Gathering Personal Information
We may process personal information of Users in a variety of ways, including, but not limited to, when users visit our Site, or use any of our Services; register on the Service; fill out a form; provide information for passing of anti-money laundering procedures. We also may obtain information about you from third party sources as required or permitted by applicable law, such as public databases, credit bureaus, ID verification partners, resellers and channel partners, joint marketing partners, and social media platforms for purposes of verifying your identity. We obtain such information with a purpose and a legal basis to comply with our legal obligations, such as anti-money laundering laws. From time to time, we may process additional data about client to make sure our Service is not used fraudulently or for other illicit activities. In such instances, processing is necessary for us to continue to perform our contract with you and others, as well as on the basis of our legitimate interest to prevent fraud, money laundering and other illicit activities.
Categories of data involved in data processing include:
Contact information such as email addresses and telephone numbers;
Demographic information such as city, post code and countries;
Financial information such as payment method information;
Cryptocurrency wallet addresses used;
Web browser type and version;
A list of URLs starting with a referring site, Your activity on Our Site;
Any documents containing personal data required to comply with financial regulation such as Anti Money Laundering (AML) and Know Your Customer (KYC). These can be, but are not limited to National Identity Card, Passport, Proof of Address, Proof of Funds & related documents. We can only accept English-written verification documents.
How long we retain information
We retain the information we collect for as long as needed to provide the Services (including aspects of risk management) and to comply with our legal and regulatory obligations, resolve disputes, and enforce our agreements (unless we are instructed otherwise). Such information is kept for the period of no less than five (5) years from point of the ending of a business relationship.
We may rectify, replenish, or remove incomplete or inaccurate information at any time and at our own discretion.
How we share collected information
We sometimes need to share personal information we process with third parties. Where necessary or required we may share information with authorities, other companies for internal administrative purposes, companies which we cooperate with and to other third parties, such as third party service providers used in connection with our Services (e.g. various analytical services and financial institutions that we have partnered with to jointly create and offer a product). The legal basis for this data processing is performance of contract between you and us, as well as our legitimate interest and our legal obligation.
We may share collected information with:
KYC providers - the company employs Sum and Substance Ltd (incorporated in the United Kingdom under the company number 09688671) for CDD and daily ongoing monitoring of the existing customer base;
suppliers and services providers (analytical, financial);
government bodies and other recipients in order to comply with applicable law;
courts and tribunals.
How do We Store Your Data?
We only keep Your personal data for as long as We need to in order to use it as described above and/or for as long as We have Your permission to keep it.
Data security is very important to Us, and to protect Your data We have taken suitable measures to safeguard and secure data collected through Our Site.
Steps We take to secure and protect Your data include:
Implemented & maintain a rigorous internal data protection policy;
Server-sided security measures & firewalls
The General Data Protection Regulation (GDPR) is the European privacy and security law. Though it was drafted and passed by the European Union (EU), it imposes obligations onto organizations anywhere, so long as they target or collect data related to people in the EU. The GDPR's primary aim is to enhance individuals' control and rights over their personal data and to simplify the regulatory environment for international business. The regulation was put into effect on May 25, 2018. The GDPR levies fines against those who violate its privacy and security standards.
How Can You Control Your Data?
In addition to Your rights under the GDPR, when You submit personal data via Our Site, You may be given options to restrict Our use of Your data. In particular, We aim to give You strong controls on Our use of Your data for direct marketing purposes (including the ability to opt-out of receiving emails from Us which You may do by unsubscribing using the links provided in Our emails and at the point of providing Your details and by managing Your Account).
How we transfer collected information internationally?
We intend to transfer the collected information we obtain from you only to recipients in the European Economic Area (“EEA”) as per GDRP. Those countries have the same data protection laws as the country in which you initially provided the information.
The collected information is not be transferred to a destination outside the European Economic Area ("EEA"). All data transfers are made in accordance with GDPR, under agreements and include all necessary standard data protection clauses adopted by a supervisory authority copy of which may be obtained by request made to the [email protected]
Despite data transfer, we save all our obligations and liability for any breaching of your personal data rights by action of our data-processors.
Most internet browsers are set up to accept cookies. If you do not wish to receive cookies, you may be able to change the settings of your browser to refuse all cookies or to have your computer notify you each time a cookie is sent to it, and thereby give yourself the choice whether to accept it or not. However, this may impair the quality of the services that the Companies provide to you in relation to your account.
Rights of users
As a data subject, You have the following rights under the GDPR, which this Policy and Our use of personal data have been designed to uphold:
The right to be informed about Our collection and use of personal data;
The right of access to the personal data We hold about You;
The right to rectification if any personal data We hold about You is inaccurate or incomplete;
The right to be forgotten – i.e. the right to ask Us to delete any personal data We hold about You;
The right to restrict (i.e. prevent) the processing of Your personal data;
The right to data portability (obtaining a copy of Your personal data to re-use with another service or organisation);
The right to object to Us using Your personal data for particular purposes;
Rights with respect to automated decision making and profiling.
If You have any cause for complaint about Our use of Your personal data, please contact Us using the details provided in section 10 and We will do Our best to solve the problem for You.
By using this Site, you signify your acceptance of this policy. If you do not agree to this policy, please do not use our Site. Your continued use of the Site following the posting of changes to this policy will be deemed as your acceptance of those changes.
If you have already registered an account, you can find out how to terminate or cancel your account.
If you have a concern about the way we handle your personal information, you have a right to lodge a complaint. For further information, please contact our Data Protection Officer at [email protected], or, alternatively, you can fill out a contact form.