This Privacy Policy explains how CryptoPAYR Limited collects, uses and protects personal data. We are the data controller for personal data processed in connection with the Services.
Data we collect
- Account data — name, email, password hash, and merchant/business details;
- Verification data — identity and compliance information where required by law (KYC/AML);
- Transaction data — payment amounts, currencies, wallet addresses, and metadata;
- Technical data — IP address, device/browser information, and cookies;
- Optional buyer data — an email address provided to receive a receipt.
How we use it
To provide and secure the Services, process payments, meet legal and regulatory obligations (including AML/CTF and the Travel Rule), prevent fraud, and communicate with you.
Legal bases
We process data to perform our contract with you, to comply with legal obligations, for our legitimate interests in operating and securing the Services, and with your consent where required.
Sharing
We share data with the service providers that help us operate, listed in our Sub-processors page (for example identity-verification, email and infrastructure providers), and with regulators or law enforcement where legally required. We do not sell personal data.
Retention
We retain personal data for as long as needed to provide the Services and to meet legal/record-keeping obligations, after which it is deleted or anonymised.
Your rights
Subject to applicable law, you may request access, correction, deletion, restriction or portability of your data, and may object to certain processing. Contact [email protected].
Security
We use technical and organisational measures including encryption in transit, hashed credentials and access controls. No system is perfectly secure; please protect your own credentials.
Contact
Questions about this policy? Contact us at [email protected] or by post at CryptoPAYR Limited, Cayman Corporate Centre, Office 2852, George Town, Grand Cayman, Cayman Islands.