Privacy Policy

Article 1. Purpose for Processing Personal Information

In order to provide services of the platform to Users, Bitria LLC ("the Company", "we", "us", "our") needs to collect some of your personal information for the following purposes. The personal information collected is not used for purposes other than the following. If the purpose of use is changed, necessary measures, such as separate notification or obtaining separate consent under any applicable laws, will be taken.

1. Account Registration and Management

• Identification of users, customer verification (KYC), management of user information, delivery of various notices
• Account termination through non-face-to-face authentication, resetting phone numbers/emails, etc.

2. Provision of Goods or Services

• Confirmation of digital asset trading relationships
• Matters related to the overall management of digital asset trading relationships, including setting, maintaining, and terminating services
• Prevention of unauthorized use
• Usage statistics and analysis, provision of new and customized services
• Improvement and upgrade of the services of the platform

3. Event Information Guide

• Providing information for various events and promotions

4. Complaint Handling

• Confirmation of the identity of complainants and the contents of complaints
• Contact and notification for fact-finding, notification of processing results
• Remedies for damages and incorrect transfers

5. AML/CTF and Legal Investigation

• AML/CTF misconduct investigations
• Law enforcement authorities' investigations

We ONLY provide services to natural persons that are at least 18 years of age. We do not knowingly collect data from children. If we learn that we have inadvertently processed personal data from a child, we will immediately terminate the service and delete the data from our system.

The User has the right to refuse to consent to the collection of personal information by the Platform. The User may not be able to use any of the services if the User refuses to accept the collection of personal information.

Article 2. Designation

For the convenience of wording in this policy, the Platform is referred to as "we", "us" or "our". Users of and other visitors to the Platform are referred to as "you", "your" or "User". We and you are collectively referred to as "both parties" and as "a/one party" individually.

Article 3. Processing and Retention Period of Personal Information

The Platform shall process and retain personal information within the period of time required by applicable laws or within the period agreed upon when collecting personal information from users.

The period of time for processing and retention is as follows:

• Personal information will be retained for 2 years after the user deleted their account or the account has been deactivated, in order to satisfy any subsequent review by financial institutions or criminal investigations by relevant authorities.
• If an investigation is ongoing due to a violation of applicable laws and regulations, the personal information will be stored until the end of the relevant investigation.
• If there is an outstanding debt or credit relationship arising out of use of the service, the personal information will be stored until the debt is settled.
• If there is an ongoing legal dispute between the user and the Company, the personal information will be stored until the dispute is officially resolved.
• In accordance with different regional and regulatory requirements, we may be required to retain certain records beyond our usual retention period after our business relationship with you has concluded.

When personal information becomes unnecessary due to the passage of the retention period or the accomplishment of the processing purpose, the Company shall promptly destroy such personal information. Personal information stored in electronic form is permanently deleted to prevent playback of the record. Personal information recorded or stored on paper documents is shredded or incinerated.

Article 4. Data Controller

Bitria LLC acts as a controller of your personal data where we determine the means and the purposes of any processing activities that it carries out. This Privacy Policy does not apply where we act as a processor or service provider to another controller.

Article 5. Scope of Application

This Policy shall apply to all Users trading on the Bitria website and its applications ("the Platform"). Users shall comply with the terms and conditions of this Policy, subject to and as permitted by any and all laws relating to the protection of personal information and data in the country or region where they are based.

Article 6. User Consent and Authorization

The Users acknowledge and understand that, at the point of logging into the Platform, the User will be deemed to have expressed acceptance, consent, undertaking and confirmation of the following:

• The User agrees, on a voluntary basis, to disclose personal information to us.
• The User will abide by all the terms and conditions of this Policy.
• The User agrees and authorizes the Platform to collect the User's personal information when the User registers with the Platform, logs into the Platform and/or uses the Platform services.
• The User agrees to all the terms and conditions of this Policy and agrees to accept any amendment that may subsequently be made.

During our onboarding process, Bitria makes use of automated decision-making, particularly within our Know-Your-Customer (KYC) procedures. When you submit your identification documents, photo, and live video, our automated systems process this information to verify your identity and ensure compliance with global Anti-Money-Laundering (AML) regulations.

If an automated decision significantly affects your ability to use our products or services, you have the right to request that the decision not be applied to you. You may also contest the decision and ask our Customer Service team to review your case manually.

Article 7. Information Collected

The Users agree that the Platform may use cookies to track the Users' actions in connection with their use of the Platform and may collect and record all information left by Users, including but not limited to their IP address, geographical location and other data.

Personal data which we may collect include:

Personal Information

• Name, date of birth, gender, nationality, address
• Document type and document number (for KYC identity verification)
• Phone number (for account creation and identity verification)
• Email address (for account creation and identity verification)
• Account credentials and profile information

Financial Information

• Bank account information (for fiat deposit and withdrawal)
• Third-party payment account information

Trading Information

• Order information, asset information
• Deposit and withdrawal information
• Wallet addresses

Authentication Information

• SMS, email, and two-factor authentication codes

Multimedia Information

• Photos, audio, video, PDF files (for dispute settlement, customer service, identity verification)

Device and Technical Information

• Device model, operating system, browser type, IP address
• Cookies and similar tracking technologies

Article 8. Sharing of Personal Information

We do not sell, trade, or rent Users' personal information to third parties. We may share personal information only in the following circumstances:

• With service providers who assist us in operating the Platform (e.g., KYC verification providers, cloud hosting services)
• With regulatory authorities as required by applicable law
• With law enforcement agencies in response to valid legal requests
• With partner exchanges as necessary for the provision of trading services
• In connection with a merger, acquisition, or sale of all or a portion of our assets

All third-party service providers are required to maintain the confidentiality and security of your personal information and are prohibited from using it for any purpose other than the specific service they provide to us.

Article 9. Security of Personal Information

We implement appropriate technical and organizational measures to protect your personal information, including:

• Encryption of personal data in transit and at rest
• Access controls limiting access to personal data to authorized personnel
• Regular security assessments and penetration testing
• Employee training on data protection and privacy
• Incident response procedures for data breaches

While we take every reasonable precaution to protect your data, no method of transmission over the Internet or electronic storage is 100% secure.

Article 10. User Rights

Depending on your jurisdiction, you may have the following rights regarding your personal information:

• Right of Access: You may request a copy of the personal data we hold about you.
• Right of Rectification: You may request correction of inaccurate or incomplete personal data.
• Right of Deletion: You may request deletion of your personal data, subject to legal retention requirements.
• Right to Restrict Processing: You may request restriction of processing of your personal data under certain circumstances.
• Right to Data Portability: You may request transfer of your personal data to another controller.
• Right to Object: You may object to processing of your personal data for direct marketing purposes.

To exercise any of these rights, please contact us through our Customer Service channels. We will respond to your request within a reasonable timeframe and in accordance with applicable law.

Article 11. Cookies and Tracking Technologies

The Platform uses cookies and similar tracking technologies to enhance user experience and analyze platform usage. Cookies are small files stored on your device that help us:

• Maintain your session and authentication state
• Remember your preferences and settings
• Analyze platform usage and performance
• Prevent fraud and enhance security

You may configure your browser to reject cookies, but this may affect your ability to use certain features of the Platform.

Article 12. International Data Transfers

Your personal information may be transferred to and processed in countries other than the country in which you reside. These countries may have data protection laws that are different from the laws of your country. We ensure that appropriate safeguards are in place to protect your personal information in accordance with this Privacy Policy and applicable data protection laws, including GDPR-equivalent standards where applicable.

Article 13. Changes to this Privacy Policy

We may update this Privacy Policy from time to time. When we make material changes, we will notify you by posting the updated policy on the Platform with a new "Last updated" date. We encourage you to review this Privacy Policy periodically.

Your continued use of the Platform after any changes to this Privacy Policy constitutes your acceptance of the updated terms.

Article 14. Contact Information

If you have any questions or concerns about this Privacy Policy or our data processing practices, please contact us: