01Who we are
LarcoPay is operated by LarcoSoftware LLC, 625 S Forest St, Denver, CO 80246, United States. For the purposes of applicable data-protection law (including the EU/UK GDPR and India's Digital Personal Data Protection Act, 2023), LarcoSoftware LLC is the controller of the personal data described here, except where our regulated banking and payment partners act as independent controllers for the services they provide.
02Personal data we collect
| Category | Examples | When |
|---|---|---|
| Waitlist data | Email address, country/corridor, referral source | When you join the waitlist |
| Identity (KYC/KYB) | Name, date of birth, address, government ID, tax identifiers, business documents | At onboarding, via our verification partners |
| Financial & transaction | Virtual-account details, payer/payee data, amounts, currency, payout wallet address and on-chain references | When you use the service |
| Technical & usage | IP address, device and browser data, pages viewed, approximate location | Automatically, when you use our site |
| Communications | Messages you send to support, sales, or compliance | When you contact us |
03How we use your data
- Operate the waitlist and tell you when access is available in your country;
- Create and service your account and process payments and payouts;
- Verify your identity and meet AML, CTF, sanctions, and tax-documentation obligations;
- Detect, prevent, and investigate fraud, abuse, and security incidents;
- Provide support and respond to your requests;
- Improve and secure our products, and measure how they are used;
- Send service and, where permitted, marketing communications (you can opt out at any time).
04Legal bases for processing
Where GDPR or similar laws apply, we rely on: consent (e.g. waitlist sign-up and marketing); performance of a contract (operating your account); legal obligation (KYC/AML, sanctions, tax records); and legitimate interests (security, fraud prevention, product improvement), balanced against your rights. You may withdraw consent at any time without affecting prior processing.
05Who we share data with
We share personal data only as needed to run the service and comply with law:
- Regulated banking & payment partners (for example, banking-as-a-service providers, sponsor banks, and stablecoin settlement providers) to issue accounts and move funds;
- Identity-verification and compliance vendors for KYC/KYB and sanctions screening;
- Service providers (cloud hosting, analytics, email, customer support) acting as processors under contract;
- Authorities and regulators where required by law, legal process, or to protect rights and safety.
We do not sell your personal data, and we do not share it for third-party advertising.
06International transfers
We operate across borders, so your data may be processed in the United States, the European Economic Area, the United Kingdom, India, and other countries where we or our partners operate. Where required, we use appropriate safeguards such as standard contractual clauses to protect data transferred internationally.
07Data retention
We keep waitlist data until you onboard or request deletion, whichever comes first. Account, identity, and transaction records are retained for as long as your account is active and afterwards for the periods required by AML, tax, and other applicable laws (commonly at least five years after the end of the relationship). We then delete or anonymize the data.
08Security
We use administrative, technical, and organizational measures — including encryption in transit, access controls, and monitoring — to protect personal data. No method of transmission or storage is completely secure, but we work to protect your information and to notify you and regulators of incidents where the law requires.
09Your rights
Depending on where you live, you may have the right to access, correct, delete, or port your data; to object to or restrict certain processing; and to withdraw consent. Residents of the EEA/UK have rights under the GDPR; residents of India have rights under the DPDP Act; residents of California have rights under the CCPA/CPRA. To exercise any right, email privacy@larcopay.com. We will respond within the time required by law and will not discriminate against you for exercising your rights. You may also complain to your local data-protection authority.
10Cookies and analytics
Our website uses essential cookies to function and may use privacy-respecting analytics to understand usage. You can control cookies through your browser settings. Our waitlist page stores your submitted email locally in your browser to remember that you signed up; clearing your browser storage removes it.
11Children
LarcoPay is not directed to children and is intended for users aged 18 and over. We do not knowingly collect data from children. If you believe a child has provided us data, contact us and we will delete it.
12Changes to this policy
We may update this policy as our product and legal obligations evolve. We will post the revised version with a new "Last updated" date and, for material changes, provide additional notice.
13Contact us
For privacy questions or requests, contact our privacy team at privacy@larcopay.com, or write to:
LarcoSoftware LLC — Privacy
625 S Forest St
Denver, CO 80246
United States
This policy covers the LarcoPay private beta and does not constitute legal advice.