Privacy Policy

1. Controller

[Turson Legal Name] is the data controller for Services provided to business clients.

2. Data We Collect

• Business identification: legal name, registration, KYC/KYB artifacts.
• User data: name, email, phone, role, login metadata.
• Transaction data: card numbers (tokenized), timestamps, amounts, merchants, MCC, currency, device/IP.
• Financial & settlement data: funding records, invoices, fees.
• Support & communications: tickets, call recordings (where permitted).
• Cookies/analytics: site usage, referrers, session IDs.

3. Purposes & Legal Bases

• Provide and operate Services (contract).
• KYC/AML screening and fraud prevention (legal obligation/legitimate interests).
• Billing, reconciliation, and reporting (contract/legal).
• Improve Services and analytics (legitimate interests).
• Marketing with your consent and opt-out options.

4. Sharing

With processors/partners strictly necessary to deliver Services: issuers, banks, KYC providers, payment processors, cloud hosting, analytics, support tools. We do not sell personal data.

5. International Transfers

Data may be processed outside your country. We use appropriate safeguards (e.g., SCCs) where required.

6. Retention

Kept as long as the account is active and as required by law (e.g., AML retention [X–Y years]).

7. Security

Encryption in transit and at rest; access control, logging, least-privilege; regular testing.

8. Your Rights

Access, rectify, erase, restrict, port, object; withdraw consent; lodge a complaint with your authority. Contact: service@truson.io

9. Cookies

We use strictly necessary cookies and optional analytics/functional cookies. Manage preferences in the banner/settings.

10. Children

Services are for businesses; we do not knowingly collect data from children.

11. Changes

We may update this policy; material changes will be notified via dashboard/email.