Privacy Policy

1. Commitment to Data Integrity

Payquanta ("the Company"), a trading brand of Quantasoft Ltd (Company No. 15825824, Registered in England and Wales since 2024), provides enterprise-grade payment orchestration and financial software solutions. This policy outlines our commitment to processing data in strict compliance with UK GDPR, PCI-DSS v4.0, and global financial regulations.

2. Categories of Processed Data

We adhere to strict data minimization principles, collecting only what is essential for secure financial operations:

• Transaction Telemetry: IP addresses and device fingerprints used exclusively for our Real-Time Risk Logic.
• Institutional KYC: Corporate documentation and authorized personnel identifiers required for regulatory onboarding.
• Payment Information: We utilize advanced tokenization. We do not store raw Primary Account Numbers (PAN) or CVV codes.

3. Cryptographic & Physical Security

4. Data Lifecycle & International Transfers

Operational logs and telemetry metadata are purged every 90 days. Institutional account data is retained for the duration of the service agreement and erased within 30 days of termination using NIST-compliant digital shredding protocols.

As Quantasoft Ltd is a UK-registered entity, any international data transfers are conducted under the UK GDPR "Three-Step Test" to ensure equivalent levels of protection.

5. Compliance, Redress, and Your Rights

The Data Controller for our services is Quantasoft Ltd. Under UK GDPR, you have the right to access, rectify, or request the erasure (the "Right to be Forgotten") of your personal data.

Inquiries should be directed to our Data Protection Officer:

Email: [email protected]

If you are located in the UK, you also have the right to lodge a complaint with the Information Commissioner’s Office (ICO) if you believe your data has been handled incorrectly.