The following definitions and rules of interpretation shall apply to customers or users who have a contractual relationship with CRYPTOSPACE:
Data Protection Legislation: means the data protection regulations enacted in English law (GDPR) as revised and replaced from time to time, Directive 2002/58/EC as updated by Directive 2009/136/EC and any other laws and regulations relating to the processing of personal data and privacy that apply to a party and, if applicable, guidance and codes of practice issued by the relevant supervisory or data protection authority.
Personal Data Breach: Means a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure or access to the Shared Personal Data.
Shared Personal Data: Means the Personal Data to be shared between the parties by virtue of this contractual relationship.
Access Request: Means the right by a Customer or User to access or request a copy of the Data provided pursuant to Article 15 of the GDPR.
Supervisory Authority: means the relevant supervisory authority in the territories where the parties to this Agreement are established.
The present privacy and data protection policies, constitute the regulatory framework for the provision of Personal Data made by the Customer or the User. Likewise, these policies define the principles and procedures to which users must adhere and the responsibilities to be assumed during the commercial relationship.
CRYPTOSPACE requires the personal data of clients and users for the fulfillment of its obligations and diligences pertinent to the registration and knowledge of the client and to comply with the legal obligations of prevention of Money Laundering, Financing of Terrorism and Transfer of Funds (Information on the Payer) Regulation 2017 and other related legislation.
CRYPTOSPACE undertakes to process the customer's and user's personal data only for the following purposes:
(a) CRYPTOSPACE´S performance of its obligations under this business relationship; (b) Complying with all of the Money Laundering, Terrorist Financing and Transfer of Funds (Information on the Payer) Regulations 2017 and any other applicable legislation. CRYPTOSPACE will not process Users' personal data without the User's prior permission for purposes other than those previously stated.
CRYPTOSPACE will ensure users' compliance with applicable national data protection laws at all times during the term of the business relationship. It is noted and should be noted that in the event of a conflict between the data protection law of the United Kingdom and the data protection law of the customer's country of domicile, the law of the country that provides greater protection for the privacy and personal data of users will be preferred.
The following types of Personal Data will be shared by users during the Term of the business relationship: name, address, date of birth, identification document numbers (such as driver's license or passport), photograph of the Customers (if natural persons) and of the directors and beneficial owners of the customer (if legal entities). Personal Data shared by customers and users will not be used for purposes other than those already agreed.
CRYPTOSPACE will ensure that it processes the personal data of shared customers and users in a fair and lawful manner. To the same extent it will ensure that it has the respective powers in accordance with the Data Protection legislation for the processing of the Shared Personal Data. Data protection legislation, for the processing of Shared Personal Data.
The user is obliged to provide clear, truthful, real and sufficient information to CRYPTOSPACE for the fulfillment of the purposes already the purposes already established, in the same way, expressly authorizes CRYPTOSPACE to process his or her personal data directly or by means of directly or through a third party, for which the user also authorizes CRYPTOSPACE to process his or her personal data directly or through a third party, for which the user also authorizes CRYPTOSPACE to process his or her personal data directly or through a third party.
CRYPTOSPACE to share or transfer the personal data provided to a third party. If the Personal transferred outside of the EEA, CRYPTOSPACE will fully inform the user of such transfer, the purpose of such transfer about such transfer, the purpose of such transfer and the security measures implemented by CRYPTOSPACE to enable the transfer to take place.
CRYPTOSPACE to enable the customer to be fully aware of and understand the purpose and risks of such transfer.
CRYPTOSPACE undertakes to inform its users, in accordance with the Data Protection Legislation, of the purposes for which it will process their personal data, the legal basis for such purposes and any other information that may be required. purposes for which it will process their personal data, the legal basis for such purposes and any other information required by Article 14 of the GDPR, including required by Article 14 of the GDPR, which includes: (a) whether the Personal Data shared will be transferred to a third party, that fact and sufficient third party, that fact and sufficient information about such transfer and the purpose of such transfer to enable the data subject to understand the purpose of such transfer. (b) If the Personal Data will be transferred outside the EEA, that fact and sufficient information about such transfer and the purpose of such transfer to enable the data subject to understand the purpose and risks of such transfer.
the purpose and risks of such transfer. (b) If the Shared Personal Data will be transferred outside of the EEA, this fact and sufficient information about such transfer, the purpose of such transfer, and the security measures implemented by CRYPTOSPACE to enable the user to understand the purpose and risks of such transfer. said transfer.
CRYPTOSPACE undertakes to provide the necessary assistance and to allow users who own the data exercise their protection rights under the legal regulations, this within the time limits imposed by the Data Protection Legislation.
CRYPTOSPACE will be responsible for keeping a record of individual requests for information, decisions taken and any information that has been exchanged with users. The records will include copies of the request for information, details of the data accessed and shared and, where appropriate, notes of any meeting, correspondence or phone calls related to the application.
CRYPTOSPACE will not retain or process Personal Data shared before or after user's business relationship, however, CRYPTOSPACE will continue to retain Personal Data shared in accordance with applicable regulatory, professional and/or industry retention periods.
CRYPTOSPACE will ensure that all shared Personal Data is returned to the user or destroyed once the processing of the Personal Data is no longer necessary for the fulfillment of the purposes for those that were initially shared. Following deletion of Shared Personal Data in accordance with CRYPTOSPACE will notify the user that the Shared Personal Data in question has been deleted.
The transfer of personal data means any exchange of personal data by CRYPTOSPACE with a third party, and will include, among others, the following items: (a) Subcontract the processing of Personal Data shared; (b) Grant a third party controller access to Shared Personal Data. CRYPTOSPACE will designate to a third party processor to process the Shared Personal Data, for which you will comply with Article 28 and Article 30 of the GDPR.
CRYPTOSPACE may not transfer the Customer's Shared Personal Data to a third party located outside the EEA, with exception of the following requirements: (a) The third party complies with the provisions of articles 26 of the RGPD (in case the third party is a joint controller); Y. (b) ensures that: (i) The transfer is to an approved country by the European Commission as a provider of adequate protection in accordance with article 45 of the RGPD; (iii)
there are appropriate safeguards in accordance with article 46 of the GDPR; or (iii) one of the exceptions for specific situations in the article 49 of the GDPR applies to the transfer.
User will only provide Shared Personal Data to CRYPTOSPACE using secure methods. For its part, CRYPTOSPACE undertakes to take all appropriate technical and organizational security measures.