Back to home

sha3 legal

Privacy Policy

This policy explains what information sha3 collects, how it is used, and the choices available to merchants and users of sha3 public services.

Last updated: June 17, 2026

Information we collect

We collect the information needed to operate merchant accounts, checkout pages, API access, support, security monitoring, and compliance workflows. This may include account profile details, authentication data, API request metadata, order and payment records, webhook delivery data, device and browser data, and support messages.

We do not ask users to provide private keys, seed phrases, or wallet custody credentials through the merchant console.

How we use information

We use information to provide and secure the service, process merchant checkout activity, maintain account access, deliver webhook and operational notifications, diagnose issues, prevent abuse, meet legal obligations, and improve reliability.

We may aggregate or de-identify operational data for analytics, service health, and product planning.

Sharing and service providers

We do not sell personal information. We may share information with infrastructure, analytics, security, customer support, payment, compliance, and hosting providers that help us run the service.

We may also disclose information when required by law, to protect the service and its users, to investigate fraud or abuse, or in connection with a corporate transaction such as a merger, financing, or asset transfer.

Security and retention

We use technical and organizational controls designed to protect account and transaction data. No internet service can guarantee absolute security, so merchants remain responsible for protecting their credentials, API keys, webhook secrets, and authorized user access.

We retain information for as long as needed to provide the service, maintain records, resolve disputes, enforce agreements, and satisfy legal or compliance requirements.

Your choices

Merchants can update account details and integration settings in the console where those controls are available. Requests to access, correct, export, or delete personal information can be made through the account support channel.

Some records may need to be retained when required for security, fraud prevention, accounting, legal, or compliance reasons.