Last updated: 19.01.2026
This Privacy Policy describes how SamPay ("SamPay", "we", "us", "our") processes personal data when you interact with our services.
SamPay is a crypto-to-fiat payment platform that enables businesses to accept payments in cryptocurrencies while receiving settlement in fiat currency. We operate a public website, merchant dashboard, payment interfaces, APIs and related services (collectively, the "Services").
This Privacy Policy is designed to clearly distinguish between different ways users interact with SamPay, and the corresponding scope of personal data processed in each case.
The data controller is:
Planeta Labs Ltd
91 Вattersea Park Road, London, England, SW8 4DU.
United Kingdom
Contact: support@sampay.io
Depending on how you interact with SamPay, different categories and volumes of personal data may be processed:
If you only visit the SamPay website for informational purposes and do not initiate a payment or register as a merchant, we process a limited set of data:
technical and usage data (IP address, browser type, device information);
website interaction data (pages visited, timestamps);
cookies and similar technologies (as described in our Cookie Policy).
We do not intentionally collect transaction, payment, or identity verification data from website-only visitors.
If you use a SamPay-powered payment interface to complete a transaction with a merchant, we process additional data necessary to execute and secure the transaction, including:
transaction and payment data;
blockchain-related data (wallet addresses, transaction hashes);
compliance and risk-related data required for AML, KYC or KYT purposes;
technical metadata associated with the payment session.
This data is processed strictly for payment execution, regulatory compliance and fraud prevention.
If you register for or use the SamPay merchant dashboard, we process personal data required to onboard, manage and support merchant accounts, including:
identification and contact data;
business and account information;
contractual and billing data;
compliance and due diligence information.
We may process the following categories of personal data, depending on the applicable scope described above:
Identification and contact data;
Business and account data;
Transaction and payment data;
Compliance and due diligence data;
Technical and usage data.
Personal data is processed for the following purposes and legal bases under applicable data protection laws:
website operation and analytics (legitimate interest);
provision of payment and merchant services (performance of a contract);
compliance with AML / CTF and sanctions obligations (legal obligation);
fraud prevention and security (legal obligation and legitimate interest);
customer support and communications (legitimate interest);
marketing communications, where applicable (consent).
We may share personal data with:
regulated financial institutions and payment service providers involved in transaction processing and settlement;
third-party providers responsible for crypto-to-fiat conversion and liquidity;
AML, KYC, KYT and blockchain analytics providers;
technical infrastructure and security providers;
competent authorities where required by law.
Where personal data is transferred outside the EEA or the United Kingdom, appropriate safeguards are applied in accordance with applicable law.
Data is retained only for as long as necessary, including to meet contractual, legal and regulatory requirements. Transaction and compliance data may be retained for up to 5–10 years.
You may have rights to access, rectify, erase or restrict the processing of your personal data, as well as other rights provided by GDPR.
Requests can be submitted to support@sampay.io.
Information about our use of cookies is available in our Cookie Policy.
We implement appropriate technical and organizational measures to protect personal data.
We may update this Privacy Policy from time to time.
For privacy-related inquiries, contact support@sampay.io.