Introduction
These Terms and Conditions (“T&Cs”) govern the use of Payorio, a global payment gateway operated by Jionex IT Services Co. L.L.C. By accessing or using our platform, you agree to comply with these T&Cs. These terms apply to all users, including customers, merchants, and partners, and regulate all services provided by Payorio, including money transfers, deposits, withdrawals, currency exchanges, and other financial transactions.
If you do not agree with any part of these T&Cs, you should discontinue using Payorio’s services immediately.
1. Eligibility and Registration
To use Payorio’s services, you must:
- Be at least 18 years old (or the legal age of majority in your jurisdiction).
- Complete the registration process, which includes identity verification through our Know Your Customer (KYC) procedures and email verification.
- Provide accurate and up-to-date information during registration and maintain the accuracy of this information at all times.
Payorio reserves the right to reject or terminate accounts if the user does not meet the eligibility requirements or fails to comply with our KYC policy.
2. Account Verification (KYC & AML Compliance)
All Payorio users, including customers and merchants, are required to complete the KYC verification process as outlined in our KYC Policy. This process involves submitting identification documents and undergoing face verification. Additionally, Payorio conducts continuous transaction monitoring as part of our Anti-Money Laundering (AML) Policy to prevent illegal activities.
Failure to comply with KYC or AML requirements may result in account suspension or termination. For details, refer to our KYC and AML policies in Appendix-3 and Appendix-1.
3. Services Provided
Payorio offers the following services:
- Deposits: Users can add money to their Payorio wallet via supported methods such as local distributors, cards, or cryptocurrency.
- Withdrawals: Users can withdraw funds from their Payorio account to a designated bank account or cryptocurrency wallet.
- Transfers: Users can send money to other Payorio users through phone numbers or QR code scanning.
- Currency Exchange: Users can convert funds between supported currencies.
Fees and applicable charges will be communicated during each transaction and are subject to change.
4. Fees and Charges
Fees are applicable for certain services such as transactions, currency conversions, and withdrawals. All fees will be clearly communicated at the time of the transaction, and users are responsible for reviewing these fees before proceeding. Payorio reserves the right to update fee structures at any time.
Users are responsible for any additional charges imposed by their bank, card provider, or cryptocurrency network.
5. User Obligations
As a user of Payorio, you agree to:
- Provide accurate information during registration and maintain its accuracy.
- Use the services in compliance with applicable laws and regulations, including anti-money laundering and anti-fraud laws.
- Keep your login credentials secure and confidential. You are responsible for all activities conducted under your account.
Payorio reserves the right to suspend or terminate any account that violates these obligations or engages in suspicious activity.
6. Transaction Limits and Monitoring
Payorio imposes transaction limits based on user verification levels and country of residence. We reserve the right to review and modify these limits periodically. All transactions are subject to real-time monitoring for fraud detection and AML compliance.
Transactions exceeding set limits or exhibiting suspicious behavior may be flagged for review and could result in temporary account suspension.
7. API Access and Integration
Merchants and partners utilizing Payorio’s APIs for integration must comply with our API Management Policy (Appendix-2). API users are responsible for safeguarding their API keys and ensuring they are used only for authorized purposes.
In case of API misuse or breach of security, Payorio reserves the right to suspend API access immediately.
8. Data Privacy and Security
Payorio is committed to protecting the privacy and security of user data. We implement industry-standard security measures, including encryption, two-factor authentication, and data protection protocols. Our data privacy practices comply with the General Data Protection Regulation (GDPR) and other applicable data protection laws.
For more details, please refer to our Data Privacy Policy.
9. Intellectual Property
All content, trademarks, logos, and services provided by Payorio are protected by intellectual property laws. You may not use, copy, reproduce, or distribute any of Payorio’s materials without prior written consent.
10. Termination and Suspension of Services
Payorio reserves the right to suspend or terminate your account under the following circumstances:
- Violation of these T&Cs or other applicable policies.
- Failure to complete KYC verification or engage in suspicious activity.
- Non-compliance with regulatory requirements, including AML and KYC.
Upon account suspension or termination, users will receive notification, and any pending transactions may be canceled.
11. Liability
Payorio is not liable for any damages, losses, or unauthorized transactions arising from the misuse of your account, improper API integrations, or non-compliance with regulatory requirements. Payorio is also not responsible for third-party services, including but not limited to local distributors, banks, or cryptocurrency networks.
Users acknowledge that all transactions are performed at their own risk, and Payorio’s liability is limited to the extent permitted by law.
12. Governing Law
These T&Cs are governed by and construed in accordance with the laws of the country in which Payorio is incorporated. Any disputes arising from these terms will be resolved in the courts of that jurisdiction.
13. Amendments to T&Cs
Payorio reserves the right to modify these T&Cs at any time. Any changes will be communicated to users via email or through the Payorio platform. Continued use of the platform after amendments constitutes acceptance of the updated terms.
14. Contact Information
For any questions or concerns related to these T&Cs, please contact Payorio support at:
- Email: support@payorio.com
- Phone: +971 569258166
- Address: M5, Liberty Building, 18th service road, Al Garhoud, Dubai, U.A.E
Appendices
Appendix-1: AML Policy Process
Purpose
This Anti-Money Laundering (AML) policy establishes Payorio’s commitment to preventing money laundering, terrorist financing, and related illicit activities. In accordance with global AML guidelines, this policy outlines the procedures for monitoring, identifying, and reporting suspicious activities across Payorio’s platform. It ensures compliance with relevant international laws and regulations, protecting the integrity of Payorio’s financial ecosystem and its users.
1. Scope
This policy applies to all Payorio entities, including employees, contractors, and partners worldwide. It covers all transactions conducted through Payorio’s platform, whether by individual users, merchants, or other stakeholders, to ensure the company’s full compliance with AML regulations. Payorio commits to taking all necessary actions to detect and prevent any transactions related to money laundering, terrorist financing, or other financial crimes.
2. Legal and Regulatory Framework
Payorio’s AML policy adheres to globally recognized AML frameworks, including but not limited to:
- Financial Action Task Force (FATF) recommendations
- European Union’s Fourth and Fifth AML Directives
- USA Patriot Act
- Bank Secrecy Act (BSA)
- Know Your Customer (KYC) regulations
- Local jurisdictional laws where Payorio operates
Payorio ensures compliance with all applicable regulations, adapting its policy to reflect evolving AML standards across the regions it operates in.
3. Know Your Customer (KYC)
KYC is an essential component of Payorio’s AML policy to verify the identity of users and merchants before enabling them to transact on the platform.
Requirements for KYC Verification:
- For Individuals: Proof of identity (government-issued ID, passport), proof of address (utility bill, bank statement), and other necessary information depending on the user’s country of residence.
- For Merchants: Verification of business registration documents, proof of the identity of business owners and beneficial owners, and confirmation of the nature of the business.
All users and merchants are subject to ongoing identity verification and due diligence as part of their continued relationship with Payorio. Enhanced due diligence is applied to higher-risk users, transactions, or regions.
4. Transaction Monitoring
Payorio implements continuous monitoring of all transactions to detect suspicious activities in real-time. Monitoring is done using automated systems that are designed to identify unusual or potentially illicit activities based on predefined criteria. The following key elements define Payorio’s AML monitoring process:
4.1 Continuous Monitoring of Transactions
- Automated Detection Systems: Payorio employs sophisticated monitoring tools that track all financial transactions on the platform in real-time.
- Transaction Pattern Analysis: Regular assessments of user and merchant transaction patterns to detect unusual behavior.
- Risk-Based Approach: Different levels of scrutiny are applied depending on user risk profiles (e.g., high-risk jurisdictions or high-value transactions).
4.2 Flagging of Suspicious Transactions
- Predefined Criteria: Transactions are flagged based on the following factors:
- Large or unusual transaction amounts inconsistent with the customer’s usual activity.
- Transactions involving high-risk countries or regions subject to international sanctions.
- Multiple small transactions structured to avoid detection (commonly known as “smurfing”).
- Use of anonymous or difficult-to-trace payment methods.
- Internal Alerts: Any transaction meeting these criteria is flagged for further review by the compliance team.
4.3 Review of Flagged Transactions
- Compliance Review: Payorio’s compliance team investigates flagged transactions to assess whether they indicate possible money laundering or other financial crimes.
- Enhanced Due Diligence: For suspicious cases, additional information or documents may be requested from users or merchants to clarify the nature and purpose of the transaction.
- Documentation and Case Management: All flagged transactions are documented in Payorio’s internal case management system, tracking the review and resolution process.
4.4 Reporting of Suspicious Activities
- Internal Reporting: Any transaction deemed suspicious after compliance review is escalated internally for immediate action.
- External Reporting: Payorio reports suspicious transactions to relevant financial intelligence units (FIUs) or law enforcement agencies as required by local AML regulations. In particular:
- Suspicious Activity Reports (SARs) are filed in jurisdictions where they are legally required, detailing the suspicious nature of the transaction.
- Cooperation with Authorities: Payorio fully cooperates with local and international regulatory bodies during investigations, providing timely and accurate information as needed.
5. Record Keeping and Retention
In compliance with AML regulations, Payorio maintains records of:
- Transaction Data: All transactional data is retained for a minimum of 5 years from the date of the transaction.
- Customer and Merchant KYC Information: KYC-related documents are retained for a minimum of 5 years after the relationship with the customer or merchant has ended.
- Suspicious Activity Reports (SARs): Records of all reported SARs are maintained for a minimum of 5 years.
These records are securely stored and made available for regulatory audits upon request.
6. Employee Training and Awareness
Payorio ensures that all employees, particularly those in compliance, customer support, and transaction monitoring roles, are trained on AML policies and procedures. The training covers:
- AML regulations and best practices
- How to detect and report suspicious activity
- Responsibilities for complying with AML laws
Annual refresher courses are conducted to keep employees updated on new AML requirements and trends.
7. Internal Audits and Reviews
Payorio conducts regular internal audits to evaluate the effectiveness of its AML program. This includes:
- Review of transaction monitoring systems: Ensuring systems are up-to-date with current risk patterns.
- Compliance Checks: Verifying that Payorio complies with all applicable AML laws and reporting obligations.
- Policy Updates: Continuous improvement and updating of the AML policy based on audit findings and evolving regulatory requirements.
8. Sanctions Screening
Payorio conducts real-time sanctions screening on all customers, merchants, and transactions. This ensures that Payorio does not engage in transactions with:
- Persons or entities listed on international sanctions lists (e.g., UN, OFAC, EU).
- Individuals or organizations associated with terrorist financing or other financial crimes.
Transactions involving sanctioned individuals or entities are immediately blocked, and relevant authorities are notified.
9. Consequences of Non-Compliance
Payorio reserves the right to take corrective action in cases of non-compliance with AML policies. This includes:
- Account Suspension or Termination: User or merchant accounts involved in suspicious activities may be suspended or terminated.
- Regulatory Action: Non-compliance may result in fines, penalties, or legal actions by regulatory bodies.
Conclusion
Payorio is committed to the highest standards of AML compliance. This policy ensures that all activities within the Payorio ecosystem are aligned with global AML regulations, helping to prevent the misuse of the platform for illicit purposes. Through robust monitoring, comprehensive reporting, and collaboration with authorities, Payorio protects its customers and the broader financial system from money laundering risks.
This AML policy serves as the foundation for Payorio’s ongoing efforts to ensure a secure, compliant, and transparent financial platform for all stakeholders.
Appendix-2: API Management Policy
This API Management Policy establishes Payorio’s approach to the development, maintenance, security, and monitoring of its APIs, ensuring seamless integration for users and compliance with global API management best practices. It outlines how Payorio manages the lifecycle of its APIs, providing clear guidelines for versioning, monitoring, and developer support.
1. Development and Maintenance of APIs
Objective:
Payorio’s API development adheres to industry-standard RESTful practices to ensure efficient, secure, and scalable API services. The maintenance of APIs includes regular updates, performance improvements, and bug fixes to enhance functionality.
Key Practices:
- Adherence to REST Architecture: All APIs are structured around REST principles, ensuring simplicity and scalability.
- API Lifecycle Management: APIs are managed from design through to deprecation, ensuring backward compatibility and minimal disruptions to users.
- Security-First Approach: API development incorporates security best practices, including HTTPS enforcement, authentication mechanisms like API keys, and encryption of sensitive data.
- Cross-Platform Compatibility: APIs are designed to support diverse platforms and devices, providing flexibility to integrate with multiple systems.
2. API Documentation and User Support
Objective:
To facilitate seamless API integration, Payorio provides comprehensive documentation and continuous support to developers, merchants, and partners.
Key Practices:
- Comprehensive Documentation: All API functionalities, endpoints, parameters, and error codes are thoroughly documented. This includes step-by-step guides and example requests/responses.
- Version Control: Documentation is updated for each API version release, providing clarity on new features, backward compatibility, and potential breaking changes.
- Developer Portal: Payorio offers a developer portal where users can access API keys, view documentation, track API usage, and interact with sandbox environments.
- Support Channels: Payorio provides a dedicated support team to address developer queries and issues, ensuring quick resolution of any API-related challenges.
3. Monitoring API Usage and Performance
Objective:
Continuous monitoring of API usage ensures optimal performance, identifies potential security threats, and maintains service uptime.
Key Practices:
- Real-Time Monitoring: Payorio tracks API performance in real time, ensuring that latency, throughput, and error rates are continuously monitored.
- Usage Metrics: Detailed analytics on API usage (e.g., number of requests, data throughput, success/failure rates) are available to users, helping them optimize their integration.
- Rate Limiting: To prevent abuse, rate limits are enforced on API usage, ensuring fair usage for all customers.
- Error Detection and Logging: Automated systems detect and log errors such as failed requests or incorrect parameters. This helps identify and resolve issues quickly.
4. Regular Updates and Versioning of APIs
Objective:
Payorio regularly updates its APIs to introduce new features, enhance security, and improve performance, while ensuring backward compatibility through proper versioning.
Key Practices:
- Version Control: Payorio maintains clear versioning of APIs (e.g., v1, v2) to support backward compatibility and allow users to upgrade at their own pace.
- Backward-Compatible Changes: Minor updates or added features are rolled out without breaking existing integrations.
- Backward-Incompatible Changes: Major changes that may affect integration are introduced through new versions (e.g., v2), allowing users time to transition.
- Changelog: Detailed changelogs are maintained for each API version, documenting all new features, bug fixes, and deprecated functionalities.
- Deprecation Policy: When an API version is deprecated, users are provided with ample notice and migration guidance to newer versions, ensuring a smooth transition.
5. Security and Authentication
Objective:
To safeguard sensitive financial data and ensure secure communication between Payorio and its users, robust security measures are implemented in all API interactions.
Key Practices:
- API Key Authentication: Payorio APIs require API keys for access, ensuring that only authorized users can interact with the system.
- Separate Keys for Live and Test Environments: Payorio provides separate API keys for live and sandbox environments to facilitate testing without affecting live data.
- Encryption and HTTPS: All API requests are transmitted over HTTPS to ensure encrypted communication and prevent data interception.
- Rate Limiting and Throttling: To prevent misuse, Payorio enforces rate limits and monitors for suspicious activity.
- Error Handling and Reporting: Developers are informed of any unauthorized access attempts or errors through detailed error codes and documentation.
6. Developer Responsibilities
Objective:
API users are responsible for ensuring secure usage and compliance with Payorio’s API terms.
Key Practices:
- Proper API Key Management: Developers are required to keep API keys confidential and ensure they are not exposed in public repositories or client-side code.
- Compliance with Documentation: Users must adhere to API specifications provided in Payorio’s documentation and use the APIs within the defined rate limits.
- Timely Upgrades: Developers are encouraged to upgrade to newer API versions in a timely manner, following the release of major updates or security patches.
Appendix-2(a): API Error Codes and Responses
Refer to Appendix-1 for a comprehensive list of error codes, response messages, and troubleshooting steps, ensuring users have all necessary resources for effective integration.
Conclusion
Payorio’s API Management Policy ensures that all APIs are developed, maintained, and monitored according to global best practices. By offering robust security, clear documentation, regular updates, and proactive monitoring, Payorio supports developers and partners in delivering seamless payment services across multiple platforms.
Appendix-2(a): API Error Codes and Responses
Payorio follows conventional HTTP response codes to indicate the success or failure of an API request. By properly handling these errors, developers can build resilient systems that manage failures gracefully, improving the end-user experience.
- 2xx: Success – The request was successfully processed.
- 4xx: Client Error – There was an issue with the request (e.g., missing parameters, validation errors).
- 5xx: Server Error – Payorio’s server encountered an issue.
Here are common error codes and their descriptions:
Error Code | Message | Description |
---|---|---|
2001 | Invalid App Keys | The app keys provided in the request are invalid. |
2002 | Invalid amount | The payment amount provided is invalid. |
2003 | Invalid transaction type | The transaction type does not match the allowed types. |
2004 | Invalid currency | The provided currency is not supported. |
2005 | Invalid merchant order id | The merchant order ID provided is invalid. |
2006 | Invalid callback url | The callback URL provided is invalid. |
2017 | Invalid payment id | The payment ID provided does not exist. |
2021 | You have insufficient balance | The user’s wallet balance is too low to process the payment. |
2022 | You have exceeded your max negative balance | The user’s negative balance limit is exceeded. |
HTTP Status Code Summary
Status Code | Description |
---|---|
200 | OK – The request was processed successfully. |
400 | Bad Request – Invalid parameters or malformed request. |
401 | Unauthorized – Invalid or missing API key. |
403 | Forbidden – The API key lacks permissions for the request. |
404 | Not Found – The requested resource was not found. |
429 | Too Many Requests – Rate limit exceeded. |
500 | Internal Server Error – An issue occurred on Payorio’s server. |
Appendix-3: KYC Policy
Purpose
This Know Your Customer (KYC) Policy outlines Payorio’s commitment to identifying and verifying its users in accordance with global best practices and regulatory requirements. The policy is designed to prevent identity fraud, money laundering, terrorist financing, and other illegal activities while ensuring a secure environment for all users.
Payorio requires all users to complete KYC and email verification processes to access full account functionality, including adding/withdrawing funds, performing transactions, exchanging currencies, and utilizing other platform features.
1. Scope
This KYC policy applies to all users of Payorio’s services, whether individual customers or merchants. It governs the procedures for identity verification, document submission, and email validation, and is mandatory for users wishing to access the platform’s full range of services.
2. KYC Verification Process
To become a verified user on Payorio, all registered users must complete the KYC verification process. This process involves submitting valid identification documents and completing a face verification video.
How to Initiate KYC Verification
Users can initiate the KYC process in two ways:
- From the Home Screen: By pressing the “KYC NON-VERIFIED” button displayed above the Total Balance.
- From the Profile Section: By navigating to Profile > Account Details > and pressing Click to verify in the Upload Documents / Identity Proof section.
Document Verification Methods
Depending on the user’s country of residence, Payorio offers the following three types of document verification methods:
- Passport (Photo Page)
- Driving Licence (Front and Back)
- Identity Card (Front and Back)
Steps for Document Submission:
- The user selects their preferred document type from the available options.
- The user is directed to a document upload screen and must capture and upload both the front and back images of the selected document.
- The images are reviewed for clarity and accuracy before submission.
Face Verification Process
After submitting the required document images, the user proceeds to the face verification stage:
- The user is displayed with the Verify your Identity screen.
- The user must record a minimum 10-second video, positioning their face within the provided frame.
- The user is required to slowly turn their head to both sides during the video to capture multiple angles of the face.
Upon successful submission, the verification process begins, and once completed, the user is assigned KYC-VERIFIED status, enabling full access to all Payorio services.
3. Email Verification Process
In addition to KYC verification, users are required to complete email verification to further secure their account.
How to Initiate Email Verification
- Users must navigate to Profile > Account Details and press Verify your email.
- The user confirms their registered email address, and an OTP (One-Time Password) is sent to the email.
Steps for Email Verification:
- The user enters the OTP received via email into the verification screen on the Payorio platform.
- Once the correct OTP is submitted, the email verification is complete, and the user’s email address is marked as verified.
4. Benefits of Becoming a Verified User
Upon successful KYC and email verification, the user is fully verified, enabling access to the following features:
- Add/Withdraw Funds: The ability to deposit or withdraw funds from the Payorio account.
- Perform Transactions: The ability to transfer money or pay for goods and services.
- Currency Exchange: Full access to currency exchange services.
- Other Platform Features: Users gain unrestricted access to the full suite of Payorio services.
5. Compliance with Global Standards
Payorio’s KYC process is designed in compliance with global Anti-Money Laundering (AML) regulations and identity verification best practices. This policy ensures that the platform complies with international regulatory requirements, including but not limited to:
- Financial Action Task Force (FATF) guidelines
- European Union’s Anti-Money Laundering Directives
- USA Patriot Act
- Know Your Customer (KYC) regulations across jurisdictions
Payorio also adheres to local regulations and updates its KYC process to reflect evolving global standards.
6. Data Privacy and Security
Payorio is committed to maintaining the privacy and security of all user information submitted during the KYC process. The following measures ensure the protection of sensitive data:
- Encryption: All documents, videos, and personal information submitted by users are encrypted and securely stored.
- Compliance with Data Protection Laws: Payorio complies with international data protection regulations, including the General Data Protection Regulation (GDPR), to safeguard user privacy.
- Limited Access: Only authorized personnel within Payorio’s compliance team have access to KYC information for verification purposes.
7. Monitoring and Reverification
Payorio continuously monitors user accounts for suspicious activities, and periodic reverification may be required for high-risk accounts or as part of regulatory compliance. Users may also be asked to update their KYC documents or undergo additional verification if deemed necessary.
Conclusion
The KYC Policy ensures that Payorio maintains a secure, compliant, and trustworthy financial platform for its users. By adhering to global KYC best practices and regulations, Payorio helps prevent illegal activities such as money laundering and fraud while providing a seamless experience for verified users.
This policy is subject to periodic review to ensure alignment with global standards, emerging technologies, and evolving regulatory requirements. This document outlines the legally binding terms and conditions governing the use of Payorio’s services and should be referred to by all users and stakeholders for compliance and legal purposes.