Privacy Policy

1. General provisions

This Privacy Policy governs the procedure for collecting, using, storing, and transferring information received by the xbit.money service (hereinafter, the “Service”) when the User uses the website and exchange services.

By using the Service, the User confirms their agreement with this Policy and accepts the terms of processing their data.

The Policy applies to all data obtained both automatically and provided by the User in the course of using the Service.

2. What data is collected

Within the operation of the Service, the following categories of information may be processed:

  • Personal data provided by the User, including contact details, details required for performing operations, as well as information provided in the course of contacting customer support.
  • Data obtained in the course of AML and KYC procedures, including identity documents, information about the origin of funds, as well as the results of checks and risk assessment.
  • Technical information, including IP address, device type, browser, language, date and time of access, as well as on‑site behavior.
  • Information about transactions, including wallet addresses, payment system details, amounts, exchange directions, and other data required to perform operations.
3. Purposes of data processing

The Service uses the collected data exclusively for the following purposes:

  • provision of exchange services and execution of orders;
  • ensuring the security of operations and prevention of fraud;
  • conducting AML checks and assessing transaction risks;
  • fulfilling legal requirements and interacting with regulatory authorities;
  • processing user requests and support;
  • improving the Service’s performance and analyzing its usage.

Data is processed only to the extent necessary for the above purposes.

4. AML and security

To ensure security, the Service is entitled to use personal data for:

  • verifying transactions after they are received;
  • assessing the risk of operations;
  • identifying suspicious activity;
  • conducting identification (KYC) procedures.

The User agrees that such checks may include the use of third‑party analytical services, as well as the transfer of data to comply with compliance requirements.

5. Transfer of data to third parties

The Service does not sell or transfer personal data to third parties for commercial purposes.

Data may be transferred exclusively in the following cases:

  • to payment systems and financial intermediaries for the execution of operations;
  • to providers of technical and analytical services (including AML/KYC providers);
  • in order to comply with legal requirements or at the request of authorized bodies;
  • to protect the rights and legitimate interests of the Service.

Data is transferred only to the extent necessary to perform the relevant tasks, subject to appropriate security measures.

6. Storage and protection of information

The Service takes reasonable technical and organizational measures to protect data from loss, unauthorized access, alteration, or disclosure. Data is stored for the period necessary to fulfill the purposes of processing, including AML and financial law requirements. Some data related to transactions may be stored for an extended period, including the terms stipulated by compliance and accounting requirements.

7. Specifics of working with payment systems

When using third‑party payment systems, data processing may be carried out directly by such systems. The Service does not store payment details (for example, bank card information) unless this is required to perform an operation. By using the Service, the User also agrees to the privacy policies of the respective payment systems.

8. Cookies and technical data

The Service may use cookies and similar technologies to:

  • ensure the proper functioning of the website;
  • analyze user behavior;
  • improve usability.

The User may limit the use of cookies in their browser settings; however, this may affect the functionality of the Service.

9. User rights

The User has the right to:

  • request information about their data;
  • submit a request to update or clarify data;
  • withdraw consent to data processing in cases where this is permissible.

At the same time, the User understands that refusal to process certain data may make it impossible to use the Service.

10. Limitations

The Service is not intended for use by persons under 18 years of age. The Service is not responsible for the actions of third parties, including websites and services to which links may lead.

11. Changes to the Policy

The Service may amend this Policy without prior notice. The current version is published on the website. Continued use of the Service constitutes acceptance of the updated version.

12. Final provisions

This Policy applies together with the User Agreement, the Exchange Rules, and the AML & KYC Policy, and is an integral part thereof.


Comments
Add
Not found