Privacy Policy

1. Information We Collect

We collect the minimum information necessary to provide the Service:

• Account information: email address, name (if provided via Google OAuth)
• Wallet addresses: public wallet addresses you configure for receiving payments
• Transaction data: payment intent details, transaction hashes, amounts
• Usage data: pages visited, features used, error logs

2. What We Do NOT Collect

As a non-custodial service, we never collect or store:

• Private keys or seed phrases
• Wallet balances or transaction history beyond what you process through our Service
• Personal financial information beyond what is needed for billing

3. How We Use Your Information

We use collected information to:

• Provide and maintain the Service
• Process payments and verify transactions on-chain
• Send webhook notifications to your configured endpoints
• Communicate service updates and security alerts
• Improve the Service through aggregated, anonymized analytics

4. Data Sharing

We do not sell your personal data. We may share data with:

• Blockchain networks: transaction data is inherently public on-chain
• Payment processors: Stripe for subscription billing
• Email services: Brevo for transactional emails

5. Data Security

We implement industry-standard security measures including HMAC-signed webhooks, encrypted connections (TLS), rate limiting, and role-based access control.

6. Data Retention

We retain your data for as long as your account is active. You may request deletion of your account and associated data at any time by contacting us.

7. Your Rights

You have the right to access, correct, or delete your personal data. Contact us at contact@directcryptopay.com to exercise these rights.

8. Cookies

We use essential cookies for authentication (JWT session tokens) and basic analytics. We do not use third-party tracking cookies.

9. Contact

For questions about this Privacy Policy, contact us at contact@directcryptopay.com.