Privacy Policy

1. Who we are

Clymbs is a payment infrastructure company building the cross-border payment layer for the global freelance economy. We operate corridor by corridor — establishing compliant payment rails in markets where freelancers earn internationally but have no proper checkout infrastructure.

When we say "Clymbs," "we," "us," or "our" in this policy, we mean Clymbs and its operators. When we say "you," we mean any person who uses our platform — whether as a freelancer creating payment links or as a client making a payment through a Clymbs checkout page.

2. Information we collect

We collect information you give us directly when you register or use our platform:

• Full name and email address
• Phone number (WhatsApp or local)
• City and country of residence
• Government-issued identity document number, as required by local KYC regulations in your corridor
• Profile tagline and account preferences
• Invoice data including client names, project names, and payment amounts
• Password, stored in encrypted form — we never see it in plain text

We also collect information automatically when you use our platform:

• Login timestamps and session data
• Browser type and device information
• IP address and approximate location
• Pages visited and actions taken within the app

3. How we use your information

We use your information to:

• Create and manage your Clymbs account
• Generate and process payment links on your behalf
• Verify your identity as required by the regulatory framework of your corridor
• Settle foreign earnings into compliant accounts and convert to local currency
• Send you notifications about your invoices and payments
• Improve our platform and fix technical issues
• Comply with applicable laws and regulatory requirements in each corridor we operate
• Communicate with you about your account or our service

We do not sell your personal data to third parties. We do not use your data for advertising purposes.

4. Identity verification and KYC

We collect government-issued identity information as part of our Know Your Customer (KYC) process. This is required under the regulatory frameworks of each corridor in which Clymbs operates — including central bank requirements governing platforms that handle cross-border payments for freelancers.

Your identity data is stored securely, accessed only by authorised personnel, and shared only with licensed financial partners where required for regulatory compliance. It is never sold or shared for commercial purposes.

5. Payment data

Clymbs does not store your clients' full card numbers, CVV codes, or raw payment credentials. Card payments on our checkout page are handled by licensed payment processors. We only store the outcome of a transaction (paid or pending) and the amount.

6. Data sharing

We share your data only in the following circumstances:

• With licensed payment processing partners to facilitate transactions
• With identity verification services for KYC compliance in your corridor
• With Supabase, our database and authentication provider
• With regulatory authorities when required by applicable law
• With your explicit consent for any other purpose

7. Data security

Your data is protected by:

• 256-bit SSL encryption on all connections
• Row-level security policies on our database
• Encrypted password storage — we never store plain-text passwords
• Access controls limiting who can view sensitive data

No system is completely secure. If you believe your account has been compromised, contact us immediately at hello@clymbs.com.

8. Data retention

We retain your personal data for as long as your account is active. If you delete your account, we will remove your personal data within 30 days, except where we are required to retain it for legal or regulatory compliance.

Financial transaction records may be retained for up to 7 years to comply with record-keeping requirements under applicable law in each corridor we operate.

9. Your rights

You have the right to:

• Access the personal data we hold about you
• Correct inaccurate or incomplete data
• Request deletion of your data, subject to legal retention requirements
• Export your data in a portable format
• Withdraw consent for optional data processing at any time

To exercise any of these rights, contact us at hello@clymbs.com.

10. Cookies

We use essential cookies and local storage to keep you logged in and remember your session. We use Google Analytics to understand how visitors interact with our platform — this data is aggregated and anonymised. We do not use advertising cookies. You can clear cookies at any time through your browser settings, though this will log you out of your account.

11. Third-party services

Our platform uses the following third-party services, each with their own privacy policies:

• Supabase — database, authentication, and storage
• Google OAuth — optional sign-in with Google
• Google Analytics — anonymised usage analytics
• Netlify — hosting and deployment
• Resend — transactional email delivery

12. International data transfers

Clymbs operates globally across multiple corridors. Your data may be processed in the United States or other countries where our service providers operate. We ensure that any such transfers comply with applicable data protection laws and that appropriate safeguards are in place.

13. Changes to this policy

We may update this Privacy Policy from time to time. When we do, we will update the "Last updated" date at the top of this page. For significant changes, we will notify you by email or through the platform. Continued use of Clymbs after changes take effect means you accept the updated policy.