Legal

Privacy Policy

How we collect, protect, and use your personal information.

Privacy Policy

FxTrusts ("we," "our," or "us") is committed to protecting the privacy and security of personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform and services.

This policy applies to all users of FxTrusts services, including brokerage operators, their staff, and end-users of client portals. By accessing or using our services, you consent to the practices described in this policy.

Effective Date: December 1, 2024
Last Updated: December 1, 2024

Information We Collect

We collect information you provide directly, information collected automatically, and information from third-party sources.

Information You Provide

  • Account Information: Name, email address, phone number, company name, and job title when you register for an account
  • Profile Data: Business information, billing address, tax identification numbers
  • Communication Data: Messages, support requests, and correspondence with our team
  • Payment Information: Credit card numbers, bank account details for billing purposes (processed by PCI-compliant payment processors)
  • Verification Documents: Identity documents, proof of address, and corporate documentation for compliance purposes

Automatically Collected Information

  • Usage Data: Pages visited, features used, actions taken within the platform
  • Device Information: Browser type, operating system, device identifiers, IP address
  • Log Data: Access times, error logs, and system diagnostics
  • Cookies: Session cookies, preference cookies, and analytics cookies

Third-Party Sources

  • Verification Services: Identity verification results from SumSub, ShuftiPro, or similar providers
  • Payment Processors: Transaction confirmations and payment status
  • Business Partners: Referral information from introducing brokers or affiliates

How We Use Your Information

We use collected information for the following purposes:

Service Provision

  • Creating and managing your account
  • Processing transactions and payments
  • Providing customer support and responding to inquiries
  • Delivering requested products and features
  • Sending service-related communications (receipts, updates, security alerts)

Business Operations

  • Analyzing usage patterns to improve our services
  • Developing new products and features
  • Monitoring system performance and reliability
  • Preventing fraud and ensuring platform security
  • Enforcing our terms of service and acceptable use policies

Marketing and Communication

  • Sending promotional materials (with your consent)
  • Informing you about product updates and new features
  • Conducting surveys and research
  • Personalizing your experience based on preferences

Marketing Opt-Out: You may opt out of marketing communications at any time by clicking the unsubscribe link in any email or updating your communication preferences in your account settings.

Information Sharing

We do not sell your personal information. We may share your information in the following circumstances:

Service Providers

We share data with third-party vendors who provide services on our behalf, including:

  • Cloud hosting providers (AWS, Google Cloud)
  • Payment processors (Stripe, Checkout.com)
  • Customer support platforms (Zendesk, Intercom)
  • Analytics services (Google Analytics, Mixpanel)
  • Identity verification services (SumSub, ShuftiPro)

These providers are contractually bound to protect your data and use it only for the services they provide to us.

Legal Requirements

We may disclose your information when required by law, including:

  • Responding to court orders, subpoenas, or legal process
  • Cooperating with law enforcement or regulatory authorities
  • Protecting our legal rights or defending against claims
  • Preventing fraud, illegal activities, or security threats

Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity. We will notify you of any such transfer and any changes to this privacy policy.

Data Storage and Security

We implement industry-standard security measures to protect your personal data from unauthorized access, alteration, disclosure, or destruction.

Security Measures

  • Encryption: All data is encrypted in transit (TLS 1.3) and at rest (AES-256)
  • Access Controls: Role-based access with multi-factor authentication
  • Monitoring: 24/7 security monitoring and intrusion detection
  • Audits: Regular third-party security assessments and penetration testing
  • Compliance: SOC 2 Type II certified data centers

Data Retention

We retain your personal data for as long as necessary to provide services and comply with legal obligations:

  • Active Accounts: Data retained throughout the account lifecycle
  • Closed Accounts: Core data retained for 7 years for regulatory compliance
  • Transaction Records: Retained for 7 years per financial regulations
  • Marketing Data: Retained until you opt out or 3 years of inactivity

Data Location

Your data may be processed and stored in the European Union, United Kingdom, United States, or other locations where our service providers operate. All international transfers comply with applicable data protection laws, including GDPR Standard Contractual Clauses.

Your Rights

Under GDPR and other applicable privacy laws, you have the following rights regarding your personal data:

Access and Portability

You have the right to request a copy of your personal data in a commonly used, machine-readable format. You can export most data directly from your account settings.

Correction

You have the right to request correction of inaccurate or incomplete personal data. You can update most information directly in your account settings.

Deletion

You have the right to request deletion of your personal data, subject to legal retention requirements. We will delete or anonymize your data upon request unless we are legally required to retain it.

Restriction and Objection

You have the right to restrict processing of your data or object to processing based on our legitimate interests. You can also object to automated decision-making and profiling.

Exercising Your Rights

To exercise any of these rights, contact our Data Protection Officer at business@fxtrusts.com. We will respond to your request within 30 days as required by law.

Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us:

  • Email: business@fxtrusts.com
  • Data Protection Officer: business@fxtrusts.com
  • Postal Address: FxTrusts Ltd, Data Protection Team, [Address]

If you are unsatisfied with our response, you have the right to lodge a complaint with your local data protection authority.