BuffMoneyBuffMoney
中文Sign inStart free

Privacy Policy

Effective 2026-05-22 · v1.0 (Draft — subject to legal counsel review before commercial launch.)

1. Who we are

BuffMoney is a payments and usage-based billing platform operated by the ePayments. We help overseas AI / SaaS merchants bill, collect from Chinese end-users in CNY via WeChat Pay and Alipay, and receive settlement in their chosen currency.

2. Data we collect

  • Merchant account data: contact name, email, phone, password (PBKDF2-hashed), audit logs.
  • Merchant KYB data: company registration, owner identification, settlement bank details (encrypted at rest with envelope encryption).
  • Usage event metadata: customer external IDs supplied by the merchant, billing metric, quantities, timestamps. We do not require end-user personal data.
  • Payment data: CNY payment order amounts, channel order IDs, status, channel-reported callback payloads. Card / account credentials remain with the payment channel.
  • Email delivery telemetry: outbox + Resend webhook events.

3. How we use the data

  • Verify merchant identity (KYB) and approve account openings.
  • Compute invoices, reconcile payments, produce settlement files.
  • Detect fraud, abuse, AML risk, abnormal payment patterns.
  • Respond to legal and regulatory requests.
  • Send transactional emails — verification, password reset, audit confirmations.

4. Cross-border transfers

Primary backend hosted in the EU (Convex EU region). Payment channels operate in China. Settlement banking partners operate in multiple jurisdictions. Use of the platform constitutes consent to cross-border transfer of operational data necessary to complete those flows.

5. Retention

Audit logs, ledger entries, settlement records retained for at least 7 years (financial recordkeeping). KYB documents retained for the account lifetime plus 5 years. Email delivery events retained for 24 months.

6. Security

Account passwords use PBKDF2-SHA256 with per-user salt. API key secrets are hashed identically — we cannot recover plaintext after creation. Sensitive PII (bank account numbers, SWIFT / IBAN) is stored under AES-256-GCM envelope encryption with a master key held only on the server side. Sessions are HttpOnly cookies; webhook callbacks are signature-verified. Report vulnerabilities to security@buffmoney.com.

7. Your rights

Merchants may request access, correction, or deletion subject to retention obligations. Contact privacy@buffmoney.com.

8. Changes

Material changes announced to merchant account contacts at least 30 days in advance.