Privacy Policy
At PayRequest, we take your privacy seriously. This policy explains how we collect, use, and protect your personal information.
Quick Navigation
PayRequest B.V. ("PayRequest", "we", "us", or "our") is a Dutch company registered at the Chamber of Commerce (KVK). We are committed to protecting your privacy and handling your data in an open and transparent manner. This privacy policy applies to all services provided by PayRequest, including our website, web application, and APIs.
Data Controller: PayRequest B.V., The Netherlands
Contact: [email protected]
Information We Collect
Account Information
When you create a PayRequest account, we collect your name, email address, and business information. If you connect a payment provider (Stripe, Mollie, PayPal), we store the connection credentials securely.
Payment Data
We process payment information through our integrated payment providers. PayRequest does not store credit card numbers or sensitive payment details directly - this is handled by our PCI-compliant payment partners.
Usage Data
We collect information about how you use PayRequest, including pages visited, features used, and interactions with payment links. This helps us improve our service.
How We Use Your Information
Service Delivery
We use your information to provide PayRequest services, process payments, send invoices, and manage subscriptions on your behalf.
Communication
We may send you service-related emails, including payment notifications, invoice reminders, and important account updates. You can manage marketing preferences in your account settings.
Improvement
We analyze usage patterns to improve PayRequest features, fix bugs, and develop new functionality that benefits our users.
Data Sharing
Payment Providers
We share necessary information with payment providers (Stripe, Mollie, PayPal, Ponto) to process transactions. Each provider has their own privacy policy.
Service Providers
We work with trusted service providers for hosting (Hetzner), analytics (Microsoft Clarity), and customer support (Crisp). These providers are contractually obligated to protect your data.
Legal Requirements
We may disclose information if required by law, court order, or to protect the rights and safety of PayRequest, our users, or others.
Data Security
Encryption
All data transmitted to and from PayRequest is encrypted using TLS/SSL. Sensitive data at rest is encrypted using industry-standard encryption.
Access Control
Access to user data is restricted to authorized personnel only. We use role-based access controls and audit logging.
PCI Compliance
Payment processing is handled by PCI DSS compliant providers. PayRequest does not store, process, or transmit cardholder data directly.
Your Rights (GDPR)
Access & Portability
You can request a copy of your personal data at any time. We'll provide it in a structured, commonly used format.
Correction & Deletion
You can update your account information anytime. You can also request deletion of your account and associated data.
Objection & Restriction
You can object to certain processing activities or request restriction of processing in specific circumstances.
Data Retention
Account Data
We retain your account data for as long as your account is active. After account deletion, we may retain certain data for up to 7 years for legal and tax compliance purposes.
Transaction Records
Payment and invoice records are retained for 7 years as required by Dutch tax law (Belastingdienst) and EU regulations.
Usage Data
Aggregated, anonymized usage data may be retained indefinitely for analytics and improvement purposes.
Questions or Concerns?
If you have any questions about this privacy policy or how we handle your data, please contact our Data Protection Officer.
Email: [email protected]
Response time: Within 30 days as required by GDPR