Effective Date: 29/08/2025
Version: 1.1
At Checkypro, we are committed to protecting the privacy and personal data of both our merchant clients and the customers who interact with their stores. This Privacy Policy explains how we collect, use, and share personal data through our platform — including both merchant data and consumer data that flows through our integrated checkout.
This policy applies to the use of the Checkypro platform, including our merchant dashboard, hosted checkout, website, and e-commerce integrations such as Shopify.
Checkypro ("we", "our", "us") is a technology platform offering two distinct services:
Checkout infrastructure that merchants connect to their online stores (e.g. via Shopify)
Payment routing via white-labeled PSPs such as Rapyd and Payabl
For merchant data, we act as the data controller.
For consumer data (shoppers purchasing through our Checkout), we act as a data processor on behalf of the merchant.
We collect merchant data during account creation, onboarding, and platform use. This includes:
Business name and legal registration details
Contact information (email, phone)
Identity documents for UBOs (passports, national ID)
Billing details, payout preferences, VAT numbers
Login sessions, dashboard activity, and account configurations
Fraud scores, refund rates, chargeback ratios
When merchants integrate Checkypro with Shopify or use our Checkout product, we may automatically access and process customer data from the merchant’s store, including:
Full name and shipping address
Email address
Purchased products and order value
IP address and browser fingerprint
Order status, fulfillment status, refund status
Tracking numbers and delivery confirmations
Fraud patterns or anomalies detected by our tools
We process merchant data to:
Facilitate onboarding and platform usage
Pre-screen accounts for risk, compliance, and fraud indicators
Help route payment traffic through our acquirer partners
Provide chargeback alerts and automated dispute tools
Communicate with merchants regarding account status, billing, or technical issues
Enforce our Acceptable Use Policy
We process customer data on behalf of merchants to:
Enable secure checkout and payment routing
Detect high-risk transactions, patterns, or abuse
Support evidence collection for chargebacks or disputes
Help our acquirer partners (Rapyd, Payabl) perform KYC/AML risk profiling at the merchant level
Note: We do not contact end-customers directly, nor do we use their data for marketing or profiling.
We process personal data on the basis of:
Contractual necessity (for delivering services to merchants)
Legal obligation (for anti-money laundering and fraud prevention)
Legitimate interest (to protect platform integrity and ensure secure transactions)
Consent (for cookie use, marketing communications, or optional tools)
We share data as follows:
With licensed financial partners such as Rapyd and Payabl for onboarding, KYC/AML screening, transaction approval, and payout facilitation
With infrastructure providers (e.g. cloud hosts, analytics tools, fraud engines) under strict data protection agreements
With law enforcement or regulators if legally compelled to do so
We may also share merchant risk indicators (e.g. excessive chargebacks, suspicious refunds) with acquirer partners to support fraud detection and onboarding review.
When merchants connect their Shopify store to Checkypro, we receive access (via secure API) to:
Order data and metadata
Customer shipping and billing info
Product catalog and pricing
Fulfillment and delivery status
Historical refund and dispute activity
This data is used to assess merchant credibility, detect fraudulent behavior, and support regulatory compliance when routing through PSPs. Merchants are responsible for obtaining lawful customer consent for this data access.
We implement the following technical and organizational security measures:
TLS/SSL encryption for all data in transit
Role-based access controls across all internal systems
Continuous monitoring, audit logging, and IP restriction
Hosting in secure, certified cloud environments
Regular penetration testing and vulnerability scans
Full PCI DSS Level 2 compliance
Annual SAQ-D validation
Tokenized payment flows via PCI-compliant acquirers (no raw card data stored)
We retain data based on regulatory, operational, and fraud-prevention needs:
KYC documentation: stored for as long as required under AML regulations
Transaction metadata: retained for internal analytics and chargeback support
Consumer order data: stored temporarily per merchant configuration
Inactive accounts: deleted or anonymized after [e.g. 12 months] of inactivity
Under the GDPR, you have the right to:
Request access to your personal data
Request correction or deletion
Object to certain types of processing
Request data portability
Withdraw consent where applicable
File a complaint with a supervisory authority
To exercise your rights, please contact info@checkypro.com
Some data may be stored or processed outside the EEA. When this occurs, we use EU-approved Standard Contractual Clauses (SCCs) or ensure our partners are subject to equivalent data protection safeguards.
Our platform and website use cookies and similar technologies. Please see our separate [Cookie Policy] for details about how we use cookies and how you can manage your preferences.
We may update this Privacy Policy to reflect legal or operational changes. Material updates will be communicated via email or within the dashboard. The latest version will always be available at [checkypro.com/privacy].
For questions, concerns, or data requests, contact:
info@checkypro.com