Your privacy matters to us. This policy explains what data InzoPay collects, why we collect it, and how we protect it.
1. Information We Collect
When you register and use InzoPay, we collect the following categories of information:
- Account information: name, email address, business name, and contact details
- Identity documents: government-issued ID, business registration, and proof of address (collected during KYC verification)
- Transaction data: payment amounts, timestamps, currency types, wallet addresses, and transaction status
- Technical data: IP addresses, device information, browser type, and access logs
- Communication data: support tickets, emails, and chat messages exchanged with InzoPay
2. How We Use Your Information
We use the data we collect to:
- Operate and improve the InzoPay platform and its features
- Verify your identity and comply with KYC and AML obligations
- Process transactions, generate invoices, and calculate fees
- Detect and prevent fraud, money laundering, and unauthorized access
- Send transactional and service-related communications
- Respond to support requests and resolve disputes
3. Crypto Wallet Data
InzoPay operates as a custodial wallet provider for merchants. We generate and manage blockchain wallet addresses on your behalf. All private keys are stored securely and never shared. Transaction records on public blockchains (such as Ethereum or TRON) are immutable and publicly visible by nature.
We do not share your wallet addresses with third parties except as required by law or to process your transactions.
4. Information Sharing
InzoPay does not sell your personal data. We may share your information with:
- Compliance and regulatory authorities when required by law
- Identity verification and KYC service providers
- Blockchain analytics providers for AML screening
- Cloud infrastructure and security service providers
All third-party processors are contractually obligated to protect your data and use it only for the specified purpose.
5. Data Security
We employ industry-standard security measures including AES-256 encryption for data at rest, TLS 1.3 for data in transit, two-factor authentication, and regular security audits. Access to merchant data is restricted to authorised InzoPay personnel on a need-to-know basis.
In the event of a data breach that affects your personal information, we will notify you within 72 hours and take immediate remediation steps.
6. Data Retention
We retain your account and transaction data for a minimum of 5 years from the date of the last transaction to comply with financial record-keeping obligations. Identity documents are retained for 5 years from account closure. You may request deletion of non-essential data at any time.
7. Your Rights
You have the right to: access the personal data we hold about you, correct inaccurate data, request deletion of non-essential data, withdraw consent for marketing communications, and receive a copy of your data in a portable format. To exercise any of these rights, contact us at [email protected].
8. Cookies
InzoPay uses essential cookies to operate the platform (session management, CSRF protection). We do not use tracking or advertising cookies.
Contact
For privacy-related inquiries, contact our Data Protection team at [email protected].