Privacy Policy

Last updated: January 15, 2024

1. Introduction

VirdisPay ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our crypto payment processing services for the hemp, CBD, and cannabis industries.

By using our services, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

2.1 Personal Information

  • Business Information: Company name, business registration details, tax identification numbers
  • Contact Information: Name, email address, phone number, business address
  • Financial Information: Bank account details, cryptocurrency wallet addresses
  • Identity Verification: Government-issued ID, business licenses, compliance certificates

2.2 Transaction Information

  • Payment amounts, currencies, and transaction IDs
  • Blockchain network details and gas fees
  • Customer information (with consent)
  • Product/service descriptions

2.3 Technical Information

  • IP addresses, browser type, and device information
  • Website usage patterns and analytics data
  • API usage statistics and performance metrics

3. How We Use Your Information

  • Service Provision: Process payments, provide customer support, maintain your account
  • Compliance: Meet regulatory requirements for cannabis industry payments
  • Security: Prevent fraud, detect suspicious activities, protect against unauthorized access
  • Communication: Send service updates, security alerts, and support responses
  • Analytics: Improve our services, develop new features, optimize performance

4. Legal Basis for Processing

We process your personal information based on:

  • Contractual Necessity: To provide payment processing services
  • Legal Compliance: To meet KYC/AML requirements and cannabis industry regulations
  • Legitimate Interest: To improve services, prevent fraud, and ensure security
  • Consent: For marketing communications and optional features

5. Information Sharing

We may share your information with:

  • Service Providers: Third-party vendors who assist in our operations
  • Regulatory Authorities: When required by law or for compliance purposes
  • Financial Institutions: For payment processing and banking services
  • Legal Requirements: In response to court orders, subpoenas, or legal processes

We do not sell your personal information to third parties.

6. Data Security

We implement industry-standard security measures:

  • End-to-end encryption for all data transmission
  • Secure storage with AES-256 encryption
  • Multi-factor authentication for admin access
  • Regular security audits and penetration testing
  • Non-custodial architecture - we never store private keys

7. Data Retention

We retain your information for:

  • Account Information: Duration of your account plus 7 years for compliance
  • Transaction Records: 7 years as required by financial regulations
  • Marketing Data: Until you opt out or 3 years of inactivity
  • Support Communications: 3 years for quality assurance

8. Your Rights

Depending on your location, you may have the right to:

  • Access: Request copies of your personal information
  • Correction: Update or correct inaccurate information
  • Deletion: Request deletion of your personal information
  • Portability: Receive your data in a structured format
  • Objection: Object to certain processing activities
  • Withdraw Consent: Withdraw consent for optional processing

To exercise these rights, contact us at hello@virdispay.com

9. International Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place, including:

  • Standard Contractual Clauses approved by the European Commission
  • Adequacy decisions by relevant data protection authorities
  • Certification under approved certification schemes

10. Children's Privacy

Our services are not intended for individuals under 18 years of age. We do not knowingly collect personal information from children under 18. If we become aware that we have collected personal information from a child under 18, we will take steps to delete such information.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by:

  • Posting the new Privacy Policy on this page
  • Sending you an email notification
  • Updating the "Last updated" date at the top of this policy

You are advised to review this Privacy Policy periodically for any changes.

12. Contact Information

If you have any questions about this Privacy Policy or our data practices, please contact us:

VirdisPay Privacy Team

Email: hello@virdispay.com

Address: London, United Kingdom

Data Protection Officer: hello@virdispay.com