around the world
  • For the purposes of our own legitimate interests or for the legitimate interests of others, as described above

Understand how you and others use our products, for analytics and modeling and to create business intelligence and insights and to understand economic trends
  • While certain information such as Transaction and Financial Information, Relationship Information, Interaction Information, Online and Technical Information, and Geolocation Information may be used for these activities, the end result does not constitute Personal Information.
  • For the purposes of our own legitimate interests or for the legitimate interests of others, as described above

Generate de-personalized, de-identified, anonymized, or aggregated datasets, which are used for product development and delivery of consulting services to clients
  • While certain information such as Transaction and Financial Information, Relationship Information, Interaction Information, and Online and Technical Information may be used to generate these datasets, the end result does not constitute Personal Information.
  • For the purposes of our own legitimate interests or for the legitimate interests of others, as described above

Support our Everyday Business Purposes, such as for account management, quality control, website administration, business continuity and disaster recovery, security and fraud prevention, corporate governance, reporting and legal compliance, analytics and research, enforcement of contracts and other contract management, and the provision of requested products and services*
  • Contact Information
  • Transaction and Financial Information
  • Relationship Information
  • Interaction Information
  • Business Customer Data
  • Inferred and Derived Information
  • Online and Technical Information
  • Audio and Visual Information
  • Government Issued Identification Numbers
  • Geolocation Information
  • Professional and Employment Information
  • Compliance Information
  • To fulfill a contract to which you are a party, as described above
  • To comply with the laws and regulations that are applicable to us around the world
  • For the purposes of our own legitimate interests or for the legitimate interests of others, as described above
Where applicable, we also may process Personal Information with your consent. For example, we may rely on your consent, where required by law, to provide you with marketing communications.

"Everyday Business Purposes” encompasses the following business purposes and related purposes for which Personal Information may be used:

We may disclose your Personal Information to:

  • Our Affiliates;
  • Our service providers, for the purposes of providing services to us;
  • Financial institutions, merchants, payment processors, and other third parties that are subject to appropriate confidentiality and use restrictions, for the purposes of enabling your payments, managing fraud and risk, providing and developing products and services, and supporting our Everyday Business Purposes;  
  • Third parties, such as third-party advertising partners, who may use data collected by cookies and similar means to help us with our online advertising programs;
  • Government agencies;
  • Recruiting agencies and your references (for Professional and Employment Information); and
  • Your company and its affiliates (for Business Customer Data).

We may also disclose personal information when required to do so by law, such as to law enforcement agencies, regulators, or courts, or as permitted by law, such as when we sell or transfer business assets, enforce our contracts, protect our property or the rights, property or safety of others, or as needed for audits, compliance, and corporate governance.