Privacy policy

The processing of personal data is carried out in accordance with the provisions of Regulation of the European Parliament and Council of the European Union on the protection of individuals with regard to the processing of personal data and on the free movement of such data (English, "General Data Protection Regulation" or "GDPR"), and our local rules.

In cases where the legislation of your country of residence establishes stricter standards for the processing of Personal data, we undertake to comply with such standards when processing your data.

The legal basis for processing Personal data includes the following:

1. Consent. Processing of Personal data may be carried out with your prior explicit consent, given voluntarily, knowingly, and unequivocally. You have the right to revoke your consent at any time by notifying us, which will lead to the termination of processing of your Personal data unless otherwise provided by law. Processing of personal data that was based solely on consent will be stopped.
2. Performance of a contract. We process your personal data in order to fulfill our obligations under the contract to which you are a party, or in order to take the necessary steps prior to entering into a contract. Such processing may include the identification of the User, providing access to the Services.
3. Legitimate interests. We may process your personal data in order to protect our legitimate interests or the interests of third parties, provided that such interests do not violate your rights, freedoms and legitimate interests. Legitimate interests may include ensuring the security of the Platform, preventing fraud, and improving the quality of Services.
4. Compliance with the law. We are obliged to process personal data when this is necessary to fulfill the obligations established by the legislation and regulations of Malta. This may include fulfilling legislative requirements in the area of providing services related to virtual assets, taxation, accounting, financial control, or consumer protection, as well as the obligation to provide data to government bodies in cases provided for by law.

The Operator does not generally verify the accuracy of the personal data provided, nor does it monitor the legal capacity of the data subjects. The risk of providing inaccurate personal data, including providing data of third parties as their own, is borne by the data subject themselves.

The Operator assumes that the user provides reliable and sufficient information on the issues offered in the Site forms or by providing consent and maintains this information up to date.

To provide access to the Site, we request information from users about themselves, which can be divided into the following categories:

Response to a request. To respond to your request left through the Site, the Operator will process your data to answer your request.

The operator will process the following data:

• Your name
• E-mail
• Phone number

The basis for processing the listed personal data will be your request.

The personal data processed within the framework of this goal do not belong to special categories or biometric data and are processed in an automated manner.

The Operator will delete personal data as soon as your request is resolved. If a contract is concluded with the Operator, the Operator will continue to process personal data for its execution.

Contract performance. To execute the contract, the Operator needs your data to verify your identity. The operator will process the following data:

• Your first name and last name
• Identity document data
• Bank details
• E-mail
• Phone number

The basis for processing the listed personal data will be the execution of the contract. The personal data processed in the framework of this goal do not belong to special categories or biometric data and are processed in an automated manner.

Personal data is processed until the contract is executed.

Receiving information about the Operator's activities. With your consent, the Operator will notify you of new products and offers. The Operator will process the following data:

• Your name
• E-mail
• Phone number

The basis for processing your personal data in this process is your consent. You have the right to withdraw your consent to the processing of personal data, for this, contact the Operator with an application in free form.

The personal data processed within the framework of this goal do not belong to special categories or biometric data and are processed in an automated manner.

Personal data will be processed until you refuse to receive information.

The Operator is constantly improving the Site, expanding its functionality and introducing new features. In this regard, the list of personal data to be collected, indicated above, may be subject to change. To use new functions, the Operator has the right to request you to provide additional information. In this case, you will be notified in advance of the relevant changes and receive a request for consent to the collection and processing of additional personal data.

Please note that the provision of personal data is on a voluntary basis. However, refusal to provide them may result in the inability to use certain functions of the Site.

The Operator does not carry out automated decision-making, and also does not use Personal data for automatic analysis or assessment of personality characteristics (including profiling).

Personal data is stored exclusively for the period necessary to achieve the purposes for which it was collected and processed.

Please note that in certain cases, Personal data may be stored longer than the specified period, if this is required in accordance with applicable laws and regulations.

The Operator does not carry out cross-border transfer of personal data, that is, does not transfer personal data of data subjects to the territory of foreign states.

If it becomes necessary to transfer personal data across borders in the future, the Operator will ensure compliance with all requirements established by the legislation of Malta, including obtaining the consent of the data subject (in cases provided for by law), and also transfer data only to those countries that provide adequate protection of the rights of data subjects, or if there are other legal grounds.

We have implemented a comprehensive approach to ensuring the confidentiality, integrity, and security of your personal data, taking measures to prevent its loss, theft, unauthorized access, misuse, alteration, or destruction. These measures include both technical and organizational security measures that meet the best world practices of data protection.

To ensure the security of your data, we use modern encryption technologies and other protection methods. Key technical measures include:

1. Data encryption: We use Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols, which ensure the secure transfer of data over the Internet, guaranteeing its encryption and protection against interception. All data transmitted between you and our platform is protected using these technologies, which prevents it from being read or modified by third parties.
2. HTTPS and secure encoding: We ensure data protection through HTTPS and secure encoding, which helps prevent information leakage during its transmission over the network.
3. Regular security audits: We regularly conduct penetration testing and assess vulnerabilities in our security system to minimize risks associated with data security.

We also take the following organizational measures to protect your personal data:

1. Access restriction: Only a limited circle of authorized employees has access to your Personal data, and this access is strictly controlled. All employees are obliged to maintain confidentiality and not to transfer information to third parties without legal grounds.
2. Security policies and procedures: We have implemented strict internal security policies and procedures to guarantee adequate data protection and processing in accordance with applicable laws and regulations.
3. Employee training: Our employees undergo regular training on issues of confidentiality and data protection to ensure that all operations with personal data comply with current requirements and security standards.

We periodically assess and update security measures, taking into account changes in legislation, technologies, and threats. This allows us to respond promptly to potential risks and improve the protection of your personal data.

We use modern systems of protection against external threats, such as firewalls and anti-virus programs, to prevent unauthorized access and minimize the risks of external attacks.

Your main rights as a subject of personal data include the following:

1. Right of access: You have the right to request information about what personal data about you is being processed, as well as to receive a copy of this data. We will provide you with information about the fact of processing of personal data, the legal grounds and purposes of processing personal data, methods of processing personal data, sources of data acquisition, processing periods, name and location of the holder of the personal data array, information about persons who have access to personal data or to whom personal data may be transferred on the basis of an agreement with the holder of the personal data array or on the basis of law, and other information at your written request. We may request a document confirming your identity before transferring the requested information, and we may charge a fee if such information is provided on physical media (paper, diskette, etc.) to cover the cost of such media. Information about the availability of personal data and the personal data itself are provided to you within a period not exceeding 7 (seven) days from the date of the application.
2. Right to rectification: If your personal data is inaccurate or incomplete, you have the right to request its correction. We undertake to update the data within a reasonable time frame. We may request documentary confirmation of the inaccuracy of the personal data we have.
3. Right to erasure (right to be forgotten): You have the right to request the deletion of your personal data if it is no longer required for the purposes for which it was previously requested, if you have withdrawn your consent, if the data has been processed illegally, or if this is required in accordance with applicable laws. However, it should be borne in mind that in some cases, for example, for the fulfillment of legal obligations, we may be forced to refuse you and continue to store your personal data.
4. Right to data portability: You have the right to receive your personal data in a structured, commonly used and machine-readable format, and also to transfer it to another operator if the processing is based on your consent or contract and is carried out using automated means.
5. Withdrawal of consent: If the processing of your personal data is based on your consent, you have the right to withdraw it at any time. Withdrawal of consent does not affect the legality of data processing that was carried out before the withdrawal of consent. This will not affect the legality of any processing that was carried out before the withdrawal of consent. Please note that any personal data for which the basis for processing differs from your consent will continue to be processed.
6. Right to restriction of processing: In some jurisdictions, applicable legislation may give you the right to restrict or object to the processing or transfer of your personal data under certain circumstances. We may continue processing personal data if this is necessary to protect our rights or in any other cases provided for by applicable legislation.

Please note that none of the aforementioned rights is absolute, meaning that they must generally be balanced against our own legal obligations and legitimate interests. If a decision is made to reject your request, we will inform you of this together with the reasons for our decision.

To exercise any of the rights listed, please contact us using the contact details indicated in this Policy.

If you believe that your rights to the protection of personal data have been violated, you have the right to file a complaint with the competent authority, which in Malta is responsible for overseeing the processing of personal data.

The Operator is not responsible for the possible misuse of personal data and any damage caused to the user, resulting from:

technical failures in the software and in the technical means and networks that are beyond the control of the Operator;

in connection with the intentional or unintentional use of the Site not for its intended purpose by third parties;

failure to ensure the confidentiality of access passwords or intentional transfer of access passwords, other information from the Site by the user himself when receiving the Operator's services or using the Site by other persons who do not have access to this information;

unlawful actions of third parties to access the Site's data, including personal data.

The Operator reserves the right, at its sole discretion and at any time, to amend this Policy by posting its amended version on the Site. The new version of the Policy will include the amended date of last update on its first page.

The user undertakes, at his own risk, to constantly check for amendments to the Policy and to perform the following actions: (i) to remember/note the date of the last update indicated in the Policy (for example, save a copy of the Policy, etc.), (ii) regularly visit the corresponding page of the Site and study the document in case of a change in the update date.

If you do not agree with any changes to the Policy, you must immediately stop using the Site.

We transfer your personal data to third parties solely to the extent necessary to achieve the processing purposes specified in this Policy, and in accordance with applicable legislation of Malta.

Transfer occurs only in the following cases:

1. With your prior explicit consent;
2. Within the framework of the execution of a contract to which you are a party;
3. To fulfill our legal obligations;
4. To protect our legitimate interests or the interests of third parties.

The transfer of your Personal data may be made to the following categories of entities:

1. Business partners, suppliers and subcontractors: We may involve service providers such as agents, counterparties, payment providers, notification services, and other companies that assist us in providing Services and operating the Platform.
2. Legal and government agencies: Your personal data may be transferred to competent government bodies, including courts and law enforcement agencies, if this is required by law.
3. Legal successors: In the event of reorganization, merger, sale, or other transfer of our business, your Personal data may be transferred to the legal successor.

We guarantee that we will not sell, exchange, or otherwise transfer your personal data to third parties without your explicit consent.

We take all necessary measures to protect your Personal data during its transfer to third parties, including the use of confidentiality agreements, encryption mechanisms, and other technical and organizational means.

We are not responsible for the use of your Personal data by third parties if such transfer was made on the basis of your consent or in cases provided for by law.

You have the right to request information about who, when, and on what grounds your Personal data was transferred to by contacting us using the contact details specified in this Policy.

The Site is not intended for persons under the age of 18. We do not knowingly collect personal data from persons under the age of 18. If a parent or guardian becomes aware that his or her child has provided us with personal data without their consent, he or she should contact us at the details specified in the Policy. If we become aware that a person under the age of 18 has provided us with personal data, we will delete such information and terminate processing and access to the Site.

The Operator uses Cookies and similar technologies to improve the functionality of the Site, analyze user experience, monitor the use of the Site's functionality, and provide personalized content and advertising.

When you first visit the Site, we ask for your consent to the placement of Cookies on your device.

You can manage Cookies through your browser settings. You have the right to prohibit the use of Cookies, but this may limit the functionality of the Site.

Theft of personal data and practice, currently known as "phishing", cause Operator serious concern. Saving information to protect you from identity theft is our top priority. We do not ask for or will not request information about your credit card, login system or national identification numbers in unsecured or unsolicited email messages or by telephone.