Privacy Policy

1. Introduction

Authenta Invest ("we," "our," or "us") is committed to protecting your privacy and personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our investment platform, website, or services (collectively, the "Services").

2. Information We Collect

2.1 Personal Information

We collect personal information that you voluntarily provide to us, including:

• Identity Information: Name, date of birth, government-issued identification
• Contact Information: Email address, phone number, mailing address
• Financial Information: Bank account details, investment history, net worth, income
• Professional Information: Employment status, employer, job title
• Investment Preferences: Risk tolerance, investment objectives, experience

2.2 Automatically Collected Information

We automatically collect certain information when you use our Services:

• Device Information: IP address, browser type, operating system
• Usage Data: Pages visited, time spent, click patterns
• Cookies and Tracking: Session data, preferences, analytics

2.3 Third-Party Information

We may obtain information from third-party sources for verification and compliance purposes:

• Credit agencies and financial institutions
• Identity verification services
• Regulatory databases and watchlists

3. How We Use Your Information

We use your personal information for the following purposes:

• Service Provision: Account management, investment processing, customer support
• Compliance: KYC/AML verification, regulatory reporting, fraud prevention
• Communication: Investment updates, legal notices, marketing (with consent)
• Analytics: Service improvement, risk assessment, performance monitoring
• Legal Obligations: Regulatory compliance, law enforcement cooperation

4. Information Sharing and Disclosure

4.1 Service Providers

We may share your information with trusted third-party service providers who assist us in:

• Technology infrastructure and security
• Payment processing and custody services
• Legal and compliance services
• Marketing and communications

4.2 Legal Requirements

We may disclose your information when required by law or to:

• Comply with legal process, court orders, or government requests
• Enforce our Terms of Service or other agreements
• Protect our rights, property, or safety
• Prevent fraud or illegal activities

4.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity.

5. Data Security

We implement comprehensive security measures to protect your information:

• Encryption: Data in transit and at rest using industry-standard encryption
• Access Controls: Multi-factor authentication and role-based access
• Monitoring: Continuous security monitoring and threat detection
• Compliance: SOC 2 Type II and other security certifications

6. Data Retention

We retain your personal information for as long as necessary to:

• Provide our Services and maintain your account
• Comply with legal and regulatory requirements
• Resolve disputes and enforce agreements
• Protect against fraud and security threats

Typically, we retain information for 7 years after account closure or as required by applicable law.

7. Your Privacy Rights

7.1 Access and Correction

You have the right to access and correct your personal information held by us.

7.2 Data Portability

You may request a copy of your personal information in a structured, machine-readable format.

7.3 Deletion

You may request deletion of your personal information, subject to legal and regulatory requirements.

7.4 Opt-Out

You may opt out of marketing communications at any time.

8. International Data Transfers

Your information may be transferred to and processed in countries other than your home country. We ensure appropriate safeguards are in place, including:

• Standard contractual clauses approved by regulatory authorities
• Adequacy decisions by relevant data protection authorities
• Binding corporate rules for intra-group transfers

9. Cookies and Tracking Technologies

We use cookies and similar technologies to:

• Maintain user sessions and preferences
• Analyze website usage and improve functionality
• Provide personalized content and recommendations
• Ensure security and prevent fraud

You can control cookie settings through your browser preferences.

10. Third-Party Links

Our Services may contain links to third-party websites or services. We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies.

11. Children's Privacy

Our Services are not directed to individuals under 18 years of age. We do not knowingly collect personal information from children under 18.

12. California Privacy Rights

California residents have additional rights under the California Consumer Privacy Act (CCPA), including:

• Right to know what personal information is collected and used
• Right to delete personal information
• Right to opt out of sale of personal information
• Right to non-discrimination for exercising privacy rights

13. European Privacy Rights

If you are in the European Economic Area, you have rights under the General Data Protection Regulation (GDPR), including:

• Right of access, rectification, and erasure
• Right to data portability
• Right to object to processing
• Right to restrict processing
• Right to lodge a complaint with supervisory authorities

14. Changes to This Privacy Policy

We may update this Privacy Policy periodically. Material changes will be communicated through our website or direct notification. Your continued use of our Services constitutes acceptance of the updated policy.

15. Contact Information

For questions about this Privacy Policy or to exercise your privacy rights, contact us at:

Authenta Invest - Privacy Officer
Email: [email protected]