Privacy Policy

1. Introduction

This Privacy Policy explains how QistPay (“we”, “us”, “our”) collects, uses, and shares personal information in connection with our installment management and collections platform (the “Service”). By using the Service, you consent to the practices described here.

2. Scope & Definitions

This Policy applies to platform users (e.g., business owners/admins, accountants, analysts), your customers/borrowers and guarantors, and website visitors.

• Customer/Borrower: An individual or entity that enters into an installment plan managed through QistPay.
• Processing: Any operation performed on personal data (collection, storage, use, disclosure, etc.).

3. Data We Collect

• Account & Profile Data: Name, business name, branch details, role, email, phone, address, identification numbers (where required), and preferences.
• Customer/Guarantor Data: Names, contact details, and references.
• Order & Installment Data: Order items, advances, schedules, due dates, payments, penalties/discounts, recovery status, and dispute notes.

4. How We Use Data

• Provide, operate, and secure the Service (authentication, role-based access, audit logs, backup, fraud prevention).
• Create and manage orders, schedules, jobs, and collections workflows; generate receipts, invoices, and statements.
• Facilitate payments, payouts, reconciliations, and dispute handling.
• Provide analytics and reports (e.g., branch performance, investor dashboards, profit & recovery).
• Improve and develop features; conduct debugging, usage analysis, and quality assurance.
• Send service notices, policy updates, and, where permitted, marketing communications.
• Verify identity and eligibility where required.

5. Cookies & Tracking

• Strictly Necessary: Authentication, session management, security.
• Functional: Preferences, UI settings, localization.
• Analytics: Usage and performance measurement.
• Marketing (optional): If enabled, used for campaigns or retargeting per applicable law.

You can manage cookie choices via your browser or our in-product controls (where available). Some features may not function without certain cookies. We currently do not respond to “Do Not Track” signals.

6. Data Retention

• Account, order, and transaction records: retained for the life of the account and for a reasonable period thereafter to comply with legal, tax, and audit obligations.
• Logs and analytics: retained for operational needs and then aggregated or deleted.
• You can request deletion of certain data; we will honor requests subject to legal holds and our retention obligations.

7. Security

• We implement administrative, technical, and physical safeguards proportionate to the nature of data processed.
• You are responsible for endpoint security, user access controls, and safe handling of exported data.
• In case of a security incident affecting personal data, we will notify you as required by law and our agreements.

8. Children’s Privacy

The Service is not intended for children under the age where parental consent is required by local law. We do not knowingly collect data from such children. If you believe a child has provided personal data, contact us to request deletion.

9. Data Controller(s)

The data controller is the QistPay entity named in your order form or master agreement. For end-customers of our business users, the business using QistPay may act as the controller, and QistPay as the processor. Roles may vary by integration and contract.

10. Changes to this Policy

We may update this Policy to reflect changes in technology, law, or our services. Material changes will be notified via the Service or email. Continued use after the effective date signifies acceptance.

11. Contact

Questions or requests: privacy@qistpay.org • legal@qistpay.org

For data rights requests, include your name, contact email, the QistPay account or business you interact with, and a description of your request.