Privacy Policy
Last updated: June 2026
This Privacy Policy explains how Conyvex LLC (“Conyvex”, “we”, “us”) collects, uses, shares and protects personal data when you visit conyvex.io, use the Conyvex platform, or buy a product that Conyvex sells on a merchant's behalf.
1. Who is responsible for your data
For visitors to our website and for merchants using the platform, Conyvex LLC is the data controller. For end-customer purchase data processed because Conyvex sells the product on the merchant's behalf, Conyvex acts as the controller of the data necessary to complete the sale, collect and remit tax, and prevent fraud, and as a processor on behalf of the merchant for data the merchant separately controls.
2. Data we collect
Account & business data
Name, work email, company name, role, billing and payout details, and tax identifiers you provide when creating and operating your account.
Transaction data
When we sell a product on a merchant's behalf, we process the data needed to complete a purchase: the end customer's name, email, billing address, country, the product purchased, amount, currency, partial payment-instrument details (such as the last four digits and card brand) and tax data. Full card numbers are handled by our certified payment partners and are not stored by us.
Technical & usage data
Device, browser, IP address, pages viewed, and similar information collected through cookies and comparable technologies (see our Cookie Policy).
Fraud & risk data
Signals used to score transactions for fraud, including device fingerprints, behavioural signals and information from fraud-prevention partners.
3. Why we use your data and the legal basis
| Purpose | Legal basis (GDPR Art. 6) |
|---|---|
| Providing the platform and processing sales on the merchant's behalf | Performance of a contract |
| Collecting, filing and remitting VAT, GST and sales tax | Compliance with a legal obligation |
| Fraud prevention, risk scoring and chargeback handling | Legitimate interests; legal obligation |
| Product analytics, service improvement and security | Legitimate interests |
| Marketing communications | Consent (you may withdraw it at any time) |
4. How we share data
We share personal data only as needed and with appropriate safeguards, including with:
- Payment processors and card networks to authorise and settle payments;
- Tax authorities where we are legally required to file and remit tax;
- Fraud-prevention and identity-verification providers;
- Infrastructure and analytics providers acting as our processors under contract;
- The relevant merchant, for transactions made through their product;
- Authorities or acquirers where required by law or to protect our rights.
We do not sell personal data.
5. International transfers
Conyvex operates globally, and personal data may be transferred to and processed in the United States and other countries. Where we transfer personal data out of the European Economic Area, the United Kingdom or Switzerland, we rely on appropriate safeguards such as the European Commission's Standard Contractual Clauses and, where applicable, the UK International Data Transfer Addendum, together with supplementary technical measures.
6. How long we keep data
We retain personal data only as long as necessary for the purposes above. Transaction and tax records are typically retained for up to ten (10) years to meet financial and tax-compliance obligations. Account data is retained for the life of your account and deleted or anonymised within a reasonable period after closure, subject to legal retention requirements.
7. Your rights
Depending on your location, you may have the right to access, rectify, erase, restrict or object to the processing of your personal data, to data portability, and to withdraw consent. EEA/UK residents may lodge a complaint with their local supervisory authority. California residents have rights under the CCPA/CPRA, including to know, delete, correct, and opt out of the “sale” or “sharing” of personal information; we do not sell personal information.
To exercise any right, contact hello@conyvex.io. We will respond within the timeframe required by applicable law.
8. Security
We maintain technical and organisational measures appropriate to the risk, including encryption in transit and at rest, access controls, and independent audits. No method of transmission or storage is completely secure, but we work continuously to protect your data.
9. Children
The Service is intended for businesses and is not directed at children under 16. We do not knowingly collect personal data from children.
10. Changes to this policy
We may update this Privacy Policy from time to time. We will post the updated version with a new effective date and, where changes are material, notify you by email or through the platform.
11. Contact and Data Protection Officer
For privacy questions or to reach our Data Protection Officer, contact hello@conyvex.io, or write to the Data Protection Officer, Conyvex LLC, 301 W 25th Ave Num 2579, Torrington, WY 82240, United States.