Be a responsible owner.
PawPass
Become Partner
Contact
PAWPASS LLC
75 E 3rd St
Sheridan, WY 82801
United States
+1 (307) 374-6098
office@pawpass.rs
© 2026 PawPass. All rights reserved.
Effective Date: March 28, 2026
PAWPASS LLC ("PawPass", "Company", "we", "us", "our") is committed to protecting the privacy and personal data of all individuals who interact with our platform, website, mobile applications, products, and services (collectively, the "Platform"). This Privacy Policy describes how we collect, use, store, disclose, and protect personal data in connection with your use of the Platform. This Privacy Policy applies to all users of the Platform, including pet owners, service providers ("Partners"), website visitors, and any other individuals whose personal data we process. By accessing or using the Platform, you acknowledge that you have read and understood this Privacy Policy. This Privacy Policy is designed to comply with applicable privacy laws, including but not limited to: the General Data Protection Regulation (EU) 2016/679 ("GDPR"); the UK General Data Protection Regulation as retained in UK law ("UK GDPR"); the California Consumer Privacy Act ("CCPA") as amended by the California Privacy Rights Act ("CPRA"); and other applicable U.S. federal and state privacy frameworks. Where applicable law provides you with greater rights than those described herein, those statutory rights shall prevail. This Privacy Policy should be read together with our Terms of Service, Cookie Policy, and any other applicable policies made available on the Platform.
For the purposes of the GDPR and UK GDPR, PAWPASS LLC acts as the Data Controller in respect of personal data processed through the Platform. As Data Controller, we determine the purposes and means of processing your personal data and bear responsibility for ensuring lawful, fair, and transparent processing. Data Controller: PAWPASS LLC Registered Address: 75 E 3rd St, Sheridan, WY 82801, United States Data Protection Contact Email: office@pawpass.rs Website: https://www.pawpass.rs/en For all privacy-related inquiries, data subject requests, or complaints, please contact us at office@pawpass.rs. We endeavor to respond to all written inquiries within 30 calendar days, or within the timeframe required by applicable law. Where required by applicable law, we may appoint a Data Protection Officer ("DPO") or EU/UK representative. Details of any such appointment will be made available on the Platform or provided upon request.
We collect personal data in the following categories, depending on how you interact with the Platform:
When you create an account, we collect:
When you create a pet profile on the Platform, we collect:
When you make a purchase or complete a financial transaction on the Platform, we collect:
Full payment card details are processed exclusively by our third-party payment processor, Stripe, Inc., and are not stored on PawPass servers. PawPass does not have access to full card numbers, CVV codes, or bank account details. See Section 11 (Third-Party Processors) for further details.
When you use the booking functionality on the Platform, we collect:
In connection with the QR Tag product, we collect:
When you contact us or communicate through the Platform, we collect:
When you interact with the Platform, we automatically collect:
We use cookies and similar tracking technologies as described in our Cookie Policy, available at https://www.pawpass.rs/en. Cookie data may include session identifiers, preference settings, analytics identifiers, and advertising-related identifiers (where applicable and consented to).
The Platform may collect general location data derived from IP address for the purpose of localizing content and complying with regional legal requirements. Precise GPS-level location data is not collected unless you explicitly grant such permission via your device settings.
We do not intentionally collect special categories of sensitive personal data as defined under GDPR Article 9 (such as health data relating to humans, racial or ethnic origin, political opinions, religious beliefs, or biometric data). Veterinary and health records relating to pets are not classified as sensitive personal data under applicable human-focused data protection frameworks, but we nonetheless treat such data with a high standard of care and confidentiality.
Where the GDPR or UK GDPR applies, we process personal data only where we have a lawful basis for doing so. The legal bases we rely upon are as follows:
Processing is necessary for the performance of a contract to which you are a party, or to take steps at your request before entering into a contract. This basis applies to:
Processing is necessary for the purposes of legitimate interests pursued by PAWPASS LLC or a third party, except where such interests are overridden by your interests or fundamental rights. This basis applies to:
Processing is necessary to comply with a legal obligation to which PawPass is subject. This basis applies to:
Where we rely on consent as our legal basis, you will be asked to provide explicit, informed, and freely given consent prior to the relevant processing activity. Consent-based processing applies to:
You have the right to withdraw consent at any time without affecting the lawfulness of processing carried out prior to withdrawal. Withdrawal of consent can be effected by contacting us at office@pawpass.rs or using opt-out mechanisms provided in communications.
In exceptional circumstances, we may process personal data where necessary to protect the vital interests of a person (e.g., in the context of a pet safety emergency facilitated through the QR Tag system). Such processing is limited to what is strictly necessary.
We process personal data for the following specific purposes:
We share personal data with third-party service providers who process data on our behalf as Data Processors, pursuant to written data processing agreements that require them to maintain appropriate security standards and process data only on our documented instructions. Categories of such processors include:
When you book a service with a Partner through the Platform, we share your name, contact information, pet profile data relevant to the service, and booking details with the relevant Partner. Partners operate as independent data controllers for data received in this context and are responsible for their own processing under their own privacy policies. PawPass is not responsible for Partner data handling practices beyond the scope of our platform relationship.
When a third party scans your pet's QR Tag, the pet profile information you have made publicly visible in the QR Tag profile will be displayed to that person. You control what information is included in the QR Tag profile through your account settings. PawPass is not responsible for how third parties who scan the QR Tag use the displayed information. You should include only the information you are willing to share with members of the public.
In the event of a merger, acquisition, reorganization, sale of all or substantially all assets, or other change of corporate control, personal data may be transferred to the successor entity as part of that transaction. We will notify you of any such transfer and any material changes to this Privacy Policy that may result from the transaction via email or prominent Platform notice, where required by applicable law.
We may disclose personal data where required to do so by applicable law, court order, regulatory directive, or enforceable governmental request. We may also disclose data where necessary to: (a) enforce our Terms of Service or other agreements; (b) protect the rights, property, or safety of PawPass, our users, or the public; or (c) detect, prevent, or address fraud, security, or technical issues.
We may share aggregated, anonymized, or de-identified data that cannot reasonably be used to identify you, for the purposes of industry research, analytics reporting, marketing, and platform improvement. Such data does not constitute personal data under applicable law.
PAWPASS LLC does not sell, rent, or trade personal data to third parties for their own independent marketing or commercial purposes. For California residents: PawPass does not "sell" or "share" personal information as those terms are defined under the CCPA/CPRA.
PAWPASS LLC is incorporated in the United States and may process and store personal data on servers located in the United States or other countries outside the European Economic Area ("EEA") or the United Kingdom. Data protection laws in these jurisdictions may not offer the same level of protection as those in the EEA or UK. Where we transfer personal data originating from the EEA or UK to third countries, we implement appropriate safeguards to ensure that the transfer is lawful and that an adequate level of data protection is maintained. Such safeguards include:
You may request a copy of the relevant transfer safeguards by contacting us at office@pawpass.rs. Where we rely on SCCs or IDTAs, we conduct transfer impact assessments as required to evaluate risks to data subjects in the recipient country. Our primary third-party payment processor, Stripe, Inc., is incorporated in the United States and processes data under its own privacy framework. Stripe's cross-border data transfer practices are governed by Stripe's Privacy Policy and applicable Standard Contractual Clauses.
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, to comply with legal obligations, to resolve disputes, and to enforce our agreements. Our data retention framework is as follows:
Account data is retained for the duration of your active account relationship with PawPass. Following account deletion or termination, we retain core account records (name, email, account ID) for a period of five (5) years to comply with applicable legal, tax, and contractual obligations, and to facilitate the resolution of any disputes arising from the prior account relationship.
Transaction records, including purchase history, invoice data, and payment confirmations, are retained for a minimum of seven (7) years from the date of the transaction, in compliance with applicable U.S. federal and state tax and financial recordkeeping requirements, and as necessary to comply with EU VAT and accounting regulations where applicable.
Pet profile and health record data is retained for the duration of your account relationship and for a period of three (3) years following account deletion, to enable account recovery and to address potential disputes or claims. Users may request deletion of pet data earlier through the account settings or by contacting office@pawpass.rs, subject to any applicable legal holds.
Booking records are retained for five (5) years from the date of the service to support dispute resolution, chargeback management, and regulatory compliance.
Marketing consent records are retained for the duration of the opt-in plus three (3) years following unsubscribe, to demonstrate compliance with applicable marketing laws. Unsubscribed users' email addresses are retained on suppression lists to prevent future unwanted communications.
Server logs, IP address records, and technical usage data are retained for a maximum period of twelve (12) months from collection, unless a longer retention period is required for security investigations or legal proceedings.
At the end of applicable retention periods, personal data is either permanently deleted from our systems and those of our processors, or irreversibly anonymized such that it can no longer be linked to an identifiable individual. We do not guarantee deletion from backup systems immediately upon request, but ensure that data in backup archives is subject to controlled access and is purged on a regular schedule not exceeding twelve (12) months from the applicable retention period end date.
Depending on your country of residence and applicable law, you may have the following rights with respect to your personal data. We are committed to facilitating the exercise of these rights in a timely and transparent manner.
You have the right to obtain confirmation as to whether we process personal data relating to you, and if so, to receive a copy of that data along with information about the processing purposes, categories of data, recipients, retention periods, and the existence of automated decision-making.
You have the right to request that we correct inaccurate personal data or complete incomplete data without undue delay. Many account details can be updated directly through your Platform account settings.
You have the right to request the deletion of your personal data where: (a) the data is no longer necessary for the purposes for which it was collected; (b) you withdraw consent and no other legal basis applies; (c) you object to processing and there are no overriding legitimate grounds; (d) the data has been unlawfully processed; or (e) erasure is required to comply with a legal obligation. This right is subject to exceptions, including where processing is necessary for compliance with legal obligations or for the establishment, exercise, or defense of legal claims.
You have the right to request that we restrict processing of your personal data where: (a) you contest the accuracy of the data (restriction applies while accuracy is verified); (b) processing is unlawful but you oppose erasure; (c) we no longer need the data but you require it for legal claims; or (d) you have objected to processing pending verification of whether our legitimate grounds override yours.
Where processing is based on consent or contractual necessity and is carried out by automated means, you have the right to receive your personal data in a structured, commonly used, and machine-readable format, and to transmit it to another controller without hindrance from us.
You have the right to object at any time to processing of your personal data based on legitimate interests (Article 6(1)(f) GDPR), including profiling on that basis. Where you object, we will cease processing unless we demonstrate compelling legitimate grounds for the processing which override your interests, rights, and freedoms, or for the establishment, exercise, or defense of legal claims. You have an unconditional right to object to processing for direct marketing purposes.
PawPass does not subject users to fully automated decision-making that produces legal or similarly significant effects without human review. If we implement any such processes in the future, we will update this Privacy Policy and implement appropriate safeguards as required by Article 22 GDPR.
California residents have the following additional rights under the CCPA/CPRA:
California residents may submit requests by contacting office@pawpass.rs with the subject line "California Privacy Request". We will verify your identity before processing your request and will respond within 45 days, or up to 90 days where an extension is necessary and notice is provided.
To exercise any of the rights described in this Section, please submit a written request to office@pawpass.rs. Include sufficient information to verify your identity and to identify the specific data or processing activity to which your request relates. We will respond within 30 calendar days of receipt for GDPR/UK GDPR requests, and within 45 days for CCPA/CPRA requests, with the possibility of extension where permitted by law. We will not charge a fee for processing reasonable requests, except where requests are manifestly unfounded or excessive, in which case we may charge a reasonable administrative fee or refuse to act on the request.
If you are a resident of the EEA or UK and believe that our processing of your personal data violates applicable data protection law, you have the right to lodge a complaint with your local supervisory authority. A list of EEA supervisory authorities is available at https://edpb.europa.eu. The UK supervisory authority is the Information Commissioner's Office (ICO), reachable at https://ico.org.uk. We encourage you to contact us first at office@pawpass.rs so that we may address your concern directly.
PAWPASS LLC implements appropriate technical and organizational measures to protect personal data against unauthorized or unlawful processing, accidental loss, destruction, alteration, disclosure, or access. Our security framework includes the following measures:
Notwithstanding the foregoing, no method of transmission over the internet or electronic storage is completely secure. PawPass cannot guarantee absolute security of personal data. In the event of a personal data breach that poses a risk to your rights and freedoms, we will notify the relevant supervisory authority within 72 hours of becoming aware of the breach, and will notify affected individuals without undue delay where the breach is likely to result in a high risk to their rights and freedoms, as required by applicable law. If you become aware of any security vulnerability or suspect unauthorized access to your account, please notify us immediately at office@pawpass.rs.
Payment processing on the Platform is handled by Stripe, Inc. ("Stripe"), a PCI-DSS Level 1 certified payment processor. When you submit payment information, it is transmitted directly to Stripe's secure servers. PAWPASS LLC does not store full payment card numbers, CVV codes, or bank account credentials on its own servers. Stripe processes payment data pursuant to its own Privacy Policy, available at https://stripe.com/privacy, and its terms of service. By making a payment on the Platform, you agree to be bound by Stripe's applicable policies.
We may use third-party analytics services, such as Google Analytics or equivalent providers, to help us understand how users interact with the Platform. These providers may collect usage and technical data through cookies and similar technologies. Analytics data is processed in aggregated or pseudonymized form. You may opt out of analytics tracking through our Cookie Policy consent mechanism or through provider-specific opt-out tools.
We use third-party email service providers to deliver transactional and marketing communications. These providers process your email address and communication metadata on our behalf as Data Processors under appropriate data processing agreements.
Our Platform is hosted on third-party cloud infrastructure. Hosting providers store and process Platform data, including personal data, on our behalf in accordance with data processing agreements and applicable security standards.
The Platform may contain links to third-party websites or integrate with third-party services. This Privacy Policy does not apply to third-party platforms. We encourage you to review the privacy policies of any third-party platforms you access through or in connection with the Platform. PAWPASS LLC is not responsible for the privacy practices of third parties.
We use cookies and similar tracking technologies, including pixels and local storage objects, to enhance Platform functionality, analyze usage, support security, and deliver relevant content. A detailed description of all cookies used, their purpose, duration, and your opt-out options is set forth in our Cookie Policy, available at https://www.pawpass.rs/en. By continuing to use the Platform without adjusting your cookie settings, you consent to our use of non-essential cookies as described in the Cookie Policy, to the extent required by applicable law. You may withdraw or modify your cookie consent at any time through the cookie preference center available on the Platform.
The Platform is not directed to individuals under the age of 18. We do not knowingly collect personal data from children under the age of 18 without the consent of a parent or legal guardian. If you are a parent or guardian and believe that your child has provided personal data to us without your consent, please contact us immediately at office@pawpass.rs and we will take steps to delete such data. Where applicable, we comply with the Children's Online Privacy Protection Act (COPPA) and equivalent provisions under applicable EU and UK law. Users who register on behalf of a minor assume full responsibility for the lawfulness of data submitted relating to that minor.
Where you have provided consent or where permitted by applicable law on the basis of our legitimate interests, we may send you marketing communications about our products, services, partner offers, and platform updates. You can opt out of marketing communications at any time by:
Please note that even if you opt out of marketing communications, we will continue to send you essential transactional and administrative communications necessary for the operation of your account and the provision of services you have requested. Where we rely on legitimate interests to send direct marketing to existing customers, you may object to such processing at any time. We will honor your objection promptly.
PawPass may use automated processing to personalize your Platform experience, such as displaying relevant Partner recommendations based on your service history, location, and usage patterns. This processing does not constitute profiling that produces legal or similarly significant effects on you. We do not make any decisions based solely on automated processing that would have a legal effect or similarly significant impact on you without human review. If we implement such decision-making processes in the future, we will update this Privacy Policy and provide appropriate safeguards and rights as required by Article 22 of the GDPR.
We reserve the right to update or modify this Privacy Policy at any time. Material changes, meaning those that significantly affect your rights or our data processing practices, will be communicated to you via email or a prominent notice on the Platform at least 14 days prior to taking effect, unless a shorter notice period is required by law. The "Effective Date" at the top of this Privacy Policy indicates the date of the most recent revision. We encourage you to review this Privacy Policy periodically to stay informed about how we protect your data. Your continued use of the Platform following the effective date of any modification constitutes your acceptance of the updated Privacy Policy. For changes that require your consent under applicable law, we will seek your consent before the new processing activities commence.
For any questions, concerns, or requests related to this Privacy Policy or our personal data processing practices, please contact us at: Company Name: PAWPASS LLC Mailing Address: 75 E 3rd St, Sheridan, WY 82801, United States Email: office@pawpass.rs Website: https://www.pawpass.rs/en We are committed to resolving privacy concerns in a timely, transparent, and fair manner. Where you are unsatisfied with our response, you retain the right to escalate your complaint to the relevant data protection supervisory authority in your jurisdiction, as described in Section 9.10 of this Privacy Policy.
PawPass
Become Partner
Contact
PAWPASS LLC
75 E 3rd St
Sheridan, WY 82801
United States
+1 (307) 374-6098
office@pawpass.rs
© 2026 PawPass. All rights reserved.