We collect personal information about you when you use our products or services, or deal with us in some way.We collect information about you from a variety of sources, such as:
The information we collect from you may include:Information about your identity — including your name, citizenship, date of birth and other identity information.
You have rights to transparent information, communication and modalities for the exercise of your rights as the Data Subject under General Data Protection Regulation (GDPR).
Your principal rights under the Law are:The right to be informed;
You have the right to be informed about the collection and use of personal data. Information must be concise, transparent, intelligible, easily accessible, and written in clear and plain language.
You have the right to request details of personal information which we hold about you under the Law, this includes access to the personal data, together with certain additional information. Additional information includes details of the purposes of the processing, the categories of personal data. The rights and freedoms of others are not affected.
You have "the right to be forgotten", to the erasure of your personal data without undue delay. It applies in following circumstances:The personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed;
However, there are exclusions of the right to erasure. The general exclusions include where processing is necessary: for
exercising the right of freedom of expression and information; for compliance with a legal obligation; or for the
establishment, exercise or defense of legal claims.
In some circumstances, you have the right to restrict the processing of your personal data.
Those circumstances are: you contest the accuracy of the personal data; processing is unlawful but you oppose erasure; the personal data is no longer needed for the purposes of processing, but you require personal data for the establishment, exercise or defense of legal claims; you have objected to processing, pending the verification of that objection. Where processing has been restricted on this basis, we may continue to store your personal data.
You have the right to object to processing based on legitimate interests or the performance of a task in the public interest/exercise of official authority (including profiling); direct marketing (including profiling); and processing for purposes of scientific/historical research and statistics.
To the extent that the legal basis for our processing of your personal data is consent; or that the processing is necessary for the performance of an agreement to which you are party or in order to take steps at your request prior to entering into a contract, and such processing is carried out by automated means, you have the right to receive your personal data from us in a structured, commonly used and machine-readable format. However, this right does not apply where it would adversely affect the rights and freedoms of others.If you consider that processing of your personal information infringes data protection laws, you have a legal right to lodge a complaint with a supervisory authority responsible for data protection. To the extent that the legal basis for our processing of your personal information is consent, you have the right to withdraw that consent at any time. Withdrawal will not affect the lawfulness of processing before the withdrawal. You may exercise any of your rights in relation to your personal data by written notice to us.
We collect much of the information listed above directly from you when you submit it on our website or through our mobile application. This includes information such as contact information, registration information and service inquiries. If you do not want to share your information, you can choose not to participate in a particular service or activity.Indirect Collection - Cookies and Other Technology
Some cookies are "persistent cookies". They are used by us each time you access our website. Other cookies are called "session cookies". "Session cookies", also called "session variables", are used only during a specific browsing session and expire after a pre-determined amount of time. We may use a session cookie, for example, to remember that you have already navigated through a particular menu. We may also use "analytics cookies" that allow web analytics services to recognize your browser or device and, for example, identify whether you have visited our website before, what you have previously viewed or clicked on, and how you found us. This information is provided anonymously for statistical analysis only. Analytics cookies are usually persistent cookies.
You may disable browser cookies in your browser or set your browser to warn you when a cookie is being sent. You may lose some features or functionality when you disable cookies. Remember, also, that disabling cookies is browser specific.
You can find more information about cookies at www.allaboutcookies.org.Log Files
Like most standard website servers, we use log files. Log files track Internet protocol (IP) addresses, browser type, Internet service provider (ISP), referring/exit pages, platform type, date/time stamp, and number of clicks. We utilize this information to analyze trends, administer the site, prevent fraud, track website navigation in the aggregate, and gather broad demographic information for aggregate use.
We are careful about how we use your information.
We use it to deliver our products and provide our services. We also use your information for other reasons, such as to better understand you and your needs, and to let you know about other products and services you might be interested in. We collect, use and exchange your information for the following purposes:Provision of financial services
We shall use the personal data in compliance with, General Data Protection Regulation (EU), and the confidentiality obligation contained in the Terms of Service Agreement for NYDAX, and only use and retain such data as far and as long as this is necessary for the purposes of platform utilization, rendering of services on the platform and for keeping platform users informed of NYDAX services.
In addition, our mobile application will collect and track information regarding the mobile experience - such as your phone model, the duration and frequency of your usage sessions, information regarding application crashes, the particular screens you choose to view, etc.Disclosure of information
We will not disclose any of your personally identifiable information except when we have your permission or under special circumstances, such as when we believe in good faith that the law requires it or under the circumstances described below.
These are some of the ways that your information may be disclosed:Service Providers
We occasionally hire other companies to provide limited services on our behalf, including Website development and operation, sending postal mail or email, analyzing website use, processing payments, providing investor information and processing data. We will only provide those companies the information they need to deliver the service, and they are contractually prohibited from using that information for any other reason.
To make an informed decision on whether to provide your personal data to the Company using this website, we need to make you aware of four organizations that act as Data Processors for us in the provision of our services to you:Millennium Mind OU, a provider of operational maintenance of the Website, registered in the Estonia ;
We may disclose "blinded" aggregated data and user statistics to prospective partners and other third parties. Blinded data is data that does not identify an individual person.Other
We also may disclose your information in special cases, for example, when we believe that we must disclose information to identify, contact or bring legal action against someone who may be violating our Terms of Service Agreement, or may be causing injury to or interference with our rights or property, other website users or customers, or anyone else who may be harmed by such activities. We may disclose or access account information when we believe in good faith that the law requires it and for administrative and other purposes that we deem necessary to maintain, service and improve our products and services.
Please note that some data recipients may be located outside the EEA. In such cases we will transfer your data only to such countries as approved by the European Commission as providing adequate level of data protection, or enter into legal agreements ensuring an adequate level of data protection.
We use multiple security measures to ensure confidentiality your information. We aim to only keep your information for as long as we need it.
We store your hard copy and electronic records in secure buildings and systems. Access to your personal information is permitted only for NYDAX authorized employees.System security
When you log into our Website or apps, we encrypt data sent from your computer to our systems so no one else can access it. We have firewalls, intrusion detection and virus scanning tools to stop viruses and unauthorized people accessing our systems.
We use Secure Sockets Layered (SSL) technology to ensure that your information is fully encrypted and sent across the Internet securely.
We use PCI DSS encryption technology for payment card numbers, passwords, and registration information. Every session required for Two Factor Authentication, is an extra layer of security that requires not only a password and username on your login at NYDAX.
We offer our customers choices for the collection, use and sharing of personal information. You may contact us at [email protected] if you wish to edit your private information and we will use commercially reasonable efforts to accommodate your request.
In the case of a personal data breach, we shall without undue delay and, where feasible, not later than 72 hours after having become aware of it, notify. If a breach is likely to result in a high risk to the rights and freedoms of individuals, we must inform you directly and without undue delay.What is a personal data breach?
A personal data breach means a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data. This includes breaches that are the result of both accidental and deliberate causes. It also means that a breach is more than just about losing personal data.
Personal data breaches can include:Access by an unauthorised third party;
You can contact us any time to exercise any of your rights in relation to your personal data or if you have any additional questions about Privacy collection and storage of data by contacting us at [email protected], or by completing the relevant request form online at www.nydax.com , or by submitting request at NYDAX Online Chat.