Paystaq
HomePrivacy Policy

Privacy Policy

How Paystaq Technologies Ltd collects, uses, and protects your personal data.

Effective: 1 January 2026
Privacy PolicyTerms of ServiceCookie Policy

1. Data Controller

The data controller responsible for your personal data is:

Paystaq Technologies Ltd
The Leventis Gallery Tower, 5 A.G. Leventi Street, 1097, Nicosia, Cyprus
Email: privacy@paystaq.com

Paystaq Technologies Ltd is incorporated in Cyprus and is subject to the General Data Protection Regulation (EU) 2016/679 ("GDPR") as applied through Cyprus Law 125(I)/2018, as well as any applicable Cypriot data protection legislation.

2. Data We Collect

We collect only the data necessary to provide our services and communicate with you. Depending on how you interact with us, this may include:

Contact & enquiry data
Details: Full name, work email address, company name
Source: Contact form, demo request form
Marketing preferences
Details: Email address, communication preferences
Source: Newsletter signup, marketing opt-in
Usage & analytics data
Details: Pages visited, time on site, browser type, approximate location (country/city level), referring URL
Source: Google Analytics (anonymised)
Cookie data
Details: Session identifiers, preference cookies, analytics cookies
Source: Automatically on site visit (with consent)

We do not collect or store payment card data, bank account details, or sensitive personal data as defined under Article 9 GDPR.

4. Cookies & Analytics

We use cookies and similar tracking technologies on our website. Cookies are small text files stored on your device that help us understand how our site is used.

Google Analytics

We use Google Analytics to collect anonymised usage data about how visitors interact with our website. IP addresses are anonymised before processing. Google Analytics data is processed by Google LLC and may be transferred to servers outside the EU/EEA, subject to Standard Contractual Clauses approved by the European Commission.

You can opt out of Google Analytics by installing the Google Analytics Opt-out Browser Add-on available at tools.google.com/dlpage/gaoptout.

Cookie Consent Management

We use CookieYes as our consent management platform. When you first visit our site, a cookie banner will present you with options to accept or decline non-essential cookies. Your preferences are stored and respected on subsequent visits.

For a full breakdown of the cookies we use, their purpose, and duration, please see our Cookie Policy.

5. Marketing Communications

We may send you marketing emails if you have subscribed to our newsletter or otherwise given us your consent to do so. Each marketing email includes an unsubscribe link. You may withdraw your consent at any time by clicking 'Unsubscribe' in any email or by contacting us at privacy@paystaq.com.

We do not sell, rent, or share your email address with third parties for marketing purposes.

6. Third-Party Services & Data Sharing

We share personal data only where necessary and with appropriate safeguards. The third-party processors we use include:

Google Analytics
Details: Usage analytics
Source: Google LLC — EU Standard Contractual Clauses
CookieYes
Details: Consent management
Source: Digital Ignite Ltd — GDPR compliant
Email service provider
Details: Transactional & marketing emails
Source: [To be specified — e.g. Mailchimp, Brevo]

We do not sell personal data. We do not share personal data with any third party for their own marketing purposes.

7. Data Retention

We retain personal data only for as long as necessary to fulfil the purpose for which it was collected, or as required by law:

Contact form enquiries — Up to 2 years from the date of enquiry, or until you request deletion.
Marketing data — Until you withdraw consent or unsubscribe.
Analytics data — Up to 14 months (Google Analytics default retention). Anonymised aggregate data may be retained indefinitely.
Cookie consent records — Up to 1 year from the date of consent, as required for compliance records.

8. International Data Transfers

As a Cyprus-registered company operating within the EU/EEA, we process most data within the European Economic Area. Where data is transferred outside the EEA — for example, when using Google Analytics — we rely on the European Commission's Standard Contractual Clauses (SCCs) or adequacy decisions to ensure an equivalent level of protection.

9. Your Rights Under GDPR

As a data subject, you have the following rights under the GDPR and applicable Cypriot law:

Right of access (Art. 15) — Request a copy of the personal data we hold about you.
Right to rectification (Art. 16) — Request correction of inaccurate or incomplete data.
Right to erasure (Art. 17) — Request deletion of your personal data, subject to legal exceptions.
Right to restriction (Art. 18) — Request that we limit how we process your data in certain circumstances.
Right to data portability (Art. 20) — Receive your data in a structured, machine-readable format.
Right to object (Art. 21) — Object to processing based on legitimate interests or for direct marketing.
Right to withdraw consent — Withdraw any previously given consent at any time without affecting the lawfulness of prior processing.

To exercise any of these rights, contact us at privacy@paystaq.com. We will respond within 30 days. You also have the right to lodge a complaint with the Cyprus Commissioner for Personal Data Protection (www.dataprotection.gov.cy).

10. Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, disclosure, alteration, or destruction. This includes encrypted data transmission (TLS/SSL), access controls, and regular security reviews.

In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the relevant supervisory authority within 72 hours as required under Article 33 GDPR, and affected individuals where required under Article 34 GDPR.

11. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. The "Last updated" date at the top of this page will be revised accordingly. Where changes are material, we will take reasonable steps to notify you — for example, by displaying a notice on our website.

12. Contact

For any questions or requests relating to this Privacy Policy or your personal data, please contact us:

Paystaq Technologies Ltd
Data Protection enquiries
Email: privacy@paystaq.com