Privacy Policy

1.1 Personal Information You Provide

When you register for an account or use our services, we collect the following personal information:

• Account Information: Name, email address, username, password, and phone number
• Identity Verification: Government-issued ID, passport, driver's license, proof of address, selfie photos (for KYC compliance)
• Financial Information: Bank account details, cryptocurrency wallet addresses, payment card information, transaction history
• Communication Data: Information you provide when contacting customer support, feedback, survey responses
• Preferences: Trading preferences, notification settings, language preferences

1.2 Information Collected Automatically

When you access our Platform, we automatically collect certain information about your device and usage:

• Device Information: IP address, device type, operating system, browser type and version, unique device identifiers
• Usage Data: Pages visited, time and date of visits, time spent on pages, clickstream data, referring URLs
• Location Data: General geographic location based on IP address
• Trading Data: Trading activity, portfolio performance, transaction history, API interactions
• Cookies and Similar Technologies: Information collected through cookies, web beacons, and similar tracking technologies (see our Cookies Policy for details)

1.3 Information from Third Parties

We may receive information about you from third-party sources, including:

• Identity verification services and KYC providers
• Payment processors and financial institutions
• Blockchain networks and cryptocurrency exchanges
• Marketing and analytics partners
• Public databases and government agencies (for compliance purposes)

We use your information for the following purposes:

• Service Provision: To create and manage your account, execute trades, process transactions, and provide our automated trading services
• Verification and Security: To verify your identity, prevent fraud, ensure platform security, and comply with legal obligations (KYC/AML requirements)
• Communication: To send you account notifications, transaction confirmations, security alerts, and respond to your inquiries
• Platform Improvement: To analyze usage patterns, optimize our algorithms, improve user experience, and develop new features
• Marketing: To send you promotional materials, newsletters, and updates about our services (with your consent where required)
• Legal Compliance: To comply with applicable laws, regulations, legal processes, and government requests
• Risk Management: To monitor for suspicious activity, assess creditworthiness, and manage operational risks
• Analytics: To generate aggregated, anonymized data for statistical analysis and business intelligence
• Customer Support: To provide technical support, troubleshoot issues, and resolve disputes
• Personalization: To customize your experience and tailor content to your preferences

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, we process your personal data based on the following legal grounds:

• Contractual Necessity: Processing is necessary to perform our contract with you (providing trading services)
• Legal Obligation: Processing is required to comply with legal obligations (KYC/AML regulations, tax reporting)
• Legitimate Interests: Processing is necessary for our legitimate business interests (fraud prevention, platform security, service improvement)
• Consent: You have given explicit consent for specific processing activities (marketing communications, optional data collection)

You have the right to withdraw your consent at any time where we rely on consent as the legal basis for processing.

We may share your information with the following categories of recipients:

Service Providers: Third-party companies that perform services on our behalf, including:

• Payment processors and financial institutions
• KYC/AML verification services
• Cloud hosting and data storage providers
• Customer support platforms
• Marketing and analytics services
• Email and communication services

Legal and Regulatory Authorities: We may disclose your information to:

• Law enforcement agencies, government officials, or regulators when required by law
• Tax authorities for tax reporting and compliance
• Courts and tribunals in legal proceedings

Business Transfers: In the event of a merger, acquisition, reorganization, or sale of assets, your information may be transferred to the successor entity.

With Your Consent: We may share your information with other parties when you explicitly consent to such sharing.

We do NOT sell your personal information to third parties for their marketing purposes.

We implement industry-standard security measures to protect your personal information from unauthorized access, use, disclosure, alteration, or destruction:

• Encryption: All data transmission is encrypted using TLS/SSL protocols. Sensitive data at rest is encrypted using AES-256 encryption
• Access Controls: Strict access controls and authentication mechanisms limit access to personal data on a need-to-know basis
• Two-Factor Authentication: Multi-factor authentication (MFA) is required for account access
• Cold Storage: The majority of cryptocurrency funds are stored in offline cold wallets
• Regular Audits: We conduct regular security audits, penetration testing, and vulnerability assessments
• Employee Training: All employees undergo security awareness training and sign confidentiality agreements
• Monitoring: 24/7 monitoring of systems for suspicious activity and potential security threats
• Incident Response: We maintain a comprehensive incident response plan for security breaches

Despite our security measures, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your personal information, we cannot guarantee absolute security.

We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

Retention Periods:

• Active Accounts: We retain your information for as long as your account is active
• Closed Accounts: After account closure, we retain certain information for up to 7 years to comply with legal obligations (tax, AML, financial regulations)
• Transaction Records: Financial transaction records are retained for at least 7 years as required by law
• Marketing Data: Marketing communications data is retained until you unsubscribe or withdraw consent
• Technical Logs: Server logs and technical data are typically retained for 12-24 months

After the retention period expires, we securely delete or anonymize your personal information.

Depending on your jurisdiction, you may have the following rights regarding your personal information:

GDPR Rights (EEA, UK, Switzerland):

• Right of Access: Request a copy of your personal data we hold
• Right to Rectification: Request correction of inaccurate or incomplete data
• Right to Erasure: Request deletion of your personal data ("right to be forgotten")
• Right to Restriction: Request restriction of processing in certain circumstances
• Right to Data Portability: Receive your data in a structured, machine-readable format
• Right to Object: Object to processing based on legitimate interests or for direct marketing
• Right to Withdraw Consent: Withdraw consent at any time (where processing is based on consent)
• Right to Lodge a Complaint: File a complaint with your local data protection authority

CCPA Rights (California Residents):

• Right to Know: Request disclosure of personal information collected, used, and shared
• Right to Delete: Request deletion of personal information
• Right to Opt-Out: Opt-out of the sale of personal information (note: we do not sell personal information)
• Right to Non-Discrimination: Not be discriminated against for exercising your rights

How to Exercise Your Rights:

To exercise any of these rights, please contact us at privacy@binanceauto.com or through your account settings. We will respond to your request within 30 days (or as required by applicable law).

We may need to verify your identity before processing your request. In some cases, we may be unable to fulfill your request due to legal obligations or legitimate business needs.

We use cookies and similar tracking technologies to collect information about your browsing activities and improve your experience on our Platform.

Types of Cookies We Use:

• Essential Cookies: Necessary for the Platform to function properly (authentication, security)
• Performance Cookies: Collect information about how you use the Platform to help us improve it
• Functional Cookies: Remember your preferences and settings
• Analytics Cookies: Help us understand user behavior and measure Platform performance
• Marketing Cookies: Used to deliver relevant advertisements and track campaign effectiveness

You can control cookies through your browser settings. However, disabling cookies may affect your ability to use certain features of the Platform. For more detailed information, please see our Cookies Policy.

Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws different from those in your jurisdiction.

When we transfer personal data from the EEA, UK, or Switzerland to other countries, we implement appropriate safeguards, including:

• Standard Contractual Clauses approved by the European Commission
• Adequacy decisions by the European Commission
• Binding Corporate Rules
• Privacy Shield certification (where applicable)

By using our services, you consent to the transfer of your information to the United States and other countries where we operate.

Our services are not intended for individuals under the age of 18. We do not knowingly collect personal information from children.

If you are a parent or guardian and believe that your child has provided us with personal information, please contact us immediately. If we become aware that we have collected personal information from a child without parental consent, we will take steps to delete that information.

Our Platform may contain links to third-party websites, services, or applications that are not operated by us. We are not responsible for the privacy practices of these third parties.

We encourage you to review the privacy policies of any third-party services before providing them with your personal information. This Privacy Policy applies only to information collected by our Platform.

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors.

We will notify you of material changes by:

• Posting the updated Privacy Policy on our Platform with a new "Last Updated" date
• Sending you an email notification (if you have provided your email address)
• Displaying a prominent notice on the Platform

Your continued use of our services after the effective date of the updated Privacy Policy constitutes your acceptance of the changes. We encourage you to review this Privacy Policy periodically.

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

• Data Protection Officer: privacy@binanceauto.com
• Email: support@binanceauto.com
• Address: 123 Crypto Street, Suite 456, San Francisco, CA 94102, USA
• Phone: +1 (800) CRYPTO-AI

We will respond to your inquiry within 30 days.

If you are located in the European Economic Area, our EU representative for data protection matters is:

EU Data Protection Representative
Email: eu.privacy@binanceauto.com