Terms and Privacy Policy

Our Commitment to Your Privacy and Data Security

At BlockDrago, we understand that trust is paramount in the financial sector. As such, we are committed to maintaining the confidentiality, security, and integrity of the personal and financial information that you provide. By accessing and using our investment platform, you agree to the collection, processing, and protection of your data as outlined in this Privacy Policy.

Our platform complies with all relevant laws and regulations, including but not limited to:

  • General Data Protection Regulation (GDPR) 679/2016 (EU)
  • Anti-Money Laundering (AML) Regulations
  • Know Your Customer (KYC) Compliance
  • Financial Conduct Authority (FCA) and Securities and Exchange Commission (SEC) Regulations
  • Payment Card Industry Data Security Standard (PCI DSS)

This policy explains how we collect, use, store, and share your data, and how you can manage your privacy settings.

Grounds for Data Collection

We collect and process your personal data based on the following grounds:

  1. Contractual Necessity: To fulfill our contractual obligations to you, such as processing investment transactions and providing investment services.
  2. Legitimate Interests: To ensure the security of our platform, prevent fraud, enhance user experience, and carry out analytics.
  3. Compliance with Legal and Regulatory Obligations: To meet financial regulations, including AML and KYC requirements, tax reporting, and fraud prevention.
  4. Consent: In certain cases, we may request your consent to process specific types of data (such as marketing communications).

How We Collect Your Data

We collect your data in the following ways:

  • Directly from You: When you create an account, invest, withdraw funds, or interact with our platform, you provide us with your personal details.
  • Automated Collection: We collect certain information about your device and usage patterns when you interact with our platform (e.g., IP address, browser type, and device information).
  • Third-Party Sources: We may also collect data from third parties for verification purposes (e.g., financial institutions, KYC verification services).

Types of Data We Collect

We collect both Personal Data and Non-Personal Data to ensure we can provide our services and comply with regulatory requirements.

Personal Data

The following personal data may be collected when you use our services:

  • Account Registration Data: Full name, email address, phone number, date of birth (to verify that you are over the age of 18), country of residence, and occupation.
  • Financial Data: Payment methods, transaction history, deposit and withdrawal records, financial details, tax information, and investment portfolio data.
  • Identification Data: Government-issued ID, proof of address (for KYC and AML purposes).
  • Technical Data: IP address, device identifiers, browser information, session data, cookies, location data, and system logs.

Non-Personal Data

We collect non-personal data related to your use of the platform, including:

  • Device Information: Operating system version, device type (e.g., smartphone, tablet, computer), and unique device identifiers (e.g., UDID, Google Advertising ID).
  • Usage Data: Pages visited, referral sources, session duration, and clickstream data.
  • Cookies and Tracking Technologies: We use cookies, pixels, and web beacons to enhance your experience and gather information about how you use our platform.

How We Use Your Data

Your data is used for the following purposes:

  1. Providing Services: To process your investments, withdrawals, and other financial transactions, and to provide customer support.
  2. Legal and Regulatory Compliance: To comply with legal and financial obligations, including KYC and AML requirements, tax reporting, and anti-fraud measures.
  3. Fraud Prevention: To detect, investigate, and prevent fraudulent activities on our platform, ensuring the integrity of our services.
  4. Service Improvement and Personalization: To enhance user experience, optimize platform performance, and develop new features based on user preferences and feedback.
  5. Marketing Communications: To send you updates, promotional offers, and newsletters (you may opt-out of marketing communications at any time).
  6. Data Analytics: To conduct research, surveys, and performance analysis to improve our services.

How We Share Your Data

We do not sell your personal information to third parties. However, we may share your data with the following parties for specific purposes:

  1. Internal Parties: Employees and contractors who need access to your data to perform their roles, such as customer support, compliance, and technical teams.
  2. Financial Providers and Payment Processors: To facilitate deposits, withdrawals, and payments related to your investments.
  3. Third-Party Service Providers: Including storage providers, cloud services, and analytics platforms that help us manage and improve our services.
  4. Regulatory Authorities: To comply with legal obligations, such as reporting suspicious activities to financial regulators, law enforcement, or tax authorities (e.g., SEC, FCA).
  5. Legal Entities: If required by law, we may disclose data to legal authorities to protect our rights, investigate fraud, or respond to legal claims.
  6. Business Transfers: In the event of a merger, acquisition, or sale of our business or assets, your data may be transferred to the acquiring entity.

International Data Transfers

Your data may be transferred to and stored in countries outside your jurisdiction, including countries that may not offer the same level of data protection as your home country. However, we ensure that any transfer of data complies with applicable data protection laws, such as the GDPR, and that appropriate safeguards (e.g., Standard Contractual Clauses) are in place to protect your data.

How We Protect Your Data

We implement a wide range of security measures to protect your data:

  • Encryption: Your data is transmitted over secure, encrypted channels using SSL/TLS encryption.
  • Access Controls: Only authorized personnel can access your personal data, and all employees are required to adhere to strict confidentiality agreements.
  • Monitoring and Audits: Regular monitoring and auditing of our systems to detect and respond to security threats.
  • Firewalls and Anti-virus Software: To protect against unauthorized access and malicious attacks.

Despite these measures, no system is completely secure. You are also responsible for safeguarding your account credentials (e.g., password) and ensuring that you log out after using the platform.

Data Retention

We retain your personal data for as long as necessary to provide our services and comply with regulatory requirements. After this period, we will delete or anonymize your data, except where we are required to retain certain data for legal or regulatory reasons (e.g., financial records, transaction history).

Your Rights

Under applicable data protection laws, you have the following rights regarding your personal data:

  1. Right to Access: You can request a copy of the personal data we hold about you.
  2. Right to Rectification: You can request corrections to any inaccurate or incomplete personal data.
  3. Right to Erasure: You can request the deletion of your personal data in certain circumstances.
  4. Right to Restrict Processing: You can request that we restrict the processing of your personal data.
  5. Right to Data Portability: You can request a copy of your personal data in a structured, commonly used, and machine-readable format.
  6. Right to Object: You can object to the processing of your personal data for specific purposes, such as direct marketing.

To exercise any of these rights or to request further information, please contact us using the details below.

How to Contact Us

For inquiries regarding your personal data or if you wish to exercise your data protection rights, please contact our General Data Protection Officer (GDPO) at:

Email: support@dragoledger.com
Subject: Attn. GDPO Compliance Officer

Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices or as required by law. The most recent version will always be available on our website, with a “Last Updated” date indicating the latest revision. By continuing to use our services after any changes, you agree to the updated terms of this Privacy Policy.