Legal
Privacy Policy
This Privacy Policy describes how LiasonPay (“LiasonPay,” “we,” “us,” or “our”) collects, uses, discloses, and protects information in connection with our payment orchestration platform, websites, dashboards, APIs, and related services (collectively, the “Services”). By using the Services, you agree to this Policy.
1. Who we are
LiasonPay provides middleware and orchestration that helps merchants route, process, and reconcile payments across multiple payment service providers. Depending on your relationship with us, we may act as a data processor on behalf of your organization or as an independent controller for certain account and operational data.
2. Information we collect
We may collect:
- Account and contact data: name, email, phone, company name, role, billing details, and credentials you provide when registering or administering an account.
- Transaction and technical metadata: identifiers, timestamps, amounts, currencies, status, routing decisions, device or session data, IP addresses, and logs needed to operate, secure, and debug the Services.
- Payment-related data: subject to strict scope and retention rules, limited payment data necessary to facilitate routing and reconciliation. Full primary account numbers (PAN) are not required for our core orchestration model; where payment partners transmit card data, it is handled according to their requirements and applicable standards.
- Communications: messages you send to support, feedback, and survey responses.
- Cookies and similar technologies: as described in our cookie practices on web properties (session, preferences, analytics where enabled).
3. How we use information
We use information to provide and improve the Services; authenticate users; route and reconcile payments; detect and prevent fraud, abuse, and security incidents; comply with law; enforce our terms; generate analytics in aggregated or de-identified form; and communicate with you about the Services.
4. Legal bases (where applicable)
Where the GDPR or similar laws apply, we rely on performance of a contract, legitimate interests (such as securing our platform and improving reliability), consent where required, and legal obligation as appropriate.
5. Sharing and subprocessors
We share information with payment processors, cloud infrastructure providers, security vendors, analytics providers (if configured), and professional advisors, only as needed to operate the Services. We impose contractual safeguards and assess vendors for security and compliance fit. A current list of categories of subprocessors is available on request.
6. International transfers
We may process data in multiple countries. Where we transfer personal data across borders, we use appropriate safeguards such as standard contractual clauses or equivalent mechanisms as required by law.
7. Retention
We retain information for as long as necessary to fulfill the purposes above, including legal, tax, accounting, and dispute resolution requirements. Retention periods vary by data category and may be shortened or anonymized when possible.
8. Security
We implement administrative, technical, and organizational measures designed to protect information against unauthorized access, loss, or alteration. No method of transmission over the Internet is completely secure; see our Security page for more detail.
9. Your rights
Depending on your jurisdiction, you may have rights to access, correct, delete, restrict, or object to certain processing, and to data portability. You may also lodge a complaint with a supervisory authority. To exercise rights, contact us using the details below. We may need to verify your identity before responding.
10. Children
The Services are not directed at children. We do not knowingly collect personal information from children under 16.
11. Changes
We may update this Policy from time to time. We will post the revised version and update the “Last updated” date. Material changes may be communicated through the Services or by email where appropriate.
12. Contact
Questions about this Policy: [email protected]