Privacy policy

We value your privacy. This document describes the procedure for collecting, storing and protecting data when using the Bitflaming cryptocurrency exchange service (hereinafter referred to as the “Service”).By using the Service, you agree to the terms of this Policy. If you do not agree to the terms, please stop using the Service.

Personal data: first name, last name, telephone number, email address. As part of the KYC/AML procedures, passport data and a selfie with a document may be requested if this is required for operations (KYC/AML).

Verification Data (SumSub): If identity verification is required (if required for transactions (KYC/AML)), documents and photographs may be requested through the SumSub service used for verification and risk assessment.

Financial information: cryptocurrency wallet address, amounts, dates and transaction history.

Technical data: IP address, device type, browser, cookies (used for site operation and analytics).

Your data is used for:

carrying out exchange operations;

compliance with KYC/AML requirements (including verification through SumSub) to prevent fraud;

ensuring transaction security and compliance with laws;

improve the operation of the Service, as well as to send notifications and mailings (subject to consent).

Data processing is carried out on the basis of:

execution of the contract (provision of digital currency exchange services);

fulfilling legal obligations;

your consent (for example, to marketing communications);

legitimate interests of the company (ensuring the security of the Service).

Information can be transferred:

partners providing payment processing and technical support;

government agencies - upon official legal request;

to the SumSub service - exclusively for carrying out KYC/AML checks.

All third parties are required to ensure data protection in accordance with this Policy and applicable law.

The data is stored for the period necessary to provide services and comply with legal requirements.

The Service may contain links to third-party sites. We are not responsible for their privacy policies. We recommend that you read their terms and conditions before using them.

Users of the Service have the right:

request access to, correction or deletion of your personal data;

revoke consent to data processing (for example, to receive newsletters).

The Service may make changes to this Privacy Policy at any time. The current version is always available on this page.

By continuing to use the Service after changes are made, you agree to the new version of the Policy.

1. General provisions

2. What data we collect

3. Purposes of data use

4. Legal grounds for processing

5. Transfer of data to third parties

6. Storage and protection

7. Your rights

8. Changes