Terms & Policies
This page summarizes the key legal and compliance documents for using keshflippay.
๐ Compliance & KYC/AMLโ
- We follow strict KYC/AML requirements in supported regions.
- Developers must ensure end-customer consent and data protection during API usage.
- Keep audit logs of signed requests and webhook validations.
See Authentication & Security and Webhooks for technical controls (HMAC, timestamps, replay protection).
๐งพ Data Protectionโ
- Sensitive data should not be logged in plaintext.
- Rotate API secrets periodically and use environment variables for configuration.
- Validate all incoming webhooks using the shared secret.
๐ฌ Contactโ
Policy questions? Contact Support.