This notice describes how BitDa and its affiliates (hereinafter referred to as “BitDa,” “we,” or “us”) collect, use, and share (i.e., “process”) your personal data in connection with BitDa’s websites, applications, and services (including API services). In this notice, the term “affiliates” refers to any entity, individual, company, or legal person that controls, is controlled by, or is under common control with BitDa, directly or indirectly through one or more intermediaries.

This notice also describes the data protection rights you may have (under applicable laws), such as the right to object to certain processing by BitDa.

BitDa is committed to protecting and respecting your privacy. The purpose of this Privacy Policy is to describe:

When you create an BitDa account, you need to provide personal information including contact details (email address, name, and password). You may also choose to add a mobile number for SMS or Google Authenticator 2FA verification to enhance security.

To comply with global regulatory standards such as Anti-Money Laundering (AML), Know Your Customer (KYC), and Counter-Terrorism Financing (CTF), BitDa requires identity verification for individual and corporate accounts. This involves collecting official identification documents. Additionally, we need customers to upload images, which will be used to verify user identity and assist in KYC certification and Google Authenticator-related operations and verification. The platform will implement strict security standards and measures to encrypt user data and protect user privacy, ensuring that only the user can access and modify their own data; the platform will take all reasonable and feasible measures to protect users' personal information and will not share uploaded image data with third parties outside the BitDa platform.

By using the BitDa platform, we also monitor and collect tracking information related to use, such as access dates and times, device identifiers, operating systems, browser types, and IP addresses. This information may be obtained directly by BitDa or through third-party services. These services use data to ensure our interfaces are accessible to all platform users and to assist in criminal investigations.

For all individual and corporate user accounts, we collect transaction information, including deposit snapshots, account balances, transaction history, withdrawals, order activities, and distribution history. This transaction data is used to monitor suspicious transaction activities, protect users from fraud, and assist in resolving legal cases.

We use the collected information to provide our services and verify user identity. We use IP addresses and unique identifiers stored on your device to help us verify your identity and deliver services. Given our legal obligations and system requirements, without data such as identity information, contact information, and transaction-related information, we would not be able to provide services to you.

We use the collected information to protect our platform, user accounts, and records. We use IP addresses and cookie data to prevent automatic abuse such as spam, phishing, and Distributed Denial of Service (DDoS) attacks. We analyze transaction activities to detect suspicious behavior early to prevent potential fraud and financial loss.

We respect the privacy and security of the data stored in BitDa and use it to comply with regulations, government requests, and user queries. We do not disclose or provide any personal information to third parties without review by our legal case team and/or user prior consent.

We actively measure and analyze data to understand how our services are used. This review activity is conducted by our operations team to continually improve the platform's performance and address issues in user experience. We continuously monitor system activity information and communications with users to identify and quickly resolve problems.

We use collected personal information, such as email addresses, to interact directly with users, provide customer support, or maintain notifications related to logins, transactions, and security. Without processing your personal information to confirm each communication, we would not be able to respond to your requests, questions, and inquiries. All direct communications are confidential and internally reviewed to ensure accuracy.

Ongoing review, investigation, and prevention of any prohibited or illegal activities that may violate our terms of service are crucial for both us and our customers. For the benefit of the entire user base, we carefully enforce agreements with third parties and actively investigate behavior that violates our published terms of use. BitDa reserves the right to terminate services for users who violate our terms of use.

BitDa has implemented multiple security measures to ensure your information is not lost, misused, or altered. Our data security measures include, but are not limited to: PCI scans, encryption technology, pseudonymization, internal data access restrictions, and strict physical access controls for buildings and documents. Please note that no data transmission over the internet or electronic storage method can be 100% secure. Therefore, we ask that you understand you are responsible for independently taking security precautions to protect your own personal information.

If you suspect that your personal information, especially account and/or password information, has been compromised, please immediately lock your account and contact BitDa customer service.

We use cookies (and local storage objects, referred to collectively as “cookies” in this notice), web beacons/tags, and other related methods to collect information about your use of our website. Cookies are small pieces of information sent by a web server to a web browser to allow certain functionality or analytics.

We use third-party service providers to help us better understand the use of our website. Our service providers will place cookies on your computer's hard drive and receive information that we select to help us understand how visitors navigate around our site, what products are browsed, and general transaction information. Our service providers analyze this information and provide us with aggregate reports. The information and analysis provided by our service providers will be used to help us better understand our visitors’ interests in our website and how to better serve those interests. The information collected by our service providers may be linked to and combined with information we collect about you while you are using the Platform. Our service providers are contractually restricted from using information they receive from our website other than to assist us.

If you wish to avoid using cookies altogether, you can disable cookies in your browser. However, disabling cookies may make it impossible for you to use certain features of our website or services, such as logging into your BitDa account or making transactions. Your use of our website or service with a browser configured to accept cookies constitutes acceptance of our and third-party cookies.

To provide one-click sharing services, our app integrates Umeng+ U-Share SDK, which collects your device identifiable information (such as IMEI/android ID/IDFA, etc.) and public information of social accounts for sharing information with social accounts. For your information security, we have signed a data security confidentiality agreement with Umeng+, who will strictly adhere to our data privacy and security requirements. We will not share your personal identifiable information unless authorized by you. For more information, please visit Umeng+ Privacy Policy.

We may share your personal data with law enforcement, data protection authorities, government officials, and other authorities when:

We store and process your personal data in data centers around the world, wherever BitDa facilities or service providers are located. As such, we may transfer your personal data outside of the European Union. Some of the countries to which your personal data may be transferred for these purposes do not benefit from an adequacy decision issued by the EU Commission regarding protection afforded to personal data in that country. Details of these specific countries can be found here:

https://ec.europa.eu/info/law/law-topic/data-protection/data-transfers-outside-eu/adequacy-protection-personal-data-non-eu-countries_en

Such transfers are undertaken in accordance with our legal and regulatory obligations and appropriate safeguards under Data Privacy Law will be implemented, such as standard data protection clauses with data recipients or processors approved by competent authorities. A copy may be requested at the address set out in the Contact Us section.

We retain personal data for as long as necessary to fulfill the purposes described in this Privacy Policy, subject to our own legal and regulatory obligations. The criteria we may use to determine the retention period for certain categories of data include:

In accordance with our record-keeping obligations, we will retain account and other personal data for at least five years after the closure of an account (some data may be retained for up to ten years, depending on applicable legal requirements).

When we process personal data related to our performance of agreements, we will retain the data for six years after your last interaction with us.

When we process personal data for marketing purposes or based on your consent, we will process the data until you request us to stop and shortly thereafter (to enable us to implement your request). We will also retain a record of such request indefinitely to continue to respect your request in the future.

When we process personal data for website security purposes, we will retain it for three years.

Longer retention periods may apply, such as when ongoing access records are important for defending legal claims, or when specific laws or regulations require retention for a specified period.

Although our website and application only contain high-quality, secure, and relevant external links, users should always exercise caution when clicking on any links to non-BitDa websites or applications. We cannot control, guarantee, or verify these contents. They will have their own policies and practices regarding privacy and personal data, which you should review before further using those third-party websites or applications.

If you have any questions or concerns about how we handle your data, please contact us at [email protected] questions, comments, or concerns about our Privacy Policy and/or practices.