Privacy Policy

Last updated: March 18, 2026

This Privacy Policy describes how tiqopay SARL AU (hereinafter "tiqopay", "we") collects, uses, stores, and protects your personal data in accordance with Moroccan Law 09-08 on the protection of individuals with regard to the processing of personal data.

By using the Platform, you consent to the processing of your data as described below.

1. Data controller

tiqopay SARL AU, headquartered in Casablanca, Morocco. Contact: contact@tiqopay.com.

2. Data collected

  • Identification data: name, email address, phone number, CIN or passport (for KYC purposes).
  • Business data: company name, RC, ICE (for legal entities).
  • Financial data: bank account details (RIB), transaction history on the Platform.
  • Technical data: IP address, browser type, pages visited, connection timestamps.
  • Communication data: messages sent via the contact form or dispute system.

3. Purposes of processing

  • Creation and management of your user account.
  • Execution of escrow transactions (payment, holding, release of funds).
  • Identity verification (KYC) in compliance with Law 43-05.
  • Fraud prevention and anti-money laundering.
  • Sending transactional notifications (confirmations, alerts, disputes).
  • Improving our services and customer support.
  • Compliance with our legal and regulatory obligations.

4. Legal basis for processing

Processing of your data is based on: performance of the contract (ToS) binding you to tiqopay, your consent for certain specific processing, compliance with our legal obligations (Law 43-05, BAM regulations), and our legitimate interest (security, fraud prevention).

5. Data recipients

Your data may be shared with: our technical service providers (hosting, CMI payment, email services), competent authorities upon judicial or regulatory request. We do not sell or rent your personal data to third parties for commercial purposes.

6. Data retention

  • Account data: retained throughout your registration, then 5 years after account closure (legal obligations).
  • Transaction data: retained 10 years in compliance with Moroccan accounting and tax obligations.
  • Technical data (logs): retained 1 year.
  • KYC data: retained 5 years after the end of the business relationship (Law 43-05).

7. Data security

We implement technical and organizational security measures to protect your data: encryption in transit (TLS) and at rest (AES-256), restricted access on a need-to-know basis, full audit trail of all operations, secure hosting with regular backups.

8. Your rights

Under Law 09-08, you have the following rights:

Right of access: obtain confirmation of data processing and receive a copy.

Right of rectification: request correction of inaccurate or incomplete data.

Right of objection: object to processing of your data on legitimate grounds.

Right of deletion: request erasure of your data, subject to our legal retention obligations.

To exercise these rights, contact us at contact@tiqopay.com. We will respond within 30 days.

9. Cookies

The Platform uses essential cookies for service operation (authentication, language preferences). No advertising or tracking cookies are used.

10. International transfers

Your data may be processed by providers located outside Morocco (cloud hosting). In such cases, we ensure these providers offer adequate protection in compliance with Law 09-08.

11. National Commission (CNDP)

If you believe your data processing is non-compliant, you may file a complaint with the Commission Nationale de contrôle de la protection des Données à caractère Personnel (CNDP): www.cndp.ma.

12. Policy changes

We reserve the right to modify this policy at any time. Changes will be notified by email or on the Platform at least 15 days before taking effect.

13. Contact

For any questions regarding the protection of your data: contact@tiqopay.com