Privacy Policy

Last updated: February 14, 2026

1. Introduction

Marotino CY LTD ("Company," "we," "us," or "our"), incorporated under the laws of the Republic of Cyprus with registration number HE449064 and registered address at 9A Evripidou, Limassol, Cyprus, is committed to protecting your privacy.

This Privacy Policy explains how we collect, use, disclose, and safeguard your personal data when you visit our website at maropay.marotino.com (the "Website") or use our payment processing services (the "Services"). This policy is provided in compliance with the General Data Protection Regulation (EU) 2016/679 ("GDPR") and the applicable data protection laws of the Republic of Cyprus.

2. Data Controller

Marotino CY LTD
Registration Number: HE449064
Address: 9A Evripidou, Limassol, Cyprus
Tax ID: 60017620T
Email: hello@marotino.com

3. Personal Data We Collect

3.1 Information You Provide

  • Contact Information: Full name, email address, phone number, and company name when you submit our contact form.
  • Business Information: Details about your project, estimated transaction volumes, and other business-related information.
  • Onboarding Information: Identification documents, corporate documentation, beneficial ownership information, and financial information necessary for KYC/AML compliance.

3.2 Information Collected Automatically

  • IP address and approximate geographic location.
  • Browser type and version, operating system, and device type.
  • Pages visited, time spent, and navigation paths.
  • Referring website URL.

This data is collected through server logs and is used solely for security monitoring and performance purposes.

4. How We Use Your Personal Data

  • To respond to inquiries: Processing contact form submissions (Legal basis: Legitimate interest, Art. 6(1)(f) GDPR; or performance of a contract, Art. 6(1)(b) GDPR).
  • To provide our Services: Onboarding, account management, payment processing (Legal basis: Performance of a contract, Art. 6(1)(b) GDPR).
  • To comply with legal obligations: KYC/AML compliance, tax reporting (Legal basis: Legal obligation, Art. 6(1)(c) GDPR).
  • To ensure security: Monitoring and protecting against unauthorized access and fraud (Legal basis: Legitimate interest, Art. 6(1)(f) GDPR).
  • To improve the Website: Analyzing usage patterns (Legal basis: Legitimate interest, Art. 6(1)(f) GDPR).

5. Data Sharing and Disclosure

We do not sell, rent, or trade your personal data. We may share data with:

  • Service providers: Trusted third parties assisting in operations, bound by data processing agreements.
  • Payment network partners: Card networks (Visa, Mastercard) and acquiring banks as required.
  • Regulatory authorities: When required by applicable law.
  • Professional advisors: Legal, accounting, and other advisors.

6. International Data Transfers

Where data is transferred outside the EEA, we ensure appropriate safeguards in accordance with Chapter V of the GDPR, including Standard Contractual Clauses or adequacy decisions.

7. Data Retention

Contact form submissions are retained for up to 2 years. Merchant data is retained in accordance with regulatory requirements, which may require retention for a minimum of 5 years following termination of the business relationship.

8. Your Rights

Under GDPR, you have the right to:

  • Access (Art. 15): Request a copy of your personal data.
  • Rectification (Art. 16): Request correction of inaccurate data.
  • Erasure (Art. 17): Request deletion, subject to legal exceptions.
  • Restriction (Art. 18): Request restricted processing in certain circumstances.
  • Data Portability (Art. 20): Receive data in a structured, machine-readable format.
  • Object (Art. 21): Object to processing based on legitimate interests.
  • Withdraw Consent: Where processing is based on consent.

Contact us at hello@marotino.com. We will respond within 30 days.

9. Right to Lodge a Complaint

You may lodge a complaint with the Office of the Commissioner for Personal Data Protection in Cyprus (www.dataprotection.gov.cy).

10. Data Security

We implement appropriate technical and organizational measures including encryption, access controls, regular security assessments, and PCI DSS compliance for payment-related data.

11. Children's Privacy

Our Website and Services are not directed to individuals under 18. We do not knowingly collect personal data from children.

12. Changes to This Policy

We may update this Privacy Policy from time to time. The "Last updated" date at the top indicates when it was most recently revised.

13. Contact Us

Marotino CY LTD
9A Evripidou, Limassol, Cyprus
Email: hello@marotino.com