← Back to Home

Compliance

Last updated: May 23, 2026

SOC 2 Type II

KreditWiz infrastructure is hosted on SOC 2 Type II certified providers. Our application and operational controls are designed to meet the Trust Services Criteria for Security, Availability, and Confidentiality.

GDPR (EU/EEA)

We comply with the General Data Protection Regulation:

  • Lawful basis documented for all processing activities.
  • Data subject rights fulfilled within 30 days (access, erasure, portability, rectification).
  • Data Protection Impact Assessments conducted for high-risk processing.
  • Standard Contractual Clauses in place for international transfers.
  • Appointed Data Protection Officer reachable at dpo@receiptiles.com.
  • Breach notification within 72 hours to supervisory authorities.

CCPA (California)

We comply with the California Consumer Privacy Act:

  • Right to know what personal information is collected and how it is used.
  • Right to delete personal information upon request.
  • Right to opt out of the sale or sharing of personal information.
  • No discrimination for exercising privacy rights.
  • Annual disclosure of data categories collected, sold, and shared.

PCI-DSS Considerations

KreditWiz does not store full payment card numbers. We only process the last 4 digits of card numbers as printed on receipts. Payment processing is handled entirely by the merchant's existing POS system. Our service does not interact with cardholder data environments.

Email Compliance (CAN-SPAM / GDPR)

  • All marketing emails include an unsubscribe link.
  • Unsubscribe requests honored within 24 hours.
  • Transactional emails (receipts, security alerts) sent only when relevant.
  • No purchased email lists — all contacts are self-opted.

Accessibility (WCAG)

We are committed to making our service accessible to all users. Our web application targets WCAG 2.1 Level AA compliance, including keyboard navigation, screen reader compatibility, and sufficient color contrast.

Environmental Compliance

Our hardware adapters comply with RoHS (Restriction of Hazardous Substances) and WEEE (Waste Electrical and Electronic Equipment) directives. We provide recycling instructions and accept returns of hardware for responsible disposal.

Questions

For compliance inquiries, audit requests, or certification documentation, contact compliance@receiptiles.com.

Compliance — KreditWiz · KreditWiz