Privacy Policy

This Privacy Policy explains how UAB IO Ready (“we,” “us,” or “our”), with its registered address at Eisiskiu Sodu 18-oji g. 11, LT-02194 Vilnius, Lithuania, and registration number 306194878, collects, uses, discloses, and protects your personal data when you visit and use our website www.bitreadypay.com (the “Website”) and any related services we provide (collectively, the “Services”).

We are committed to protecting your privacy and ensuring the security of your personal data in compliance with applicable data protection laws, including the General Data Protection Regulation (GDPR) (EU) 2016/679.

1. What Information We Collect

We may collect various types of information from and about you, including:

a. Information You Provide Directly to Us:

• Contact Information: Name, email address, phone number, postal address.
• Identity Verification Information (KYC/AML): Copies of identification documents (e.g., passport, national ID card), proof of address (e.g., utility bill), date of birth, nationality, and other information required to comply with Know Your Customer (KYC) and Anti-Money Laundering (AML) regulations.
• Financial Information: Bank account details, virtual currency wallet addresses, transaction history.
• Account Information: Username, password (hashed), and other registration details.
• Communications: Information you provide when you contact us for support, send us feedback, or participate in surveys.

b. Information We Collect Automatically:

• Device Information: IP address, browser type, operating system, device identifiers.
• Usage Information: Pages visited, time spent on pages, referral source, clicks, and other interactions with our Website.
• Log Data: Server logs, which may include details of your use of our Services, error reports, and other technical information.
• Cookies and Tracking Technologies: We use cookies and similar tracking technologies (e.g., web beacons, pixels) to collect information about your Browse activities. For more details, please see our Cookie Policy below.

c. Information from Third Parties:

• We may receive information about you from third-party service providers, such as identity verification services, fraud prevention agencies, and analytics providers, as necessary to provide our Services and comply with legal obligations.

2. How We Use Your Information

We use the information we collect for various purposes, including:

• To Provide and Maintain Our Services: 
• To operate, maintain, and improve our Website and Services.
• To process your transactions and manage your accounts.
• To facilitate virtual currency exchange services and wallet operations.
• For Security and Fraud Prevention: 
• To verify your identity and comply with KYC/AML regulations.
• To detect, prevent, and mitigate fraud, money laundering, and other illegal activities.
• To protect the security and integrity of our Website, systems, and user data.
• For Communication: 
• To send you transactional emails, service announcements, and important updates.
• To respond to your inquiries, support requests, and feedback.
• For Compliance with Legal Obligations: 
• To comply with applicable laws, regulations, legal processes, and governmental requests.
• To enforce our Terms of Service and other agreements.
• For Analytics and Improvement: 
• To understand how users interact with our Website and Services.
• To analyze trends, track user behavior, and gather demographic information.
• To improve our Services, develop new features, and enhance user experience.
• For Marketing (with your consent, where required): 
• To send you promotional materials, newsletters, and information about our products and services. You can opt-out of marketing communications at any time.

3. Legal Basis for Processing (GDPR)

We process your personal data based on the following legal grounds under the GDPR:

• Performance of a Contract: Processing is necessary for the performance of a contract to which you are a party or to take steps at your request prior to entering into a contract (e.g., providing our exchange and wallet services).
• Legal Obligation: Processing is necessary for compliance with a legal obligation to which we are subject (e.g., KYC/AML regulations, tax laws).
• Legitimate Interests: Processing is necessary for the purposes of our legitimate interests or those of a third party, provided your fundamental rights and freedoms do not override those interests (e.g., fraud prevention, improving our services, network security).
• Consent: Where required by law, we will obtain your explicit consent for specific processing activities (e.g., sending marketing communications). You have the right to withdraw your consent at any time.

4. How We Share Your Information

We may share your personal data with third parties in the following circumstances:

• Service Providers: We engage trusted third-party service providers to perform functions on our behalf, such as identity verification, fraud prevention, IT hosting, payment processing, customer support, and analytics. These providers are obligated to protect your data and only use it for the purposes for which it was disclosed.
• Legal and Regulatory Authorities: We may disclose your information to law enforcement agencies, regulatory bodies, courts, or other governmental authorities if required by law or in response to a valid legal process (e.g., subpoena, court order).
• Business Transfers: In the event of a merger, acquisition, sale of assets, or other corporate restructuring, your information may be transferred to the acquiring entity.
• With Your Consent: We may share your information with other third parties when we have your explicit consent to do so.
• Aggregated or Anonymized Data: We may share aggregated or anonymized information that cannot reasonably be used to identify you.

5. International Data Transfers

As an EU-based entity, your data will primarily be processed within the European Economic Area (EEA). However, some of our third-party service providers may be located outside the EEA.

When transferring your personal data outside the EEA, we will ensure that appropriate safeguards are in place, such as:

• Transferring data to countries deemed by the European Commission to provide an adequate level of data protection.
• Using Standard Contractual Clauses (SCCs) approved by the European Commission.
• Relying on your explicit consent or other legal bases where applicable.

6. Data Retention

We retain your personal data for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements.

Our data retention periods are determined by various factors, including:

• The nature of the data and the purpose for which it was collected.
• Legal and regulatory obligations (e.g., AML laws requiring retention of transaction records for a certain period).
• The duration of our relationship with you.
• The need to resolve disputes or enforce our agreements.

7. Your Data Protection Rights (GDPR)

Under the GDPR, you have the following rights regarding your personal data:

• The Right to Access: You have the right to request a copy of the personal data we hold about you.
• The Right to Rectification: You have the right to request that we correct any inaccurate or incomplete personal data we hold about you.
• The Right to Erasure ( “Right to be Forgotten”): You have the right to request the deletion of your personal data under certain circumstances (e.g., if the data is no longer necessary for the purposes for which it was collected).
• The Right to Restrict Processing: You have the right to request that we restrict the processing of your personal data under certain conditions (e.g., if you contest the accuracy of the data).
• The Right to Data Portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit that data to another controller.
• The Right to Object: You have the right to object to the processing of your personal data under certain circumstances (e.g., for direct marketing purposes or processing based on legitimate interests).
• The Right to Withdraw Consent: Where we rely on your consent to process your personal data, you have the right to withdraw that consent at any time.
• The Right to Lodge a Complaint: You have the right to lodge a complaint with a supervisory authority, particularly in the Member State of your habitual residence, place of work, or place of the alleged infringement, if you believe your data protection rights have been violated. In Lithuania, the relevant authority is the State Data Protection Inspectorate (Valstybinė duomenų apsaugos inspekcija).

To exercise any of these rights, please contact us using the contact details provided in Section 9.

8. Security Measures

We implement appropriate technical and organizational measures to protect your personal data from unauthorized access, disclosure, alteration, and destruction. These measures include:

• Encryption of data in transit and at rest.
• Access controls and authentication procedures.
• Regular security audits and vulnerability assessments.
• Employee training on data protection and security.

While we strive to protect your personal data, no method of transmission over the internet or method of electronic storage is 100% secure. Therefore, we cannot guarantee its absolute security.

9. Contact Us

If you have any questions or concerns about this Privacy Policy or our data practices, or if you wish to exercise your data protection rights, please contact us at:

UAB IO Ready Address: Eisiskiu Sodu 18-oji g. 11, LT-02194 Vilnius, Lithuania Registration Number: 306194878 Email: [email protected]