Legal

Privacy Policy

Tekmerion is non-custodial payment infrastructure. The architecture limits what there is to collect. Tekmerion sees the transaction, not the person.

Effective 28 June 2026

01

Scope

This policy describes how Tekmerion ("the Operator") handles data in connection with its non-custodial payment infrastructure ("the Service").

It applies to merchants that use the Service, to the on-chain activity the Service coordinates, and to visitors of this site. The end customers who pay a merchant ("Payers") are the merchant's own customers; the merchant remains responsible for informing them about its own data practices. The Service is for business use and is not directed to individuals under the age of majority.

02

What Tekmerion does not collect

The architecture limits what there is to collect. Tekmerion sees the transaction, not the person.

Tekmerion never holds merchant or payer private keys, seed phrases, or signing secrets.
Tekmerion takes no custody of funds and stores no balances.
Tekmerion does not collect a Payer's name, email, or refund address at checkout.
Tekmerion does not sell data, and runs no advertising or behavioural tracking.
03

Merchant account data

To operate a merchant account, Tekmerion processes the data needed to set it up and run it: business and contact details, sign-in credentials handled through an authentication provider, configuration such as the KYT webhook endpoint and decision policy, and the destination wallet addresses the merchant signs into its whitelist.

04

Payment and on-chain data

To coordinate a payment, Tekmerion processes on-chain data: source and destination wallet addresses, transaction hashes, amounts, asset and chain identifiers, and timestamps.

This data originates on public blockchains and is, by nature, public and permanent. Tekmerion reads and organises it; it does not own or control it.

05

Compliance and screening data

Before settlement, Tekmerion runs baseline sanctions and geographic checks on payment context and records the result. The merchant's own decision — approve, reject, or hold, returned through the KYT webhook — is recorded as part of the payment record and the Proof-of-Payment.

Tekmerion processes this data to operate the screening baseline and to produce a verifiable record. It does not make the merchant's compliance decision.

06

This site and cookies

This site uses no analytics, no advertising, and no tracking cookies.

The authenticated console uses only strictly necessary cookies — those required to keep a signed-in session secure. No consent is required for cookies that are strictly necessary to deliver a service the merchant has requested.

07

Why Tekmerion processes data

Tekmerion processes the data above only to:

provide, operate, and secure the Service;
run baseline sanctions and geographic screening;
coordinate payments and generate Proof-of-Payment;
comply with legal obligations and prevent abuse.
09

How data is shared

Tekmerion shares data only as needed to run the Service. On-chain data is public by nature and is visible to anyone on the relevant blockchain. Tekmerion does not sell data and does not share it for advertising.

Tekmerion may disclose data where the law requires it, including to comply with sanctions obligations or a lawful request from a competent authority.

10

Subprocessors

Tekmerion relies on third-party infrastructure to operate. Each processor receives only the data needed for its function:

cloud hosting and database — to run the Service and store account and payment records;
authentication provider — to manage merchant sign-in;
blockchain RPC provider — to read from and submit to public blockchains;
sanctions and screening provider — to run the baseline checks;
the merchant's own KYT vendor — configured by the merchant, receiving payment context to return signals.
11

Blockchain and permanence

Data written to a public blockchain — including transactions and any on-chain anchor of a Proof-of-Payment — is permanent and outside Tekmerion's control. It cannot be edited, hidden, or erased by Tekmerion or by anyone.

This is inherent to public blockchains. A request to erase data does not extend to data already recorded on-chain.

12

Retention

Tekmerion keeps account and payment records for as long as the account is active and thereafter as needed to meet legal, compliance, and record-keeping obligations. On-chain data persists independently of Tekmerion and is not subject to deletion.

13

International transfers

Tekmerion's processors may operate in jurisdictions other than the merchant's. Where required, transfers rely on an appropriate legal mechanism for cross-border processing.

14

Your rights

Subject to applicable law, a merchant may request access to, correction of, or deletion of its account data, and may object to or ask Tekmerion to restrict certain processing. Requests are made to the address below.

These rights apply to data Tekmerion holds and controls. They do not extend to data recorded on a public blockchain, which Tekmerion cannot alter or remove. Where the GDPR applies, a data subject may also have the right to lodge a complaint with its data protection authority.

15

Security

Tekmerion protects data in transit and at rest, manages signing material through a key-management service, and holds no merchant or payer private keys. No system is perfectly secure, and the merchant remains responsible for the security of its own keys and credentials.

16

A merchant's own customers

Tekmerion does not have a direct relationship with a merchant's Payers. The merchant is responsible for its own privacy notices and for informing its customers how their data is handled in its business.

17

Changes to this policy

Tekmerion may update this policy. Material changes will be made available at this page with an updated effective date. Continued use of the Service after a change takes effect constitutes acceptance of the updated policy.

18

Contact

Privacy requests and questions: hello@tekmerion.xyz.