Privacy Policy

1. Who We Are

TxnTrust Ltd (“TxnTrust”, “we”, “us”, or “our”) is a B2B payment infrastructure company providing cross-border payment processing, FX conversion, wire transfer facilitation, and treasury management services. We are the data controller for the personal data we collect through our website (txntrust.com) and our merchant platform.

If you have questions about this policy or our data practices, contact our privacy team at privacy@txntrust.com.

2. Information We Collect

2.1 Account & Identity Information

When you register for a TxnTrust merchant account, we collect: your full legal name, email address, company name, company registration number, business address, and phone number. For compliance with anti-money laundering (AML) regulations, we also collect Know-Your-Business (KYB) documentation, including certificates of incorporation, director identification, and proof of address.

2.2 Transaction & Financial Data

We collect and process data related to transactions initiated through our platform, including: sender and recipient details, transaction amounts, currency pairs, exchange rates applied, bank account details (BIC/IBAN), timestamps, transaction status, and supporting documentation. This data is collected as required for AML/CFT compliance and for fulfilling our contractual obligations to you.

2.3 Usage & Technical Data

We automatically collect technical information when you use our platform, including: IP address, browser type and version, operating system, pages visited, feature usage patterns, session duration, and error logs. This is used solely for platform security, fraud prevention, and service improvement — never for advertising profiling.

2.4 Communications

If you contact us via email, our support system, or other channels, we retain the content of those communications for a period sufficient to resolve your query and maintain a support history.

3. How We Use Your Information

We use personal information for the following lawful purposes:

• →Providing our services (contractual necessity): processing payments, executing FX transactions, initiating wire transfers, and providing treasury visibility.
• →Identity verification & KYB (legal obligation): verifying the identity of merchants and key personnel as required by AML regulations.
• →Fraud and risk management (legitimate interest): detecting, preventing, and investigating fraudulent activity, money laundering, and other financial crimes.
• →Security operations (legitimate interest): maintaining the security and integrity of our platform and your data.
• →Compliance & reporting (legal obligation): meeting record-keeping, reporting, and disclosure obligations imposed by applicable laws.
• →Product improvement (legitimate interest): understanding how our platform is used in order to improve it.

4. How We Share Your Information

We do not sell your personal information. We share data only in the following limited circumstances:

• →Payment partners: Stripe (card processing), Wise (wire transfers and FX), banking partners, and correspondent banks — to the minimum extent necessary to process your transactions.
• →Identity verification providers: Third-party KYB/KYC services used to verify merchant identities as required by law.
• →Infrastructure providers: Cloud infrastructure, database, and monitoring services operating under data processing agreements with strong confidentiality obligations.
• →Regulatory & law enforcement: When required by applicable law, court order, or regulatory authority (e.g., FATF Travel Rule disclosures, SAR filings).

5. Data Retention

We retain personal information for as long as necessary to provide our services, comply with legal obligations, resolve disputes, and enforce our agreements. Financial transaction records are retained for a minimum of 5 years in most jurisdictions, as required by AML regulations. Account data is retained for 2 years following account termination, or longer if required by law.

6. International Data Transfers

TxnTrust operates globally. Your personal data may be transferred to and processed in countries other than your country of residence. When transferring data from the EEA or UK, we rely on Standard Contractual Clauses (SCCs) approved by the European Commission and the UK ICO to ensure adequate protection.

7. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

• →Right of access: request a copy of the personal data we hold about you.
• →Right of rectification: request correction of inaccurate or incomplete data.
• →Right of erasure: request deletion of your personal data, subject to our legal retention obligations.
• →Right to data portability: request your data in a structured, machine-readable format.
• →Right to object: object to processing based on legitimate interests.
• →CCPA rights: California residents have the right to know, delete, and opt out of sale of personal data.

To exercise any right, email privacy@txntrust.com. We will respond within 30 days. Note: some requests may be limited where we have legal obligations to retain data.

8. Cookies

We use strictly necessary cookies for authentication and session management, and optional analytics cookies (with your consent) to improve our platform. For full details, see our Cookie Policy.

9. Children's Privacy

TxnTrust is a B2B platform intended for use by registered businesses and their authorised representatives. We do not knowingly collect personal data from individuals under the age of 18.

10. Changes to This Policy

We may update this Privacy Policy periodically to reflect changes in our practices or applicable law. We will notify registered users of material changes via email and will post the updated policy on this page with a revised effective date.