Recording of phone conversations
The phone calls you make and receive, may be recorded by Vipps MobilePay if you have consented to it.
Below, you may find the details of how we process personal data in relation to the phone conversations.
Why do we record phone conversations?
Telephone conversations are recorded and stored to be used for the training of our employees and improve our ways of assisting you when you have a call with Vipps Mobilepay.
Please note that the call may be recorded without your consent and the recorded phone conversations maybe further used for the legitimate interest of the parties where the matter can be relevant to a security issue.
Notification of recording
When you call Vipps MobilePay, you will be informed everytime and get asked for your consent to be recorded. c.f. Article 6(1)(a) of the GDPR
Training: The recording may be listened to by one or more employees for educational purposes to help us improve our service when you call us, c.f. Article 6(1) (a) of the GDPR.
Handling complaints and addressing security incidents: We may listen to recordings to investigate security incidents, including cases of potential fraud or cases of threats to you, us or our employees, c.f. Article 6(1)(f) of the GDPR
Retention and deletion of your personal data
The call record will be kept for 30 days, in line with your consent. You can always withdraw your consent by sending an email to support@mobilepay.dk. If you withdraw your consent we will initiate a deletion of your recorded call.
You can read your rights in the privacy notice. If you or the other party (employee) exercise their rights set out in the GDPR, for example by requesting access to a recorded phone conversation (before it is automatically deleted), we will review the recording and retain it to the extent necessary to ensure documentation of compliance with our obligations and/or to meet any related complaints.
If a recording is involved in specific disputes or security incidents, the recording will not be deleted until the case(s) or incident(s) has been finally settled in accordance with the applicable statute of limitation, c.f. Article 6(1)(f) of the GDPR.