Compliance & AML Notice
Last updated: 13 June 2026
1. Operator responsibility
The Crypto Payment Gateway is self-hosted software. The operator deploying it is the merchant of record and is solely responsible for meeting any applicable licensing, anti-money-laundering (AML), counter-terrorist-financing (CTF), know-your-customer (KYC), tax and consumer-protection requirements in their jurisdiction.
2. Prohibited use
The Service must not be used to facilitate money laundering, terrorist financing, fraud, sanctions evasion, or payment for illegal goods or services. Operators should screen their own customers and decline transactions they believe to be unlawful.
3. Sanctions
Operators are responsible for complying with applicable sanctions programmes (e.g. OFAC, EU, UN) and for not transacting with sanctioned individuals, entities, or jurisdictions. Consider address-screening tooling where required.
4. KYC
The Service collects only an email address by default and performs no identity verification. If your activity or jurisdiction requires KYC, you must implement it in your own application layer before creating invoices.
5. Record keeping
All invoices, payments (including on-chain transaction hashes), sweeps and subscription changes are stored in the operator's own database, supporting audit and record-keeping obligations. Retain records for the period your regulations require.
6. Transaction transparency
All settlement happens on public blockchains, providing an immutable, independently verifiable audit trail of every payment and sweep.
7. Reporting & cooperation
Operators should establish procedures for suspicious-activity reporting and for responding to lawful requests from competent authorities, as required by local law.
8. Contact
Compliance enquiries: admin@crypto-payment-gateway.slonix.dev.