Platform Compliance & AML/KYC Policy

Overview

NYVA Payments complies with the policies and requirements of the platforms on which we operate, including our payment platform, Google Play Store, and Apple App Store. This document outlines our compliance efforts and how they protect our users.

Payment Platform

NYVA Payments is built on Whop, which provides payment processing, KYC verification, and infrastructure services for our app.

Platform’s Role

• Payment Processing: All transactions are processed through Whop’s secure payment infrastructure and its financial partners
• KYC & Compliance: Identity verification is conducted by Whop to comply with anti-money-laundering (AML) regulations
• Fraud Prevention: Whop provides fraud detection and prevention systems
• Account Management: User account data is managed through Whop’s secure systems

User Obligations

By using NYVA Payments, you agree to comply with:

• Whop’s Terms of Service
• Whop’s Privacy Policy
• Whop’s Community Guidelines
• Whop’s Prohibited Products & Services Policy

KYC Requirements

To access payment services on NYVA Payments, you must complete Whop’s Know Your Customer (KYC) verification process. This includes:

• Providing valid government-issued identification
• Verifying your identity through Whop’s third-party verification services
• Providing accurate personal and contact information
• Meeting age requirements (18+ or local age of majority)

Failure to complete KYC verification or maintain compliance may result in account limitations or suspension.

Financial Partner Terms

Whop works with third-party financial partners and banks to facilitate payments. Your use of payment services is subject to the terms of these financial partners. If a financial partner finds you in violation of their policies, they may suspend your access to payment services.

Google Play Store

The NYVA Payments Android app complies with Google’s User Data Policy and Play Store requirements.

Data Disclosure

As required by Google, we disclose:

• What personal and sensitive data we collect (see our Privacy Policy)
• How data is used and shared
• How users can request deletion of their data
• Our data retention practices

Permissions

The NYVA Payments app requests the following permissions:

• Camera: For scanning QR codes and verifying identity documents (if applicable)
• Contacts: To easily select recipients for transfers (optional, with user consent)
• Notifications: To alert you of important account activity and transaction updates
• Network Access: To communicate with our servers and process transactions

All permissions are requested at the time of use with clear explanations of why they’re needed.

Data Safety

Our Play Store listing includes a Data Safety section that details:

• Types of data collected
• Whether data is shared with third parties
• Security practices
• Option to request data deletion

Apple App Store

The NYVA Payments iOS app complies with Apple’s App Review Guidelines and App Store policies.

Privacy Policy Requirements

As required by Apple, our Privacy Policy is available both in the App Store listing and within the app. It clearly states:

• What data is collected and how it is collected
• How data is used
• That third-party service providers offer equal data protection
• Data retention periods
• How users can withdraw consent or delete their data

App Tracking Transparency (ATT)

We comply with Apple’s App Tracking Transparency framework. If we track user activity across apps or websites for advertising purposes, we will:

• Request explicit user permission before tracking
• Provide clear information about how tracking data will be used
• Honor user choices to opt out of tracking

App Privacy Labels

Our App Store listing includes Apple’s privacy nutrition labels showing:

• Data used to track you
• Data linked to you
• Data not linked to you

Data Protection Compliance

Jamaica Data Protection Act 2020

As a company operating in Jamaica, we comply with the Jamaica Data Protection Act 2020, which requires:

• Lawful and fair processing of personal data
• Obtaining consent where required
• Implementing appropriate security measures
• Allowing individuals to access and correct their data
• Reporting data breaches to the Information Commissioner
• Restrictions on cross-border data transfers without adequate protections

GDPR (European Users)

For users in the European Economic Area (EEA), we comply with the General Data Protection Regulation (GDPR), including:

• Legal bases for processing (consent, contract, legal obligation, legitimate interests)
• Data subject rights (access, rectification, erasure, portability, objection)
• Data protection by design and by default
• Data breach notification requirements

CCPA (California Users)

For California residents, we comply with the California Consumer Privacy Act (CCPA), including:

• Right to know what personal information is collected
• Right to delete personal information
• Right to opt out of sale of personal information (we do not sell personal information)
• Right to non-discrimination for exercising privacy rights

Children’s Privacy

NYVA Payments does not knowingly collect personal information from children under 13 (or the applicable age in your jurisdiction). Our services are not directed to children, and we require all users to be at least 18 years old or the age of majority in their jurisdiction.

Compliance Updates

We continuously monitor changes to platform policies and regulatory requirements. We will update our practices and policies as needed to maintain compliance and will notify users of material changes.

Contact Us

For questions about our compliance practices or platform requirements, please contact:

Compliance Team
NYVA Payments
Email: compliance@nyvapay.com
Website: nyvapay.com