Privacy Policy

1. Introduction

We collect and process personal data to provide our services. This Privacy Policy explains how we use and protect your personal data and your rights.

This policy applies to our customers and website visitors. Personal data includes identifiable information such as name, contact info, and trade history.

We may also link to third-party services, which may process your data. Please refer to Chapter 3 for disclosures to third parties.

We update this policy periodically. The latest version is always available on our website, and significant changes will be communicated via email or the website.

```

2. Your personal data and why we use it

  • Provide our services and ensure security.
  • Verify and authorize users to access their accounts.
  • Comply with legal obligations (e.g., anti-money laundering).
  • Communicate with customers and market services.
  • Provide support services.
  • Prevent fraud or unauthorized activity.
  • Develop and improve services.

Categories of data include personal ID/contact data, platform use data, and technical data.

Legal bases: contract performance, legitimate interests, legal obligation, or consent.

3. Providing Xnvia services

We process personal data to enable cryptocurrency trading and related services, including escrow protection and affiliate programs.

  • Data collected from users directly, service use logs, and other users’ feedback.
  • Data includes personal info, trade/transaction data, technical data, and user-imported data.
  • Legal bases: contract performance and Xnvia’s legitimate interests.
  • Some data may be posted publicly by users; caution is advised.

4. Complying with our legal obligations

  • We process personal data to comply with applicable laws (KYC, AML, anti-terrorism financing).
  • Data includes ID info, biometric data, financial data, trade and transaction data.
  • Legal basis: compliance with obligations and substantial public interest. Consent may be requested for certain biometric data.

5. Communicating with customers & marketing

  • We use contact, communication, notification, and marketing data for service updates and targeted communications.
  • Legal basis: legitimate interests, contract obligations, and user consent.

6. Disclosing your personal data to others

  • Third-party service providers for hosting, security, statistics, and advertising.
  • Third-party ID services for customer verification.
  • Regulatory authorities when legally required.

7. How long is your data processed?

Data is retained as long as necessary for service provision or legal obligations. Blockchain data remains publicly visible. Users may delete certain data themselves.

8. Account and transaction data

Retained for active accounts and 5 years post-deletion if transactions occurred. Inactive accounts deleted 14 days after request.

9. Technical data

Identifiable analytics data is purged within 14 days post-deletion. Notifications may be kept up to 13 months.

10. Transfers of data outside the EU

Data is primarily processed on secure EU servers. Some transfers outside the EU occur to comply with obligations.

11. Your rights

You have rights to access, delete, rectify, object, restrict processing, and data portability. Requests can be made to Support, verified for identity, and responded to within one month.

12. Contact

For questions, contact Support.

To Top