Suby’s Role
Technology Layer
Suby provides technical infrastructure to configure, trigger, and monitor payment instructions. It does not hold or custody customer funds, fiat balances, private keys, or card data at any point.
Orchestration Only
All payments are executed and settled by licensed third-party providers or blockchain networks, directly between end users and merchants. Funds do not transit through accounts owned or operated by Suby.
Suby does not have discretionary authority over funds and does not independently determine beneficiaries or settlement destinations outside of merchant-defined configurations.
Licensed Partners
All regulated activities within the payment stack are handled by licensed and compliant third-party partners.Card Payment Service Providers
Handle card payment execution, settlement, and PCI DSS compliance.
Banking & Settlement Partners
Responsible for fiat settlement, funds custody, and regulatory reporting.
On-ramp & Off-ramp Providers
Handle fiat-to-crypto and crypto-to-fiat conversion flows.
Stablecoin & Blockchain Infrastructure
Responsible for on-chain execution, stablecoin issuance, and network compliance.
Payment Flow
For both card and crypto payments:- Payments are executed and settled by licensed PSPs or blockchain networks
- Funds are settled directly to merchant-designated wallets or accounts
- Suby acts as a technical orchestration layer, triggering, routing, and monitoring payment instructions
- Payment flows and automated actions are enforced through predefined rules and partner-level controls
Merchant Onboarding & Verification
Suby performs identity and business verification on all merchants during onboarding, before card payments are enabled.KYC (Know Your Customer)
Applied to individual merchants, identity verification of the person behind the account, including government-issued ID and proof of address.
KYB (Know Your Business)
Applied to business merchants, verification of the legal entity, beneficial ownership, and business activity.
- Suby’s internal KYC/KYB assessment
- Approval by Suby’s licensed PSP and banking partners, who apply their own compliance and risk frameworks
A merchant approved by Suby may still be subject to additional review or restrictions imposed by our regulated partners. Final approval for card payment processing depends on partner-level clearance.
Card Payments & PCI Compliance
Card payments are processed exclusively via PCI DSS-compliant payment providers.Suby servers never receive, store, or process raw cardholder data. Card information is transmitted directly from the end user to the PSP via tokenization and provider-hosted payment flows.
End-User Identity & KYC
Card Payments
End-user KYC is not applied, in line with standard card-network rules and PSP risk frameworks.
Crypto Payments
May be available without end-user identity checks, subject to partner requirements, transaction thresholds, and jurisdictional regulations. Where required, identity verification is performed by Suby’s regulated partners.
Data Protection
No Sensitive Data Stored
Sensitive payment data is never stored on Suby systems.
Data Use
User and merchant data is processed strictly for service delivery and platform operations. Suby does not sell, rent, or monetize personal data.
Jurisdictional Limitations
Suby does not actively market or provide services in jurisdictions where its partners are unable to offer compliant payment services. Feature availability may vary based on merchant location, end-user location, payment method, and partner coverage.Supported Countries
View the full list of supported regions and restricted jurisdictions.