Privacy Policy
Effective Date: 2026/01/01

1. Introduction
Welcome to Optpax ("we," "our," or "us"). We respect your privacy and are committed to protecting the personal and corporate data you share with us. This Privacy Policy explains how we collect, use, and safeguard your information when you use our B2B SaaS middleware and API services at optpax.com.br.

2. Information We Collect

Account Information: When you register for our services, we collect your name, business email address, company name, and billing details.

API & Usage Data: We automatically collect technical data regarding your use of our API, including IP addresses, request volumes, latency metrics, and error logs.

End-User Transaction Data: As a middleware provider routing Universal Commerce Protocol (UCP) requests, we temporarily process transaction payloads (such as booking itineraries) on behalf of our merchants. We do not retain sensitive payment tokens (e.g., full credit card numbers).

3. How We Use Your Information
We use the collected data to:

Provide, operate, and maintain our API services.

Authenticate requests and monitor API quota usage.

Diagnose technical issues and improve platform routing.

Communicate with you regarding service updates, security alerts, and support.

4. Data Sharing and Third Parties
We do not sell your personal data. We only share information with:

Service Providers: Cloud hosting and infrastructure partners required to operate our platform.

Platform Partners: Authorized third-party platforms (e.g., Google Merchant Center) when you explicitly connect your account via our integrations.

Legal Compliance: When required by law or to protect our legal rights.

5. Data Security
We implement industry-standard encryption (TLS) and access controls to protect your data. However, no internet transmission is entirely secure, and we cannot guarantee absolute security.

6. Contact Us
For any privacy-related questions, contact us at:
Optpax
1615 Poydras St, New Orleas, LA 70122
Email: privacy@optpax.com.br