Privacy Policy

Last updated: 15th January 2026

Data Controller Information

StellarPulse Lda. ("we", "our", or "us") is the data controller responsible for your personal information. We are a payment processing company registered in Portugal with registration number 478569312 and VAT number PT472563149.

Our registered address is: Avenida da Liberdade 125, 4786-441 Braga, Portugal.

Data Collection

We collect and process personal data that you provide to us when using our payment processing services. The data we collect includes:

  • Contact information (name, email address, phone number, postal address)
  • Business information (company name, registration details, VAT numbers)
  • Payment and transaction data (card details, payment amounts, transaction history)
  • Technical information (IP address, browser type, device information)
  • Communication records (emails, support tickets, call recordings)
  • Website usage data through cookies and analytics tools

How We Use Your Information

We process your personal data for the following purposes under various legal bases as defined by GDPR:

  • Contract performance: To provide payment processing services, process transactions, and manage your account
  • Legal obligations: To comply with financial regulations, anti-money laundering requirements, and tax obligations
  • Legitimate interests: To prevent fraud, improve our services, conduct analytics, and communicate with you about our services
  • Consent: For marketing communications and non-essential cookies (where required)

We use your data to deliver reliable payment processing services, ensure security and compliance, and maintain effective communication with our clients regarding their payment systems.

Cookies and Tracking Technologies

We may use cookies and tracking technologies for analytics, advertising, and remarketing purposes, including Google Ads. These technologies help us measure campaign effectiveness, deliver relevant advertisements, and improve our services. You can manage your cookie preferences at any time through our cookie consent banner.

For detailed information about the cookies we use, please refer to our Cookie Policy.

Data Sharing and Disclosure

We may share your personal data with:

  • Payment networks and financial institutions to process transactions
  • Regulatory authorities and law enforcement when required by law
  • Third-party service providers who assist in delivering our services
  • Professional advisers such as lawyers, accountants, and auditors
  • Other parties with your explicit consent

We ensure that all third parties are bound by appropriate data protection agreements and process your data only as instructed by us.

Data Retention

We retain your personal data for as long as necessary to fulfil the purposes for which it was collected, including:

  • Transaction data: 7 years from the date of transaction (regulatory requirement)
  • Account information: Duration of business relationship plus 7 years
  • Marketing data: Until you withdraw consent or we no longer have a legitimate interest
  • Website analytics: 26 months for Google Analytics data

After the retention period expires, we securely delete or anonymise your personal data in accordance with our data retention policy.

Your Rights

Under GDPR and UK data protection laws, you have the following rights regarding your personal data:

  • Right of access: Request copies of your personal data
  • Right to rectification: Request correction of inaccurate or incomplete data
  • Right to erasure: Request deletion of your personal data in certain circumstances
  • Right to restrict processing: Request limitation of how we process your data
  • Right to data portability: Request transfer of your data to another service provider
  • Right to object: Object to processing based on legitimate interests or for marketing purposes
  • Right to withdraw consent: Withdraw consent for processing where consent is the legal basis

To exercise any of these rights, please contact us using the details provided in the contact section below.

International Data Transfers

We may transfer your personal data outside the European Economic Area (EEA) to provide our services. When we do so, we ensure appropriate safeguards are in place, including:

  • Standard contractual clauses approved by the European Commission
  • Adequacy decisions recognising equivalent data protection standards
  • Binding corporate rules for intra-group transfers

Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include:

  • Encryption of data in transit and at rest
  • Regular security assessments and penetration testing
  • Access controls and authentication systems
  • Staff training on data protection and security
  • Incident response and breach notification procedures

Changes to This Privacy Policy

We may update this privacy policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of any material changes by posting the updated policy on our website and updating the "last updated" date.

Contact Information

If you have any questions about this privacy policy or our data processing practices, please contact us:

Email: privacy@stellarpulse.top

Phone: +351 251 445 874

Address: StellarPulse Lda., Avenida da Liberdade 125, 4786-441 Braga, Portugal

You also have the right to lodge a complaint with the Portuguese Data Protection Authority (CNPD) or your local supervisory authority if you believe we have not handled your personal data appropriately.