In accordance with European Union General Data Protection Regulation (GDPR) Coinumm OÜ, a company incorporated in Estonia with company registry code 14809797, having and its registered address at Männimäe 1, Pudisoo küla, Kuusalu vald, Harju maakond, 74626 / UAB Coinumm, a company incorporated in Lithuania with company registry code 305987456, having and its registered address at Eišiškių Sodų 18-oji g. 11, LT-02194 Vilnius / CNMM Sp. z o.o., a company incorporated in Poland with a company registry code 52471362, having and its registered address at Piotrkowska 116/52, 90-006, Lodz, Poland have created its Privacy Policy (“policy”). Coinumm OÜ, UAB Coinumm and CNMM Sp. z o.o. (hereinafter "Coinumm", "we", "us" or "our") are committed to protecting and respecting your privacy.

This policy governs processing by Coinumm of information, including personal data, relating to the data subjects (“you”, “User") of the coinumm.com ("Website"), and other services provided by us, including but not limited to crypto exchange (hereinafter “Service”). This policy applies to the Website and all products and Services offered by us.

Personal information

We may process personal information of Users in a variety of ways, including, but not limited to, when users visit our Website, or use any of our Services; register on the Service; fill out a form; provide information for passing of anti-money laundering procedures. We also may obtain information about you from third party sources as required or permitted by applicable law, such as public databases, credit bureaus, ID verification partners, resellers and channel partners, joint marketing partners, and social media platforms for purposes of verifying your identity. We obtain such information with a purpose and a legal basis to comply with our legal obligations, such as anti-money laundering laws. From time to time, we may process additional data about client to make sure our Service is not used fraudulently or for other illicit activities. In such instances, processing is necessary for us to continue to perform our contract with you and others, as well as on the basis of our legitimate interest to prevent fraud, money laundering and other illicit activities. Categories of data involved in data processing include:

• name;
• date of birth;
• business/Company name;
• contact information such as email addresses and telephone numbers;
• demographic information such as city, post code and countries;
• financial information such as payment method information;
• cryptocurrency wallet addresses used;
• ip address;
• web browser type and version;
• operating system;
• a list of URLs starting with a referring site, Your activity on Our Website;
• any documents containing personal data required to comply with financial regulation such as Anti Money Laundering (AML) and Know Your Customer (KYC). These can be, but are not limited to National Identity Card, Passport, Proof of Address, Proof of Funds and related documents.

How long we retain information

We retain the information we collect for as long as needed to provide the Services (including aspects of risk management) and to comply with our legal and regulatory obligations, resolve disputes, and enforce our agreements (unless we are instructed otherwise). We may rectify, replenish, or remove incomplete or inaccurate information at any time and at our own discretion.

How we share collected information

We sometimes need to share personal information we process with third parties. Where necessary or required we may share information with authorities, other companies within the same group of companies as us for internal administrative purposes, companies which the group cooperates with and to other third parties, such as third party service providers used in connection with our Services (e.g. various analytical services and financial institutions that we have partnered with to jointly create and offer a product). The legal basis for this data processing is performance of contract between you and us, as well as our legitimate interest and our legal obligation. We may share collected information with:

• credit reference agencies;
• KYC providers;
• debt collection and tracing agencies and other companies in the same group;
• suppliers and services providers (analytical, financial);
• government bodies and other recipients in order to comply with applicable law;
• courts and tribunals.

How do we store your data?

We only keep your personal data for as long as we need to in order to use it as described above and/or for as long as we have your permission to keep it. Data security is very important to us, and to protect your data we have taken suitable measures to safeguard and secure data collected through our Website. Steps we take to secure and protect your data include:

• implement and maintain a rigorous internal data protection policy;
• server-sided security measures and firewalls.

How can you control your data?

In addition to your rights under the GDPR, when you submit personal data via our Website, you may be given options to restrict our use of your data. In particular, we aim to give you strong controls on our use of your data for direct marketing purposes (including the ability to opt-out of receiving emails from us which you may do by unsubscribing using the links provided in our emails and at the point of providing your details and by managing your account).

How we transfer collected information internationally?

We intend to transfer the collected information we obtain from you to recipients in countries other than the country in which the information was originally collected. Those countries may not have the same data protection laws as the country in which you initially provided the information. The collected information may be transferred to a destination outside the European Economic Area (EEA). All data transfers outside the EEA are made under agreements and include all necessary standard data protection clauses adopted by a supervisory authority copy of which may be obtained by request made to the [email protected]. Despite data transfer, we save all our obligations and liability for any breaching of your personal data rights by action of our data-processors.

User rights

As a data subject, you have the following rights under the GDPR, which this policy and our use of personal data have been designed to uphold:

• the right to be informed about our collection and use of personal data;
• the right of access to the personal data we hold about you;
• the right to rectification if any personal data we hold about you is inaccurate or incomplete;
• the right to be forgotten – i.e. the right to ask us to delete any personal data we hold about you;
• the right to restrict (i.e. prevent) the processing of your personal data;
• the right to data portability (obtaining a copy of your personal data to re-use with another service or organisation);
• the right to object to us using your personal data for particular purposes;
• rights with respect to automated decision making and profiling.

If you have any cause for complaint about our use of your personal data, please contact us [email protected] and we will do our best to solve the problem for you.

What if I do not want to accept this Privacy policy?

By using this Website, you signify your acceptance of this policy. If you do not agree to this policy, please do not use our Website. Your continued use of the Website following the posting of changes to this policy will be deemed as your acceptance of those changes. If you have already registered an account, you can find out how to terminate or cancel your account.

Amendments to this Privacy policy

Coinumm has the discretion to update this privacy policy at any time. When we do, we revise the updated date at the top of the page. We may also may post a notification on the main page of our Website and notify you by other means. We encourage Users to frequently check the page for any changes to stay informed about how we are helping to protect the personal information we collect. You acknowledge and agree that it is your responsibility to review this privacy policy periodically and become aware of modifications.

Contacts

If you have a concern about the way we handle your personal information or need further information, please contact us [email protected], or, alternatively, you can fill out a contact form.