Privacy Policy

Last Updated: June 18, 2025

At WintPay (“we,” “us,” or “our”), your privacy matters. This document explains how we collect, use, disclose, protect, and manage your personal information when you interact with our website, mobile and desktop apps, APIs, and related services (collectively, “Services”). This policy also outlines your rights and choices. Please read it carefully.

Introduction

This Privacy Policy applies to all information collected through your use of WintPay applications and Services. It does not apply to data independently collected by our customers through managed devices. Customers are responsible for transparency and legal compliance with their end users.

Definitions

“WintPay” refers to the company and its Services including apps, portals, APIs, integrations.
“User,” “you,” “your,” or “client” refers to entities or individuals using WintPay.
“Device Managed Data” means information collected through managed devices, such as location, usage logs, operational events.
“Sensitive Data” means private, regulated categories such as biometrics, health, or payment card numbers.

Information We Collect

Information You Provide

Account Setup: Name, email, phone, company, billing details.
Support Communications: Contact info and message content.
Feedback/Testimonial Content: Voluntary inputs for reviews or marketing.

Automatically Collected Technical Data

IP address, device/browser type, OS version
App/page usage logs, screen views, timestamps
Crash reports, diagnostic logs

Device-Managed Data

Device identity: IMEI, serial, model, OS version
Status info: Battery, network, signal strength
App inventory: Installed apps and versions
Operational logs: Locks, wipes, app installs/uninstalls
Location: GPS/network coordinates if enabled
Error reports: Crash or failure events

Tracking Technologies

Essential cookies for security/session
Performance cookies/analytics tools (e.g., Google Analytics)
Functional cookies for preferences

Sensitive Data

We do not collect Sensitive Data except for payment card details processed via PCI-compliant third-party processors. Do not provide Sensitive Data in messages or feedback.

How We Use Your Information

We use collected data for:

Authenticating and managing access to Services
Operating, monitoring, and securing managed devices
Improving app performance and feature set
Technical support and communications
Preventing abuse, fraud, or criminal activity

We also may use aggregated data for analytics and product development.

Legal Bases for Processing

Contractual necessity: to perform services under your agreement
Legitimate interest: for security, analytics, support
Consent: when required by law (e.g. cookies)
Legal obligations: to comply with legal/regulatory requests

Information Sharing

With Your Consent

We may share information when you expressly agree.

Service Providers

We engage third-party providers (e.g., hosting, payments, analytics) under confidentiality and use data only to deliver contracted services.

Legal & Safety Compliance

We may disclose information to comply with laws or protect WintPay’s rights, enforce policies, or protect public safety.

Business Transfers

In acquisitions or mergers, data may be shared with or transferred to successor entities under privacy commitments.

Aggregate/Anonymized Data

We may use or share non-identifiable data for internal analysis or marketing insights.

Customers & Administrators

Customers manage data of their device users per their own policies; they control which data is visible or stored.

Third-Party Integrations

You may enable integrations (e.g., Slack, Helpdesk). Data sharing depends on your configuration and approvals.

Prohibited from Sale

We do not sell or rent your personal data.

Data Retention

Personal/Managed data is retained up to the duration of your active subscription
Some records (e.g., logs) may persist up to 7 years for legal, security, or compliance purposes
We purge data upon account deletion unless retention periods apply by law

Residual copies may remain in backups for a limited time per our retention policy.

Data Security

We take technical, administrative, and physical security measures to protect data, including:

Encryption in transit (TLS) and at rest
Secure infrastructure with firewalls and access controls
Regular software updates and vulnerability testing
Least-privilege access and audit logging
Incident response procedures in place

No system is fully secure; breaches will prompt notifications and mitigation if legally required.

International Data Transfers

Your data may be processed in servers outside your jurisdiction. We ensure lawful transfers using adequacy judgments, data transfer agreements, or appropriation measures.

Your Choices and Rights

Account & Contact Updates

You may update or delete your profile and settings within account preferences.

Device Permissions

Your users may control device-level permissions per your policy.

Cookie Preferences

Adjust cookie settings via browser or opt-out mechanisms.

Access & Correction

You can request data review or correction by contacting us. We’ll respond within applicable deadlines.

Deletion & Restricted Use

Request account deletion; data will be removed per retention rules, though some records may persist for compliance.

Objection & Restriction

You may request to limit scope, especially when processing is based on legitimate interest. We evaluate and comply if lawful.

Data Portability

You may ask for an export of your personal and account data in machine-readable formats.

Withdraw Consent

Where processing is based on consent (e.g., cookies), you may withdraw it anytime. This won’t affect other lawful processing.

Lodge a Complaint

If you believe your legal rights are violated, contact us or a data protection authority in your jurisdiction.

Children’s Privacy

WintPay is not directed at minors under 18. We do not knowingly collect personal data from minors. If identified, we will delete it. Contact us if you suspect child data processing.

Links to Third-Party Sites

Our Services may contain links to other websites. We are not responsible for their policies or actions. Review their privacy statements.

Policy Updates

We may update this policy. For material changes, you'll be notified via email or in-app notice. Your continued use implies acceptance of updates.

Effective Date: June 18, 2025
Next Review: In 12 months

Contact Us

If you have questions, requests, or require assistance regarding this Privacy Policy, please contact:

WintPay Privacy Team
Email: contact@wintpay.com
Phone: +91‑7976499049
Address: 8, B yojna, Radha kunj, Mansarovar, Jaipur, Rajasthan 302020

Additional Notices for Specific Regions

GDPR (EU/UK Users)

Data Controller: WintPay
Legal basis and rights summarized above

CCPA (California Residents)

Categories collected: Identifiers, device info, usage, location, internet/activity data
Exemptions: Business-to-business and CAPA-held data may be exempt
Requests: “Do not sell” (not applicable—no selling), access, delete, correct

India (IT Rules 2021)

We implement reasonable security controls as per Indian regulations
Contact information provided for grievance redressal

By using our Services, you agree to this Privacy Policy as written.