Cardholder Data Policy

This policy serves to confirm that Mighty Group LLC-FZ (including all of its divisions and subsidiaries); in respect of cardholder information:

1. Does not require any access to cardholder information
2. Has no access to cardholder information
3. Does not store any cardholder information
4. Does not maintain any cardholder information

Where applicable, Mighty Group LLC-FZ (including all of its divisions and subsidiaries) is supplied payment service providers (PSPs). We require that all our suppliers are PCIDSS compliant and keep record of their most recent PCIDSS certification for bank audits, including relevant SAQ and policies.

Where Mighty Group LLC-FZ (including all of its divisions and subsidiaries) uses contractors and downstream service providers, including banks, TPPs, IPSPs, payment orchestration services and point of sale networks, devices and services; they are all required to be in good standing and verifiably compliant to applicable regulation and license to operate per jurisdiction.