convesio-logo-white svg

Convesio Privacy Policy

Convesio Privacy Policy

Last Updated: March 4th, 2026

Convesio, Inc. (“Convesio,” “we,” “our,” or “us”) respects your privacy and is committed to protecting the personal information we process through our websites, products, and services.

This Privacy Policy describes how Convesio collects, uses, discloses, and protects information when you access or use:

  • Convesio websites, including convesio.com

  • Convesio hosting and infrastructure services

  • ConvesioPay payment services

  • ConvesioConvert marketing services

  • ConvesioAI diagnostic and automation tools

  • Convesio CRM and business management tools

  • any related applications, platforms, or services (collectively, the “Services“)

This Privacy Policy also explains your privacy rights and choices.

1. Scope of This Privacy Policy

This Privacy Policy applies to information processed by Convesio in connection with the Services.

However, the policy does not apply to personal data processed by our customers through websites or applications they host or operate using Convesio infrastructure.

In those cases:

  • our customers control the data

  • Convesio acts as a service provider or data processor

If you interact with a website hosted by a Convesio customer, please refer to that organization’s privacy policy.

2. Information We Collect

We collect several types of information depending on how you interact with the Services.

A. Information You Provide

You may provide information such as:

  • name

  • email address

  • phone number

  • company name

  • billing information

  • account login credentials

  • support requests

  • communications with our team

This information is collected when you:

  • create an account

  • purchase services

  • contact support

  • subscribe to updates

  • submit forms

  • participate in marketing activities

B. Payment and Financial Information

When you use ConvesioPay, we collect and process payment-related information including:

  • transaction data

  • billing details

  • merchant onboarding information

  • payout bank details

  • identity verification data

  • fraud detection signals

Payment information may be shared with:

  • payment processors

  • acquiring banks

  • card networks (Visa, Mastercard, etc.)

  • fraud prevention providers

  • compliance and identity verification services

Convesio does not store full credit card numbers on our systems unless explicitly required for tokenized payment processing in compliance with applicable PCI DSS requirements.

C. Automatically Collected Information

When you access the Services, we automatically collect certain information such as:

  • IP address

  • browser type

  • device information

  • operating system

  • referring URLs

  • pages viewed

  • timestamps

  • diagnostic logs

  • system performance metrics

This data helps us:

  • operate and improve the Services

  • detect abuse or fraud

  • maintain platform security

  • analyze usage trends

D. Cookies and Tracking Technologies

We use cookies and similar technologies including:

  • session cookies

  • analytics cookies

  • security cookies

  • preference cookies

These technologies help us:

  • remember user preferences

  • understand how visitors use the Services

  • improve performance

  • detect malicious activity

Users may control cookies through browser settings.

3. How We Use Information

We use information for purposes including:

  • providing and maintaining the Services

  • processing payments and transactions

  • onboarding merchants and customers

  • providing customer support

  • improving platform performance

  • detecting fraud or abuse

  • communicating product updates

  • complying with legal obligations

  • enforcing our Terms of Service

We may also use aggregated or anonymized data for analytics and service improvement.

4. Hosting and Customer Website Data

Many Convesio customers host websites or applications using our infrastructure.

In these situations:

  • customers determine what data is collected

  • customers determine how the data is used

  • customers control how long data is retained

Convesio processes this information solely on behalf of the customer and in accordance with applicable agreements including our:

  • Terms of Service

  • Data Processing Agreement (DPA)

  • Business Associate Agreement (BAA), where applicable.

5. HIPAA and Healthcare Data

Convesio provides services that may support organizations subject to the Health Insurance Portability and Accountability Act (HIPAA).

When Convesio processes Protected Health Information (PHI) on behalf of a healthcare organization:

  • Convesio acts as a Business Associate

  • processing is governed by a Business Associate Agreement (BAA)

PHI is handled in accordance with applicable HIPAA requirements rather than solely under this Privacy Policy.

6. Artificial Intelligence and Automated Processing

Convesio may use artificial intelligence tools to support:

  • infrastructure diagnostics

  • performance monitoring

  • system analysis

  • operational automation

These tools may analyze:

  • server logs

  • infrastructure metrics

  • system diagnostic data

Convesio does not use customer data submitted through the Services to train public AI models unless explicitly authorized.

7. Sharing of Information

We may share information with trusted third parties including:

Service Providers

Such as:

  • cloud infrastructure providers

  • payment processors

  • fraud detection services

  • analytics providers

  • customer support platforms

These providers process data on our behalf and are required to protect it.

Payment and Financial Partners

When using ConvesioPay, information may be shared with:

  • acquiring banks

  • payment processors

  • payment networks

  • compliance providers

  • fraud monitoring services

Legal and Compliance

We may disclose information when required to:

  • comply with legal obligations

  • respond to lawful requests

  • protect rights or property

  • prevent fraud or abuse

  • enforce our agreements

Business Transfers

If Convesio undergoes:

  • merger

  • acquisition

  • financing

  • asset sale

information may be transferred as part of the transaction.

8. Data Retention

We retain information for as long as necessary to:

  • provide the Services

  • comply with legal obligations

  • resolve disputes

  • enforce agreements

Retention periods vary depending on the type of data and regulatory requirements.

For example:

Data TypeTypical Retention
account informationduration of account
transaction recordsas required by financial regulations
support communicationsup to several years
system logslimited operational period

9. Security Practices

Convesio implements administrative, technical, and physical safeguards designed to protect information.

Security measures may include:

  • encryption

  • access controls

  • network security protections

  • system monitoring

  • vulnerability management

  • secure infrastructure design

While we strive to protect data, no system can guarantee absolute security.

10. International Data Transfers

Convesio operates globally and may transfer information to countries where we or our service providers operate.

These jurisdictions may have different data protection laws than your location.

Where required, we implement appropriate safeguards to protect transferred data.

11. Your Privacy Rights

Depending on your location, you may have rights regarding your personal information.

These may include:

  • access to your data

  • correction of inaccurate information

  • deletion of certain data

  • data portability

  • objection to certain processing activities

Requests can be submitted using the contact information below.

12. California Privacy Rights

Residents of California may have additional rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA).

These rights may include:

  • the right to know what personal information is collected

  • the right to request deletion

  • the right to correct personal information

  • the right to limit certain uses of sensitive information

Convesio does not sell personal information as defined under applicable privacy laws.

13. Other U.S. State Privacy Rights

Residents of certain U.S. states may have additional privacy rights under applicable laws including those of:

  • Virginia

  • Colorado

  • Connecticut

  • Utah

  • and other jurisdictions.

These rights may include access, correction, deletion, and opt-out rights.

14. Children’s Privacy

The Services are not directed to children under the age of 13.

We do not knowingly collect personal information from children.

If we become aware that such information has been collected, we will take steps to delete it.

15. Changes to This Privacy Policy

We may update this Privacy Policy from time to time.

If we make material changes, we will update the Last Updated date and may provide additional notice as appropriate.

16. Contact Information

If you have questions about this Privacy Policy or our privacy practices, please contact:

Convesio, Inc.

Website
https://convesio.com

Email
privacy@convesio.com