Privacy Policy

This Privacy Policy explains how we collect, use, disclose, and protect your personal information when you use our cryptocurrency exchange platform ("Platform"). We are committed to protecting your privacy and ensuring the security of your personal data. By using our Platform, you consent to the practices described in this Privacy Policy. This policy applies to all users of our services, including visitors, registered users, and API consumers.

We collect the following types of information: Basic Account Information: • Contact Information: Email address • Account Credentials: Encrypted password, 2FA settings Optional Verification Information (for higher withdrawal limits): • Identity Information: Full name, date of birth, nationality, government-issued ID • Contact Details: Phone number, residential address • Verification Documents: ID scans, proof of address, selfie photos Note: KYC verification is optional and only collected if you choose to increase your withdrawal limits. Usage Information: • Device Information: IP address, browser type, operating system, device identifiers • Activity Logs: Login history, trading history, page views, API usage • Location Data: Approximate location based on IP address • Cookies and Tracking: Session data, preferences, analytics data Transaction Information: • Trade History: Orders, executions, cancellations • Deposit/Withdrawal Records: Transaction IDs, amounts, addresses • Balance Information: Account balances and asset holdings

We use your information for the following purposes: Service Delivery: • Process your trades and transactions • Manage your account and provide customer support • Send important notifications about your account • Provide requested products and services Compliance & Security: • Verify your identity if you opt into KYC for higher limits • Detect and prevent fraud, money laundering, and other illegal activities • Comply with legal and regulatory obligations • Protect the security of our Platform and users Improvements & Analytics: • Improve our products and services • Analyze usage patterns and optimize user experience • Develop new features and functionality • Conduct research and analytics Communications: • Send marketing communications (with your consent) • Provide updates about platform changes • Respond to your inquiries and support requests

We may share your information with: Service Providers: • Payment processors and banking partners • Identity verification services (KYC providers) • Cloud hosting and infrastructure providers • Customer support and communication tools Legal & Regulatory: • Law enforcement agencies when required by law • Regulatory authorities and government bodies • Courts in response to valid legal process Business Transfers: • In connection with mergers, acquisitions, or asset sales • To successors of our business operations With Your Consent: • When you explicitly authorize sharing • For purposes disclosed at the time of collection We do NOT sell your personal information to third parties for marketing purposes.

We implement robust security measures to protect your data: Technical Safeguards: • End-to-end encryption for data in transit (TLS/SSL) • Encryption at rest for sensitive data • Multi-factor authentication (2FA) • Regular security audits and penetration testing • Secure cold storage for cryptocurrency assets Operational Safeguards: • Access controls and role-based permissions • Employee background checks and security training • Incident response and disaster recovery plans • Regular backup procedures Despite our best efforts, no security system is impenetrable. We cannot guarantee absolute security but commit to promptly notifying affected users in case of a data breach.

We retain your information for as long as necessary to: • Provide our services to you • Comply with legal and regulatory obligations • Resolve disputes and enforce agreements • Maintain accurate business records Retention Periods: • Account Information: Duration of account plus 5 years • Transaction Records: 7 years (regulatory requirement) • KYC Documents: 5 years after account closure (if provided) • Usage Logs: 2 years • Marketing Preferences: Until consent is withdrawn After the retention period, we securely delete or anonymize your data unless longer retention is required by law.

Depending on your jurisdiction, you may have the following rights: Access & Portability: • Request a copy of your personal data • Receive your data in a portable format Correction & Deletion: • Correct inaccurate or incomplete data • Request deletion of your data (subject to legal requirements) Restriction & Objection: • Restrict processing of your data • Object to certain uses of your data • Opt-out of marketing communications Consent Withdrawal: • Withdraw consent for optional processing • Disable non-essential cookies To exercise these rights, contact us at [email protected]. We will respond within 30 days. Note that some requests may be subject to legal limitations.

We use cookies and similar technologies: Essential Cookies: • Session management and authentication • Security features and fraud prevention • Load balancing and platform functionality Analytics Cookies: • Usage analytics and performance monitoring • User behavior analysis for improvements • Error tracking and debugging

Your data may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place: • Standard Contractual Clauses approved by relevant authorities • Adequacy decisions where applicable • Binding Corporate Rules for intra-group transfers • Consent for specific transfers where required We comply with applicable data protection laws including GDPR for EU residents and similar regulations in other jurisdictions.

For privacy-related inquiries: Data Protection Officer: • Email: [email protected] • Response Time: Within 30 days General Support: • Email: [email protected] To exercise your data rights, please include sufficient information to verify your identity and specify the rights you wish to exercise. We take all privacy concerns seriously and are committed to resolving any issues promptly.