Controller
MakeCrypto and MakePay are operated by the company below. Merchants using MakePay for their own stores may also act as independent controllers for their customer and order data.
- Legal entity
- MakePay Ltd
- Trade name
- MakePay Ltd
- Registration number
- IBC429036
- Legal form
- International Business Company
- Registered office
- Building 28, 2nd Floor, Eden Island, Victoria, Mahé, Seychelles
- Legal contact
- legal@makeswap.io
- Support contact
- support@makecrypto.io
Information We Collect
We collect account, workspace, merchant, administrator, support, billing, and authentication information that users provide or that is generated when they use the dashboard and APIs.
For payment links and official plugins, we may process store URLs, plugin names and versions, platform versions, OAuth client details, selected company, administrator authorization, customer email, customer identifier, order identifier, order number, order description, order amount, currency, payment-link UID, callback URLs, webhook delivery records, and payment status events.
OAuth and Plugins
When a store connects through OAuth, the plugin sends store metadata so we can register and display the connected installation. During authorization, the administrator selects a company and grants scopes needed for company profile access, payment-link creation, customer records, MakePay settings, and webhook setup.
We issue and store access credentials needed to operate the connection. DPoP-bound connections also use public-key material to bind tokens to the installed plugin. Store administrators can revoke connected apps in the dashboard.
How We Use Information
We use information to provide the services, authenticate users, authorize apps, create payment links, display payment and order details, deliver webhooks, send requested payment emails, protect accounts, prevent abuse, troubleshoot issues, improve reliability, and satisfy legal and compliance obligations.
Sharing
We share information with service providers that support hosting, authentication, database storage, email delivery, analytics, monitoring, security, customer support, and blockchain/payment infrastructure. We may also disclose information to comply with law, enforce our terms, protect users, investigate abuse, or complete a business transaction.
Cookies and Logs
We use cookies, local storage, session data, device information, IP addresses, user agents, request logs, and similar technologies for authentication, security, fraud prevention, preferences, diagnostics, analytics, and service operation.
Retention
We keep information for as long as needed to provide the services, maintain audit and security records, comply with legal obligations, resolve disputes, enforce agreements, and preserve legitimate business records. Retention periods vary by data type and context.
Security
We use administrative, technical, and organizational safeguards designed to protect information. No system is completely secure, and users remain responsible for protecting administrator accounts, wallets, API keys, OAuth connections, webhook secrets, and plugin environments.
International Processing
Information may be processed in Seychelles, the European Economic Area, the United States, and other countries where we or our service providers operate. Those countries may have different data protection laws than your location.
Your Choices
Depending on applicable law, you may request access, correction, deletion, restriction, portability, objection, or withdrawal of consent. Store administrators can disconnect OAuth apps, rotate credentials, and change plugin settings in the dashboard or their ecommerce platform.
Contact
Privacy, legal, and data protection requests can be sent to legal@makeswap.io. Support requests can be sent to support@makecrypto.io.