Privacy Policy

Your privacy is important to us. Learn how we collect, use, and protect your data.

Effective Date: January 1, 2025
Last Updated: January 1, 2025

1. Introduction

api-card ("we," "us," or "our") is committed to protecting your privacy and personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our virtual card issuance platform, payment processing APIs, and related financial technology services.

2. Information We Collect

2.1 Personal Information

We collect personal information that you provide directly to us, including:

  • Name, email address, and contact information
  • Government-issued identification documents
  • Date of birth and nationality
  • Address and residence verification
  • Business information and registration documents
  • Financial account information

2.2 Transaction Data

We collect information related to your financial transactions:

  • Payment and transaction history
  • Card usage and merchant information
  • Cryptocurrency wallet addresses and transactions
  • Account balances and limits

2.3 Technical Information

We automatically collect technical information when you use our services:

  • IP address and device information
  • Browser type and version
  • Operating system information
  • API usage logs and access patterns
  • Cookies and tracking technologies

3. How We Use Your Information

We use your information for the following purposes:

  • Service Provision: To provide our virtual card and payment services
  • Identity Verification: To comply with KYC and AML requirements
  • Security: To prevent fraud and ensure platform security
  • Communication: To send transaction notifications and updates
  • Compliance: To meet legal and regulatory obligations
  • Analytics: To improve our services and user experience

4. Legal Basis for Processing

We process your personal information based on:

  • Contract: To perform our contractual obligations
  • Legal Obligation: To comply with financial regulations
  • Legitimate Interest: To prevent fraud and ensure security
  • Consent: Where you have given explicit consent

5. Information Sharing and Disclosure

We may share your information with:

  • Service Providers: Third-party vendors who assist in service delivery
  • Financial Partners: Card networks, payment processors, and banks
  • Regulatory Bodies: Government agencies as required by law
  • Compliance Partners: For AML, KYC, and fraud prevention
  • Legal Authorities: When required by legal process

6. Data Retention

We retain your information for as long as necessary to:

  • Provide our services to you
  • Comply with legal and regulatory requirements
  • Resolve disputes and enforce agreements
  • Prevent fraud and abuse

Financial records are typically retained for 7 years after account closure or transaction completion, as required by financial regulations.

7. Data Security

We implement comprehensive security measures to protect your information:

  • End-to-end encryption for sensitive data
  • Secure data centers with physical access controls
  • Regular security audits and penetration testing
  • Multi-factor authentication and access controls
  • PCI DSS compliance for payment data
  • Employee training on data protection

8. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure adequate protection through:

  • EU Standard Contractual Clauses
  • Adequacy decisions by data protection authorities
  • Privacy Shield certification (where applicable)
  • Other approved transfer mechanisms

9. Your Rights

Depending on your jurisdiction, you may have the following rights:

  • Access: Request access to your personal information
  • Rectification: Correct inaccurate or incomplete data
  • Erasure: Request deletion of your data (subject to legal requirements)
  • Portability: Receive your data in a structured format
  • Restriction: Limit processing of your information
  • Objection: Object to certain types of processing
  • Withdrawal: Withdraw consent where applicable

10. Cookies and Tracking

We use cookies and similar technologies to:

  • Ensure proper functioning of our platform
  • Remember your preferences and settings
  • Analyze usage patterns and performance
  • Prevent fraud and enhance security

You can control cookies through your browser settings, but this may affect platform functionality.

11. Children's Privacy

Our services are not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If we discover that we have collected information from a child, we will delete it immediately.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes through:

  • Email notification to your registered address
  • Notice on our website
  • In-platform notifications

13. Contact Information

For privacy-related questions or to exercise your rights, contact us:

  • Email:

14. Jurisdiction-Specific Information

14.1 European Union (GDPR)

If you are in the EU, you have additional rights under the General Data Protection Regulation, including the right to lodge a complaint with your local data protection authority.

14.2 California (CCPA)

California residents have specific rights under the California Consumer Privacy Act, including the right to know, delete, and opt-out of the sale of personal information.

By using api-card services, you acknowledge that you have read and understood this Privacy Policy.