Privacy Policy

Last Updated May 22, 2023

Introduction

This Privacy Policy (hereinafter - the "Policy") clarifies how XELTOX ENTERPRISES LTD (hereinafter - "Cryptomus", "we", "us", "our") collects, uses, shares, and protects Personal Information you provide us during the usage of Cryptomus.com website (hereinafter - the "Website") or our products. It governs the rules of personal data processing of our clients, their partners representatives and all other Website visitors

Cryptomus commits to protect your privacy. We have implemented all necessary legal, technical and organisational measures to ensure confidentiality, integrity and availability of your Personal Information.

Under "Personal Information" or "Personal Data" we mean any data you can be identified with or which may help to identify you.

Personal Information Protection and Electronic Documents Act (further, the "PIPEDA") applies to processing of Personal Information by Cryptomus.

Our Contact Details

All references to " Cryptomus ", "us", "we" or "our" apply to XELTOX ENTERPRISES LTD, a company incorporated under the laws of the Canada with the registration number BC1368872. View company license (MSB: M22649585): https://www10.fintrac-canafe.gc.ca/msb-esm/public/msb-search/search-by-name/

Our registered office is at: 422 RICHARDS STREET, #170 VANCOUVER, BC, CANADA V6B1L4.

For all the issues related to data protection please contact us at: [email protected]

What Type of Personal Information We Collect

The types of Personal Information we may collect include:

Contact details (email, telephone number or messenger ID)
Details of your identity document
Residence address
Financial information
Employment details
History of your logs and activity on the Website
IP address, browser and operating system information, device fingerprint.
other information required in accordance with the AML policy and/or Terms of Use

Most information we collect is provided by you directly. We could also receive some information from publicly available sources (for example, on sanctions) or from our contractors. We make use of screening lists provided by data vendors, ID verification, anti-fraud and transaction monitoring services.

Please note that we will not be able to provide our services to you if you refuse to provide us information according to our KYC/AML requirements communicated to you once you decide to apply for any of our services that require verification of identity and ongoing monitoring of activity. Please keep in mind that in some cases we may require additional details and documents for KYC and AML/CTF purposes.

Please note that processing of your Personal Data may include automated decision-making including profiling. We may apply automated decision-making including profiling for onboarding, maintaining the account with us and fraud prevention purposes.

How We Get the Information and Why We Have It

We process our clients' data for the following purposes:

to provide our services to you, as individual, or a corporate client you represent;
to contact you or reply to your requests;
to comply with our legal obligations (e.g. KYC/AML requirements)
to provide assistance in case of criminal investigation and regulatory action;
to protect your assets from unauthorized access;
to prevent any fraud and scam activity;
to provide you information on our products, news and updates;
to resolve disputes and protect your interests or interests of other users.

In accordance with Canadian law we rely on for processing this information are:

Your consent. You are able to withdraw your consent at any time by contacting us at [email protected]
We have a contractual obligation;
We have a legal obligation to comply with AML/CTF requirements under the applicable laws and regulations, keep records for tax purposes;
We have a legitimate interest in providing the necessary updates regarding our services, prevent any fraudulent activity proactively and retrospectively, and contacting employees of our clients and business partners.

Personal Information Collected Automatically

We may collect personal information automatically when you use our Services, as described below.

Cookies. Cookies are small text files placed in device browsers that store preferences and facilitate and enhance your experience.
Pixel Tags/Web Beacons. A pixel tag (also known as web beacon) is a piece of code embedded in our Services that collects information about engagement on our Services.

Who we share your Personal Information with

We may share this information with:

our affiliates, agents and representatives;
our contractors providing software for identity verification and anti-fraud purposes;
our contractors providing us information from publicly accessible sources (for instance on sanctions);
our financial service providers through which we facilitate fiat currency transactions to/from our services;
law enforcement or regulatory agencies if required or permitted by law.

Personal Data Retention

We will ensure that any information we need for any purpose shall not be kept for longer than it is necessary. We retain your personal data just to comply with our legal obligations, resolve disputes, and protect your and our legitimate interests.

We will keep your Personal Information for a maximum period of five (5) years upon termination of legal relationships with us.

You can always request to remove the personal data. But keep in mind that in certain cases we are obliged to store your information to be legally compliant.

Your Rights

Under data protection law, you have rights including:

Your right of access - You have the right to ask us for copies of your personal information.
Your right to rectification - You have the right to ask us to rectify information you think is inaccurate. You also have the right to ask us to complete information you think is incomplete.
Your right to erasure - You have the right to ask us to erase your personal information.
Your right to restriction of processing - You have the right to ask us to restrict the processing of your information.
Your right to object to processing - You have the right to object to the processing of your personal data.
Your right to data portability - You have the right to ask that we transfer the information you gave us to another organisation, or to you.

You are not required to pay any charge for exercising your rights. If you make a request, we have one month to respond to you. Please contact us at [email protected] if you wish to make a request.

Please note that in some cases we will not be able to fulfill your request due to our legal obligations or overriding legitimate interest. In such cases we will explain you the reasons why your request cannot be fulfilled and how you can complain.

Security

Cryptomus has implemented security measures to comply with acknowledged international security standards. Our platform also uses SSL or TLS encryption for security reasons and for the protection of confidential content transmission when you send us requests.

Policy Changes

Cryptomus may introduce amendments to the current Policy at any time. We may notify you on our Website or via E-mail.