Privacy & data

What data JoPay stores, how long it is retained, and your rights.

Data JoPay stores

JoPay collects and stores the minimum data necessary to operate the payment platform:

Data typeWhat is storedWhy
Email addressMerchant's email (from authentication)Login identity, communication, invite delivery
Wallet addressMerchant's blockchain wallet addressPayment routing, on-chain verification
Payment historyRequest amounts, timestamps, proof status, transaction hashesDashboard display, reconciliation, audit trail
Session dataSession tokens, CSRF tokensAuthentication, security
IP address (hashed)Hashed IP for rate limitingAbuse prevention (raw IP is never stored)
JoPay does not store credit card numbers, bank account details, government IDs, or social security numbers. The platform handles USDC payments only.

Data JoPay does not store

  • Private keys or seed phrases (managed by Sequence for embedded wallets)
  • Customer personal information (customers pay without creating an account)
  • Credit card or bank account numbers
  • Government-issued ID numbers
  • Biometric data
  • Raw IP addresses (only hashed for rate limiting)

Data retention periods

JoPay retains data for the minimum period necessary and automatically purges expired records:

Data categoryRetention period
Events (analytics)90 days
Sessions14 days
CSRF tokens2 days
Rate limit buckets7 days
Login locks7 days
Marketing events730 days (2 years)
Marketing consents730 days (2 years)
Data subject requests (DSARs)1,095 days (3 years)

Payment records (requests, proofs, transaction hashes) are retained for the lifetime of the merchant account to support reconciliation and dispute resolution.

GDPR compliance

JoPay processes personal data in accordance with the General Data Protection Regulation (GDPR). Key practices include:

  • Purpose limitation: Data is collected only for the specific purpose of operating the payment platform.
  • Data minimization: Only the minimum necessary data is collected and stored.
  • Storage limitation: Automated purge processes delete data after the retention period expires.
  • Security: All data is encrypted in transit (TLS) and access is restricted by role.
  • Consent: Marketing communications require explicit opt-in consent.

Data subject access requests (DSARs)

Under GDPR, you have the right to request access to, correction of, or deletion of your personal data. To submit a data subject access request:

  1. Send an email to the data protection contact listed in the JoPay privacy policy.
  2. Include your name, the email address associated with your JoPay account, and the specific action you are requesting (access, correction, or deletion).
  3. JoPay will verify your identity and respond within 30 days as required by GDPR.
Deleting your account data will permanently remove your payment history and settings. On-chain transaction records on the blockchain cannot be deleted as they are part of the public ledger.

Your rights

Under GDPR and applicable data protection laws, you have the right to:

  • Access — Request a copy of all personal data JoPay holds about you.
  • Rectification — Request correction of inaccurate data.
  • Erasure — Request deletion of your personal data (right to be forgotten).
  • Portability — Request your data in a machine-readable format.
  • Object — Object to the handling of your data for specific purposes.
  • Withdraw consent — Withdraw previously given consent for marketing.

Cookies and tracking

JoPay uses only essential cookies required for authentication and security (session cookies, CSRF tokens). No advertising cookies, third-party trackers, or analytics cookies are used on merchant or customer-facing pages.