General Terms and Conditions for the Use of TWINT
December 19 / Version: 2.0
TWINT AG (hereinafter referred to as ‘TWINT AG’) is a Swiss public limited company headquartered in Zurich.
TWINT AG offers private customers (hereinafter referred to as ‘customers’) a mobile payment application for the iOS and Android operating systems (hereinafter referred to as the “TWINT app”) under the name “TWINT other banks”.
The TWINT app can be used by customers as a means of payment in the area of stationary retail, at vending machines, in online shops and in apps and can thus be used with all merchants or service providers that accept TWINT as a payment method (hereinafter referred to as ‘merchants’). TWINT AG also offers added-value services. These include, in particular, the saving or activation of customer loyalty cards and services in the area of mobile marketing. These added-value services allow customers to receive and manage coupons, stamp cards and other campaigns in the TWINT app. Customers can likewise use these services to collect stamps and redeem loyalty rewards, discounts and credits via the TWINT app.
All personal designations apply to both genders equally.
These General Terms and Conditions (hereinafter referred to as the ‘GTCs’) govern the use of all services offered in the TWINT app. These services include all payment functions and added-value services, which are described on the website www.twint.ch and in the TWINT app itself (hereinafter referred to as ‘services’). These GTCs shall be deemed to have been accepted as soon as customers register via the TWINT app and conﬁrm with the click of the mouse that they have read and understood the GTCs.
1.2. Access to the TWINT services
The services can be used on all smartphones available on the Swiss market, irrespective of the manufacturer, on which the TWINT app can be installed. For the TWINT app to be installed on a smartphone, it must be equipped with the iOS or Android operating system, support BLE (Bluetooth low energy) and have correctly implemented the Bluetooth protocol. The minimum required iOS or Android version can be found at www.twint.ch or in the relevant app store.
Customers with a smartphone registered in their name on which the TWINT app has been installed are granted access to the services.
Technical access to the services is obtained via the Internet connection of the customer’s smartphone, which acts as a personal terminal, and a dedicated infrastructure made available by a business customer (e.g. Beacons – transmitters based on the BLE wireless standard). Certain services cannot be used in the absence of an Internet connection.
Payment and additional functions can be restricted by TWINT AG when used outside Switzerland on the basis of regulatory requirements.
1.3. Registration and identiﬁcation
During the installation (downloading) of the TWINT app on the smartphone, customers shall be requested to enter their smartphone number. This number shall be veriﬁed for security reasons. Should customers change their mobile number, they must immediately inform TWINT AG of the new number.
TWINT AG is bound by statutory conﬁdentiality requirements. Customers shall agree that the nature of the business relationship and their master data (e.g. name, place of residence) may, where necessary, be disclosed to the payment recipient and other third parties in order to facilitate the provision of services.
Customers shall receive assurance that data relating to the content of business relationships (e.g. account and payment data) is in principle deemed conﬁdential. However, customers shall acknowledge that the statutory duty of conﬁdentiality may be waived in order to safeguard the legitimate interests of TWINT AG. This shall apply, in particular, in the following cases:
• Instances in which TWINT AG is required to meet statutory obligations to provide information
• For the collection of receivables of TWINT AG
• Legal disputes
1.5. Support TWINT
AG shall provide customers with a help function via the TWINT app that offers technical support. TWINT AG can also call on third parties for the provision of this support. To enable them to perform this task, they may be granted access to relevant data.
1.6. Customer’s duties of care
When using the TWINT app, the following duties of care, in particular, must be observed:
• Customers must protect their smartphone against unauthorised use or manipulation (e.g. by locking the device or display).
• The code for the use of the TWINT app, especially for the topping up and releasing of credit and the conﬁrmation of payments above a certain amount, as well as the codes for the device and display locking functions, must be kept secret and must not be disclosed to other individuals under any circumstances or stored together with the smartphone.
• The selected code may not be made up of easily ascertainable combinations (mobile number, date of birth, etc.).
• Should damages be suffered, customers must, to the best of their knowledge, contribute to clarifying the case in question and mitigating the damage. In the event of criminal acts, customers must ﬁle a complaint to the police.
• Upon installing the TWINT app on their smartphone, customers shall conﬁrm that they are the legitimate and authorised user of the smartphone number. Customers shall be deemed responsible for the use of their smartphone. They shall bear all consequences that arise from the use of the TWINT app on their smartphone.
• Should there be reason to assume that unauthorised individuals have gained access to the codes for the device and display locking functions, these must be changed immediately.
• If the smartphone is lost, and especially in the case of theft, TWINT AG must be informed promptly so that the TWINT app can be blocked.
• Jailbreaking (the deactivation of the smartphone’s security structures for the installation of applications that are not ofﬁcially available) and the setting up of root access (establishment of access at the system level of the smartphone) are forbidden, as is the installation of unauthorised apps, as these make the smartphone more prone to viruses and malware.
• Customers shall be required to check executed payments. Should Customers identify discrepancies, they must immediately inform TWINT AG by phone and provide written notiﬁcation no later than thirty (30) days (postmark date) after the payment date. If customers are requested to submit a damage notiﬁcation/complaint form, this must be completed and signed within ten (10) days (postmark date) of the request being made and returned to TWINT AG.
If the use of the TWINT app deviates signiﬁcantly from normal usage patterns or if there is any indication of behaviour that is illegal or in breach of the agreement, TWINT AG can encourage customers to use the app in a legally and contractually compliant manner, alter the provision of the service with no compensation or prior notiﬁcation, terminate the agreement without notice and with no compensation and, where necessary, demand compensation for damages and indemniﬁcation against third-party claims. The same shall apply in instances in which customers provide incorrect or incomplete details upon concluding the agreement.
Should TWINT AG breach the agreement, it shall assume liability for any demonstrable damages suffered by the customers in question unless it can prove that no fault can be attributed to it. TWINT AG shall assume no liability whatsoever for slight negligence. TWINT AG shall provide compensation for material damages and ﬁnancial losses of up to a maximum of CHF 5,000 per claim event.
To the extent permitted by law, TWINT AG shall not accept any liability for secondary damages, lost proﬁts or data losses under any circumstances. TWINT AG shall likewise assume no liability for damages or losses suffered as a result of use of the TWINT app that is deemed illegal or in breach of the agreement.
Technical access to the services shall be the responsibility of the customer. TWINT AG shall assume no liability for the network operators (providers) and shall also not accept any liability, to the extent permitted by law, for the hardware and software required for the use of the services.
TWINT AG shall likewise, to the extent permitted by law, assume no liability for damages suffered by customers owing to transmission errors, force majeure, technical defects or faults (in particular due to outages suffered by TWINT Beacons or a lack of an Internet connection), illegal interference with telecommunication facilities and networks, network overloads, the deliberate blocking of electronic access by third parties, interruptions or other deﬁciencies.
TWINT AG shall endeavour to ensure the uninterrupted availability and fault-free usability of the TWINT app. TWINT AG cannot, however, guarantee this at all times. In particular, TWINT AG shall reserve the right to interrupt access to the TWINT app and/or the services offered in the app at any time should it identify heightened security risks or faults as well as for the purpose of performing maintenance work. Provided that TWINT AG exercises the level of care and due diligence customary in the industry, customers shall bear any losses suffered due to interruptions of this kind.
1.9. Assumption of damages
TWINT AG shall assume responsibility for damages pursuant to section 1.8 (liability) suffered by customers due to the unauthorised use of the TWINT app by third parties, provided the customers in question can demonstrate that they adhered to these GTCs and that no fault can be attributed to them in any other way. Any damages must be reported to TWINT AG immediately upon being identiﬁed. The damage notiﬁcation form must be completed, signed and returned to TWINT AG within ten days of receipt.
1.10. Electronic communication
Communication between TWINT AG and customers shall primarily take place via the TWINT app. Where necessary, TWINT AG can also provide customers with notiﬁcations via e-mail provided they have saved a corresponding address. Customers shall be responsible for ensuring the accuracy of the provided address and shall also acknowledge that electronic communication is neither conﬁdential nor secure. Such communication can be viewed, intercepted or amended by third parties or can be lost. If orders or instructions issued by customers via electronic channels are not explicitly conﬁrmed by TWINT AG, customers must assume that they have not been received by TWINT AG. TWINT AG shall assume no liability for damages arising in connection with notiﬁcations sent to TWINT AG via ordinary e-mail or another electronic message transmission system.
1.11. Changes to the GTCs
TWINT AG can make amendments to the GTCs at any time. Any changes shall be communicated to customers in advance in an appropriate manner. Should customers not agree to the changes, they can delete the TWINT app from their smartphone and expressly declare to TWINT AG that they wish to cease using the services.
1.12. Reservation of statutory regulations and local legal restrictions for usage
Any statutory provisions that govern the operation and use of smartphones, the Internet and other dedicated infrastructure shall remain reserved and shall also be applicable to these services from the time that they enter into force.
The use of the services from outside Switzerland may be subject to local legal restrictions or, under certain circumstances, breach foreign legislation. The payment function shall in principle be limited to Swiss territory and may not be utilised abroad.
Customers shall acknowledge that circumstances may arise during the term of the business relationship that may legally obligate TWINT AG to block assets, report the business relationship to a responsible authority or terminate the business relationship. Upon request, customers shall be obligated to provide TWINT AG with information that it requires to meet its statutory clariﬁcation or reporting obligations.
1.13. Intellectual property
For the duration of the agreement, customers shall receive the nontransferable, non-exclusive right to use the TWINT app. The content and scope of this right are governed by these GTCs. All intellectual property rights shall remain with TWINT AG or the entitled third parties. Should customers breach third-party intellectual property rights and TWINT AG be held responsible, the customer in question shall fully indemnify TWINT AG.
1.14. Duration and termination
The business relationship between customers and TWINT AG shall be concluded for an indeﬁnite period. Customers can delete the TWINT app at any time and both contracting parties can terminate the business relationship in writing at any point.
1.15. Customer-initiated block
Customers shall be required to submit a request to TWINT AG for their TWINT credit and thus access to the payment function to be blocked. Any payments initiated prior to the time that this request is made shall be deemed to have been booked and cannot be reversed.
1.16. Changes to services and blocking of access by TWINT AG
TWINT AG can amend, update or enhance the services at any time. TWINT AG shall also be authorised to fully or partially discontinue the operation of the TWINT app or the customer’s access to the TWINT app at any time without providing prior notiﬁcation and shall likewise be entitled to restrict the TWINT app’s availability for technical or legal reasons (e.g. due to legal or regulatory requirements, upon receipt of an ofﬁcial order or for security reasons).
1.17. Severability clause
Should a provision of these GTCs be fully or partially invalid or ineffective, this shall not affect the validity of the other provisions. In such cases, TWINT AG and its customers shall undertake to replace the ineffective provision with a provision that best approximates the meaning and purpose of the original.
1.18. Applicable law and place of jurisdiction
To the extent permitted by law, all legal relationships between customers and TWINT AG shall be exclusively subject to Swiss substantive law with the exclusion of the law on the conﬂict of laws and any international treaties. Subject to the existence of mandatory statutory provisions to the contrary, the sole place of jurisdiction for all proceeding types shall be Zurich.
2. Payment functions
Customers can top up TWINT credit of up to CHF 10,000 per month and CHF 120,000 per year and make cashless payments with these funds. The maximum TWINT credit balance shall be limited to CHF 5,000. Customers aged between 12 and 14 shall be authorised to top up their TWINT credit with up to CHF 100 per month, while the corresponding ﬁgure for customers aged between 15 and 17 shall be set at CHF 500 per month.
The topping up of TWINT credit using credit codes, which can be purchased at shop cash registers, in online shops and at ATMs, shall be limited to CHF 5,000 per calendar year.
Customer spending shall be restricted by the available TWINT credit and the applicable top-up limits. For customers aged between 12 and 14, the spending limit shall be set at CHF 100 per month, while the corresponding ﬁgure for customers aged between 15 and 17 is CHF 500 per month.
In the case of payments made to other customers (“P2P payments”), customers resident in Switzerland shall be subject to limits of CHF 1,000 per month and CHF 5,000 per calendar year for the sending and receiving of money. For customers resident outside Switzerland, the corresponding limits shall be set at CHF 500 per month and CHF 3,000 per calendar year. P2P payments shall be included in the calculation of the spending limits.
TWINT credit that is released can be returned exclusively to a reference account saved in the app (see section 2.3). Such transfers to the reference account shall be limited to a maximum of CHF 5,000 per calendar year.
The limits listed in this section 2.1 may be subject to further restrictions for regulatory and security reasons.
2.2. Topping up, releasing and processing of credit
TWINT credit shall be topped up by customers via the options designated for this purpose in the app. Depending on the selected top-up option, use of the payment function (see section 2.4) and the topping up of credit can coincide. However, such instances shall involve two transactions, with it ﬁrst always being necessary to top up the TWINT credit before making a subsequent payment. Any transaction fees or other charges associated with the topping up of credit must be borne by the customer in question.
No interest shall be paid on TWINT credit.
Customers shall only be able to make payments using TWINT credit if they have a positive balance.
Customers shall acknowledge that the processing procedure for the topping up and releasing of TWINT credit can, depending on the option used, take several days where this involves the use of the direct debit procedure (LSV) or a payment slip.
In cases in which a direct debit (LSV) is set up, customers shall issue TWINT AG with authorisation to disclose certain data to third parties for the purpose of a credit rating check.
2.3. Reference account
For regulatory reasons, released TWINT credit must be transferred to a reference account. The reference account must be held in the name of the customer with a bank licensed in Switzerland.
2.4. Payment function
Customers can make cashless payments using their smartphone and the associated TWINT credit at appropriately equipped shop cash registers (at points of sale – POS), vending machines, online, in other apps by saving TWINT as a payment method with selected merchants and to other customers in accordance with the applicable limits.
Upon making a payment using TWINT credit, the relevant payment amount shall be deducted directly from the TWINT credit. Customers shall acknowledge all payments booked to the TWINT credit that have been executed in connection with their smartphone and in keeping with the following security levels. In the TWINT app settings, customers shall be free to choose the amounts from which payments should be made a) automatically or b) after they have provided express conﬁrmation (“OK” button). Customers can adjust the limits proposed and saved accordingly by TWINT AG. Settings that have been made can be changed at any time. This does not apply to payments made with merchants for which customers have saved TWINT as a payment method and where they have issued general payment approval (irrespective of the purchase amount). In such cases, the payment is executed automatically in accordance with the process deﬁned by the merchant in question.
In the case of P2P payments, the mobile number may also be used to ﬁnd the other customer. Provided that customers have issued the relevant access approval, TWINT AG shall be authorised to access existing contacts in the payer’s smartphone in connection with such payments.
Upon saving TWINT as a payment method, customers shall authorise the merchant in question to debit the relevant amount directly from their TWINT credit without them being required to authorise individual charges. To save TWINT as a payment method, customers must register with the relevant merchant. Authorisation of this kind granted to a merchant can be revoked by the customer in the TWINT app at any time. Customers can only renew expired or deactivated registrations with the merchant.
2.5. Debiting of payments
Customers shall acknowledge all payments made for the purchase of goods and services that have been made from their smartphone using TWINT credit and registered as payments in the app.
The installation of the TWINT app and the use of the associated services shall in principle be free of charge for customers.
However, the receipt of incoming payments from other individuals shall only be free of charge if such payments are not related to a commercial activity of the payment recipient. A separate written agreement, which is subject to the GTCs for business customers, shall be required for the receipt of payments from commercial transactions.
The topping up of credit via Swiss bank and postal accounts shall in principle be free of charge.
TWINT AG shall be authorised to charge fees for the use of other topup options, provided such options lead to TWINT AG incurring costs itself. Customers shall be informed in the TWINT app in a transparent and direct manner about any fees to be paid prior to making use of the fee-based top-up option. The relevant fees shall also be published at www.twint.ch.
Changes to fees and the introduction of new fees shall be communicated to customers in the TWINT app. Such changes shall be deemed to have been accepted if customers do not terminate the agreement prior to the entry into force of the relevant amendment (section 1.14). Should agreements be terminated due to fee changes in accordance with this section, customers shall not be subjected to any disadvantages in terms of price.
Customers shall expressly agree that TWINT AG can offset any outstanding claims against them against their existing credit with TWINT AG.
2.8. Payment information
The total purchase amount, the time of the purchase and the location of the POS at which the payment was made shall be recorded in the TWINT system. The transactions shall be visible in the TWINT app for up to a maximum of 180 days.
3. Added-value services
3.1. Mobile marketing campaigns
3.1.1. Presentation of campaigns
TWINT AG may present coupons, stamps cards and other campaigns (hereinafter referred to as “campaigns”) to customers in the TWINT app where they can be seen, managed and redeemed. Here, a differentiation is made between the following campaign types:
• Campaigns launched by TWINT AG or the TWINT system (hereinafter referred to as “issuer campaigns”).
• Campaigns of TWINT AG launched together with a third-party provider (hereinafter referred to as “issuer added-value campaigns”).
• Campaigns launched by a third-party provider (hereinafter referred to as “third-party-provider campaigns”).
The presentation, display, management and redemption of thirdparty-provider campaigns requires that customers issue their express consent for this in the TWINT app (opt-in) and explicitly accept the presentation of such offers from third parties.
Customers can revoke this consent in the TWINT app at any time. Should customers opt to revoke their consent, they shall no longer be presented third-party-provider campaigns and all activated thirdparty-provider campaigns shall be permanently deleted. As such, customers shall also no longer be able to take advantage of any associated discounts and beneﬁts. See also section 4.10 in this regard.
The presentation, display, management and redemption of issuer campaigns and issuer added-value campaigns shall not require an opt-in from customers. These campaigns can thus be presented to all customers.
3.1.2. Period of validity of campaigns
The validity of campaigns shall be as displayed in the TWINT app on the smartphone screen.
Certain campaigns must be activated in advance by customers in the TWINT app before the relevant offers can be redeemed. Such cases shall be noted accordingly as part of the respective campaign. Activated campaigns may be deactivated by TWINT AG if the associated offers are not redeemed within 10 days.
It shall be possible for customers to redeem other campaign offers without activating them in advance in the TWINT app. Many campaigns can only be redeemed upon making payments with the TWINT app.
The activation of a campaign or the receipt of a campaign offer that can be redeemed without activation shall not always mean that customers are entitled to make use of a discount or non-cash beneﬁt, as the number of redemptions may be limited by the involved third-party provider. Such cases shall be noted accordingly as part of the respective campaign.
In most cases, campaigns shall be redeemed automatically upon customers making a payment with the TWINT app without them being required to do anything. In some instances, however, customers may be required to present a campaign to the business customer in the TWINT app or enter the campaign themselves at a terminal or in an online shop. Such cases shall be noted accordingly as part of the respective campaign.
Upon the redemption of a campaign offer with a discount, the discount shall either be deducted directly from the amount to be paid or reimbursed to customers after the payment is made in the form of a cash back credit.
TWINT AG shall be authorised to delay the payment of cash back credit until it totals CHF 10 or more. Customers shall be informed about their current cash back credit balance in the TWINT app.
3.1.3. Sharing of campaigns
TWINT AG may provide customers with the option to forward campaigns to other individuals, to receive campaigns from other individuals or to share campaigns with other individuals.
3.2. Customer loyalty cards
Customers have the option to save or activate selected employee ID cards, customer loyalty programmes and other incentive-based offers from third-party providers (hereinafter referred to as “customer loyalty cards”) in the TWINT app. Saved or activated customer loyalty cards can be removed from the TWINT app by customers at any time.
TWINT AG shall also be authorised to remove saved customer loyalty cards from the TWINT app if a customer loyalty card expires or the customer loyalty card in question is generally no longer available to be saved in the TWINT app.
Customers shall acknowledge that the beneﬁts associated with the use of certain customer loyalty cards shall be presented directly in the TWINT app in the form of campaigns. Customers shall only receive such campaigns if they have provided their prior consent for the presentation of third-party offers (see section 3.1.1).
3.3. Other added-value services
In addition to campaigns and customer loyalty cards, TWINT AG can offer other added-value services in the TWINT app at any time.
Liability for added-value services
The respective third-party provider shall be responsible for contents, offers, messages from third-party-provider campaigns, customer loyalty cards and any other added-value services in the TWINT app.
TWINT AG shall have no inﬂuence on the fulﬁlment of services offered by third-party providers. TWINT AG shall also accept no liability for campaigns that cannot be redeemed with third-party providers or for discounts or beneﬁts that are not granted in connection with the saving of customer loyalty cards. Such cases may include the failure to grant employee discounts or instances in which loyalty points remain outstanding, are lost or disappear.
TWINT AG shall endeavour to ensure the uninterrupted availability and fault-free usability of added-value services in the TWINT app. TWINT AG cannot, however, guarantee this at all times. In the case of an interruption in availability, one possible consequence may be that it is no longer possible to automatically redeem discounts or automatically collect loyalty points within the framework of the payment process. Provided that TWINT AG exercises the level of care and due diligence customary in the industry, customers shall bear any losses suffered due to interruptions of this kind.
4. Data protection
TWINT AG shall be subject to Swiss data protection legislation (in particular the Federal Act on Data Protection (FADP) and the Federal Ordinance on Data Protection (FODP)) in connection with the procurement, processing and use of personal data of its customers.
TWINT AG attaches great importance to data protection. In this “Data protection” section, customers are provided with information on data processing and the data ﬂows associated with the use of the TWINT app.
TWINT AG shall be responsible vis-à-vis customers for ensuring that data is collected and used in compliance with the relevant data protection legislation in accordance with the provisions stipulated in the “Data protection” section.
4.2. Requirements for the use of the TWINT app
To enable TWINT AG to process customer payments and provide added-value services, customers must save the following master data in the TWINT app upon registering: smartphone number, name, place of residence, nationality, date of birth and e-mail address.
4.3. Making payments with the TWINT app
Should a customer wish to initiate a payment via the TWINT app at a point of sale (hereinafter referred to as a “POS”) of a business customer, a connection shall be established in the TWINT system between the customer’s TWINT app and the relevant business customer.
The speciﬁc way in which the connection is established between the POS and TWINT app shall differ depending on the type of POS.
• Shop cash register using a TWINT terminal (technical installation at the POS that facilitates the establishment of a connection and the exchange of data between the customer’s smartphone and the POS);
• Entry of a code displayed at the POS or scanning of a QR code;
• Internet: by entering a code displayed in the online shop or scanning a QR code;
• Automatic establishment of a connection for recurring TWINT payments made by customers registered in an online shop. This arrangement is set up at the initiative of the customer;
• In an app: automatic establishment of a connection at the initiative of the customer;
• At vending machines: same as at shop cash registers and online.
The POS informs the TWINT system what amount should be charged. The TWINT system then sends a payment request to the customer’s TWINT app. In the TWINT app settings, customers shall be free to choose the amounts from which payments should be made a) automatically, b) after they have provided express conﬁrmation (“OK” button) or c) following the entry of the TWINT PIN (see section 2.4).
Upon the payment being approved by the customer, the speciﬁc amount shall be debited from the TWINT credit. At the time at which the amount is debited, no connection shall be established with a bank or postal account, even if customers have saved a reference account in the TWINT app.
The total purchase amount, the time of the purchase and the location of the POS at which the payment was made shall be recorded by TWINT AG. The TWINT system shall generate a credit in favour of the business customer and the funds shall be transferred to the business customer’s account.
TWINT AG shall not receive any details of the goods purchased unless the transfer of such data is governed in accordance with section 4.4.
Without the express consent of customers, TWINT AG shall not disclose any personal data to the involved business customers and/or third parties unless the transfer of such data is governed in accordance with section 4.4 or 4.5.
4.4. Saving of customer loyalty cards
Customers shall have the option to save or activate physical and purely digital customer loyalty cards of various business customers directly in the TWINT app. Should customers wish to do so, they must establish the necessary settings and make the required entries. Upon saving or activating a customer loyalty card in the TWINT app, customers shall be deemed to have provided their express consent to the use of the card in question. These cards shall subsequently be automatically taken into account during payment procedures performed with the TWINT app, provided this has been made technically possible by the respective customer loyalty card issuer. Customers can deactivate the use of the customer loyalty card in the TWINT app at any time.
In such cases, the payment procedure shall also be based on section 4.3.
If a customer loyalty card is saved in the TWINT app and a payment is made using the TWINT app resulting in a customer gaining a possible beneﬁt from the use of the customer loyalty card (points, discount, etc.), the issuer of the customer loyalty card or a third party legally working on its behalf shall be provided with the same data as it would receive had the customer presented the customer loyalty card physically.
TWINT AG shall transmit the identiﬁcation number of the customer loyalty card to the business customer or its afﬁliated third party and, depending on the customer loyalty card used in the speciﬁc instance, also the basic payment data, including the time stamp, amount and any discounts or points granted in connection with the use of the customer loyalty card. The use of this data by the business customer involved in the speciﬁc case shall be governed exclusively by the contractual relationship between the customer and the business customer or between the customer and the third party afﬁliated to the business customer. The business customer shall be responsible for ensuring the contractually compliant handling of customer data and for obtaining the required authorisations.
4.5. Redemption of mobile marketing campaign offers
In order to allow for the automatic redemption of campaign offers for the granting of a discount or non-cash beneﬁt, data must be exchanged between the TWINT system and the business customer.
The data transmitted shall depend on the system in which the campaign offer is redeemed and the discount or non-cash beneﬁt is applied.
In cases in which campaign offers are redeemed in the system of the business customer, TWINT AG shall transmit the campaign identiﬁcation number to the business customer. The business customer shall then apply any discount or non-cash beneﬁt for the customer. Here, the business customer shall receive the same information that it would have received had the customer presented the campaign identiﬁcation number (e.g. in the form of a bar code).
If campaign offers are redeemed in the TWINT system, the discount or non-cash beneﬁt shall be applied in the TWINT system and communicated to the business customer so that it can apply the beneﬁt in its own system (e.g. deduction of a discount).
The contractual relationship between the business customer and the customer alone shall determine whether the business customer provides further data to TWINT AG (e.g. information for the redemption of campaign offers that had previously been transmitted from the TWINT system to the business customer or details of purchased goods on the basis of which campaign offers can be redeemed in the TWINT system). The business customer shall be responsible for ensuring the contractually compliant handling of customer data and for obtaining the required authorisations.
4.6. Collection and use of data in order to improve the TWINT app
TWINT AG collects and uses data in order to provide and improve the TWINT system. These activities involve data that the TWINT app can access in accordance with the customer’s smartphone settings (e.g. receipt of BLE signals, geolocation) as well as technical data and information generated during the use of the TWINT app. TWINT AG shall never disclose this personal data to business customers and/or third parties without the express approval of customers in the TWINT app. Instead, it shall use this data exclusively to provide and improve its own service.
4.7. Google Firebase
TWINT AG shall use the Google Firebase Software Development Kit (SDK) of Google Inc. (“Google”) in the TWINT app. It shall do so in order to analyse user behaviour within the app with the objective of optimising the TWINT app on an ongoing basis and gearing its features to user requirements.
The customer shall have the option to deactivate the collection and transmission of usage data to Google at any time in the TWINT app under the settings.
The information gathered by the SDK on the use of the TWINT app, in particular
• the analytics ID (random value on the basis of which TWINT AG can identify the customer)
• the client ID (random value which identifies the used device and allows Google to summarise sent events in a device session) which, however, does not allow inferences to be made about the user’s device
• key device details (brand, type, screen, memory)
• information on the platform (e.g. iOS and Android version)
• the version of the installed TWINT app
• the type and version of the used Internet browser, where applicable
the IP address of the accessing computer (shortened so that it can no longer be assigned to the specific user)
shall be transferred to Google servers in the US and saved there. This data shall be assessed by Google in order to generate reports on the usage of the TWINT app and to allow it to provide further services related to the use of the TWINT app.
Customers acknowledge that Google shall transfer this information to third parties, provided this is required by law or if third parties are to process this data on behalf of Google. Google shall not link the IP address of the customer to other Google data under any circumstances. The IP addresses are anonymised (shortened by three characters) to ensure that they cannot be assigned to the customer.
4.8. Third-party-provider campaigns
Customers can expressly issue their consent (opt-in) to TWINT AG for third-party-provider campaigns to be displayed to them in the TWINT app. This shall in turn enable them to activate and redeem such campaigns (see also section 3.1.1). In opting in, customers shall also expressly agree that TWINT AG can collect and analyse data for the personalised presentation of third-party-provider campaign offers.
Customers can opt in or opt out either upon being explicitly asked in this regard when installing the TWINT app and/or at a later time by adjusting their settings in the TWINT app. The provision of consent by customers shall allow TWINT AG to send them third-party-provider campaign offers that are tailored to their personal interests.
Customers shall acknowledge that third-party-provider campaign offers can only be displayed and redeemed with an opt-in in the TWINT app.
Even in cases in which customers opt in, TWINT AG shall not disclose any personal customer data to involved business customers and/or third parties if customers have not issued their express consent to the forwarding of such data in the TWINT app (see also section 4.4 in this regard). Unless such consent is provided, involved business customers shall only receive access to anonymised data.
Customers can be provided with the option to expressly consent to the sending of personalised third-party-provider campaign offers via e-mail.
4.9. Involvement of third parties
Customers shall expressly agree that TWINT AG may involve third parties (e.g. payment service providers) for the provision of its services and that, where necessary, customer data may be disclosed within the framework of such relationships. TWINT AG undertakes to select, instruct and monitor such service providers in a prudent manner.
TWINT AG shall assume responsibility vis-à-vis customers for ensuring that the data is handled in compliance with the relevant data protection legislation.
4.10. Storage and deletion
Personal customer data stored by TWINT AG shall be deleted or anonymised if it is no longer required for the provision of services and no later than four years after the time at which it is saved.
Should the TWINT app not be used for a period of two years, TWINT AG shall assume that customers have deleted the TWINT app from their smartphone. In such cases, the personal data saved by TWINT AG shall also be deleted or anonymised.
Should customers subsequently decide not to make use of personalised campaigns (opt-out), all activated coupons, stamp cards and other campaign offers in the TWINT system shall be permanently deleted or anonymised six months after the opt-out is issued and customers shall no longer be able to take advantage of any associated discounts and beneﬁts.
Data that must be stored for longer in order to ensure the fulﬁlment of legal obligations of TWINT AG shall not be subject to the provisions of this section 4.10. 4.11. Information and disclosure rights Should customers have any questions relating to the handling of personal data, they can contact TWINT AG via the following e-mail address: firstname.lastname@example.org