PRIVACY POLICY
1st Financial Merchant Group, LLC ("1st FMG," "we," "us," or "our") respects your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard personal information when you visit isoagent-program.com (the "Website") and when you interact with our related services, programs, and communications (collectively, the "Services"). It also explains your privacy rights and choices.
By using the Website, you agree to the collection and use of information as described in this Policy. If you do not agree, please do not use the Website.
INTERPRETATION AND DEFINITIONS
Interpretation
Capitalized terms have meanings defined below. These definitions apply whether the terms appear in singular or plural.
Definitions
Account means a unique account created for you to access certain parts of the Services (if enabled).
Affiliate means an entity that controls, is controlled by, or is under common control with 1st FMG.
Cookies are small files placed on your device to store preferences or usage information.
Device means any device that can access the Services (e.g., computer, mobile phone, or tablet).
ISO/Agent means an independent sales organization, agent, or partner participating in our referral or reseller programs.
Personal Data means any information that relates to an identified or identifiable individual.
Service Provider means a third party that processes data on our behalf to facilitate the Services (e.g., hosting, analytics, communications, identity verification, e‑signature, payment/remittance).
Usage Data means data collected automatically by the Website or its infrastructure (for example, time spent on a page).
Website refers to isoagent-program.com.
You means the individual accessing or using the Services, or the company or other legal entity on whose behalf that individual accesses or uses the Services.
INFORMATION WE COLLECT
The information we collect depends on how you interact with the Website and Services.
A) Information You Provide to Us
Contact information (name, email address, phone number, company, role/title)
Program applications and forms (business name, website, industry, service interests, estimated portfolio size, and similar)
Communications (messages, meeting requests, support inquiries, feedback)
Content you submit (files and documents you choose to upload—please do not include cardholder primary account numbers (PANs), mag‑stripe data, or CVV/CVC)
B) ISO/Agent Onboarding
If you apply to or participate in our ISO/Agent program, we may collect additional information such as:
Identity and business verification data (government‑issued ID details you provide, business registration info, EIN/TIN, beneficial ownership declarations where required)
Compliance screenings (e.g., sanctions/Pep checks, fraud screening) facilitated by Service Providers
Payment/remittance details to pay commissions (e.g., mailing address, ACH/payee info processed via a secure payment provider)
Agreements and signatures captured through e‑signature platforms
We collect only what is reasonably necessary and proportionate to evaluate and operate the program and fulfill legal/contractual obligations.
C) Information Collect Automatically
Usage Data (IP address, browser type and version, device type, operating system, pages viewed, referring/exit pages, date/time stamps, time spent on pages, and interaction data)
Cookies and similar technologies (see Cookies below)
Approximate location inferred from IP address
D) Information from Third Parties
Service Providers and Partners (e.g., analytics, CRM, identity verification, e‑signature, cloud hosting, communications, payment/remittance)
Referrals (we may receive your business contact details from partners or from an ISO/Agent that refers you)
Public sources (business registries, professional profiles, or content you make public)
HOW WE USE INFORMATION
We use Personal Data to:
Provide and operate the Website and Services
Evaluate and administer ISO/Agent applications and participation (including due diligence, underwriting coordination with processing partners, and program communications)
Pay commissions and provide program support (via our remittance provider)
Respond to inquiries and provide customer/partner support
Send updates, newsletters, and marketing communications about our Services where permitted (you may opt out at any time)
Improve the Website and Services (including debugging, analytics, and research)
Ensure security, prevent fraud, and enforce our agreements
Comply with legal obligations (e.g., tax reporting, AML/KYC where applicable)
WHEN WE SHARE INFORMATION
We do not sell Personal Data. We may share Personal Data with:
Service Providers/Processors (hosting, storage, analytics, CRM, communications, identity verification, background/compliance screening, e‑signature, payment/remittance, document management)
Processing partners/financial institutions involved in underwriting or providing merchant services for your merchants or portfolio
Professional advisors (legal, accounting, auditing)
Business transfers (in connection with a merger, acquisition, financing, or sale of assets)
Legal and safety purposes (to comply with law, lawful requests, and to protect rights, property, or safety)
Service Providers may access Personal Data only to perform services on our behalf and must protect it per our instructions and applicable laws.
DATA RETENTION
We retain Personal Data only as long as necessary to fulfill the purposes outlined in this Policy, including to comply with legal, accounting, tax, or reporting requirements and to enforce our agreements. We use criteria such as the nature and sensitivity of the data, the purposes of processing, and applicable law.
SECURITY
We use administrative, technical, and physical safeguards designed to protect Personal Data (e.g., encryption in transit, access controls, least‑privilege, vendor due diligence, and backups). No method of transmission or storage is 100% secure. If we learn of a breach affecting your data, we will notify you as required by law.
YOUR RIGHTS AND CHOICES
Your rights depend on your location. Subject to verification and exceptions, you may have the right to access, correct, delete, restrict, object, and port your Personal Data, and to withdraw consent where processing is based on consent.
California (CCPA/CPRA)
Right to know/access categories and specific pieces of Personal Data collected
Right to correct inaccuracies and delete Personal Data
Right to opt out of sale or sharing for cross‑context behavioral advertising (we do not sell Personal Data; if we ever engage in sharing, you may opt out via Your Privacy Choices)
Right to limit the use/disclosure of sensitive Personal Data (we do not use sensitive Personal Data to infer characteristics)
Non‑discrimination for exercising your rights
CHILDRENS' PRIVACY
Our Service is not directed to children under 13, and we do not knowingly collect Personal Data from children under 13. If we learn that we have collected such data without parental consent, we will take steps to delete it.
COOKIES AND SIMILAR TECHNOLOGIES
We use cookies, web beacons, and local storage to:
Enable core functionality (e.g., session management, security)
Remember preferences
Perform analytics and measure performance
(If applicable) deliver or measure advertising
You can control cookies via your browser settings or our [Cookie Preferences] banner (if enabled). Disabling cookies may affect certain features.
Analytics: We may use analytics tools (e.g., Google Analytics) that collect IP address, device identifiers, and usage data under their own terms and policies. Where required, we configure settings to respect regional choices and offer opt‑outs.
