Legal
Privacy Policy
Last updated: May 26, 2026
1. Scope and Roles
This Privacy Policy explains how Orcuspay handles information across our website, dashboard, hosted checkout pages, payment links, invoices, API, modules, Dakpion SMS verification, risk review, reports, exports, and related merchant tools. Merchants control the customer, payment, invoice, and business data they submit to Orcuspay. For that merchant-controlled data, Orcuspay generally acts as a service provider or processor that helps the merchant operate its payment workflows.
2. Information We Collect
We may collect account identity information from Orcus.one login, such as user ID, email, name, profile picture, and Orcus ID; business profile information such as business name, support email, support phone, website, branding, privacy-policy links, and terms links; team, role, invitation, and permission data; payment method configuration, live/test API credentials, gateway credentials, callback URLs, webhook URLs, IPN URLs, status mapping, and fee setup; customer, payment, invoice, product, line item, refund, payment proof, payment timeline, and payment link data; and information you provide in support or operational communications.
3. Dakpion, Notifications, and Risk Data
Dakpion features may collect Android device identifiers, device labels, last seen status, SMS sync timing, app metadata, battery status when provided, SIM slot and phone-number mappings, payment method mappings, and SMS-derived verification data submitted by your devices. Notification features may store merchant-provided SendLime API details, SMS and WhatsApp sender settings, and event preferences. Risk and reporting features may process risk scores, risk levels, risk factors, fraud events, flagged-payment status, blocklist entries, payment proofs, filters, exports, and audit-style operational records.
4. Technical Data, Cookies, and Logs
We may collect browser and device details, IP address, request logs, API usage logs, authentication cookies, selected business and mode cookies, session tokens, security events, and similar technical data. We use cookies and related technologies to keep users signed in, remember the current business and live/test mode, protect accounts, diagnose errors, understand product usage, and improve the website and dashboard.
5. How We Use Information
We use information to provide and secure Orcuspay; authenticate users; create and manage businesses; configure gateways; issue and verify API credentials; create payment links, hosted checkout sessions, invoices, refunds, and reports; process callbacks and webhooks; sync Dakpion devices; send merchant-configured notifications; review fraud and blocklist signals; provide customer support; debug and improve reliability; prevent abuse; comply with legal obligations; and enforce our Terms.
6. Sharing with Providers and Vendors
We may share information with payment gateways, banks, wallet providers, card processors, crypto or remittance providers, verification services, notification providers, hosting and database providers, storage providers, analytics tools, email providers, support tools, security vendors, module partners, and professional advisers when needed to operate Orcuspay, process merchant requests, protect the service, or comply with law. Third-party providers may process information under their own terms and privacy policies.
7. Merchant Responsibilities
Merchants are responsible for giving their own customers appropriate privacy notices, obtaining required permissions, configuring payment providers lawfully, managing customer requests, protecting exported reports, and using customer data only for lawful business purposes. If you are a customer of a merchant that uses Orcuspay, please contact that merchant first for questions about a transaction, refund, invoice, receipt, payment proof, or customer-data request.
8. Data Retention and Security
We retain information for as long as needed to provide Orcuspay, maintain live and test records, support reports and exports, meet accounting and legal obligations, resolve disputes, detect fraud, enforce our Terms, and protect the platform. We use reasonable administrative, technical, and organizational safeguards designed to protect information, including limiting access based on operational need. No system can be guaranteed to be fully secure.
9. Your Choices and Requests
Depending on your location and relationship with Orcuspay, you may be able to request access, correction, export, deletion, or restriction of certain personal information. Some requests may be limited by security, fraud-prevention, accounting, tax, dispute, provider, backup, or legal requirements. Merchants can access and export many records directly from the dashboard.
10. International Use
Orcuspay may process and store information in countries where we, our infrastructure providers, or our vendors operate. Those countries may have data-protection laws that differ from the laws in your location. By using Orcuspay, you understand that information may be processed outside your country as needed to provide the service.
11. Children's Data
Orcuspay is designed for merchants and business users. It is not intended for children, and merchants should not use Orcuspay to knowingly collect children's personal information unless they have a lawful basis and required permissions.
12. Changes to This Policy
We may update this Privacy Policy as Orcuspay changes. The updated version will be posted on this page with a new "Last updated" date. If changes are material, we may provide additional notice through the dashboard, website, or email where appropriate.
13. Contact
Privacy questions and requests can be sent to hello@orcuspay.com.