Privacy policy

Blackhawk Network Privacy Notice

Last Updated: February 14, 2023

Previous version is available here


Notice Links

Blackhawk Network Privacy Notice

Blackhawk Network Short-Form Privacy Notice (for customers of Financial Companies)

Third-Party Privacy Notices (from our Banking Partners)


Blackhawk Network Privacy Notice



This Privacy Notice (commonly referred to as a “Privacy Policy”) explains how Blackhawk Network Holdings, Inc., and its affiliates (“BHN”, “Blackhawk,” “we,” “us,” or “our”), process the Personal Information of website visitors, users of our apps, users of our gift card and branded payments services. It also addresses the policies that apply to how we process the Personal Information of the customers of the many hundreds of brands who use Blackhawk Network platforms to provide services to those customers.

You should read and understand this Notice because it constitutes the core of our obligations to you when you use this website, when you provide your Personal Information to us either directly or through automated processes. You are strongly encouraged to read this Privacy Notice in its entirety, not just the above highlights, so that you will fully understand Blackhawk’s commitment to responsible data governance and the protection of your personal information. Please also note that this Notice may have changed since the last time you read it, so you should make sure that you have familiarized yourself with any terms that may have changed since the last time you read it.

When we act as a Data Processor on behalf of another Data Controller, we collect, use, and disclose certain personal information only under the Controller’s instruction, and our processing of your personal information is subject to their instructions and privacy policies. For any Site operated by us on behalf of another company, their privacy notice will appear on the site and that privacy notice will be the applicable policy.

Some of Blackhawk’s Services are offered through third parties, such as banks or other financial institutions. In those cases, you will see privacy notices provided by those companies alongside the Blackhawk Network Privacy Notice. The Blackhawk Network Privacy Notice will apply to your usage of that Site while the privacy notice provided by the third party will apply to their use of their customers’ personal information in the delivery of their financial services. Please read both notices carefully to understand the differences between the applicability of one policy versus the other.

Please note: Links to third-party websites are provided solely for your convenience; when you go to those sites, your experience there is subject to the privacy notices and terms of use of those third-party sites, not ours, unless you are explicitly told otherwise.

Personal Information We Collect

We collect personal information directly from you, through third parties, via publicly available sources (in the context of business-to-business relationships or to comply with applicable laws) or automatically through our Sites and related to our Services, subject to applicable laws as set out below. Where the personal information we collect is needed to comply with law, or to enter into or perform an agreement with you, we will inform you at the time of such data collection. If we cannot collect this data, we may be unable to register you as a client, to complete certain transactions, or provide products or services to you.

Personal Information We Collect Directly from You

We collect the following categories of personal information that you provide directly to us:

  • Identifiers such as name, email address, mailing address, fax or phone number, profile or account usernames and passwords, account numbers, and online identifiers;
  • Other Personal Information including “payment information” such as credit or other payment card information, bank account, or billing address; “demographic information” such as when you provide your age, gender, interests and ZIP or postal code; “preference information” such as product wish lists, or marketing preferences; “government identifiers” as described below; and “submitted content” such as information you choose to provide via online forms, surveys, contests, promotions, sweepstakes, online chat discussions, blog posts or comments, requesting customer support, reviews, or testimonials.
  • Commercial Information such as products or services purchased, viewed, or received;
  • Internet Information, such as your browsing, search, and usage details in connection with Blackhawk Sites or when interacting with Blackhawk advertisements online;
  • Professional or Employment Information including “application information” such as your resume, employment and education history, name and contact details, background details, and references when you apply to job postings or contact us about employment opportunities, and “company and employer information” about you and your employer when you contact us on behalf of your employer or when your employer uses one of our services, such as company name, size, or business type.
  • Sensitive Personal Information including “government identifiers” such as driver’s license, passport number, and Social Security/Social Insurance numbers (for Blackhawk business to business clients and potential clients, such as when this information must be collected by applicable law); and “account access information” such as a username or account number in combination with a password, security or access code, or other credential that allows access to an account, all of which may be deemed sensitive personal information under applicable laws.

You are strongly encouraged to read this Privacy Notice in its entirety, not just the above highlights, so that you will fully understand Blackhawk’s commitment to responsible data governance and the protection of your personal information. Please also note that this Notice may have changed since the last time you read it, so you should make sure that you have familiarized yourself with any terms that may have changed since the last time you read it.


Personal Information We Collect Automatically

When you access or use our Sites, we collect some information automatically which may be collected through cookies, web beacons, java script, log files, pixels, and other technologies (collectively, “Technologies”). For example, we may collect the following categories of personal information automatically:

  • Identifiers about you and your device(s), such as your domain name, browser type, browser language preference, device type and operating system, page views and links you click within the Sites, IP address, device ID or other identifiers;
  • Geolocation Data of the device(s) you use in connection with the Sites, including for fraud prevention purposes or to help you locate a store offering our products and services in your area (with your consent). This may be general geolocation data (such as your city or jurisdiction), or precise (with your consent). You may withdraw your consent to the processing of precise location-based information at any time by changing the settings on your device. If you do, you might not be able to use certain features, especially when we use location-based information to prevent fraud.
  • Internet Information such as date and time stamp, and time spent using the Sites, referring URL, your activity within the Sites, usage patterns, user preferences, peak demand times, preferred content and other information derived from the use of our Sites

Personal Information We Create or Generate

We infer new information from other data we collect, including using automated means, such as:

  • Inferences about your likely preferences or other characteristics.

Personal Information We Collect from Third Parties

We may also obtain any of the categories of personal information described above from third parties, such as:

  • Publicly available sources, subject to applicable law, such as if we confirm your address with the postal service;
  • Service providers that may help operate our Sites, prevent fraud, process payments, provide our products and services, or otherwise assist us in obtaining any of the categories of personal information described above;
  • Third-party partners, such as our clients who use our Services to provide you with incentives, payment processors, and others that may help us to obtain any of the categories of personal information described above; and
  • Other customers, such as when they choose to send a gift to a friend through our Sites, and we ask for that friend’s name and contact details.

Use of Your Personal Information and Legal Bases

We may use each of the categories of personal information we collect for the following purposes:

  • Provide Our Services: To provide our Services, operate our Sites, respond to your enquiries and fulfill your requests and orders, process your payments, for bug and error reporting and resolution, to perform upgrades and maintenance;
  • Customer Service and Support: To send you important information, such as changes to terms, conditions, and policies and/or other administrative information;
  • Personalization: To personalize your experience on a Site or using the Services, such as by tailoring the content we send or display to you in order to personalize help and instructions, and to otherwise personalize your experience using the Services;
  • Alerts and Required Notices: At your request, communicate service-related alerts and any notices;
  • Marketing and Promotions: Per your preferences, send you marketing communications;
  • Advertising and Referrals: To assist in advertising the Services on third-party websites and to track referrals from partner websites;
  • Analytics and Improvement: To better understand how our Services are used and accessed, and for other research and analytical purposes, such as to evaluate and improve the Services;
  • Verify Identity and Detect Fraud: To verify your identity and/or location in order to allow access to your accounts, conduct online transactions, and secure your personal information, and for risk control, fraud detection and prevention, and compliance with laws and regulations;
  • Protect Our Legal Rights and Prevent Misuse: To protect the Services, prevent unauthorized access and other misuse, and where we believe necessary to investigate, prevent or take action regarding illegal activities, suspected fraud, situations involving potential threats to the safety of any person, or violations of our Terms of Use or this Privacy Notice.
  • Comply with Legal Obligations: To comply with the law or legal proceedings such as when required to disclose information in response to lawful requests by public authorities, including responding to national security or law enforcement disclosure requirements; and
  • General Business Operations: Where necessary to the administration of our general business, accounting, recordkeeping and legal functions.

Legal Bases for Using Personal Information

Where applicable we may use your personal information as explained elsewhere in this Statement for each of the following lawful bases:


Purposes of Use/Processing



Legal Bases of Processing (where applicable)


To Provide Our Services

Customer Service and Support

  • Necessary to enter into or perform a contract with you (upon your request, or as necessary to make the Services available)
  • Our legitimate business interests*


Marketing and Promotions 

Advertising and Referrals

  • Our legitimate business interests*
  • With your consent

Analytics and Improvement

Generating Other Information

  • Our legitimate business interests*

Verify Identity and Detect Fraud

Protect Our Legal Rights and Prevent Misuse

Comply with Specific Legal Obligations

  • Compliance with applicable laws and regulations
  • Establish, defend or protect our legal interests
  • Our legitimate business interests*

General Business Operations

  • Our legitimate business interests*
  • Establish, defend or protect our legal interests
  • Compliance with law

* For personal information from the EU, the processing is in our legitimate interests to the extent they are not overridden by your interests and fundamental rights. Our legitimate interests include our interests in verifying identify, detecting and preventing fraud and crime, protecting and improving our products and services, in support of our general business operations including the growth of our business, and to comply with our legal obligations.

How We Share Personal Information

In this section, we describe the types of disclosures we make and the categories of third parties to whom we may disclose your personal information. We may make disclosures of any of the categories of personal information described in the Personal Information We Collect section above to the types of third parties described below, and have made such disclosures in the past 12 months.

Sale Of Data

We do not sell your personal information to third parties. Because we do not sell your personal information, we do not provide any further detail regarding such sales, nor do we provide a process for opting out of such sales.

Affiliated Blackhawk Companies

We disclose personal information among our affiliated and subsidiary companies in furtherance of the purposes set out in this Notice; their processing of your personal information is subject to the requirements and limitations contained in this Notice.

Third-Party Service Providers

We disclose your personal information to certain companies that provide services to us and on our behalf and subject to our written instructions, such as shipping, payment, hosting, advertising and other support services; these companies may be located in the EU, the United States, and other jurisdictions. As noted above, we may also disclose your information to service providers who assist us in the detection or investigation of fraudulent or illegal activities, for verification of identity, and for compliance activities, such as required transaction-related reporting or to verify your address in order to accurately calculate or process tax-related matters.

Clients and Partners

Where we process personal information on behalf and in conjunction with our clients or partners, we process and share your personal information with that entity. When we process personal information on behalf of a Controller, that Controller’s privacy notice will be presented, and their notice will apply instead of this Notice. In certain circumstances, we may operate a site jointly with another entity and both will function as Controllers; in those instances, you will see both the Blackhawk Privacy Notice and the other entity’s privacy notice, and both will apply with respect to the activities of each Controller individually.

Referral Partners

We offer referral-based commission systems through third-party partners so that publisher websites may refer users to our pages to make purchases. These partners will be identified when you sign up, and we will obtain your consent in jurisdictions where this is required (in which case no other legal bases will apply). This Notice governs only Blackhawk’s use of such data. The partner’s own privacy notice governs its use of the data.

Gramm-Leach-Bliley Product Short Notices (US customers only)

Some products offered in conjunction with banks have unique data sharing agreements. Where relevant, Blackhawk will make available to you short-form privacy notices of each product’s sharing policies on that website or on this page (see “Blackhawk Network Short-Form Privacy Notice”).

Additional Disclosures

We may also disclose your personal information under the following circumstances:

  • As permitted or required by law, such as to comply with a subpoena or court-issued discovery order, a warrant, a government request, or similar legal process;
  • When we believe in good faith that disclosure is necessary to respond to claims asserted against us; to protect our rights; to protect your safety or the safety of others; or, to investigate or prevent fraud;
  • If Blackhawk is involved in a merger, acquisition, or sale of all or a portion of its assets, or in the event of a bankruptcy or dissolution of our business, your personal information may be transferred to an acquiring business or third party, including in contemplation of or related to due diligence for such business transactions, subject to any applicable restrictions under applicable laws. You will be notified by email and/or by a prominent notice on our website of any change in ownership or uses of your personal information, as well as any choices you may have regarding your personal information; and
  • Ito any other third party with your prior consent.

Aggregated and Anonymized Information

We may generate aggregated and/or anonymized information about users for marketing, advertising, research, or other purposes. We may share aggregate and anonymized information about users with certain third parties, including for marketing, advertising, research or similar purposes.

Cookies, Technologies, and Online Tracking

We and our third-party service providers collect information automatically through Technologies. We, or our service providers, may combine this information with other information, including personal information we collect about you, to record your preferences, gather information about the use of our Sites and Services, identify when our emails are viewed, personalize content and ads and track information about the performance of our advertisements. We have a detailed Cookie Notice which is incorporated into the Privacy Notice and provides more information about our Technologies and cookie-related practices and a number of service providers we use for our online targeting activities.


These are small files with a unique identifier that are transferred to your browser through our Sites. Cookies allow us to collect information such as browser type, time spent on our Sites, pages visited, language preferences, and your relationship with us. We can use this information to analyze trends, administer the website, track users’ movements around the Site, measure the effectiveness of our communications, tailor our advertising to you, and gather demographic information about our user base as a whole. Cookies may provide us with information about devices and networks you utilize to access our Sites and Services, and other information regarding your interactions with our Sites and Services. For detailed information about the cookies used in the Sites and Services and how you can manage your cookie preferences or reject cookies altogether, please read and review our Cookie Notice.

Pixels, Web Beacons, Clear Gifs

These are tiny graphics with a unique identifier, similar in function to cookies that we use to track the online movements of users of our web pages and our Ad Services, and to personalize content, and to identify when our emails are viewed or forwarded. Our third-party partners may use Local Shared Objects, such as Flash cookies, to embed features on our sites. To manage Flash cookies, please click here.

"Do Not Track" Preferences

Our Site does not recognize do-not-track signals. Therefore, our practices remain the same whether or not you enable the "Do Not Track" feature. For more information about do-not-track signals, please click here or see in our Cookie Notice. In addition, some of our advertising partners, may use Technologies to collect information about your Internet activities across websites including our Sites. You may be able to disable certain third-party cross-site tracking as described here or in greater detail in our Cookie Notice.

Third-Party Analytics

We also use automated devices and applications, such as Google Analytics (more info here) to evaluate use of our Sites and Services. We use these tools to gather information about users to help us improve our Sites, Services and user experiences. These analytics providers may use Technologies to perform their services on our behalf. See our Cookie Notice for more information about our use of analytics tools.

Marketing and Targeted Advertising

Targeted advertising and Custom Audiences

We partner with third-party ad networks and third-party ad companies to manage our advertising on other sites. Our third-party partners use Technologies to gather information about your activities across our Sites and other sites in order to provide you personalized advertising based upon your browsing activities and interests. This involves the following categories of Personal Information: Identifiers, Commercial Information, and Internet Information. Please see the “Cookies, Technologies, and Online Tracking” section above or our Cookie Notice for more information.

We also partner with certain third parties so that we can better target ads and content to our users, and others with similar interests, on these third parties’ platforms or networks (“Custom Audiences”). One such partnership is with Facebook through their Custom Audiences program. Under that program we only share a cryptographically pseudonymized (“hashed”) version of your email address, which Facebook is prohibited from using for any other purpose and may not share with any other party. (More info on Facebook Custom Audience here). Subject to applicable laws, we may disclose certain information (such as your email address) with third parties and we may work with third-party ad networks and marketing platforms that enable us and other participants to target ads to Custom Audiences submitted by us and others. If you would like to opt-out of being included in our Custom Audiences going forward, email us(see Contact Information section below)  and we will opt you out of our future Custom Audiences. For more detailed information about how we partner with third parties for cookie-based ad targeting, please see our Cookie Notice.

Marketing and Newsletters

If you subscribe to our newsletters, we will use your name and email address to send them to you.

Social Media Features

Our Sites include social media features, such as the Facebook "Like" button, either hosted by a third-party or hosted directly on our website (“Widgets”). Please refer to the privacy policies of the relevant third-party websites or services to find out more about the collection, use, and disclosure of your information through such features. We will comply with any legal obligations placed on the use of these technologies by certain jurisdictions, which may affect how these tools function.


The security of your personal information is important to us. We use organizational, technical, and administrative safeguards to protect the personal information submitted to us. Please note that no data transmission over the Internet can be guaranteed to be 100% secure. As a result, we cannot guarantee or warrant the security of any personal information that we process.


It is our policy to retain your information only for as long as is necessary to fulfill the purpose for which it was collected and processed. We will retain your information for as long as your account is active or as needed to provide you services and for as long as may be required to comply with our legal obligations, resolve disputes, maintain appropriate business records, and enforce our agreements. Even if you request for your information to be deleted, laws and regulations may require us to retain a copy of your information in our files for a longer period of time.

Your Rights and Choices for Personal Data Processing

You may have legal rights in the jurisdiction where you reside with regard to your privacy and how your personal information is processed by us. This section provides details on what those rights are, how we honor them where required, and the process for exercising them. Regardless of where you reside, Blackhawk may at its sole discretion choose to extend these rights to all individuals, and to comply with reasonable requests in the manner detailed below. We do not charge for these services. Where you are entitled to exercise a right, we will respond to your request within the timeframe set out by applicable law. Where we provide answers on a voluntary basis, we will provide a response within a reasonable timeframe. We will not discriminate or retaliate against you for requesting or exercising these rights.

Notice At Collection, And To Know

At or before the time of collection, you may have a right to receive notice of our practices, including the categories of personal information and sensitive personal information to be collected, the purposes for which such information is collected or used, whether such information is sold or shared, and how long such information is retained. You can find those details in this Notice. You may also have a right to request additional information about our collection, use, disclosure, or sale of personal information about you (to “know”). Note that we have provided much of this information in this Notice. You may make such a request to “know” by the means in the Exercising your Rights section below.

Access, Correction, Portability, And Deletion

You have the right to access, correct (“rectify”), or delete (“erase”, ”be forgotten”) your personal information held by us, or may ask for a restriction of processing. You may also have the right to ask for an overview or copy of your personal information or to request that certain of your personal information be exported in a format so that you may take your data to another provider where technically feasible (“data portability”). On some of our Sites, you may exercise your rights to access, correct, or delete your personal information by making the change directly on your account page. You may also make these requests by the means in the Exercising your Rights section below. Please note that there are some limitations to these rights. For example, we will not be able to delete your personal information if we are required or permitted by law to keep it or if we hold it in connection with a contract with you. Similarly, access to your personal information may be refused if making the information available would reveal personal information about another person or if we are legally prevented from disclosing such information. If we cannot fulfill your request, we will inform you about why we cannot comply with your request.

Withdrawal of Consent

Where we process your personal information based on your consent, you have the right to withdraw your consent at any time without affecting the lawfulness of the processing that occurred based on your consent before its withdrawal. Please keep in mind that certain services are directly dependent upon our ability to process your personal information, so if you withdraw your consent, request for your information to be deleted, or if you otherwise object to our processing of certain personal information, those services may no longer be functional.

Object To Processing

You have the right to object to processing (including profiling) that occurs based on legitimate interest grounds, where we are relying upon legitimate interests as the primary basis for processing your personal information. If you object, we must stop that processing unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights and freedoms, or we need to process the personal information for the establishment, exercise or defense of legal claims. Where we rely upon legitimate interest as a basis for processing, we believe that we can demonstrate such compelling legitimate grounds, but we will consider each case on an individual basis.

Opting Out of sharing and Certain Targeted Advertising

If you wish to not have cross-site information about you used or shared for the purpose of serving you targeted ads online, you should opt-out by taking the following two steps: (1) using the controls available through our website cookie banner to decline advertising-related cookies, and (2) submitting a request below (see “Exercising Your Rights”). Both steps (1) and (2) are required to make your choice effective, and you may need to reperform step (1) for each Blackhawk site you visit, and for each browser and device you use.

Some browsers and browser extensions support the “Global Privacy Control” (GPC) or similar controls that can send a signal to the websites you visit indicating your choice to opt-out from certain types of data processing, including targeted advertising, as specified by applicable law. When we detect such a signal, we strive to make reasonable efforts to treat such a signal as a request to opt-out of having cross-site information about you used or shared for the purpose of serving you targeted ads online, similar to the steps outlined above. We cannot guarantee that these types of controls will be effective, so we encourage you to manually request per above.

You can also opt-out of many (but not necessarily all) ad networks by visiting the DAA WebChoices Tool (or if located in the European Union, by visit Your Online Choices). You will continue to receive ads on the sites you visit, but the ad networks from which you have opted out will no longer target ads to you based upon your activities on other sites. Please note, however, that as with step (1) above, these opt-out mechanisms are also cookie based, so if you delete cookies, block cookies or use another device, your opt-out will no longer be effective. For more information about Interest Based Advertising, please visit Your Ad Choices.

Object To Marketing

You have the right to object to our use of your personal information (including profiling) for direct marketing purposes, such as when we use your personal information to invite you to our promotional events. You may also choose to stop receiving our newsletter or marketing emails at any time by following the unsubscribe instructions included in these emails or accessing the email preferences in your account.

Right to Lodge a Complaint

If you believe that our processing of your personal information infringes your rights or violates applicable data protection laws, you have a right to lodge a complaint with the relevant supervisory authority. If you are located in the European Union, a list of supervisory authorities is available here. If you are in the United Kingdom, you may contact the Information Commissioner’s Office. If you are in the United States, you may contact the US Federal Trade Commission (residents of California may contact the California Department of Justice). Residents of Canada may contact the Privacy Commissioner of Canada or their provincial data protection commissioner. If you are located in another jurisdiction, you will need to research or contact your local government for further guidance.

Sensitive Personal Information

We do not use or disclose sensitive personal information in ways that require an opt-out right under applicable law.

Exercising your Rights

To exercise your rights as described in this Notice, you may contact us via the following methods:


We will respond to your request in accordance with applicable law, and if we are unable to comply with your request, we will provide information regarding why.

When Submitting A Privacy Rights Request

Depending on the nature of your request, we may request further proof of your identity in accordance with applicable law. When sending a request, you can expedite this process by providing the following information with your initial inquiry:

  • Full name;
  • Email address associated with the relevant transaction(s);
  • Postal address associated with your account or transaction;
  • Product or service (for example, which Blackhawk website you used); and,
  • Only the last four (4) digits of the card associated with the transaction (if applicable).
    WARNING: For security reasons NEVER send the full card number, other information contained on the card (such as CVV or expiration date), and NEVER send any sensitive personal or financial information associated with you or the card.

We may ask you to respond from the associated email address, or to provide the information above or additional information thereafter, as part of our verification processes. If the nature of your request is unclear we may ask you for further clarification. In the event that we require additional time to process your request (if allowed by applicable law), we will advise you of that. If you are unable to or refuse to provide satisfactory verification information, we may deny your request in accordance with applicable law. If you do not follow the procedures described in this Notice, including failure to lodge your request through the channels or processes specified above, there may be significant delays in responding to your request. Where permitted by law, you may designate, in writing or through a power of attorney, an authorized agent to make rights requests on your behalf. Before accepting such a request from an agent, we will require the agent to provide proof you have authorized it to act on your behalf, and we may need you to verify your identity directly with us. Please note that we will only respond directly to you, or your duly authorized agent (with authority documented in strict accordance with applicable law), in cases where we are the Controller of your personal information. Where we are acting as a Processor on behalf of a client or partner, we will refer you to the client or partner who is the data controller of your personal information. Our agreements with data controllers, as well as applicable laws, require that we process data in strict accordance with the controller’s explicit instructions, therefore any actions we take to access, edit, or delete your data will only be undertaken with their direct authorization and upon their explicit instructions.

Protecting Children’s Privacy Online

Our Sites are not directed to children and we do not knowingly collect or sell personal information directly collected from children under the age of sixteen (16). We request that such individuals do not provide personal information through our Sites. We reserve the right to delete the personal information and terminate the account of anyone violating this age policy.

International Transfers

The personal information we collect from you may be transferred to, stored at, or processed in other countries, including the United States or outside the European Economic Area, which may not provide equivalent levels of data protection to your home jurisdiction. We will take steps to ensure that your personal information receives an adequate level of protection in the jurisdictions in which we process it, including through appropriate written data processing terms and/or data transfer agreements. For transfers from the EU, United Kingdom (“UK”), or Switzerland, to the US, Blackhawk relies on adequacy decisions by the EU Commission or putting in place standard contractual clauses as approved by the European Commission or another applicable supervisory body.

Protecting Children’s Privacy Online

Our Sites are not directed to children and we do not knowingly collect or sell personal information directly collected from children under the age of sixteen (16). We request that such individuals do not provide personal information through our Sites. We reserve the right to delete the personal information and terminate the account of anyone violating this age policy.

Updates to this Notice

This Notice is subject to change, so if this is your first time reading it, please make sure it is not the last. If we make any changes to this Notice, we will post those changes on this page and revise the “Last Updated” date at the top. If we make any changes to the ways in which we process your information that could be reasonably be considered material or substantial, we will make additional efforts to notify you of those changes, either by email or via a prominent notice on this Site prior to the change becoming effective. Where required by law, we will obtain your consent or give you the opportunity to opt out of such changes. Any changes will become effective when we post the revised Notice.

Contact Information

If you have any questions or concerns regarding this Privacy Notice, the ways in which your personal information is being processed, or wish to exercise any of the rights described above, please reach out to us using the contact information below:

Global Privacy Inquiries

You may contact the Blackhawk Network Global Privacy Office at:
Blackhawk Network, Inc.
ATTN: Privacy Requests
10615 Professional Cir.
Reno, NV 89521 USA
For a Toll-Free number pertaining to your service, please see the back of your card (if applicable). 

EU, Swiss, and UK Privacy Inquiries

Blackhawk has appointed a Data Protection Officer (DPO) for the EU, Switzerland, and UK. You may use the Global Privacy Office contact information shown above, or you may contact the DPO for these regions directly via email using the following address:

Other Queries or Complaints

If you have any further queries or complaints that we are not able to answer, you are recommended to contact the Data Privacy Supervisory Authority for the country in which you reside.  A list of EU/EEA Data Protection Authorities can be found via the European Data Protection Board here. A list of data protection authorities in other countries/regions can be found here.

Third-Party Privacy Notices

If you have a card issued by MetaBack (Pathward), N.A., your cardholder data is governed by the Pathward Privacy Policy.

If you have a card issued by Sunrise Banks, your cardholder data is governed by the Sunrise Banks Privacy Policy.

If you have a card issued by Peoples Trust Company, your cardholder data is governed by the Peoples Trust Privacy Policy.

If you have a card issued by EML Payment Solutions Limited, your cardholder data is governed by the EML Payments Privacy Policy.

If you have a card issued by Indue, your cardholder data is governed by the Indue Privacy Policy.