Privacy Policy
Last updated: July 11, 2026
This Privacy Policy explains how CrystalSky Digital Services LLC (“Payorld”, “we”) collects, uses, shares, and protects personal information when you use our website and Service.
1. Data controller
The controller of your personal data is CrystalSky Digital Services LLC, 8 The Green, Suite A, Dover, DE 19901, United States. For privacy questions, contact privacy@payorld.com.
2. Information we collect
- Account data: name, email address, password (stored hashed), and business details you provide when registering.
- Billing data: your subscription plan, invoices, and limited transaction metadata used to calculate our software fee. The payment card used to pay our fees is collected and stored by our payment provider, not by us.
- Usage data: log data, device and browser information, IP address, pages viewed, and actions taken in the Service.
- Cookies and similar technologies: as described in our Cookie Policy.
When you use Payorld to sell to your customers, you act as the controller of your customers' personal data and we process it on your behalf as a processor, solely to provide the Service.
We do not store, process, or transmit cardholder data. Card details are captured through your payment provider's PCI-compliant hosted fields and pass directly from the customer's browser to the provider; they never reach Payorld's systems. Identity verification of merchants (KYC) is performed by the payment provider, not by us.
3. How we use information
- To provide, operate, maintain, and secure the Service.
- To create and manage your account and process your subscription and software fees.
- To communicate with you about your account, updates, and support requests.
- To detect, prevent, and address fraud, abuse, and security incidents.
- To comply with legal obligations and enforce our agreements.
- To analyze and improve the Service and develop new features.
4. Legal bases for processing
Where the GDPR or similar laws apply, we process personal data on the basis of contract performance (to provide the Service), legitimate interests (to secure and improve the Service), legal obligation (to meet regulatory requirements), and consent (where required, for example for certain cookies).
5. How we share information
We do not sell your personal data. We share it only as needed:
- Payment providers (e.g., Stripe) to enable payments and identity verification.
- Infrastructure and service providers such as hosting, cloud storage (Amazon Web Services), email delivery, and analytics, acting as our processors.
- Legal and safety: to comply with law, respond to lawful requests, or protect rights, property, and safety.
- Business transfers: in connection with a merger, acquisition, or sale of assets, subject to this Policy.
6. International transfers
We are based in the United States and may process data in the U.S. and other countries. Where required, we rely on appropriate safeguards (such as Standard Contractual Clauses) for cross-border transfers.
7. Data retention
We retain personal data for as long as your account is active and as needed to provide the Service, then for the period required to meet legal, tax, accounting, and dispute-resolution obligations, after which it is deleted or anonymized.
8. Security
We use technical and organizational measures designed to protect personal data, including encryption in transit, access controls, and hashed credentials. No method of transmission or storage is completely secure, and we cannot guarantee absolute security.
9. Your rights
Depending on your location, you may have the right to access, correct, delete, or port your personal data, to restrict or object to processing, and to withdraw consent. If you are in the EEA/UK, you may lodge a complaint with your data-protection authority. If you are a California resident, you may exercise rights under the CCPA/CPRA, including the right to know and delete, and the right not to be discriminated against for exercising your rights. To exercise any right, contact privacy@payorld.com.
10. Children
The Service is not directed to children under 18, and we do not knowingly collect their personal data.
11. Changes to this Policy
We may update this Policy from time to time. Material changes will be reflected by an updated “Last updated” date and, where appropriate, additional notice.
12. Contact
For questions or requests regarding this Policy, contact privacy@payorld.com.
CrystalSky Digital Services LLC
8 The Green, Suite A, Dover, DE 19901, United States
General: support@payorld.com · Legal: legal@payorld.com · Privacy: privacy@payorld.com