In force since 01.03.2019
We assure you that the team and the persons working on the instructions and on behalf of Mahavi Finance S.R.L., headquartered in Romania, Bucharest, Sector 4, str. Bucur no. 16, registered at the Trade Register under no. J40 / 5117 / 12.04.2017, C.U.I. RO 37376757 (hereinafter referred to as "bitMahavi" or "Company") undertakes to process your personal data in accordance with the principles laid down in Regulation 2016/679 on the protection of individuals with regard to the processing of personal data and on circulation of these data, and repealing Directive 95/46 / EC ("GDPR Regulation"), applicable in Romania, including (EU), from 25 May 2018.
THE PERSONAL DATA CATEGORIES WE COLLECT AND PROCESS FROM YOU
The personal data that may be processed consists of any information or set of information that can be used to make an identified or identifiable natural person.
There is certain information that we need to know about the users of the Platform, in order to comply with applicable laws and their own contractual obligations. Without this data, we may not be able to open an account or provide bitMahavi services.
The personal data we collect includes:
Identification data, such as first and last name, home address, date of birth, account number, IP address, personal number code, telephone number, e-mail address, photo ID;
Transaction data, such as bank account IBAN number, cryptocurrency holdings, unique identifier of personal e-wallet, purpose and nature of transactions;
! Sensitive data - bitMahavi does not process sensitive data on racial or ethnic origin, political opinions, religion or philosophical beliefs, trade union membership, political parties or other organizations, and the processing of genetic data to identify a single individual, health data or sexual life data or the sexual orientation of an individual.
PURPOSES FOR WHICH WE PROCESS PERSONAL DATA
Processing refers to all operations that we may perform with personal data such as the collection, registration, organization, structuring, storage, adaptation, modification, use, disclosure, transfer and deletion of data.
bitMahavi will process personal data provided by individuals who will interact with the Platform, in order to register an online customer account, make cash deposits or withdrawals at ATMs operated by the Company, as well as transfers FIAT or cryptocurrencies or other services offered by bitMahavi. If, in the case of concluding a service contract, your consent is deemed to be given by default, for the processing of certain personal data, the explicit granting of consent may be requested either online or by other means of ascertaining the will. your.
We do not process personal data except for legitimate business purposes. These include:
Opening a Client Account of the Platform - Opening a Client Account based on the provision of a valid e-mail address is an essential condition for being able to use the Platform and benefit from the information, offers and services
Providing products and services. In this context, depending on certain criteria / services, additional minimum information on first and last name together with a telephone number may be requested, or extended (date of birth, home address, copy of ID card, photo ID). This information will be processed within the limits of the legal obligations of bitMahavi and in compliance with applicable laws and to assess your eligibility for the types of services we offer.
Making transactions. In order to make deposits or withdrawals of FIAT coins or cryptocurrencies, or to place offers for the sale - purchase of such coins, information on the customer code, IBAN bank account number or personal e-wallet ID will be processed.
Customer relationship management. The company will be able to request feedback on the products and services offered in order to improve the quality or diversify the services offered. We may also use items in the personal data provided or conversations we have online, by phone or face-to-face, to personalize your customer profile for personalized offers or to improve the products and services we offer.
Custom marketing. The company may send letters, emails or text messages to provide a product or service based on personal circumstances. In these situations, the express consent of the data subjects will be requested either at the first connection of the data subjects to the Platform, or separately through personalized offers or individual communications. At any time after giving your consent, you will be able to unsubscribe from personalized offers of this type by accessing the "Settings" section of your bitMahavi account or by sending an e-mail to firstname.lastname@example.org.
Fraud prevention and detection and data security. bitMahavi has a duty to protect personal data and to prevent, detect and restrict data security breaches. This includes information that the Company needs to process, for example, to comply with anti-money laundering, anti-terrorist financing and tax fraud regulations.
Internal and external reporting. The company processes personal data in order to carry out trading operations and to help the management team make better decisions about the operations and services offered and to comply with a number of legal obligations (eg anti-money laundering legislation and tax legislation). ).
DISCLOSURE OF PERSONAL DATA
As a rule, we will not disclose your personal data to any third party unless it is in your best interest or need to disclose relevant personal data to judicial or arbitration authorities, as well as to any other authorities, in the context of the provision of services. contracted.
Sometimes, in order to provide the best services and to maintain our competitiveness in the cryptocurrency market, we communicate certain data inside and outside the Company, as follows:
Inside the Company
We may transfer your personal data to Company departments for operational, regulatory or reporting purposes, such as conducting a new customer audit, complying with certain laws, ensuring the security of IT systems or providing specific services.
Outside the Company
In order to comply with its legal obligations, bitMahavi may be required to disclose certain personal data to third parties, such as public authorities responsible for combating terrorism and preventing money laundering, or for complying with financial rules, including to regulators. and supervision, to the tax authorities who may ask us to report the assets held by our clients, to the judicial authorities at the express and legal request of these authorities, to the lawyers, notaries and auditors of the Company.
If you withdraw cash, pay with your debit card, or make a payment in an account opened with another bank, the transaction will always involve a specialized bank or financial company. To process payments, we need to disclose your personal information to the other bank, such as the account name and account number. We also provide information to financial professionals who provide financial services, such as:
Exchange of secure messages regarding financial transactions;
Electronic transaction processing;
We sometimes disclose personal data to banks or financial institutions in other countries, for example when you make or receive an external payment.
In the case of hiring service providers, we will communicate only those personal data necessary for the purpose of subsequent contracts and only with the provision of contractual mechanisms to protect against any disclosures from them. Service providers may support the Company's business through activities such as:
execution of certain services and operations;
marketing activities or events and managing customer communication;
preparation of reports and statistics, printing of materials and design of products;
THE RIGHTS OF THE PEOPLE AIMED AT AND THE WAY WE RESPECT THEM
bitMahavi respects your rights as data subjects, namely:
Right to access information - The data subject has the right to request a report of the personal data we process.
Right to rectification - If personal data is incorrect, the data subject has the right to ask us to rectify it. If we communicate corrected data to third parties later, we will also inform third parties accordingly.
Right to object to the processing of data - The data subject may object to the processing of personal data by the Company in accordance with his legitimate interests. This right can be exercised by e-mail at email@example.com, online through the Platform or by phone at +40746262686. The data subject may also object to receiving personalized business messages from us. When the target person becomes a bitMahavi customer, they are asked if they want to receive personalized offers. If the affected person changes their mind, they can choose not to receive any more messages by clicking the "unsubscribe" button at the bottom of each business email, accessing the "Settings" section of the bitMahavi account, or sending an email to dataprotection @ bitmahavi .com.
However, the data subject may not contest the processing of personal data by the Company in the following situations:
if we are in the presence of a legal obligation to process data;
if a contract cannot be concluded with that person without processing;
if there are security issues with the client account, even if the option to not receive personalized business messages has been enabled.
Right to restrict processing - The data subject has the right to request that we restrict the use of personal data if:
the information provided is inaccurate;
data processing is considered illegal;
The company no longer needs the personal data provided, but the data subject wishes to keep them for use in bringing an action;
The data subject has legitimately objected to the processing of personal data by the Company;
Right to data portability - The data subject has the right to request that we transfer personal data directly to him or her or to another controller. This applies to personal data that we process by automatic means and with the consent of the person or on the basis of a contract with the data subject. If technically possible, bitMahavi will transfer personal data in an automated, readable electronic format.
Right to be forgotten - The data subject may ask us to delete his / her personal data if:
the data are no longer necessary for the purpose for which they were collected or processed;
withdraws the consent on the basis of which the processing takes place;
legitimately opposes the processing of data by the Company;
personal data has been processed illegally;
a regulation of the European Union or of a Member State of the European Union requires the deletion of personal data by the Company.
Right to file a complaint - If the data subject is not satisfied with the way we respond to the request, he / she has the right to file a complaint with the National Authority for the Supervision of Personal Data Processing or the competent court.
As data subjects, you can exercise your rights mentioned above and you can also learn more about these rights by sending a request by e-mail to firstname.lastname@example.org, online via the Platform or by phone at +40746262686 . bitMahavi handles your requests with the utmost care, meaning that you can ask any questions you may have as soon as possible, but no later than 30 days from the date of the request.
HOW WE PROTECT PERSONAL DATA
In order to comply with bitMahavi's commitment to the protection of the personal data of users of the platform, we apply an internal policy framework and the necessary standards at all levels to maintain data security. These policies and standards are regularly updated to respond to regulatory and market developments. Specifically, and in accordance with the law, we take appropriate technical and organizational measures (policies and procedures, IT security, etc.) to ensure the confidentiality and integrity of personal data and how it is processed. In addition, the Company's employees and contractors are required to maintain confidentiality and may not disclose personal data provided in the performance of their service or contractual obligations, as the case may be.
WHAT CAN YOU DO TO HELP US KEEP YOUR DATA SAFE
bitMahavi does its best to protect your personal data provided, but as a recommendation, the data subject can contribute through the following protection measures:
Install antivirus, anti-spyware and firewall applications and update these programs regularly;
disconnecting from the trading application when not in use;
maintaining the strict confidentiality of passwords;
increase online vigilance and detect unusual activities, such as a new website address or phishing emails requesting personal data.
AS LONG AS WE KEEP OUR PERSONAL DATA
bitMahavi retains the personal data of the data subjects for as long as they are necessary for the purpose initially stated, whether it refers to the opening of a customer account for accessing the Platform or the conclusion of contracts for the provision of specific products and services through the Platform. there is a legal obligation in this regard.