Sonar API

Last Revised: August, 2024

Sonar API (“we”, “us”, or “our”) respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our services, which monitor cardholder transactions as part of a third-party service to which the cardholder has subscribed and provided the necessary consents.

This Privacy Policy applies to all users of our services. Specific sections apply to users in the European Union (EU), United Kingdom (UK), and California.

Please read this Privacy Policy carefully to understand how we handle your personal information. By using our services, you agree to the practices described herein.

1. Information We Collect

We collect the following types of information as part of providing transaction monitoring services to third parties:

Personal Information: This includes identifying information such as your name, email address, and contact details provided by you through the third-party service to which you have subscribed.
Card Transaction Data: We collect transaction data, such as transaction amounts, dates, merchant locations, and payment methods, based on consents you provided to the third-party service.
Device and Technical Data: Information about the device you use to access the third-party service, such as IP address, device type, and browser type.
Consent-Based Data: Any additional data provided by you or the third-party service to which you have subscribed, such as linked card details, geolocation data, and preferences.

2. How We Use Your Information

We use the collected information solely to provide transaction monitoring services as part of the third-party service to which you have subscribed. This includes:

Transaction Monitoring: Monitoring and verifying your card transaction data to ensure compliance with the third-party service’s features, such as rewards, cashback programs, or spending insights.
Providing Services: Supporting the third-party service provider in delivering the transaction-based services you have subscribed to.
Compliance: Ensuring compliance with applicable laws, regulations, and industry standards, particularly in relation to payment card transactions.
Improvement and Analysis: Supporting improvements to the services provided by our third-party partners, including analysis of transaction data to enhance service functionality.

3. Consent and Transaction Monitoring

Our services are provided in partnership with third-party service providers that you have subscribed to. By consenting to these third-party services, you authorize Sonar API to monitor your transaction data. We act as a service provider to the third-party partner and process your transaction data in accordance with the consents you provided to them.

If you withdraw consent with the third-party service, or no longer wish to have your transactions monitored, you can do so by contacting the third-party service provider directly. Please note that withdrawing consent may affect your ability to fully use the services to which you subscribed.

4. Disclosure of Your Information

We do not sell or rent your personal data to third parties. However, we may share your information in the following circumstances:

Third-Party Service Providers: We share your transaction and personal information with the third-party service to which you subscribed, in order to provide the services you agreed to. This includes sharing data with trusted partners who assist in operating our services, such as payment processors and data analytics providers.
Legal Compliance: We may disclose your information to comply with legal requirements, such as court orders or government regulations, or to protect our rights and the safety of our users.
Business Transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of the business continuity process.

5. Security of Your Information

We implement industry-standard security measures to protect your personal and transactional data from unauthorized access, disclosure, or misuse. However, no online system is completely secure, and we cannot guarantee the absolute security of your data.

6. Cookies and Tracking Technologies

Sonar API and its third-party partners may use cookies and similar technologies as part of the third-party services to track your usage patterns, store preferences, and ensure the smooth operation of the services. You can control cookie settings through your browser, though disabling cookies may affect your experience with the third-party service.

7. Your Rights

Depending on your jurisdiction, you may have certain rights regarding your personal information, including:

Access: You can request access to the personal information we hold about you.
Correction: You can ask us to update or correct inaccurate information.
Deletion: You can request the deletion of your personal data, subject to any legal retention requirements.
Opt-Out: You may opt out of marketing communications through the third-party service provider to which you subscribed. Please note that even if you opt out, you will continue to receive service-related messages from the third-party service provider.

To exercise any of these rights, please contact the third-party service provider or reach out to us at privacy@sonarapi.com.

8. Retention of Information

We retain your personal and transaction data for as long as necessary to fulfill the purposes outlined in this Privacy Policy and in accordance with the third-party service’s agreements, or as required by law. If you withdraw consent or terminate your subscription, we will either delete or anonymize your data, unless legal obligations require us to retain it for a specific period.

9. International Data Transfers

Your data may be transferred to and processed in countries outside your jurisdiction where data protection laws may differ. By using our services through a third-party provider, you consent to such transfers. We will take appropriate steps to ensure your data is protected in accordance with applicable privacy standards.

10. Your Rights if You Are Located in the EU, UK, or Switzerland

If you are located in the European Economic Area (EEA), the UK, or Switzerland, you have additional rights under the General Data Protection Regulation (GDPR) or UK GDPR, including:

Right to Withdraw Consent: Where we rely on your consent to process your personal data, you can withdraw your consent at any time.
Right to Data Portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to request that we transfer your data to another provider where applicable.
Right to Restriction of Processing: You can request that we restrict processing of your personal data under certain circumstances, such as while we verify the accuracy of your personal data.
Right to Object: You can object to the processing of your personal data for direct marketing or where we rely on our legitimate interests.

To exercise your rights under the GDPR or UK GDPR, please contact us at privacy@sonarapi.com.

11. Your California Privacy Rights

If you are a resident of California, the California Consumer Privacy Act (CCPA) grants you specific rights regarding your personal data:

Right to Know: You have the right to request that we disclose the categories and specific pieces of personal information we have collected about you.
Right to Delete: You have the right to request that we delete your personal information, subject to certain exceptions.
Right to Opt-Out of Sale: You have the right to request that we do not sell your personal information. While Sonar API does not sell personal information in the traditional sense, California residents can request that we do not share their personal information in ways that could be considered a "sale" under the CCPA.

You may also designate an authorized agent to submit requests on your behalf. To exercise your rights under the CCPA, please contact us at privacy@sonarapi.com or through our designated CCPA request form. We will respond to verified requests in accordance with the CCPA.

12. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices or legal obligations. The revised policy will be posted on our website with an updated “Last Revised” date. Please review this policy regularly to stay informed.

13. Contact Us

If you have any questions or concerns about this Privacy Policy, please contact us at:

Sonar API
Registered Office: 93 Upper Georges Street, Dun Laoghaire, Co Dublin, A96 V1K8

Email: privacy@sonarapi.com