Kushki legal and regulatory documentation
Find here all legal documentation related to the provision of our services.
Download terms and conditionsOther legal documents
Our commitments explained
Key information from our policies, sourced from Kushki's official documentation.
Cookie Policy
Kushki uses cookies and web tracking technologies on its sites and apps to optimize user experience and analyze traffic patterns.
- We collect browsing data: pages visited, session duration, and links accessed
- Personal data is stored only with explicit consent or when required for the requested service
- We implement mechanisms to inform users about cookies per applicable regulations
- We are not responsible for cookies used by third parties accessed through our sites
Personal Data Protection
Kushki ensures personal data protection with the highest industry standards, complying with applicable laws in all countries where it operates.
- PCI DSS and ISO 27001 certifications verified through regular audits
- Data stored on AWS with encryption, firewalls, and SSL protocols
- We never sell or rent personal data; sharing only occurs in expressly defined cases
- Data subjects may exercise their rights over personal data at any time
Anti-Money Laundering (AML/KYC)
Kushki maintains zero tolerance for illegal activities. All merchants are verified before onboarding and continuously monitored.
- Identity verification of merchants and ultimate beneficial owners (UBO) prior to onboarding
- Mandatory consultation of OFAC, UN, and European Union sanction lists
- Continuous transaction monitoring to detect unusual patterns
- Right to block operations when suspicious activity is detected without justification
Service Level Agreement (SLA)
Kushki guarantees high availability standards and defined response times for its payment platform.
- 99.6% guaranteed uptime for platform services
- 5 to 15 minute response time for lambda function incidents
- Immediate response for critical infrastructure incidents
- Structured escalation matrix: immediate → 30 min → 45 min → 1 hour by severity
Acceptable Use Policy
Kushki's platform must be used exclusively for lawful activities. Certain business categories and transactions cannot be processed.
- Prohibited for companies involved in pyramid schemes, weapons, or illegal activities
- Entities sanctioned by OFAC, the UN, or the European Union are not allowed
- Transactions with jurisdictions under international sanctions are prohibited
- Enhanced restrictions for tobacco, alcohol, and adult content with reinforced controls
Regulatory Compliance
Kushki operates under local regulatory frameworks in each country, with valid licenses and formal processes for interaction with regulatory bodies.
- All affiliated merchants must hold valid licenses for their activity in their jurisdiction
- Compliance with Fintech Regulation 2023 and anti-money laundering regulations
- Formal and dedicated process for responding to regulatory authority requirements
- The Corporate Governance Directorate oversees regulatory compliance across all markets