Cookie Notice

1. INTRODUCTION

“Spark” means Spark ATM Systems (Pty) Ltd forming part of Cardtronics group of companies, including Cardtronics Plc and all of its subsidiaries (“the Group”).

2. WHAT IS A COOKIE?

A cookie is a small piece of data that is sent (usually in the form of a text file) from a website to the user’s device, such as a computer, smartphone or tablet. The purpose of a cookie is to provide a reliable mechanism to “remember” user behaviour (keeping track of previous actions), e.g. remembering the contents of an online shopping cart, and actions the user performed whilst browsing when not signed up or logged into their online account.

Spark does not necessarily know the identity of the user of the device but does see the behaviour recorded on the device. Multiple users of the same device would not necessarily be distinguishable from one another.

3. WHICH COOKIES CAN BE FOUND ON SPARK’S WEBSITE?

First and third-party cookies refer to the website or domain using the cookie. Cookies are set by the website that the user is visiting.

First-party cookies are directly stored by the website (or domain) visited by a user. These cookies allow website owners to collect analytics, data, remember language settings or perform other useful functions that provide a good user experience.

Third-party cookies are created by domains separate/different from the website (or domain) that the user is visiting. These cookies are usually used for online advertising, cross-site tracking; and are accessible on any website that loads the third party’s server code, e.g. when a user visits a site and clicks a “like” button, this could be stored in a cookie and, upon visiting the third-party site, the cookie will be used to action the request.

For example, a user browses online for a specific product, finds an advert of interest, clicks the advert and thereafter closes their browser. Several hours later, the user notices advertising of the same product that they were browsing for earlier.

When a user visits Spark’s website, Spark may include any of the cookies listed in the table below. The table explains what the cookies are used for and the time period for which the cookie could remain valid. Where cookies are only valid for a single session, the cookie will be erased when the user closes their browser. Where cookies persist, the cookie will be stored by the user’s browser until deleted by the user.

Origin

Use

Service

Duration

First-party cookies

Browser/device identification

Enable Spark to identify the device/browser.

Persist beyond a single session.

Authentication

Upon logging into a web server, a cookie will be returned that identifies the user has been successfully logged in.

Only valid for the single session.

First- and third-party cookies

Analytics

To collect information about how visitors use Spark’s website. This can provide Spark with insight on website performance and metrics.

Persist beyond a single session.

Third-party cookies

Marketing and other

Used for tracking and online advertising purposes.

Persist beyond a single session.

  Option  Description
  HTTPSMakes a cookie secure by ensuring it is only sent over HTTPS protocol. This prevents attackers from secretly extracting it.
  Same-site cookie  Makes the cookie secure by limiting the sites to which the cookie is allowed to be sent.
  Expiry  Sets the duration a cookie will last for before it expires.
  Secure  Makes a cookie secure by ensuring it is only sent over a securely encrypted channel.
  Path  Helps to protect a cookie by restricting the location where it is allowed to be sent.

4. WHEN WILL SPARK USE COOKIES?

Spark will only process cookies which identify users for lawful purposes:

  • if a user has consented thereto;
  • if a person legally authorised by the user, the law or a court, has consented thereto on the user’s behalf;
  • if it is necessary to conclude or perform under a contract that Spark has with the user;
  • if the law requires or permits it;
  • if it is required to protect or pursue the user’s, Spark’s or a third party’s legitimate interest (e.g. for fraud prevention).

Spark may use cookies for reasons including but not limited to:

  • fraud, financial crime and other crime prevention, detection or reporting;
  • managing and improving security for Spark and users (for example to prevent fraudulent use of login details);
  • various analytical reasons, e.g. how Spark’s website is used so that improvements can be made;
  • marketing and advertising, for example to decide which solutions (goods, products, services or rewards) users may be interested in and to customise marketing on various applications and websites; and/or
  • recognition of users of Spark’s website..

5. WHAT HAPPENS IF A USER DOES NOT WANT COOKIES?

All browsers allow users to refuse to accept cookies and to remove current cookies. The methods for doing so vary between different browsers and versions. Users can block cookies on Spark’s website, if desired. Blocking certain cookies may have a negative impact upon the usability of Spark’s website. For example, Spark requires cookies to allow users to log into Spark Web. By removing first-party cookies, a user’s experience may be affected.

6. FURTHER INFORMATION ABOUT COOKIES

  • Users’ browsers store cookies and Spark’s website cannot access any data on a user’s device.
  • As cookies are stored in text files, they cannot be used to distribute viruses to a device.
  • If users disable cookies, previous cookies collected will not be deleted, however, this will prevent the creation of new cookies. Expired cookies will be removed automatically.