Privacy Policy

Effective Date: March 18, 2026

This Privacy Policy explains how Resub International Limited, a company incorporated in Malta with registration number C 113903, having its registered address at Level 5, St Julians Business Centre, Triq Elija Zammit, San Giljan STJ 3153, Malta (“Resub.io,” “we,” “us,” or “our”) collects, uses, stores, and protects information when you access or use the Resub.io platform, dashboard, CRM, and associated services (collectively, the “Platform”).

By using the Platform, you agree to the collection and use of information in accordance with this Privacy Policy.

1. Who We Are

Resub.io is a Software-as-a-Service (SaaS) platform purpose-built for e-commerce merchants running subscription-based businesses. We provide a unified dashboard and integrated CRM for managing subscription lifecycles, recurring billing, chargeback monitoring, and payment operations.

For the purposes of applicable data protection law, Resub International Limited is the data controller in respect of personal data collected through the Platform and this website.

2. Information We Collect

2.1 Information You Provide to Us

When you register for or use the Platform, we collect information you provide directly, including:

  • Business and account registration details (company name, business address, registration number)
  • Contact information (name, email address, phone number)
  • Billing and payment information (bank account details, payment method information)
  • Business documentation submitted during onboarding (processing history, product descriptions)
  • Communications you send us via email, Telegram, or through the Platform

2.2 Information Collected Automatically

When you access the Platform, we automatically collect certain technical information, including:

  • IP address and device identifiers
  • Browser type and version
  • Pages visited and features used within the Platform
  • Date and time of access
  • Referring URLs
  • Session and usage data

2.3 Merchant and Subscriber Data

In the course of providing the Services, we process data that you input into the Platform relating to your customers and subscribers (“Merchant Data”), including subscriber names, contact details, billing information, subscription status, and transaction history. You are the data controller of this Merchant Data. We process it solely on your behalf as a data processor, in accordance with your instructions and our Data Processing obligations.

2.4 Third-Party Integrations

Where you connect third-party services to the Platform (such as Shopify, WooCommerce, CheckoutChamp, or payment processors), we may receive data from those services as necessary to provide the integration functionality.

3. How We Use Your Information

We use the information we collect for the following purposes:

  • To provide, operate, and maintain the Platform and Services
  • To process your registration and manage your account
  • To facilitate merchant account applications with ISOs and payment brokers
  • To monitor chargeback ratios and provide dispute management support
  • To generate reporting, analytics, and statements within the Platform
  • To communicate with you about your account, updates, and support
  • To detect, investigate, and prevent fraudulent or unauthorized activity
  • To comply with legal obligations and respond to lawful requests from authorities
  • To improve and develop the Platform and our Services

4. Legal Basis for Processing

We process your personal data on the following legal bases under applicable data protection law:

  • Performance of a contract: processing necessary to provide the Services under our Terms and Conditions
  • Legitimate interests: fraud prevention, platform security, product improvement, and business operations
  • Legal obligation: compliance with applicable laws and regulatory requirements
  • Consent: where you have explicitly consented to a specific use of your data

5. How We Share Your Information

We do not sell your personal data. We may share your information in the following limited circumstances:

5.1 Service Providers

We share data with trusted third-party service providers who assist us in operating the Platform, including cloud hosting providers, payment infrastructure partners, CRM technology providers, and analytics tools. These providers are contractually bound to process data only as instructed and to maintain appropriate security measures.

5.2 ISOs and Payment Brokers

Where you request merchant account facilitation, we will share relevant business and identification information with the ISO or payment broker processing your application. This sharing is necessary to provide the facilitation service and is done with your knowledge as part of the onboarding process.

5.3 Legal and Regulatory Requirements

We may disclose your information where required to do so by law, court order, or regulatory authority, or where we believe disclosure is necessary to protect the rights, property, or safety of Resub.io, our clients, or others.

5.4 Business Transfers

In the event of a merger, acquisition, or sale of all or part of our business, your data may be transferred to the acquiring entity. We will notify you of any such change and the options available to you.

6. Data Retention

We retain your personal data for as long as necessary to provide the Services and fulfil the purposes described in this Privacy Policy, or as required by applicable law. Specifically:

  • Account and business data is retained for the duration of your contract with us and for up to five (5) years thereafter for legal and compliance purposes
  • Transaction and financial records are retained for a minimum of seven (7) years in accordance with applicable accounting and tax regulations
  • Merchant Data (subscriber and customer data you input into the Platform) may be exported upon request within fourteen (14) days of account termination, after which it will be deleted from our systems

7. Data Security

We implement industry-standard technical and organizational measures to protect your personal data against unauthorized access, loss, destruction, or alteration. These measures include encrypted data transmission, access controls, and regular security assessments.

However, no method of transmission over the internet or electronic storage is completely secure. While we strive to protect your data, we cannot guarantee absolute security. You are responsible for maintaining the security of your account credentials and for notifying us immediately of any suspected unauthorized access.

8. International Data Transfers

Resub International Limited is based in Malta and operates within the European Union. Where we transfer personal data outside the EU/EEA, we ensure appropriate safeguards are in place in accordance with applicable data protection law, including the use of Standard Contractual Clauses or equivalent mechanisms.

9. Your Rights

Depending on your location and applicable law, you may have the following rights in relation to your personal data:

  • Right of access: to request a copy of the personal data we hold about you
  • Right to rectification: to request correction of inaccurate or incomplete data
  • Right to erasure: to request deletion of your personal data in certain circumstances
  • Right to restriction: to request that we limit how we use your data
  • Right to data portability: to receive your data in a structured, machine-readable format
  • Right to object: to object to processing based on legitimate interests
  • Right to withdraw consent: where processing is based on consent, you may withdraw it at any time

To exercise any of these rights, please contact us at legal@resub.io. We will respond to your request within thirty (30) days. You also have the right to lodge a complaint with the Malta Information and Data Protection Commissioner (IDPC) or the supervisory authority in your country of residence.

10. Cookies and Tracking Technologies

Our website and Platform may use cookies and similar tracking technologies to enhance your experience, analyze usage, and support Platform functionality. You can control cookie preferences through your browser settings. Disabling certain cookies may affect the functionality of the Platform.

11. Third-Party Links

The Platform may contain links to third-party websites or services. We are not responsible for the privacy practices of those third parties and encourage you to review their privacy policies before providing any personal data.

12. Children’s Privacy

The Platform is intended for use by businesses and is not directed at individuals under the age of 18. We do not knowingly collect personal data from minors. If you believe we have inadvertently collected such data, please contact us and we will take steps to delete it promptly.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we make material changes, we will notify you via email or through the Platform at least fourteen (14) days before the changes take effect. Continued use of the Platform after the effective date of any update constitutes acceptance of the revised policy.

14. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Resub International Limited
Registration Number: C 113903
Level 5, St Julians Business Centre
Triq Elija Zammit, San Giljan STJ 3153, Malta
Email: legal@resub.io
Website: https://resub.io