Who we serve

Digital experiences your customers can count on An ecosystem of banking, lending and payment solutions to help you thrive in the digital age. Overview fis-icon-arrow

Provide a banking experience that puts your members’ needs first.

Credit unions fis-icon-arrow

Drive your digital services forward with our best-in-class solutions.

Small to Medium Financial Institutions fis-icon-arrow

Find a tailored approach to modernization that suits your needs now and later.

Large Financial Institutions fis-icon-arrow

Advance your financial institution

Put technology to work for you

Improve your business’ efficiencies with advanced technology backed by absolute performance.

Advance your securities & investments firm

Expertly engineered solutions
for your corporate needs

Focus on reducing cost and risk while boosting revenue and customer satisfaction.

Advance your business

Our policy for insurance solutions:
Helping you do more
for your policyholders.

Improving your business
so you can improve your
policyholders' lives.

Advance your insurance business

You’re driven to innovate.
You’re fueled by the world’s no. 1 fintech.

Now the innovative fintech that powers the world can power your business.

Advance your technology business

Innovation from the world’s boldest fintech

Build and grow fast with next-gen technology backed by expertise, reliability and speed.

Advance your Fintech firm

Push the boundaries
of retail possibilities

Deliver fast, secure and intuitive commerce
experiences for billions of customers.

Advance your retail business

Better guest experience.
Better operational efficiency.
They start with better technology.

We serve you the best tech
so you can better serve your customers.

Advance your restaurant business

Smooth the flow
of energy and utilities

Move faster, work smarter and spend more time on energy transition initiatives.

Advance your energy and utilities business

Chart your path
to better business health

Give your business the flexibility it needs to capitalize on trends and deliver great services.

Advance your healthcare business
Featured innovations
See all innovations
Your industry. FIS solutions.

Businesses aren’t created all the same. For your specific needs, explore our you-tailored solutions.

Learn more
Crossover to crypto

Let FIS help you make the leap from traditional to digital assets across payments, banking and capital markets.

Learn more
Deliver a frictionless experience

Make sure your customers have what they need right at their fingertips when they’re ready to pay, borrow or invest.

Learn more
close
Solutions we provide
Featured innovations
See all innovations
Your industry. FIS solutions.

Businesses aren’t created all the same. For your specific needs, explore our you-tailored solutions.

Learn more
Make doing business less work

Connect more dots, remove more steps and eliminate more risk by streamlining the entire B2B payments process.

Learn more
Deliver a frictionless experience

Make sure your customers have what they need right at their fingertips when they’re ready to pay, borrow or invest.

Learn more
close
Resources
Featured innovations
See all innovations
Your industry. FIS solutions.

Businesses aren’t created all the same. For your specific needs, explore our you-tailored solutions.

Learn more
Increase the value of your data

Get inside your data to uncover hidden trends, visualize your position, grasp opportunities and predict risk.

Learn more
Create effortless, omnichannel experiences

Move money fast without the barriers that once limited who could participate and how that movement takes place.

Learn more
close
Explore more
Featured innovations
See all innovations
Your industry. FIS solutions.

Businesses aren’t created all the same. For your specific needs, explore our you-tailored solutions.

Learn more
Deliver a frictionless experience

Make sure your customers have what they need right at their fingertips when they’re ready to pay, borrow or invest.

Learn more
Create effortless, omnichannel experiences

Move money fast without the barriers that once limited who could participate and how that movement takes place.

Learn more
close
close
Careers
close
Global Search  :; Contact us

HEADQUARTERS
Jacksonville, Florida United States

Understanding GDPR

Frequently Asked Questions

What is the General Data Protection Regulation (GDPR) and when did it come into effect?

+

  • The GDPR (Regulation (EU) 2016/679) is an EU law with mandatory rules for how organizations must process personal data. One of the key objectives of the GDPR is to strengthen and unify personal data protection for all individuals within the EU.
  • The GDPR restricts transfers of personal data outside the European Economic Area, unless the rights of individuals in respect of their personal data are protected.
  • The GDPR took effect May 25, 2018.
  • The GDPR also forms part of UK law by virtue of section 3 of the European Union (Withdrawal) Act 2018 (often referred to as “UK GDPR”).

Who does the GDPR affect?

+

  • The GDPR applies to any organization established in the EU or the UK that processes personal data. The GDPR also applies to organizations outside the EU or the UK, if they target offering goods or services to, or monitor the behavior of data subjects in the EU or the UK.

What constitutes personal data?

+

  • Any information that relates to a natural person or “data subject,” that can be used to directly or indirectly identify the person. It can be anything from a name, photo, email address, bank details, social networking posts, medical information or a computer IP address, among others.

Does FIS have a GDPR Compliance program?

+

  • Yes. FIS has undertaken an enterprise-wide review and has implemented processes and procedures designed to be compliant with the GDPR.

Does FIS have a Data Protection Officer?

+

  • FIS employs a Data Protection Officer as required under the GDPR. Adriana Neagu, the FIS Data Protection Officer, can be reached at Data.Protection@fisglobal.com.

Does FIS use subcontractors to provide services to my organization? If yes, how does FIS inform my organization, as the controller of the personal data, of the use of those subcontractors?

+

  • FIS uses subcontractors throughout its business.
  • While the GDPR allows a wide degree of leeway for data controllers to use processors who sub-contract services, subcontractors are contractually required to comply with all applicable laws and regulations, including the GDPR.
  • FIS remains responsible to the data controller for the actions or inactions of any subcontractor.
  • The Data Protection Addendum (DPA) provides your general consent for FIS to subcontract.
  • FIS is required under the GDPR to identify those subcontractors and give you sufficient time to object to new sub-processors.
  • These communications are managed through our Client Portal, that is made available to Client’s designated representatives upon request.

How do I know if my contract with FIS needs to be amended?

+

  • If your organization is subject to the GDPR, one of the requirements under the GDPR is that a compliant Data Processing Agreement/Addendum (DPA) is in place.
  • FIS has developed a DPA that will meet the requirements of the GDPR.
  • To request a copy of the DPA, send an email to gdpr@fisglobal.com.

GDPR applies to my organization. How do I amend my contract to include the required provisions?

+

  • You can request a DPA for completion and electronic signature by sending an email to gdpr@fisglobal.com.

Can FIS determine if a client needs a GDPR-compliant DPA?

+

  • Each client is responsible for their compliance program and must determine whether the GDPR applies to their business.
  • However, FIS suggests that if the client believes that GDPR may apply to any of the products or services provided by FIS, a DPA be executed.

Are FIS contracts updated to include the new Standard Contractual Clauses for international data transfers?

+

  • Yes, the FIS DPA has been updated to include the new Standard Contractual Clauses for international data transfers as issued by the European Commission in June 2021. The FIS DPA also incorporates the UK International Data Transfer Addendum to the EU SCCs.

What are the penalties for non-compliance?

+

  • The GDPR provides data protection authorities with different options in case of non-compliance. They have the right to issue warnings, reprimand or a ban on the processing of personal data. The authorities may also impose a fine on companies failing to comply.
  • There are two tiers of fines under the GDPR: up to €10 Million, or 2% of your annual global turnover – whichever is greater; or up to €20 Million (US$21.5 Million), or 4% of your annual global turnover – whichever is greater. The fines are based on the specific articles in the GDPR. For example, an organization that does not enter into a DPA with a processor that is processing personal data on their behalf could be subject to a fine of 2% of its turnover. However, the lack of not putting in place a DPA could also result in a transfer of personal data outside the EEA without a valid transfer mechanism (for example, because the SCCs are not applicable), which could trigger another fine of 4% of its turnover.
  • Compliance with the DPA and transfer restriction requirements in the GDPR is a responsibility of both the data exporter as well as the data importer.

My contract already says that FIS will comply with all applicable laws and regulations. Why do I need an addendum that specifically references GDPR?

+

  • The GDPR requires specific provisions be included by contract and these provisions are included in the DPA.