bncex

PRIVACY POLICY

LEGAL INFORMATION

Sole Proprietor: Պետրոսյան Արտուշ Հարությունի

Registration Number: 282.1454164

Registered Address: Yerevan, Armenia

“BNCEX – Bridge to New Capital” (hereinafter, the “Company”) provides cryptocurrency exchange and consulting services in compliance with the laws of the Republic of Armenia and under the supervision of the Central Bank of RA.

1. GENERAL PROVISIONS

1.1. The purpose of this Policy is to provide clients (also referred to as You, Your) with clear information on how the Company collects, uses, processes, and discloses personal data, and what rights You have regarding such data.

1.2. The Company follows a policy of maximum client privacy protection and, while processing data, is guided by the laws of the Republic of Armenia, including the laws “On Personal Data Protection,” “On Combating Money Laundering and Terrorist Financing,” “On Crypto-assets,” as well as applicable requirements of the Central Bank of RA.

1.3. By accepting this Privacy Policy, You provide unconditional consent to the collection, processing, storage, and use of Your personal data in accordance with this Policy.

2. CORE PRIVACY PRINCIPLES

The Company undertakes to:

  • collect only the data necessary for the provision of services and fulfillment of legal obligations,
  • process data lawfully, accurately, fairly, and transparently,
  • ensure the highest level of confidentiality, integrity, and security of data,
  • prevent unauthorized or unlawful access to personal data, as well as accidental loss or destruction.

Information on personal data known to the Company is confidential and legally protected. All employees of the Company have signed / will sign confidentiality non-disclosure obligations.

3. TYPES OF DATA COLLECTED

The Company may collect and process:

  • identity data (first name, last name, date of birth, passport/ID card details and scan copies, residence address, photo for biometric identification),
  • contact data (phone number, email),
  • transactional and financial data (amount, asset type, date, time, source of funds in cases of enhanced due diligence),
  • crypto wallet addresses and transaction hashes (TxID),
  • technical and location data (IP address, device type, browser type, operating system, login history, location-related information),
  • communication data (communications with the Company or its staff, e.g., calls, emails, messages),
  • public data (in certain cases, public records about You in media/social networks for customer due diligence purposes),
  • other data required by legal and regulatory requirements (including Travel Rule requirements).

4. PURPOSES OF DATA PROCESSING

Your data is processed solely for:

  • ensuring uninterrupted operation of the platform and proper service delivery,
  • performance of contractual obligations,
  • customer identification, fraud prevention, and risk management,
  • compliance with mandatory AML/CTF requirements,
  • fulfillment of legal, tax, and regulatory obligations,
  • detection, prevention, and resolution of technical issues,
  • improving service quality through analytics,
  • providing information on news and special offers (with Your consent).

5. TRANSFER AND DISCLOSURE OF DATA TO THIRD PARTIES

The Company does not sell or transfer clients’ personal data to third parties without consent, except where expressly required by law.

5.1. Data may be transferred/disclosed to:

  • state authorities (including the Central Bank of Armenia), courts, or law enforcement authorities where legally required,
  • partner organizations, international institutions, and technical providers (e.g., security monitoring, identity verification, blockchain analytics) strictly for service provision and risk management. The Company ensures contractual controls over such third parties.

5.2. If the Company undergoes reorganization resulting in transfer of Your data to a third party, You will be notified.

5.3. Notice: due to the nature of blockchain technology, wallet addresses and transaction data are recorded on a public distributed ledger and cannot be deleted or modified by the Company.

6. COOKIE POLICY

6.1. Cookies are text files containing small amounts of information downloaded to Your device when visiting the Company’s platform. They are mainly used to improve online user experience and ensure secure website functionality.

6.2. Cookies perform different functions. For example, some cookies help maintain login sessions and support two-factor authentication. Session-based cookies allow faster navigation and remember user preferences. Persistent cookies are used to recognize returning visitors and provide online advertising/content tailored to user needs and interests.

6.3. You can change browser settings at any time to block certain cookies. However, in that case, website security and transaction features (or parts of them) may not function as intended.

6.4. Cookies cannot be used to run programs on Your device or deliver viruses and are readable only by the web server that placed them.

7. DATA SECURITY

To protect Your personal data, we take reasonable measures and follow industry best practices to prevent loss, misuse, unauthorized access, or alteration. All personal and financial data received directly from You is stored in encrypted form.

8. DATA RETENTION PERIODS

8.1. The Company retains website visitors’ personal data from the date of last visit; KYC data and transaction details are retained for at least 5 (five) years in accordance with the RA Law “On Combating Money Laundering and Terrorist Financing” and other legal acts.

8.2. After mandatory retention periods expire, data is securely deleted or fully anonymized.

9. YOUR RIGHTS

9.1. Under RA law, Your key rights include:

  • to be informed about data processing and request correction of personal data if inaccurate or outdated,
  • to request deletion of personal data if incomplete/inaccurate/outdated, unless otherwise required by applicable law (including the mandatory 5-year AML/CTF retention period),
  • to file a complaint with the RA personal data protection authority in case of concern about rights violations.

9.2. These rights are not absolute and are subject to financial/AML-CTF regulations and strict record-retention obligations.

10. CHANGES TO THIS POLICY

10.1. The Company is entitled to amend this Privacy Policy unilaterally.

10.2. Changes become effective upon publication on the Company’s platform. Continued use of Services after publication is deemed acceptance of the updated terms.

11. FINAL PROVISIONS

This Privacy Policy is an integral part of the Company’s “Terms and Rules of Service Provision.”

CONFIRMATION

By using the Company’s platform and services (including completion of KYC), You confirm that You have read, understood, and fully accepted this Privacy Policy and provide explicit consent to the collection and processing of Your personal data, as well as cookies.