OmniPayments (“we”, “our”, or “us”) is committed to protecting the privacy, confidentiality, and security of information entrusted to us. This Privacy Policy describes how OmniPayments collects, uses, processes, stores, and protects personal and sensitive information in connection with our websites, products, platforms, and payment processing services. OmniPayments operates in accordance with applicable data protection regulations, PCI DSS requirements, and industry best practices.

This policy applies to visitors to our website, customers, business partners, vendors, and any authorized users of OmniPayments services. It does not replace or override contractual data protection obligations agreed with customers, which shall prevail where applicable.

OmniPayments collects only the information necessary to operate and support its services. This may include limited personal information such as names, business contact details, email addresses, phone numbers, and professional roles, as well as technical and usage information such as IP addresses, device identifiers, browser type, operating system, and system logs. These data elements are used to ensure service availability, security monitoring, system performance, regulatory compliance, and customer support.

OmniPayments does not sell personal information. Information is used strictly for legitimate business purposes, including service delivery, transaction processing, fraud prevention, operational monitoring, compliance with legal and regulatory requirements, and communication with customers and partners. Where consent is required by law, OmniPayments ensures that such consent is obtained and documented.

Payment and other sensitive data are handled with the highest level of protection. OmniPayments does not store cardholder data unless explicitly required under a contractual agreement. When such data is processed, it is protected using strong encryption, tokenization, and industry-standard security controls. All sensitive data processing environments are PCI DSS v4.0 compliant and leverage hardware-based security mechanisms, including Hardware Security Modules (HSMs).

OmniPayments implements robust technical and organizational safeguards to protect information against unauthorized access, alteration, disclosure, or destruction. These safeguards include encryption of data at rest and in transit, role-based access controls, multi-factor authentication, secure network segmentation, continuous monitoring, audit logging, and regular security assessments. Our systems operate on fault-tolerant, high-availability platforms designed to ensure continuous service availability and resilience.

Information may be shared only with authorized third parties who support OmniPayments’ operations, such as infrastructure providers, payment networks, or regulatory bodies, and only to the extent necessary to deliver services or comply with legal obligations. All third parties are contractually required to maintain confidentiality and security standards consistent with OmniPayments’ policies and applicable regulations.

Where data is processed across borders, OmniPayments ensures that appropriate safeguards are in place to protect information in accordance with applicable laws and industry standards. Data is retained only for as long as necessary to fulfill contractual, operational, regulatory, and legal requirements, after which it is securely deleted or anonymized.

OmniPayments maintains a formal incident response and breach management process. In the event of a confirmed security incident affecting personal or sensitive data, OmniPayments will take immediate containment and remediation actions and will notify affected parties and regulators as required by law and contractual obligations.

Individuals may have rights under applicable data protection laws to access, correct, or request deletion of their personal information, or to object to certain processing activities. Requests related to data privacy may be submitted using the contact details below.

OmniPayments may update this Privacy Policy periodically to reflect changes in legal requirements, security practices, or business operations. Updates will be published on our website, and continued use of our services constitutes acceptance of the revised policy.