HivePay logoHivePay

Privacy Policy

Last updated: January 15, 2026

1. Introduction

HivePay ("we", "our", or "us") is a payment gateway service that connects buyers with merchants through various payment providers. This Privacy Policy explains how we collect, use, store, and protect your personal information when you use our service.

Important: HivePay does not hold, store, or have access to your funds at any time. We are a technical intermediary that facilitates payment processing between you and payment providers chosen by merchants.

2. Information We Collect

When you use HivePay to make a payment, we collect the following information:

2.1 Payment Session Information

  • Payment amount and currency — The amount you are paying and in which currency (e.g., HIVE, HBD)
  • Payment description — A brief description of what you are paying for, provided by the merchant
  • Payment status — Whether your payment is pending, completed, failed, or expired
  • Timestamps — When the payment was created, updated, and when it expires

2.2 Technical Information (Audit Logs)

For security, fraud prevention, and legal compliance, we automatically collect:

  • IP address — Your internet protocol address
  • Browser information — Your browser type and version (User-Agent)
  • Language preferences — Your browser's language settings
  • Referrer — The website that directed you to our payment page
  • Country — Your approximate location based on your IP address
  • Timestamps — When you viewed the payment page and initiated payment

2.3 Information We Do NOT Collect

  • We do not collect your name, email, phone number, or billing address
  • We do not collect payment card details — these are handled directly by payment providers
  • We do not collect your cryptocurrency wallet private keys
  • We do not track you across websites using cookies for advertising purposes

3. How We Use Your Information

We use the collected information for the following purposes:

  • Processing payments — To facilitate your payment transaction with the merchant
  • Fraud prevention — To detect and prevent fraudulent or suspicious activity
  • Legal compliance — To comply with anti-money laundering (AML) regulations and respond to lawful requests from law enforcement
  • Dispute resolution — To help resolve payment disputes between you and merchants
  • Service improvement — To analyze usage patterns and improve our service

4. Who We Share Your Information With

  • Merchants — We share payment status and transaction identifiers with merchants so they can fulfill your order. Merchants do not receive your IP address or browser information.
  • Payment providers — When you select a payment method, you may be redirected to third-party payment providers (e.g., blockchain networks, card processors) who have their own privacy policies.
  • Law enforcement — We may disclose information to law enforcement agencies when required by law or to prevent fraud or illegal activity.

We do not sell your personal information to third parties.

5. How Long We Keep Your Information

We retain payment session data and audit logs for a minimum of 7 years to comply with financial record-keeping requirements and anti-money laundering regulations. After this period, data may be deleted or anonymized.

Expired or cancelled payment sessions that were never completed may be deleted sooner, but audit logs associated with any payment activity are retained for the full period.

6. How We Protect Your Information

We implement appropriate technical and organizational measures to protect your data, including:

  • Encrypted connections (HTTPS) for all data transmission
  • Secure database storage with access controls
  • Regular security assessments and updates
  • Limited employee access to personal data on a need-to-know basis

7. Your Rights (GDPR)

If you are located in the European Economic Area (EEA), you have the following rights under the General Data Protection Regulation (GDPR):

  • Right to access — You can request a copy of the personal data we hold about you
  • Right to rectification — You can request correction of inaccurate data
  • Right to erasure — You can request deletion of your data, subject to legal retention requirements
  • Right to restrict processing — You can request that we limit how we use your data
  • Right to data portability — You can request your data in a machine-readable format
  • Right to object — You can object to certain types of data processing

Note: Due to legal requirements for financial record-keeping, we may not be able to delete certain data related to completed payments until the retention period expires.

To exercise your rights, please contact us using the information provided below.

8. Cookies and Tracking

HivePay uses only essential cookies required for the service to function properly. We do not use advertising cookies, analytics tracking, or third-party tracking cookies.

9. Third-Party Services

Our service may redirect you to third-party payment providers to complete your transaction. These providers have their own privacy policies and terms of service. We encourage you to review their policies before proceeding with payment.

10. California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

  • Right to Know — You can request information about the categories and specific pieces of personal information we have collected about you
  • Right to Delete — You can request deletion of your personal information, subject to our legal obligations to retain financial records for 7 years
  • Right to Correct — You can request correction of inaccurate personal information
  • Right to Opt-Out — You have the right to opt-out of the sale or sharing of your personal information. We do not sell or share your personal information for cross-context behavioral advertising.
  • Right to Non-Discrimination — We will not discriminate against you for exercising your CCPA rights

Categories of Information We Collect

  • Identifiers — IP address (collected automatically for security and fraud prevention)
  • Internet activity — Browser information, referrer URL, language preferences
  • Geolocation — Country-level location derived from IP address
  • Financial information — Payment amounts, currency, and transaction status (no credit card numbers)

We do not collect: names, email addresses, phone numbers, physical addresses, Social Security numbers, or credit card details.

To exercise your California privacy rights, please contact us at [email protected]. We will respond to verifiable requests within 45 days.

11. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated "Last updated" date. Continued use of our service after changes constitutes acceptance of the revised policy.

12. Contact Us

If you have questions about this Privacy Policy or wish to exercise your data protection rights, please contact us at:

Email: [email protected]