Privacy Policy

Last Updated: 9 February 2026

Your privacy is important to us. Learn how we protect your data.

This Privacy Policy describes how KAIZEN & INNOVATIONS ("we", "us", "our", or "Txnway") collects, uses, stores, and protects your personal information when you use our payment orchestration and gateway routing services ("Services"). By using our Services, you agree to the collection and use of information in accordance with this policy.

1. Information We Collect

We collect information that you provide directly to us and information that is automatically collected when you use our Services.

1.1 Account Information

  • Name, email address, and contact information
  • Company name and business details (if provided)
  • Account credentials (encrypted passwords)
  • Billing address and payment information

1.2 Service Usage Data

  • API keys and authentication credentials
  • Gateway configurations and routing preferences
  • Transaction logs and performance metrics
  • Error logs and retry attempts
  • Usage statistics (transaction volume, success rates)

1.3 Payment Information

  • Payment method details (processed securely through payment gateways)
  • Billing history and transaction records
  • Invoice and receipt information

1.4 Technical Information

  • IP address and device information
  • Browser type and version
  • Operating system information
  • Access logs and timestamps
  • Referral URLs and navigation patterns

2. How We Use Your Information

  • Service Delivery: To provide, maintain, and improve our payment orchestration services
  • Account Management: To create and manage your account, process payments, and send invoices
  • Communication: To send service notifications, updates, security alerts, and respond to your inquiries
  • Analytics: To analyze usage patterns, improve our Services, and develop new features
  • Security: To detect, prevent, and address security issues, fraud, and unauthorized access
  • Compliance: To comply with legal obligations and enforce our Terms of Service
  • Support: To provide customer support and troubleshoot technical issues

3. Data Protection and Storage

We implement industry-standard security measures to protect your data:

3.1 Security Measures

  • Encryption: All data in transit is encrypted using TLS/SSL protocols. Sensitive data at rest is encrypted using AES-256 encryption
  • Access Controls: Strict access controls and authentication mechanisms limit data access to authorized personnel only
  • Secure Infrastructure: Our Services are hosted on secure cloud infrastructure with enterprise-grade security
  • API Security: API keys are hashed and stored securely. We never expose your API credentials in logs or error messages

3.2 Data Storage

  • Your data is stored on secure servers located in India and other regions as required for service delivery
  • We retain your account information for as long as your account is active or as needed to provide Services
  • Transaction logs and analytics data are retained for a period necessary for service operation and troubleshooting (typically 90 days)
  • Payment records are retained as required by applicable tax and accounting laws
  • You may request deletion of your data at any time, subject to legal retention requirements

4. Third-Party Sharing

We may share your information with third parties only in the following circumstances:

4.1 Payment Gateway Providers

We use payment gateway providers (such as Cashfree, Razorpay, PayU, and other authorized payment processors) for payment orchestration. When you make a payment, payment information is directly transmitted to the payment gateway provider. We do not store your complete payment card details on our servers.

4.2 Cloud Service Providers

We use cloud providers for hosting and infrastructure services. These providers have strict data protection agreements and comply with international security standards.

4.3 Analytics and Monitoring

We may use analytics services (such as Google Analytics, Firebase) to understand usage patterns and improve our Services. These services collect anonymized, aggregated data.

4.4 Legal Requirements

We may disclose your information if required by law, court order, or government regulation, or to comply with legal obligations, protect our rights, prevent fraud, or enforce our Terms of Service.

We do not sell, rent, or trade your personal information to third parties for marketing purposes.

5. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience and analyze usage. Essential cookies are required for the website to function. You can control cookies through your browser settings.

6. Your Rights and Choices

You have the following rights regarding your personal information:

  • Access: Request access to your personal data
  • Correction: Update or correct inaccurate information
  • Deletion: Request deletion of your account and associated data
  • Opt-Out: Unsubscribe from marketing communications

To exercise these rights, please contact us at the email address provided in the Contact section below.

7. Data Retention

We retain your personal information for as long as necessary to provide our Services, comply with legal obligations, resolve disputes, and maintain security. When you delete your account, we will delete or anonymize your personal data within 30 days, except where retention is required by law.

8. Children's Privacy

Our Services are not intended for individuals under the age of 18. We do not knowingly collect personal information from children.

9. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure that appropriate safeguards are in place to protect your data.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the updated policy on this page with a new "Last Updated" date and, where appropriate, by email.

11. Compliance with Laws

This Privacy Policy is designed to comply with the Information Technology Act, 2000 (India), GDPR (for users in the EEA), and payment gateway regulations including PCI-DSS.

12. Refund and Cancellation Policy

NO REFUND AND CANCELLATION POLICY: KAIZEN & INNOVATIONS operates on a strict no-refund and no-cancellation policy. All payments made for our Services are final and non-refundable. For detailed information, please refer to our Refund and Cancellation Policy.

13. Contact Information

KAIZEN & INNOVATIONS
Block D, Sector 11, Faridabad, Haryana 121006, India
Email: care@txnway.com or kaizenandinnovations@gmail.com

For general inquiries, visit our Contact Us page.