Privacy Policy

Last updated: June 9, 2026  ·  Effective: June 9, 2026

CodrimChain is committed to protecting the privacy and security of your business information. This Privacy Policy explains how we collect, use, and safeguard data in connection with our Services.

01Overview

This Privacy Policy applies to CodrimChain and all services operated under the codrimchain.com domain, including the Merchant Portal and related APIs. It describes how we handle information provided by merchants, their representatives, and end users of merchant-integrated payment flows.

CodrimChain operates as a data controller for business information we collect directly, and as a data processor for transaction data processed on behalf of our merchant customers.

02Information We Collect

We collect information in the following categories:

CategoryExamplesSource
Business IdentityCompany name, registration number, incorporation documents, business addressYou (at registration)
Personal Identity (KYC)Name, date of birth, government ID, beneficial ownership informationYou (KYC process)
Contact InformationEmail address, phone number, contact person nameYou
Financial InformationBank account details, wallet addresses, transaction history, settlement recordsYou / automatically
Technical DataIP address, browser type, API access logs, device identifiersAutomatically
Transaction DataPayment amounts, currency, timestamps, card usage records, counterparty wallet addressesAutomatically / via API

We do not collect or store full payment card numbers (PANs) in our systems. Card data is handled in accordance with applicable PCI DSS standards by our card network partners.

03How We Use Information

We use collected information for the following purposes:

  • Service Delivery: Processing payments, issuing virtual cards, executing OTC exchanges, and operating your merchant account;
  • Compliance & Regulation: Conducting KYC/AML checks, transaction monitoring, sanctions screening, and meeting reporting obligations to regulators;
  • Security & Fraud Prevention: Detecting and preventing fraudulent transactions, unauthorized access, and other security threats;
  • Customer Support: Responding to queries, investigating disputes, and resolving technical issues;
  • Platform Improvement: Analyzing usage patterns to improve our Services, APIs, and user experience;
  • Legal Obligations: Retaining records as required by applicable financial regulations and law.

We do not sell your personal information to third parties for marketing purposes.

04Information Sharing

We may share information with:

  • Card Network Partners: To process virtual card transactions and comply with card network rules (e.g., Visa);
  • Banking & Settlement Partners: To execute fiat settlements and OTC transactions;
  • Compliance & Identity Verification Providers: Third-party KYC/AML service providers who assist us in regulatory compliance;
  • Regulators & Law Enforcement: Where required by applicable law, court order, or regulatory authority, including financial intelligence units and sanctions authorities;
  • Service Providers: Cloud infrastructure, security monitoring, and analytics vendors bound by confidentiality obligations;
  • Business Transfers: In the event of a merger, acquisition, or sale of assets, subject to equivalent privacy protections.

We require all third-party service providers to maintain appropriate confidentiality and security standards.

05Data Retention

We retain personal and business information for as long as necessary to:

  • Maintain your active merchant account;
  • Comply with applicable financial regulations (typically 5–7 years following account closure);
  • Resolve disputes and enforce our legal rights;
  • Meet tax and accounting record-keeping requirements.

Transaction data and KYC records are retained for a minimum of 5 years following the last transaction, as required by anti-money laundering regulations in most jurisdictions.

06Security

CodrimChain implements industry-standard security measures to protect your information, including:

  • Encryption of data in transit (TLS 1.2+) and at rest;
  • Multi-factor authentication for platform access;
  • Regular security audits and penetration testing;
  • Access controls limiting data access to authorized personnel on a need-to-know basis;
  • Incident response procedures for data breach detection and notification.

In the event of a data breach affecting your information, we will notify you and relevant regulatory authorities as required by applicable law, without undue delay.

07Cookies & Tracking

Our website and merchant portal use the following types of cookies:

  • Essential Cookies: Required for authentication, session management, and security. Cannot be disabled;
  • Functional Cookies: Remember your preferences and settings;
  • Analytics Cookies: Aggregate, anonymized data to understand how our platform is used and improve performance.

We do not use advertising or cross-site tracking cookies. You may manage cookie preferences through your browser settings, though disabling essential cookies may affect platform functionality.

08Your Rights

Subject to applicable law and our regulatory obligations, you may have the following rights regarding your personal information:

  • Access: Request a copy of the personal data we hold about you;
  • Correction: Request correction of inaccurate or incomplete data;
  • Deletion: Request deletion of your data (subject to legal retention requirements);
  • Portability: Receive your data in a structured, machine-readable format;
  • Restriction: Request that we restrict processing of your data in certain circumstances;
  • Objection: Object to processing based on legitimate interests.

Please note that certain rights may be limited where we are required to retain data for regulatory compliance. To exercise your rights, contact us at [email protected]. We will respond within 30 days.

09International Data Transfers

CodrimChain operates globally and may transfer your information to service providers and partners in jurisdictions outside your country of residence. Where such transfers occur, we ensure appropriate safeguards are in place, including contractual protections equivalent to those required in your jurisdiction.

10Third-Party Services

Our Services may integrate with or link to third-party platforms (such as blockchain explorers, wallet providers, or banking portals). This Privacy Policy does not govern the practices of those third parties. We encourage you to review the privacy policies of any third-party services you access through or in connection with CodrimChain.

11Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of material changes via email or a prominent notice on the platform. The "Last updated" date at the top of this page reflects the most recent revision. Continued use of the Services following any changes constitutes your acceptance of the updated Policy.

12Contact Us

For privacy-related inquiries, data subject requests, or concerns about how we handle your information, please contact our Data Protection team: