top of page

Privacy Policy

Last updated: 21/10/2025

​

​equicom online s.r.o. (“Company,” “we,” “our,” “us”) respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, and protect your information when you use our website, open an account, or access our services related to virtual assets (“Services”).

​

This Policy is prepared in accordance with the General Data Protection Regulation (EU) 2016/679 (“GDPR”).

 

1. Data Controller

The data controller responsible for your personal data is:

equicom online s.r.o.
Email: gdpr@equicom.io

​

2. Personal Data We Collect

We collect and process the following categories of personal data:

  • Identification data: full name, date of birth, nationality, identity documents (passport, ID card), and photos.

  • Contact data: email address, phone number, residential address.

  • Financial data: payment account details, card details (masked), transaction history.

  • Technical data: IP address, browser type, login details, device information.

  • Verification data: information obtained during KYC/AML checks (e.g., proof of address, source of funds).

  • Communication data: messages, complaints, or requests sent to us.

 

3. Purposes and Legal Bases for Processing

We process your personal data for the following purposes:

  • Account registration and management (Article 6(1)(b) GDPR – contract performance).

  • Providing Services, including processing transactions (Article 6(1)(b) GDPR – contract performance).

  • Compliance with legal obligations, including AML/CTF laws, tax laws, and financial regulations (Article 6(1)(c) GDPR – legal obligation).

  • Fraud prevention, risk management, and security (Article 6(1)(c) and 6(1)(f) GDPR – legal obligation and legitimate interest).

  • Customer support and communication (Article 6(1)(b) GDPR – contract performance).

  • Marketing communications, where consent has been given (Article 6(1)(a) GDPR – consent).

 

4. Data Retention

We keep personal data only as long as necessary for the purposes described:

  • Account-related data: for as long as the Client has an active Account and up to 5 years after closure (to comply with AML/CTF laws).

  • Transaction records: at least 5 years, or longer if required by law.

  • Marketing data: until consent is withdrawn.

  • Technical logs: generally up to 12 months, unless needed for security or legal reasons.

When data is no longer needed, it is securely deleted or anonymized.

 

5. Data Sharing and Transfers

We may share your data with:

  • Service providers: IT, payment processors, KYC/AML verification partners.

  • Authorities and regulators: when required by law (e.g., AML/CTF, tax authorities, courts).

  • Professional advisers: auditors, legal advisers, or consultants.

We do not sell or rent your data to third parties.

If data is transferred outside the European Economic Area (EEA), we ensure appropriate safeguards, such as EU Standard Contractual Clauses (SCCs).

 

6. Data Security

We implement technical and organizational measures to protect your data, including encryption, access controls, firewalls, and secure data storage. Only authorized staff have access to personal data, and they are bound by confidentiality obligations.

 

7. Your Rights under GDPR

As a data subject, you have the following rights:

  • Right of access – to know what data we hold about you.

  • Right to rectification – to correct inaccurate or incomplete data.

  • Right to erasure (“right to be forgotten”) – to request deletion of your data where legally possible.

  • Right to restriction of processing – to limit the way we process your data.

  • Right to data portability – to receive your data in a structured, commonly used, machine-readable format.

  • Right to object – to object to processing based on legitimate interests, including direct marketing.

  • Right to withdraw consent – where processing is based on consent, you may withdraw it at any time.

  • Right to lodge a complaint – with your local supervisory authority (in the Czech Republic: ÚÅ™ad pro ochranu osobních údajů).

To exercise your rights, contact us at gdpr@equicom.io

 

8. Cookies and Tracking

We use cookies and similar technologies to improve website performance, analyze traffic, and enhance user experience. Details are provided in our separate Cookie Policy.

 

9. Automated Decision-Making

We may use automated systems for fraud detection and compliance checks. Such processing may affect your ability to use certain Services. You have the right to request human review of decisions made solely by automated processing.

 

10. Updates to this Policy

We may update this Privacy Policy from time to time. Changes will be published on our Website, and where appropriate, notified to you by email.

©2025 by equicom.

bottom of page