Terms of Service

01 Acceptance of Terms

By creating an account on DPAY, accessing the DPAY dashboard, using the DPAY API, or otherwise interacting with any services provided by DITS through the DPAY platform at dpay.ly, you acknowledge that you have read, understood, and agree to be bound by these Terms of Service, as well as our Privacy Policy, which is incorporated herein by reference.

If you are accepting these terms on behalf of a business entity, you represent and warrant that you have the legal authority to bind that entity to these terms. In such a case, "you" and "your" shall refer to that entity.

02 Description of Service

DPAY is a payment gateway aggregation platform developed and operated by DITS (Dimensions Information Technology Solutions). The platform provides merchants with a unified API and management dashboard to accept payments through multiple Libyan payment gateways, including but not limited to:

• Moamalat
• EDFali
• MobiCash
• OnePay
• MasrefyPay
• SaharaPay
• YousrPay

DPAY acts as a payment facilitator and technology intermediary. We provide the software infrastructure that enables merchants to connect to and manage their relationships with the above-mentioned payment gateways through a single integration point. DPAY is not a bank, licensed financial institution, money services business, or payment processor. We do not hold, transfer, or process funds directly. All payment processing is performed by the respective payment gateway providers.

The availability of specific gateways may change over time as we add new integrations or as gateway providers modify their services.

03 Account Registration

To use DPAY, you must register for an account. By registering, you agree to the following conditions:

• Age requirement: You must be at least 18 years of age to create an account and use DPAY. By registering, you represent and warrant that you meet this minimum age requirement.
• Accurate information: You must provide truthful, accurate, current, and complete information during the registration process and keep your account information up to date. This includes your legal name, business name, email address, phone number, and any other information requested.
• Account security: You are solely responsible for maintaining the confidentiality and security of your account credentials, including your password and any API tokens. You agree to notify DITS immediately of any unauthorized use of your account or any other breach of security.
• One account per entity: Each business entity may only maintain one active DPAY account. Creating multiple accounts for the same business entity is prohibited and may result in the suspension or termination of all associated accounts.
• API token confidentiality: You must not share, publish, or otherwise disclose your API tokens (Sanctum bearer tokens) to unauthorized parties. API tokens should be stored securely in server-side environments and must never be exposed in client-side code, public repositories, or insecure channels.

DITS reserves the right to refuse registration, suspend, or terminate any account at its sole discretion if any of these conditions are violated.

04 Payment Processing

DPAY facilitates the initiation and management of payment transactions between your customers and your business through the connected payment gateways. By using our payment processing services, you understand and agree to the following:

• Transaction facilitation: We facilitate payments between customers and merchants through connected gateways. DPAY creates and manages payment sessions, routes transactions to the appropriate gateway, and relays transaction status information back to the merchant.
• Gateway dependency: Transaction processing is subject to each gateway's own terms, conditions, policies, and operational availability. We do not guarantee the availability, performance, or uptime of any third-party payment gateway.
• Third-party responsibility: DPAY is not responsible for gateway downtime, processing errors, delays, or failures that originate from or are caused by the payment gateway providers or any third-party systems beyond our reasonable control.
• Payment confirmation: Successful payments are confirmed via webhook callbacks and reflected in your DPAY dashboard. You should implement proper webhook verification (HMAC signature checking) to ensure the authenticity of payment notifications.
• Refunds: Refund processing is governed by the refund policies and capabilities of each individual payment gateway. DPAY will facilitate refund requests where supported by the gateway, but the ultimate processing of refunds is handled by the gateway provider.

You acknowledge that DPAY does not guarantee the successful completion of any particular transaction and shall not be held liable for transaction failures caused by factors outside of our platform.

05 Fees and Charges

DPAY is currently offered free of charge (0 LYD) for all features, including but not limited to dashboard access, API usage, payment session management, invoicing, webhook notifications, and analytics.

• Right to introduce fees: DITS reserves the right to introduce fees for the use of DPAY at any time. Should fees be introduced, we will provide a minimum of 30 days' advance written notice before any charges take effect.
• Gateway fees: Payment gateway providers may charge their own independent fees for transaction processing, settlement, or other services. These fees are determined entirely by the respective gateway providers and are outside of DPAY's control. You are responsible for understanding and complying with the fee structures of the gateways you connect to.
• Transparent communication: Any future fees introduced by DPAY will be clearly communicated before implementation via email notification, platform dashboard announcements, or both. You will have the opportunity to review and accept the new fee structure before it takes effect.

06 Merchant Obligations

As a merchant using DPAY, you agree to fulfill the following obligations at all times:

• Legal compliance: You must comply with all applicable laws, regulations, and rules of the State of Libya, including but not limited to laws related to commerce, electronic transactions, consumer protection, data privacy, and anti-money laundering.
• Accurate business information: You must provide and maintain accurate, complete, and up-to-date information about your business, including your legal business name, registration details, and contact information.
• Lawful use: You must not use the DPAY platform for any illegal, fraudulent, deceptive, or unauthorized purposes. All goods and services sold through payment transactions facilitated by DPAY must be legal under Libyan law.
• Valid gateway credentials: You are responsible for obtaining, maintaining, and keeping current all necessary credentials and accounts with the payment gateway providers you wish to use through DPAY.
• Customer dispute resolution: You must respond to customer complaints, chargebacks, and payment disputes in a timely and professional manner. DPAY is not responsible for resolving disputes between merchants and their customers.
• API token security: You must keep all API tokens, authentication credentials, and access keys secure and confidential. You are liable for any actions performed using your credentials.
• Webhook verification: You must implement proper webhook verification, including HMAC signature checking, to ensure the integrity and authenticity of payment status notifications received from DPAY. Failure to verify webhooks may expose your system to fraudulent or spoofed payment confirmations.

07 Prohibited Activities

You are strictly prohibited from using DPAY for any of the following activities. Violation of these prohibitions may result in immediate suspension or termination of your account, and may be reported to the appropriate authorities:

• Money laundering or terrorist financing: Using the platform to launder money, finance terrorism, or engage in any activity that violates anti-money laundering (AML) or counter-terrorism financing (CTF) regulations.
• Fraudulent transactions: Initiating, facilitating, or participating in fraudulent, deceptive, or unauthorized transactions, including the submission of false or misleading transaction data.
• Illegal goods or services: Using the platform to process payments for the sale of illegal goods, services, or content under Libyan law or any other applicable jurisdiction.
• Unauthorized access: Attempting to gain unauthorized access to DPAY systems, other user accounts, gateway infrastructure, or any related systems or networks through hacking, password mining, brute force, or any other means.
• Reverse engineering: Reverse engineering, decompiling, disassembling, or otherwise attempting to derive the source code, algorithms, or underlying structure of the DPAY platform or its components.
• Service degradation: Engaging in excessive or abusive API usage that degrades the quality of service for other merchants, including denial-of-service attacks, automated scraping, or any behavior that places an unreasonable load on our infrastructure.
• Impersonation: Impersonating other merchants, users, DITS employees, or any other individual or entity while using the platform.
• Non-payment purposes: Using the DPAY platform for any purposes other than legitimate payment processing and related business operations as intended by the platform's design.

08 API Usage

DPAY provides a RESTful API for programmatic integration with your applications and systems. Access to the API is governed by the following terms:

• Authentication: API access is provided via Laravel Sanctum bearer tokens. Each API request must include a valid bearer token in the Authorization header. Tokens are generated through the DPAY dashboard and are tied to your merchant account.
• Rate limits: DITS may impose rate limits on API requests to ensure fair usage and maintain platform stability. Current rate limits, if applicable, are documented in the API Documentation. Exceeding rate limits may result in temporary throttling or suspension of API access.
• API changes: DITS will make reasonable efforts to communicate API changes, updates, and deprecations in advance. Material changes to the API will be announced via platform notifications, documentation updates, or email.
• Deprecation policy: Deprecated API endpoints will be maintained for a reasonable migration period to allow you to update your integrations. The length of this migration period will be communicated at the time of deprecation.
• Token security: You must not share API tokens with unauthorized parties, expose them in client-side code (including JavaScript, mobile applications, or browser-accessible environments), store them in public version control repositories, or transmit them over insecure channels. Compromised tokens should be revoked immediately through the dashboard.

DITS reserves the right to suspend or revoke API access for any account that violates these terms or uses the API in a manner that threatens the security, stability, or performance of the platform.

09 Intellectual Property

The following intellectual property provisions govern the use of the DPAY platform:

• DITS trademarks: DPAY, DITS, and all associated logos, wordmarks, and brand elements are trademarks or registered trademarks of DITS. You may not use these marks without prior written permission from DITS, except as necessary to identify DPAY as your payment processing platform in accordance with any brand guidelines we may provide.
• Proprietary platform: The DPAY platform, including its source code, design, user interface, architecture, documentation, API specifications, and all related materials, is the proprietary property of DITS and is protected by applicable intellectual property laws. All rights not expressly granted herein are reserved by DITS.
• Your data: You retain full ownership of all business data, transaction records, customer information, and any other data that you create, upload, or generate through your use of the DPAY platform. DITS does not claim ownership over your data.
• Limited license: Subject to your compliance with these Terms of Service, DITS grants you a limited, non-exclusive, non-transferable, revocable license to access and use the DPAY platform and its API for the purpose of facilitating legitimate payment processing for your business. This license does not include the right to sublicense, resell, or redistribute access to the platform.

10 Limitation of Liability

To the maximum extent permitted by applicable law, the following limitations of liability apply:

• "As is" provision: The DPAY platform and all associated services are provided on an "as is" and "as available" basis, without warranties of any kind, whether express, implied, or statutory. DITS specifically disclaims all implied warranties of merchantability, fitness for a particular purpose, and non-infringement.
• No indirect damages: In no event shall DITS, its directors, employees, partners, agents, suppliers, or affiliates be liable for any indirect, incidental, special, consequential, or punitive damages, including but not limited to loss of profits, data, revenue, business opportunities, or goodwill, regardless of the cause of action or the theory of liability.
• Third-party services: DITS shall not be liable for any losses, damages, or disruptions arising from the downtime, failure, errors, or limitations of third-party payment gateways, internet service providers, hosting providers, or any other external service upon which the platform depends.
• Maximum liability: In any event, the total aggregate liability of DITS arising from or related to these terms or your use of the platform shall not exceed the total amount of fees paid by you to DITS for the use of DPAY during the twelve (12) months preceding the event giving rise to the claim. As the platform is currently offered free of charge, the maximum liability is currently zero (0 LYD).
• Account security: DITS is not responsible for any losses, damages, or unauthorized transactions resulting from unauthorized access to your account caused by your failure to maintain the security of your credentials, API tokens, or other authentication mechanisms.

11 Indemnification

You agree to indemnify, defend, and hold harmless DITS, its officers, directors, employees, agents, and affiliates from and against any and all claims, demands, actions, liabilities, damages, losses, costs, and expenses (including reasonable legal fees) arising out of or in connection with:

• Your use of the DPAY platform or any services provided through it.
• Your violation of any provision of these Terms of Service.
• Your violation of any applicable law, rule, or regulation.
• Your infringement of any intellectual property or other rights of any third party.
• Any dispute between you and your customers relating to transactions processed through DPAY.
• Any data breach or security incident resulting from your failure to comply with the security requirements outlined in these terms.

This indemnification obligation shall survive the termination or expiration of these terms and your use of the platform.

12 Termination

Either party may terminate the relationship governed by these terms under the following conditions:

• Voluntary termination: You may close your DPAY account at any time by contacting our support team or using the account closure functionality in the dashboard. Upon closure, your access to the dashboard and API will be deactivated.
• Termination by DITS: We may suspend or terminate your account immediately, with or without prior notice, if we determine at our sole discretion that you have violated these Terms of Service, engaged in prohibited activities, or if your continued use of the platform poses a risk to DITS, other users, or the integrity of the platform.
• Cessation of access: Upon termination, your access to the DPAY dashboard and API will cease immediately. Any pending API tokens will be revoked and will no longer function.
• Data retention: Transaction records and related data will be retained in accordance with applicable regulatory requirements and our Privacy Policy. We may retain certain data as required by law even after your account is closed.
• Surviving obligations: Any obligations and provisions that by their nature should survive termination, including but not limited to indemnification, limitation of liability, intellectual property rights, and governing law, shall survive the termination of these terms.

13 Governing Law

These Terms of Service and any disputes arising from or in connection with them, including their formation, interpretation, performance, and termination, shall be governed by and construed in accordance with the laws of the State of Libya.

Any legal proceedings arising out of or relating to these terms or your use of the DPAY platform shall be brought exclusively in the competent courts located in Benghazi, Libya. By using the platform, you consent to the personal jurisdiction and venue of such courts and waive any objection based on inconvenient forum.

14 Dispute Resolution

In the event of any dispute, claim, or controversy arising out of or relating to these Terms of Service or your use of DPAY, the parties agree to the following resolution process:

1. Good-faith negotiation: The parties shall first attempt to resolve the dispute through direct, good-faith negotiation. Either party may initiate the negotiation process by providing written notice of the dispute to the other party, including a description of the issue and the proposed resolution.
2. Negotiation period: The parties shall have a period of thirty (30) days from receipt of the dispute notice to reach a mutually satisfactory resolution through negotiation.
3. Court proceedings: If the dispute cannot be resolved through good-faith negotiation within the 30-day period, either party may submit the dispute to the appropriate competent court in Benghazi, Libya for resolution in accordance with the governing law provisions of these terms.

Nothing in this section shall prevent either party from seeking injunctive or other equitable relief in court where necessary to prevent irreparable harm.

15 Modifications to These Terms

DITS reserves the right to modify, amend, or update these Terms of Service at any time at its sole discretion. When we make changes:

• The updated terms will be posted on this page with a revised "Last Updated" date.
• Your continued use of the DPAY platform after any modifications to these terms constitutes your acceptance of the revised terms.
• Material changes that significantly affect your rights or obligations will be communicated to you via email notification to the address associated with your account, platform dashboard notification, or both.
• We encourage you to review these terms periodically to stay informed of any changes.

If you do not agree with any modifications to these terms, you must discontinue your use of the platform and close your account.

16 Contact Information

If you have any questions, concerns, or feedback regarding these Terms of Service or any aspect of the DPAY platform, please contact us: