PRIVACY POLICY

Patriot Payments is committed to protecting your privacy. This Privacy Policy explains how we collect, use, store, and protect your personal and business information when you use our payment processing services, GoHighLevel integration, and website at patriotspayments.com.

1. INFORMATION WE COLLECT

1.1 Information You Provide

• Business name, owner name, and contact information (email, phone, address)
• Federal Tax ID / EIN and business registration information
• Bank account information for merchant settlement
• Processing history and business financial information for underwriting
• Login credentials for your Patriot Payments merchant portal

1.2 Payment & Transaction Data

• Transaction amounts, dates, and descriptions
• Tokenized payment method references (we do not store raw card numbers)
• Chargeback and dispute records
• Settlement and payout records

Note: All cardholder data is handled through Accept Blue’s PCI DSS Level 1 compliant gateway. Patriot Payments does not store, process, or transmit raw cardholder data directly.

1.3 Technical & Usage Data

• IP addresses and device information when accessing our portal or GoHighLevel integration
• API usage logs and integration activity
• Browser type and operating system
• Pages visited on patriotspayments.com and time spent

2. HOW WE USE YOUR INFORMATION

Patriot Payments uses collected information for the following purposes:

• Processing and settling payment transactions on your behalf
• Merchant onboarding, identity verification, and underwriting
• Fraud detection, risk management, and chargeback handling
• Providing customer support and responding to inquiries
• Sending transactional communications including statements, alerts, and settlement notifications
• Improving our services, integrations, and platform performance
• Complying with legal obligations, card network rules, and regulatory requirements
• Operating the GoHighLevel Marketplace integration and associated webhook/API functionality

3. ACCEPT BLUE & THIRD-PARTY DATA HANDLING

Payment processing is facilitated through Accept Blue. When you process transactions through Patriot Payments:

• Cardholder payment data is transmitted directly to and stored within Accept Blue’s PCI-compliant vault using tokenization
• Accept Blue’s privacy practices govern the handling of cardholder data at the gateway level. Accept Blue’s privacy policy is available at accept.blue
• Patriot Payments shares necessary merchant information with Accept Blue for the purpose of processing transactions, fraud prevention, and compliance
• Accept Blue does not share personally identifying information publicly or with third parties except as required by law

4. GOHIGHLEVEL INTEGRATION DATA

When you connect Patriot Payments through your GoHighLevel account:

• OAuth tokens are stored securely server-side and used solely to authenticate API calls between GoHighLevel and Patriot Payments
• Merchant API credentials are stored encrypted and never exposed in client-side code or to end users
• GoHighLevel sub-account information (location ID, business name) is stored to maintain your integration connection
• Transaction data generated through the GoHighLevel integration is subject to both this Privacy Policy and GoHighLevel’s privacy policy
• Uninstalling the Patriot Payments app from GoHighLevel will trigger removal of your stored credentials and location association from our systems

5. DATA SHARING & DISCLOSURE

Patriot Payments does not sell your personal or business information. We may share information with:

• Accept Blue and payment processing partners for transaction processing and settlement
• Card networks (Visa, Mastercard, Discover, American Express) as required for transaction routing
• Acquiring banks and financial institutions involved in your merchant account
• Law enforcement or regulatory authorities when required by law or valid legal process
• Service providers who assist in operating our business (under strict confidentiality agreements)
• Successor entities in the event of a merger, acquisition, or sale of assets

6. DATA SECURITY

Patriot Payments takes data security seriously. Our security measures include:

• TLS encryption for all data transmitted between your systems and ours
• All payment credentials and API keys stored server-side only — never client-side
• Tokenization of all cardholder data through Accept Blue’s secure vault
• Strict webhook verification using API key signature schemes
• Access controls limiting data access to authorized personnel only
• Regular security reviews and compliance with PCI DSS requirements

While we implement industry-standard security measures, no system is completely impenetrable. In the event of a data breach affecting your information, we will notify you in accordance with applicable law.

7. DATA RETENTION

We retain your information for as long as necessary to provide services, comply with legal obligations, resolve disputes, and enforce agreements. Specifically:

• Active merchant records are retained for the duration of your merchant relationship
• Transaction records are retained for a minimum of 5 years in accordance with card network and regulatory requirements
• Upon account termination, personal data not required for legal or regulatory purposes will be deleted or anonymized within 90 days

8. YOUR RIGHTS

Depending on your jurisdiction, you may have the following rights regarding your personal information:

• Right to access the personal information we hold about you
• Right to correct inaccurate or incomplete information
• Right to request deletion of your information (subject to legal retention requirements)
• Right to object to or restrict certain processing of your information
• Right to data portability where technically feasible

To exercise any of these rights, contact us at the information provided in Section 11 below.

9. COOKIES & WEBSITE TRACKING

Our website at patriotspayments.com may use cookies and similar tracking technologies to improve your browsing experience and analyze site traffic. You may control cookie settings through your browser preferences. We do not use cookies to track you across third-party websites.

10. CHANGES TO THIS PRIVACY POLICY

Patriot Payments reserves the right to update this Privacy Policy at any time. Updated versions will be posted at patriotspayments.com with a revised effective date. Your continued use of our services after changes are posted constitutes acceptance of the updated policy. We encourage you to review this policy periodically.

11. CONTACT US

For questions, concerns, or requests related to this Privacy Policy or your personal data, contact Patriot Payments at:

• Phone: (941) 367-5076
• Website: www.patriotspayments.com
• Address: As listed on your merchant agreement

For questions related to Accept Blue’s data practices, contact Accept Blue at u2@accept.blue or 14040 North Cave Creek Road, Suite 209, Phoenix, AZ 85022.