Personal Data Protection Policy
Drafted in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data, repealing Directive 95/46 / EC (General Data Protection Regulation) (GDPR).
PERSONAL DATA PROTECTION POLICY
For the purposes of GDPR, company CRYPTO INVESTMENT INTERNATIONAL, s.r.o., with its registered office at: Žižkova 7803/9, 811 02 Bratislava – mestská časť Staré mesto, ID number: 53 230 728, entered in the Commercial Register of the District Court Bratislava I, Section: Sro, File No .: 147245/B (hereinafter also „Controller“ or „We“ in the appropriate grammatical form) is the Controller of any information systems in which the Users´ Personal Data, or the natural person through whom the User, who is a legal entity, acts is processed.
For the purposes of GDPR, the person whose Personal Data the Controller processes is the User, or a natural person through whom the User, who is a legal entity acts (hereinafter also „Data Subject“ or „You“ in the appropriate grammatical form).
PRINCIPLES OF PROTECTION OF PERSONAL DATA
The Controller processes Your Personal Data in accordance with the following principles set out in the GDPR:
Legality, fairness and transparency – We process Your Personal Data in a lawful, fair and transparent manner.
Purpose limitation – We collect Your Personal Data for specific, explicit and legitimate purposes, and We do not process Your Personal Data in a way that is incompatible with those purposes.
Data minimization – The scope of processed Personal Data is limited to processing of Personal Data which is reasonable, relevant, and limited to the extent necessary for the purposes for which they are processed.
Accuracy – We keep Your personal information correct and updated as needed.
Minimization of retention – We store Your Personal Data in a form that allows Your identification for as long as this capability is necessary for the purposes for which We process Your Personal Data.
Integrity and confidentiality – We guarantee adequate security of Your Personal Data, including protection against unauthorized or illegal processing and accidental loss, destruction or damage.
Responsibility – We process any Personal Data of Yours responsibly and in accordance with the GDPR.
PERSONAL DATA SOURCES AND PROCESSING SCOPE
We primarily obtain Your Personal Data directly from You. During the process of registering and setting up the Account, You will provide us with Your e-mail address (Your login name) and set a password for the Account.
After setting up the Account, and before We provide You with any Services, We will ask You to provide additional information in order to verify Your identity, assess Your risk and check for possible fraud, money laundering, financing of terrorism or other illegal activities. In this context, We will ask You in particular to provide Personal Data, e.g. to fill in Your name, surname and country of residence, resp. registered office, for the purpose of fulfilling our legal obligations, in particular the obligations arising from the Act.
Furthermore, We collect and process Your payment information whenever You make a payment to us. If You provide us with Your bank account information, We will only use it to collect Your payment to us and to make our payments to You.
Subject to the Terms, We may request additional information from You in connection with Your obligations under the Act, other legislation or internal guidelines for the purpose of verifying Your identity and assessing business risk in accordance with applicable anti-money laundering legislation, such as copy:
a) proof of identity; in the case of a legal entity, also the identity documents of the statutory bodies and the identity documents of the end Users of the legal entity’s benefits,
b) confirmation of permanent residence or other authorized stay (e.g. duly issued invoice for energy supply), or bank account statement with identification data and consent address, extract from the population register, extract from the Commercial Register or similar register,
c) a visual representation of the data subject’s face, together with clearly legible information from the identity document; and
d) information on the origin of the funds that are the subject of the Deposit under the Terms.
For these purposes, We may also use certain information from public registers or other publicly available sources for the purpose of verifying Your identity, assessing business risk, verifying potential illegal or unethical activity, e.g. money laundering or other illegal activities.
If You visit the Platform, We may automatically collect information about You using Google Analytics to understand how You use the Platform. This information is collected and provided to us by Google LLC, as our data provider. If You do not want Google Analytics to be used in Your browser, You can install the Google Analytics Opt-Out Browser Add-On or another similar tool.
PERSONAL DATA PROCESSING SPECIFICS
We use Your Personal Data in accordance with the Personal Data Processing Rules. Unless You give us Your explicit consent and there is no other legal basis under the GDPR, We do not process Your Personal Data or provide it to a third party for processing.
LEGAL BASES FOR PROCESSING
We may only use Your Personal Data on the following legal grounds:
Performance of the Agreement
We process Your Personal Data if this is necessary for the conclusion, performance, amendment or termination of the Agreement. In this regard, We process Your name, surname, address and Your bank account details. The conclusion and performance of the Agreement is only possible after opening Your Account and therefore We also process Your e-mail address (Your login name) and password to the Account. The duration of the processing of Your Personal Data is determined by the duration of the Agreement. We may continue to process Your Personal Data even after the termination of the Agreement on the basis of another legal basis.
Compliance with legal obligations
We process Your Personal Data if this is necessary to meet our legal obligations. We process Your Personal Data in order to comply with applicable laws on fraud detection, money laundering and terrorist financing, or any other criminal offense. In this regard, We may ask You to upload a copy of Your identity document (passport or ID card) and fill in the relevant Identification Data or provide other information in accordance with the Terms. We may provide Your personal information if necessary to comply with our legal obligations under law, court decision or legal proceeding. The duration of the processing of Your Personal Data is determined by the duration of specific legal obligations.
We may also process Your Personal Data when necessary for the purposes of our legitimate interests, except where those interests outweigh Your interests or fundamental rights and freedoms. Our legitimate interests include the following:
Protection of our rights
We may retain Your personal information if this is necessary to protect our rights under the Terms or applicable law. We will keep this Personal Data of Yours only for the necessary period of time, which will not exceed 10 (in words: ten) years from the termination of the Agreement.
We may retain Your personal information, if necessary, to prevent fraud that may harm us and harm our interests, for a period of 5 (in words: five) years from the termination of the Agreement.
Enforcement of claims
We retain Your personal information if this is necessary to enforce any claims We may have against You. We store Personal Data until the relevant limitation period has expired in accordance with the relevant generally binding legal regulations.
We use Your name and e-mail address to provide You with information about our Products and Services. If You have not objected to this, or do not object at any time in the future, We will send You an e-mail newsletter to provide this information.
Recipients and Processors of Your Personal Data
We may designate third parties – Processors – who may perform specific actions related to the processing of Your Personal Data under a Personal Data processing agreement. We will only designate those Processors who provide a sufficient guarantee to implement appropriate technical and organizational measures in such a way that the processing meets the requirements of the GDPR and ensures the protection of Your rights. We are only entitled to transfer Your Personal Data to intermediaries or other recipients in third countries if:
a) the European Commission has decided that a third country, territory or one or more designated sectors in that third country will guarantee an adequate level of protection; or
b) the intermediary has provided adequate guarantees and provided that the persons concerned have enforceable rights and effective remedies.
LINKS TO OTHER WEBSITES
The Platform may contain links to or from the Websites of our partners, advertisers, social media sites and others. If You access any of these Websites through the use of the link, You acknowledge that these Websites may have their own privacy policies and that We are not liable for any harm caused by Your visit to such website.
The website stores small data files on your device, so-called cookies, to ensure its full functionality. It is common practice for the vast majority of websites. Cookies in no way give us access to control of your device or its content or any information about you, except for the data you want to share with us.
What is a cookie?
A cookie is a small file that a website stores on your computer or mobile device when you visit and browse it. Thanks to this file, the website keeps the information about your steps and preferences for a certain period (e.g., selected language version or other display settings), so you do not have to reset them the next time you visit or browse the website.
How to control cookies
You can control and delete cookies at your discretion – details are available on the aboutcookies.org website. You can delete all cookies stored on your device, and you can set most browsers to prevent them from being stored. However, in this case, you may need to adjust some settings each time you visit the website manually, and some services and features may not work.
As a visitor of this website, you can set cookies directly in your browser. Internet browsers allow general management of cookie settings. The settings of most browsers allow the storage of cookies for all websites by default. However, it is possible to change your browser settings to disallow cookies as the default option.
HOW WE PROTECT YOUR PERSONAL DATA
We use a number of security technologies and procedures to protect Your personal information from unauthorized access, use or disclosure. We secure Your Personal Data on computer servers in a controlled and secure environment, protected from unauthorized access, use or disclosure. If sensitive information (such as bank account details and / or geolocation data) is obtained from the Platform and/or transmitted to other Websites, it is protected using encryption, such as the Secure Socket Layer (SSL) protocol.
While We strive to provide the most secure environment possible for the processing of Your Personal Data, We cannot completely rule out the possibility of unauthorized access, use or disclosure of Personal Data. In the event of such a breach of Personal Data protection, We will immediately inform the relevant supervisory authority and resolve the situation promptly. If a Personal Data breach is likely to cause You harm, We will also promptly notify You of the Personal Data breach.