Payment Methods and Security
Payment Methods and Security
Effective Date: May 27, 2026
Company: Storifayo LLC
Address: 75 E 3rd St, Sheridan, WY 82801, United States
Website: https://projectvilgatekaivenmorrick.com/
Email: contact@projectvilgatekaivenmorrick.com
1. Introduction
This Payment Methods and Security Policy ("Policy") describes the payment methods accepted by Storifayo LLC ("Storifayo," "Company," "we," "our," or "us"), the security measures applied to financial transactions, and the safeguards we maintain to protect Customer payment information in connection with purchases made through the website located at https://projectvilgatekaivenmorrick.com/ (the "Website") and any related services (collectively, the "Services").
Storifayo LLC is committed to providing a secure, transparent, and reliable payment environment for all Customers. We rely exclusively on established, reputable, and industry-compliant third-party payment infrastructure providers to process transactions. The Company does not store, process, or transmit full payment card data on its own systems.
This Policy is incorporated by reference into our Terms of Service and should be read together with our Privacy Policy, Cookie Policy, Refund Policy, Digital Delivery Policy, and other policies available on the Website. By placing an Order, you acknowledge that you have read, understood, and agreed to this Policy.
2. Definitions
• "Customer" or "you" means any individual or entity that places an Order through the Website.
• "Order" means a request submitted through the Website by a Customer to purchase one or more Digital Products.
• "Payment Method" means any of the methods of payment accepted by the Company through its third-party payment processors.
• "Payment Processor" means any third-party provider engaged by the Company to handle the secure processing of payment transactions.
• "PCI-DSS" means the Payment Card Industry Data Security Standard, the global security standard for organizations that handle payment card data.
• "3D Secure" or "3DS" means a security protocol (such as Visa Secure, Mastercard Identity Check, or American Express SafeKey) that provides an additional layer of authentication for online card transactions.
• "Strong Customer Authentication" or "SCA" means the authentication requirements imposed under the European Union's Revised Payment Services Directive (PSD2).
3. Accepted Payment Methods
The Company accepts a range of secure and widely used payment methods. The availability of specific payment options may depend on the Customer's location, the payment processor in use, currency, and applicable regulatory requirements. At checkout, the Customer is presented with the payment methods available for their specific transaction.
3.1 Credit and Debit Cards
Major credit and debit cards are accepted, including but not limited to:
• Visa
• Mastercard
• American Express
• Discover
• Diners Club
• JCB
• UnionPay
Card transactions are processed exclusively through PCI-DSS compliant payment processors. The Company does not have direct access to, store, or process full card numbers, CVV codes, or other sensitive card data.
3.2 Stripe
The Company uses Stripe as its primary payment processor for card transactions and additional payment methods. Stripe is a globally established payment infrastructure provider certified as a PCI-DSS Level 1 Service Provider, which is the highest level of certification in the payment card industry.
Stripe supports a wide range of payment options that may be offered through the Website, including credit and debit cards, digital wallets, and local payment methods. For more information about Stripe's services and privacy practices, please refer to https://stripe.com/privacy.
3.3 ACH (Automated Clearing House) Transfers
Where available and appropriate, the Company may accept payments via ACH transfers for U.S.-based Customers. ACH transactions are processed through regulated banking infrastructure under the rules established by Nacha (formerly the National Automated Clearing House Association). ACH transfers may require additional verification steps and typically take one (1) to five (5) business days to clear.
3.4 Wire Transfers
For certain transactions, the Company may accept payment by wire transfer. Wire transfers are processed through regulated banking networks and require the Customer to initiate the transfer using the banking details provided by the Company at the time of Order confirmation. Wire transfers are typically used for higher-value transactions or business-to-business arrangements and may incur fees imposed by the Customer's bank.
3.5 Digital Wallets
Where supported by our payment processors, the Company may accept payments through digital wallet services, including but not limited to:
• Apple Pay
• Google Pay
• Other digital wallet services as enabled by Stripe or other payment processors
Digital wallets provide an additional layer of security by tokenizing the underlying payment card and authenticating the transaction through biometric or device-based verification.
3.6 Local and Alternative Payment Methods
Depending on the Customer's location and the payment processor's capabilities, additional local or alternative payment methods may be made available. These methods are subject to the rules and security measures of the respective providers.
4. Payment Processing Workflow
When the Customer completes an Order, the following steps generally occur:
• The Customer selects a payment method available at checkout.
• Payment information is entered directly into a secure, encrypted form hosted by the payment processor or embedded into the Website via a secure iframe or hosted page.
• The payment processor encrypts the information and submits it to the relevant card network, bank, or financial institution for authorization.
• Authorization is confirmed or declined by the issuing bank or financial institution.
• If authorized, the transaction is settled, and the Company is notified of the successful payment.
• The Customer is redirected to an Order confirmation page and receives a confirmation email.
• Delivery of the Digital Product proceeds as described in our Digital Delivery Policy.
Throughout the process, sensitive payment information is handled exclusively by the certified payment processor. The Company receives only the information necessary to confirm the transaction, such as transaction reference numbers, the last four digits of the payment card, and authorization status.
5. Security Standards and Compliance
5.1 PCI-DSS Compliance
All card payment processing is handled by third-party providers certified as PCI-DSS compliant. PCI-DSS is the global security standard established by the Payment Card Industry Security Standards Council, which sets stringent requirements for organizations that handle payment card data. By relying exclusively on PCI-DSS compliant providers, the Company ensures that:
• Payment card data is encrypted in transit using strong cryptographic protocols.
• Full card numbers are never stored on the Company's servers.
• Sensitive authentication data, such as CVV codes, are never retained after the transaction is completed.
• Strict access controls limit who can interact with payment-related systems.
• Regular vulnerability assessments and security audits are performed.
5.2 TLS/SSL Encryption
All communications between the Customer's device and the Website are protected by Transport Layer Security (TLS), the industry-standard cryptographic protocol that ensures data is transmitted securely over the internet. This includes encrypted submission of payment-related information through the payment processor's secure forms.
5.3 Tokenization
Where supported by our payment processors, payment card details are replaced by a unique token, which is used to identify and process the transaction without exposing the underlying card number. Tokenization significantly reduces the risk of unauthorized use, even in the event of a data breach.
5.4 3D Secure Authentication
For card transactions, the Company supports 3D Secure authentication, which provides an additional layer of identity verification. When 3D Secure is triggered, the Customer is required to authenticate the transaction with their card issuer through an additional step, such as entering a one-time password (OTP), confirming through a banking application, or biometric verification. This significantly reduces the risk of unauthorized transactions and chargebacks.
5.5 Strong Customer Authentication (SCA)
For Customers in the European Economic Area, the United Kingdom, and other jurisdictions requiring SCA under PSD2 or equivalent regulations, transactions are processed in compliance with applicable SCA requirements. This typically involves two-factor authentication using elements from at least two of the following categories: knowledge (something the Customer knows), possession (something the Customer has), and inherence (something the Customer is).
5.6 Fraud Prevention
To detect and prevent fraudulent activity, the Company and its payment processors employ multiple layers of fraud prevention, including:
• Real-time risk scoring based on transaction characteristics.
• Address Verification System (AVS) checks for card transactions.
• CVV verification for card-not-present transactions.
• Device fingerprinting to identify high-risk devices and patterns.
• Geolocation analysis to detect suspicious patterns.
• Velocity checks to identify unusual transaction frequency.
• Machine learning models for fraud detection.
• Blacklists and watchlists of known fraudulent actors.
• Manual review of high-risk or flagged transactions.
Transactions identified as high-risk may require additional verification, be temporarily delayed, or be declined entirely. The Company reserves the right to refuse, cancel, or reverse any transaction suspected of being fraudulent or unauthorized.
6. Authorization and Acceptance
By submitting payment information through the Website, the Customer:
• Authorizes the Company and its payment processors to charge the selected payment method for the total amount of the Order, including applicable taxes and fees.
• Represents and warrants that they are the lawful holder of the payment method used or are otherwise authorized to use it.
• Confirms that the billing information provided is accurate, current, and complete.
• Acknowledges that the Company reserves the right to verify the authenticity and validity of the payment method, including by requesting additional documentation.
The Company reserves the right to refuse, cancel, or hold any Order for verification or risk assessment. Where an Order is held or declined, the Customer will be notified by email.
7. Pricing and Currency
Prices for Digital Products are displayed on the Website in the indicated currency, typically United States Dollars (USD), unless otherwise stated. Prices include or exclude applicable taxes as indicated at checkout.
Where the Customer's billing currency differs from the transaction currency, the conversion is performed by the Customer's bank, card issuer, or payment provider, applying their own exchange rates and fees. The Company has no control over and is not responsible for these conversion rates or additional fees.
The Company reserves the right to:
• Update displayed prices at any time without prior notice.
• Correct pricing errors, even after an Order has been submitted.
• Add or remove available currencies at its discretion.
• Vary pricing by region in accordance with applicable law and commercial considerations.
Changes in pricing do not affect Orders that have already been confirmed and processed.
8. Taxes and Fees
Where applicable by law, taxes such as Value Added Tax (VAT), Goods and Services Tax (GST), sales tax, or other consumption taxes may be added to the purchase price at checkout. The applicable rate is determined based on the Customer's location and the relevant tax jurisdiction.
The Customer is responsible for:
• Any additional tax obligations in their jurisdiction unrelated to the original transaction.
• Any fees imposed by their bank, card issuer, or payment provider, including foreign transaction fees, currency conversion fees, and processing fees.
• Any duties, levies, or charges imposed by their local authorities, where applicable.
The Company makes commercially reasonable efforts to comply with applicable tax collection and remittance obligations in the jurisdictions where it operates.
9. Data Handling and Privacy in Payment Processing
9.1 Data Collected by the Company
In connection with payment processing, the Company collects and retains only limited information, including:
• Customer name and billing address.
• Last four digits of the payment card used.
• Card brand (such as Visa or Mastercard).
• Transaction reference number and identifier.
• Transaction amount and currency.
• Date and time of transaction.
• Authorization status and outcome.
• Limited fraud screening indicators.
Full card numbers, CVV codes, expiration dates, and other sensitive authentication data are not stored on the Company's systems.
9.2 Data Handled by Payment Processors
Sensitive payment information is collected, encrypted, transmitted, and stored directly by certified payment processors operating in compliance with PCI-DSS and applicable data protection laws. These providers act as independent controllers or processors of payment data, depending on the nature of the transaction.
9.3 Privacy Compliance
All processing of personal data in connection with payments is conducted in accordance with our Privacy Policy and applicable data protection laws, including the General Data Protection Regulation (GDPR), the UK GDPR, the California Consumer Privacy Act as amended by the California Privacy Rights Act (CCPA/CPRA), and other applicable laws. Customers have the rights described in our Privacy Policy with respect to their personal data.
10. Account Security and Customer Responsibilities
To maintain the security of payment information and Accounts, the Customer is responsible for:
• Maintaining the confidentiality and security of Account credentials.
• Using strong, unique passwords for the Account on the Website.
• Enabling additional security features offered by their bank or card issuer, including 3D Secure and two-factor authentication.
• Promptly notifying us at contact@projectvilgatekaivenmorrick.com if they suspect any unauthorized use of their Account or payment information.
• Promptly notifying their bank or card issuer of any suspicious or unauthorized transactions.
• Keeping their device, browser, and security software up to date.
• Avoiding the use of public or unsecured networks for sensitive transactions.
The Company is not responsible for losses resulting from the Customer's failure to maintain appropriate security practices.
11. Unauthorized Transactions
If you believe that a transaction was made without your authorization or that your payment information has been compromised, please take the following steps immediately:
• Notify your bank or card issuer to dispute the charge and protect your payment method from further unauthorized use.
• Contact us at contact@projectvilgatekaivenmorrick.com with details of the transaction, including the Order reference number, date, and amount.
• Change your Account password and review your Account activity for any further suspicious activity.
Upon receiving a report of an unauthorized transaction, the Company will:
• Investigate the matter promptly.
• Cooperate with the Customer's bank, card issuer, or relevant financial institution.
• Suspend access to the affected Digital Product, where appropriate, pending investigation.
• Issue a refund where the unauthorized nature of the transaction is verified.
• Take appropriate security measures to prevent further unauthorized use.
12. Refunds and Chargebacks
For information about refund eligibility, request procedures, and chargeback handling, please refer to our Refund Policy. Refunds are processed exclusively to the original Payment Method used for the transaction and are subject to the timing and procedures of the relevant payment processor and financial institution.
Initiating a chargeback without first attempting to resolve the issue with us may be considered a breach of our Terms of Service. The Company reserves the right to dispute fraudulent or unjustified chargebacks, suspend or terminate Customer Accounts engaged in chargeback abuse, and pursue recovery of related losses.
13. Sanctions, Export Controls, and Restricted Jurisdictions
The Company complies with all applicable economic sanctions, trade restrictions, and export control laws of the United States and other relevant jurisdictions. As a result:
• Transactions originating from countries, regions, or individuals subject to comprehensive sanctions imposed by the U.S. Office of Foreign Assets Control (OFAC), the United Nations, the European Union, or other competent authorities will be declined.
• The Customer represents and warrants that they are not located in, under the control of, or a national or resident of any restricted or sanctioned jurisdiction, and that they are not listed on any prohibited persons list.
• Additional verification may be required for transactions originating from higher-risk jurisdictions.
The Company reserves the right to refuse, suspend, or cancel any transaction that it believes, in its sole discretion, may violate applicable sanctions, export controls, or anti-money laundering laws.
14. Anti-Money Laundering and Anti-Fraud Compliance
The Company has implemented internal procedures designed to detect and prevent money laundering, terrorist financing, fraud, and other financial crimes. These procedures include:
• Customer due diligence checks where appropriate.
• Monitoring of unusual or suspicious transaction patterns.
• Cooperation with payment processors and financial institutions in their compliance efforts.
• Reporting of suspicious activity to relevant authorities where required by law.
• Retention of transaction records as required by applicable law.
The Company reserves the right to request additional documentation, including proof of identity and source of funds, from Customers in connection with high-risk or high-value transactions.
15. Currency Conversion and International Transactions
For international transactions, currency conversion is performed by the Customer's bank, card issuer, or payment processor at the exchange rate applied at the time of the transaction. The Company is not responsible for:
• Exchange rate fluctuations between the time of Order placement and the time of payment settlement.
• Foreign transaction fees, currency conversion fees, or international processing fees imposed by the Customer's bank or card issuer.
• Differences between the amount displayed on the Website and the amount charged to the Customer's account due to currency conversion.
Customers are encouraged to confirm currency conversion rates and applicable fees with their bank or card issuer before completing the transaction.
16. Pending and Failed Transactions
A transaction may appear as pending on the Customer's account for various reasons, including:
• Pre-authorization hold placed by the card issuer before final settlement.
• Bank processing delays.
• Fraud screening review.
• Currency conversion processing.
If a transaction fails, is declined, or is reversed, the funds will typically be returned to the Customer's account within a few business days, although the exact timing depends on the Customer's bank or card issuer. The Company does not retain failed transaction amounts.
If you experience a transaction that remains pending for an unusually long period or appears to have been charged without delivery of the Digital Product, please contact us at contact@projectvilgatekaivenmorrick.com.
17. Receipts and Transaction Records
Following each successful transaction, the Customer receives a confirmation email containing:
• Order reference number.
• Date and time of the transaction.
• Description of the Digital Product(s) purchased.
• Total amount charged, including any applicable taxes.
• Payment method used (last four digits of the card or the type of payment service).
• Company contact information.
The Company retains transaction records for the periods required by applicable law, generally not less than seven (7) years, for tax, accounting, and regulatory purposes.
18. Subscription and Recurring Payments
Storifayo LLC does not currently operate subscription-based services, recurring billing models, or auto-renewal arrangements. All purchases made through the Website are one-time transactions for specific Digital Products.
If recurring or subscription-based services are introduced in the future, the relevant terms, including authorization requirements, cancellation procedures, and consumer protection disclosures, will be clearly communicated to Customers prior to enrollment, in compliance with applicable laws including U.S. federal and state subscription disclosure requirements and EU consumer protection rules.
19. Third-Party Payment Providers
The Company uses third-party payment providers to process payments. By using these providers, you agree to be bound by their applicable terms of service and privacy policies, in addition to the Company's policies. Key third-party providers may include but are not limited to:
• Stripe — Terms: https://stripe.com/legal — Privacy: https://stripe.com/privacy
• Other payment processors and gateways as integrated into the Services from time to time
The Company is not responsible for the actions, errors, or omissions of third-party payment providers, except to the extent required by applicable law.
20. Security Incident Response
In the event of a security incident affecting payment-related data or systems, the Company will:
• Investigate the incident promptly upon detection.
• Cooperate with affected payment processors, financial institutions, and regulators.
• Notify affected Customers where required by law and within applicable timeframes.
• Take appropriate remediation steps to mitigate harm and prevent recurrence.
• Notify supervisory authorities in accordance with applicable data breach notification laws, including GDPR Article 33, where applicable.
Customers will be promptly notified through their registered email address if their payment-related personal data is affected by a security incident requiring notification under applicable law.
21. Limitation of Liability
To the maximum extent permitted by applicable law, the Company shall not be liable for:
• Failures, errors, or delays caused by third-party payment processors, banks, or financial institutions.
• Losses resulting from the Customer's failure to maintain appropriate account or device security.
• Unauthorized transactions resulting from compromised payment methods or credentials caused by the Customer's negligence.
• Currency conversion rate differences or fees imposed by external parties.
• Service disruptions caused by force majeure events.
The Company's total aggregate liability for any payment-related claim shall not exceed the amount paid by the Customer for the affected transaction, except where higher liability is mandated by applicable law. The full limitation of liability is set forth in our Terms of Service.
22. No Endorsement of Specific Banks or Financial Institutions
The Company does not endorse, recommend, or favor any specific bank, card issuer, financial institution, or other entity involved in the payment chain. References to specific payment methods, providers, or networks are made solely for informational purposes.
23. Changes to This Policy
The Company reserves the right to modify this Policy at any time, in its sole discretion, to reflect changes in payment methods, security practices, third-party providers, applicable law, or business operations. When changes are made, we will:
• Update the "Effective Date" at the top of this Policy.
• Post the revised Policy on the Website.
• Provide additional notice for material changes affecting Customer rights, where required by law.
Continued use of the Services after changes become effective constitutes acceptance of the updated Policy.
24. Governing Law and Jurisdiction
This Policy is governed by and construed in accordance with the laws of the State of Wyoming, United States, without regard to its conflict of law principles. Any disputes arising out of or related to this Policy shall be resolved in accordance with the dispute resolution provisions of our Terms of Service.
For Customers located in the European Union, the United Kingdom, or other jurisdictions with mandatory consumer protection laws, nothing in this Policy deprives you of the protections afforded by the mandatory provisions of the laws of your country of residence.
25. Severability
If any provision of this Policy is found by a court of competent jurisdiction to be invalid, illegal, or unenforceable, the remaining provisions shall continue in full force and effect. The invalid provision shall be modified to the minimum extent necessary to make it enforceable, consistent with the original intent.
26. Language
This Policy is written in English. Any translations are provided for convenience only. In the event of any conflict or discrepancy between the English version and any translation, the English version shall prevail.
27. Contact Information
If you have any questions, concerns, or requests regarding payment methods, transaction security, or this Policy, please contact us:
Storifayo LLC
75 E 3rd St, Sheridan, WY 82801, United States
Website: https://projectvilgatekaivenmorrick.com/
Email: contact@projectvilgatekaivenmorrick.com
By placing an Order through the Website, you acknowledge that you have read, understood, and agree to be bound by this Payment Methods and Security Policy in its entirety.