GDPR Privacy Policy

GDPR Privacy Policy

LAST UPDATED: 09/12/2023


Billhighway has its headquarters in the United States and the data we collect about you will be processed in the United States. By using Billhighway’s Websites or Services, you acknowledge that your personal data will be processed in the United States. All references to Billhighway include Billhighway, greekbill, and Impexium.

This policy supplements Billhighway’s main Privacy Policy. If you are located in the European Union (EU) or the United Kingdom (UK) and subject to additional laws including the General Data Protection Regulation (GDPR) or the UK-GDPR, we will only process your personal data where we have a lawful basis to do so. Our lawful basis to use your personal data as described in this privacy policy is based on our legitimate interest and to comply with a legal obligation.

At Billhighway, safeguarding your privacy and protecting customer personal data is our top priority. Our commitment to GDPR principles means that we process data lawfully, fairly, and transparently. Data is collected only for specific, explicit, and legitimate purposes and will not be processed for any other purpose without consent. Our focus extends to maintaining data accuracy and implementing a robust security program to prevent unauthorized access or disclosure. We ensure that your personal data is handled appropriately, including your right to access, correct inaccuracies, and request for deletion.

Billhighway supports our customers’ drive to comply with GDPR through our strong security and data protection programs, including a multi-tiered security program with a focus on Data Privacy as well as comprehensive compliance efforts. Our Security Program is designed to limit access to the entire network environment. Moreover, we undergo annual rigorous control reviews and audits to ensure the security of our platforms. Our security program protects our system accounts and network environment in a layered approach for overall security.

The GDPR allows individuals to exercise certain rights in relation to their personal data. Personal data includes any information related to an identified or identifiable natural person.

We will respond to requests from individuals as required by the GDPR, including:



Access to personal data. We will provide you with access to the personal data we have collected about you, subject to any relevant exemptions and verification of your identity.


Correction and Deletion

Upon your request and verification of your identity, we will correct your personal data or delete data, subject to any relevant exemptions.


Data Portability

We will provide you with the personal data you provided in a format that allows you to move, copy, or transfer the data easily in a safe and secure way.

If we are relying on consent to collect, use or share your personal data, you have the right to withdraw such consent. We shall honor such request unless we have another lawful basis to use your personal data.


Data Transfer

Your personal data will be transferred and stored in the United States. By using our services, you consent to your personal data being transferred and stored in the United States.

To exercise your GDPR-granted rights with regard to your personal data, you may contact us using the channels provided in our How to Contact Us section.

We are required to verify the identity of the individual submitting a request before we provide a response. We will disclose and deliver the requested data within one month of receiving a verifiable request. Please be advised that Billhighway may need to extend the time period to meet your request when reasonably necessary.

Please be advised that we may not be required to comply with your erasure request if it is necessary to maintain your personal data in order to complete a transaction for which the personal data was collected or provide a good or service you have requested. We will inform you within one month about the measures taken or the reasons for refusal.


How to Contact Us

If you have questions about this GDPR Privacy Policy, wish to exercise your privacy rights, or inquire about our personal data handling practices, please contact us at our corporate headquarters at:

By Mail:

5435 Corporate Drive
Suite 300
Troy, MI 48098

By Email:

By Phone: 1.866.245.5499