Payments Central

Legal

Privacy Policy

Last updated: 5 May 2026

1. Who we are

Payments Central is operated by Red Mutex (collectively, "we", "us", "our"). Our registered contact address is support@redmutex.com. This policy explains how we collect and use personal data when you visit payments-central.com or use our services.

2. Data we collect

2.1 Information you give us

  • Contact form submissions: name, work email, company name, and message. We use this to respond to your enquiry.
  • Account data (when merchant accounts are live): business name, contact details, bank account information, and KYC documentation as required by law.

2.2 Information collected automatically

  • Analytics (Google Analytics 4): page views, session duration, approximate location (country/region), device type, and referral source. This data is aggregated and anonymised where possible.
  • Server logs: IP addresses, browser type, and request timestamps retained for up to 90 days for security and debugging.

3. Legal basis for processing (GDPR)

Where applicable, we process personal data on the following lawful bases:

  • Legitimate interests — responding to contact enquiries, website analytics, and security monitoring.
  • Contract performance — processing merchant account data to deliver the payment services you have engaged us for.
  • Legal obligation — retaining transaction records and KYC data as required by applicable financial regulations.
  • Consent — where you have opted in to marketing communications.

4. How we use your data

  • To respond to contact form enquiries (typically within one business day).
  • To operate and improve the payments-central.com website.
  • To provide, maintain, and support our payment gateway services.
  • To comply with anti-money laundering (AML), know-your-customer (KYC), and other financial regulatory requirements.
  • To detect and prevent fraud and security incidents.

5. Data sharing

We do not sell your personal data. We may share data with:

  • Payment service providers (Stripe, Adyen, PayPal, and others) as necessary to process transactions you initiate.
  • Infrastructure and analytics providers (e.g. Google Analytics, hosting providers) under appropriate data processing agreements.
  • Regulators and law enforcement where we are legally required to do so.

6. Payment card data

Payments Central does not store raw payment card numbers on its own servers. Card data is transmitted directly to PCI-DSS-compliant payment service providers or handled via our PCPS tokenisation service. We follow PCI-DSS principles in all payment flows.

7. Data retention

We retain contact form enquiry data for up to 12 months. Transaction records are retained for a minimum of 7 years as required by financial regulations. You may request deletion of data not subject to legal hold at any time.

8. Your rights

Where GDPR or equivalent privacy law applies, you have the right to: access, correct, or delete your personal data; restrict or object to processing; request data portability; and withdraw consent where processing is based on consent. To exercise any of these rights, email support@redmutex.com.

9. Cookies

We use Google Analytics cookies (first-party, _ga, _ga_*) for aggregate website analytics. No advertising or tracking cookies from third parties are loaded on this site. You can disable cookies in your browser settings at any time.

10. Changes to this policy

We may update this policy from time to time. Material changes will be notified via a notice on this page and by updating the "Last updated" date above.

11. Contact

Questions or requests regarding this policy: support@redmutex.com