PRIVACY POLICY
Last modified: May 15, 2024
-
Introduction
-
Definitions
-
Collection of Personal Data
-
Collection and Storing of Data Outside the EU
-
Company may share Client Personal Data with third parties
-
Storage of Personal Data
-
Access and Correction of Personal Data
-
Marketing
-
Information Security
-
Contacting Company about Privacy Concerns
-
Changes to Privacy Policy
-
APPENDIX A
Introduction
This Privacy Policy explains how UPAY (the “Company”) uses the Personal Data (defined below) of the client (“you”, “yourself”).
Company provides access and utility through our digital asset exchange platform via software, API (application program interface), technologies, products and/or functionalities (“Service”). In the course of providing Service, to abide by the laws in the jurisdictions that Company operates, and to improve services, Company needs to collect and maintain personal information about the client. As a rule, Company never discloses any personal information about our customers to any non-affiliated third parties, except as described below.
Company may update this Privacy Policy at any time by posting the amended version on this site including the effective date of the amended version. Company communicates any material changes to this Policy via email.
Definitions
Virtual Financial Asset
As used herein, “Virtual Financial Asset”, also called “convertible virtual currency,” “cryptocurrency,” or “digital goods”, such as Bitcoin or Ether, which is based on the cryptographic protocol of a computer network that may be
Centralized or decentralized,
Closed or open-source, and
Used as a medium of exchange and/or store of value.
Personal Data
As used herein, “Personal Data” means any information relating to an identified or identifiable natural person, such as a name, an identification number, location data, an online identifier, or to one or more factors specific to the physical, economic, cultural, or social identity of you as a natural person.
Collection of Personal Data
Company collects, processes, and stores Personal Data collected from you via client’s use of the Service or where client has given consent. This Personal Data may include contact details, copies of identification documentation provided by client or derived from publicly accessible databases, government identification number as well as information relating to devices or internet service (such as an IP address and a MAC number). Company collects information provided during the onboarding process, which may be a completed, incomplete, or abandoned process.
Operating within the European Economic Area (“EEA”)
Company collects, stores, and processes personal information in accordance with the Best Practices of Data Collection in the EU, in addition to GDPR [General Data Protection Regulation- (EU) REGULATION 679/2016].
The types of clients are defined in UPAY’s Customer Type and Jurisdiction Acceptance Policy.
Collection and Storing of Data Outside the EU
As outlined above, Company may collect Personal Data from customers located in the EEA. To facilitate the services Company provides to customers located in the EEA, Company requests explicit consent for the transfer of Personal Data from the EEA to outside of the area. If client is an individual located in the EEA and declines to consent to such transfer, client will no longer be able to use Company’s Services.
Client will have the ability to withdraw digital assets; however, all other functionalities will be disabled.
Personal Data Usage
Company uses Personal Data to communicate with the client and to administer, deliver, improve, and personalize the Service. Company might also generate generic data out of any Personal Data collected and use it for company purposes.
Company may also use such data to communicate with you in relation to other products or services offered by company and/or its partners. Company does not share Personal Data with third parties (other than partners in connection with their services) except where client have given consent and further detailed below.
Company may share Client Personal Data with third parties
If Company deems that sharing is necessary to enforce the Terms of Service.
To comply with: Government agencies, including regulators, law enforcement and/or justice department.
To third parties who provide services to Company (such as administration or technical services)
In connection with the sale or transfer of our business or any part thereof.
Additionally, Company has implemented international standards to prevent money laundering, terrorist financing and circumventing trade and economic sanctions and will implement final Virtual Financial Asset rules and regulations when effective, which will likely require us to undertake due diligence on our customers.
This may include the use of third-party data and service providers which we will cross-reference with your personal information.
Storage of Personal Data
The data that Company collects from the client may be transferred to, and stored at, a destination outside of Canada.
It may also be processed by staff operating outside of Canada who work for the company or for one of company suppliers. By submitting Personal Data, the client agrees to this transfer, storing or processing, except customers located in the EEA, as detailed above.
All information you provide to us is stored on the Company and/or third party cloud servers.
Access and Correction of Personal Data
- Client has the right to obtain a copy of Personal Data upon request and ascertain whether the information Company holds about the Client is accurate and up-to-date.
- If any of the Personal Data is inaccurate, client may request to update the information. Client may also request to delete Personal Data, with exception that the company may refuse client deletion request in certain circumstances, such as compliance with law or legal purposes. For data access, correction, or deletion requests, please contact us at support@Whitelabel Exchange Demo.NET.
- In response to data access, correction, or deletion request, Company will verify the requesting party’s identity to ensure that they are legally entitled to make such request. While Company aims to respond to these requests free of charge, the Company reserves the right to charge client a reasonable fee should the request be repetitive or onerous.
Marketing
- Company may communicate company news, promotions, and information relating to our products and services provided. Company may share Personal Data with third parties to help with marketing and promotional projects or sending marketing communications. By using our services, the client accepts this Privacy Policy and agrees to receive such marketing communications.
- Customers can opt out from these marketing communications at any moment. If you do not want to receive these communications, please send an email to support@Whitelabel Exchange Demo.NET.
- For product related communications, such as policy/terms updates and operational notifications, client will not be able to opt out of receiving such information.
Information Security
Company endeavors to protect clients from unauthorized access, alteration, disclosure, or destruction of Personal Data that the company collects and stores. Company takes various measures to ensure information security, including encryption of the communications with SSL; required two-factor authentication for all sessions; periodic review of our Personal Data collection, storage, and processing practices; and restricted access to client’s Personal Data on a need-to-know bases for our employees and vendors who are subject to strict contractual confidentiality obligations.
Contacting Company about Privacy Concerns
If client has any questions about this Privacy Policy or the use of Personal Data, please contact Company by sending an email to the address support@Whitelabel Exchange Demo.NET with the subject “PRIVACY REQUEST”.
Changes to Privacy Policy
Any changes made to company Privacy Policy in the future will be posted on this company website and, when appropriate, company will notify client by email.
APPENDIX A
Definition of Clients
Individual clients:
Email address
Mobile phone number
Full legal name (including former name, and names in local language)
Nationality
Passport number, or any government issued ID number
Date of birth (“DOB”)
Proof of identity (e.g., passport, driver’s license, or government-issued ID)
Residential address Proof of residency
Additional Personal Data or documentation at the discretion of our Compliance Team
Corporate clients:
Corporate legal name (including the legal name in local language)
Incorporation/registration Information
Full legal name of all beneficial owners, directors, and legal representatives
Address (principal place of business and/or other physical locations)
Proof of legal existence
Description of the business
Percentage of ownership for Individual/corporate owners
Contact information of owners, principals, and executive management (as applicable)
Proof of identity (e.g., passport, driver’s license, or government-issued ID) for significant individual beneficial owner of the institutional customer entity
Personal Data for each entity’s significant beneficial owner of the institutional customer entity (see the “Individual Customer” section above for details on what Personal Data we collect for individuals)
Source of wealth
Amount of Bitcoin or other digital assets projected to be injected