Privacy Policy

Privacy Policy

Protecting your privacy rights is important to EthTrust, and we work to maintain the trust and confidence of our clients when handling personal or financial information. 

Please see our notices below to learn about our privacy practices. 

Online Privacy Notice

Last Updated: March 07, 2022

1. INTRODUCTION

EthTrust, Inc. and its subsidiaries and affiliates (collectively, “EthTrust,” “we”, “our” or “us”) offer a variety of custodial and liquidity products and services for cryptocurrency management and trading for our users (“you” or “Individuals”). These include secure digital asset custody, our trading platform, and services surrounding staking and transaction validation, on-chain governance, and financing. Privacy and data protection are a top priority for us, and we encourage you to read this Privacy Notice fully to understand our privacy practices.

2. SCOPE AND APPLICABILITY

This Online Privacy Notice (“Notice” or “Policy”) explains how we collect, use, store, share, delete, and protect your Personal Information when you interact with us in any of the following ways (collectively, the “services”):

  • By visiting EthTrust’s website at www.ethtrust.co or our mobile application,
  • By using our services and platform products, such as vaults and other custodial services, trading, settlement, staking, governance, and financing services,
  • By interacting or communicating with us as part of our marketing practices, and;
  • By connecting with us at industry events and conferences.

Note that certain EthTrust products may be covered under separate agreements with EthTrust affiliates. If you have such an agreement in place with EthTrust, please reference the agreement for details on how the services collect and use Personal Information. 

This Policy also describes the choices that Individuals have with respect to their Personal Information, and how to contact EthTrust to learn more about our privacy practices.

If you have obtained a financial product or service with EthTrust to be used primarily for personal, family, or household purposes, we will use and share any information, including Personal Information that we collect from or about you in accordance with our U.S. Consumer Privacy Notice (available on our EthTrust Privacy Center page), which provides certain choices with respect to the use and sharing of your Personal Information.

Residents of the European Economic Area (“EEA”) or the United Kingdom (“UK”) may have additional rights regarding their Personal Information as discussed in the EEA/UK Privacy Notice (available on our EthTrust Privacy Center page).

3. PERSONAL INFORMATION WE COLLECT

We may collect Personal Information about you in several ways when you use our services, as described below. 

  • Information You Provide – We collect the information you provide to us directly when you use our services. You can choose to provide Personal Information for:
  • Website Use – We collect some or all of the following Personal Information about you when you use our website to contact us:
  • Name
  • Email 
  • Company information (state, institution type)
  • Other information you choose to provide to us when you contact us with your inquiries.
  • Onboarding Process – We collect some or all of the following Personal Information of applicants or their representatives (including control persons, beneficial owners, and authorized users) during the onboarding process:
  • Name/title
  • Email address
  • Date of Birth
  • Entities you may be affiliated with
  • Country and region
  • Mailing address
  • Tax ID number or equivalent
  • Voice recordings
  • Social Security Number
  • Phone number
  • Government Identification
  • Institutional information – We also collect information about our institutional clients, for onboarding and compliance purposes. Types of information include:
  • Location of headquarters
  • Federal Employer Identification Number (FEIN)
  • Names of affiliated entities
  • Certificate of Good Standing
  • Information on your Know Your Customer/Anti-Money Laundering (“KYC/AML”) program
  • Financial history and details (investment activity, bank statements, balance sheets, etc.)
  • Identity Verification – In addition to the Personal Information described under “Onboarding Process,” we may collect the following Personal Information to verify the identities of our clients or their representatives: 
  • Photographic and video footage
  • Geolocation data
  • Voice recordings
  • Additional information collected from your device (see below)
  • Transaction Execution – Once we verify your identity, we collect additional information to complete any requested transactions:
  • Names of counterparties to transactions
  • Bank account information of counterparties to transactions
  • Client Reporting – To execute our reporting services, we collect financial details (AUC balances, transaction information, etc.)
  • Research – For internal research and reporting
  • Security – To block disruptive uses
  • Job Applications – If you apply for a job with EthTrust, in addition to EthTrust collecting the Personal Information described under “Website Use” you will be directed to a third-party platform that may collect the following Personal Information about you:
  • Mailing address
  • Phone number
  • Job history
  • Resume/CV
  • LinkedIn profile
  • Any other Personal Information you choose to submit along with your application including U.S. Equal Opportunity Employment Information. 
  • Marketing Activities – If you attend our events, business meetings, or visit our booth at industry conferences, in addition to the Personal Information described under “Website Use,” we may collect one or more of the following business contact information about you:
  • Company
  • Job title/role
  • Other information that may be contained on your business card, if you choose to provide one.
  • Information We Collect from Third Parties  – When you use our services, we collect the following information from third parties:
  • Referrals and Account Participant Invitations – We receive information about you, such as your name and email address, if an EthTrust user refers you to our platform or invites you to participate on their account as an administrator, viewer, or spender. 
  • Integrations – We receive information about you via services you choose to integrate, such as where you link accounts from other service providers  to your EthTrust account.
  • Third Party Sign In – If you log in to our services using credentials from a third party (for example, Google), we will receive information that you have made public via your privacy settings with that third party.
  • Publicly Available Information – We may collect information about you via the following publicly available resources when you use our services:
  • Public records

Note that we may combine information received from third parties or publicly available resources with information we have collected directly from you.

  • Information We Collect – When you use our websites, with your consent, we use cookies and other tracking technologies to collect the following information about you:
  • Browser and Device Information – Using cookies and other tracking technology, we may collect:
  • Geolocation data (e.g., zip code, GPS-based information including altitude)
  • Motion tracking (e.g., number of steps taken, heart rate)
  • IP address
  • Wi-Fi connectivity
  • Phone carrier and manufacturer
  • Mobile operating system version
  • Battery level
  • Device type/model
  • Version of EthTrust application used
  • HTTP referrer fields
  • Browser type and version
  • Unique device identification numbers or pages viewed
  • Date and time of visit
  • Number of times you return to our website  

4. COOKIES AND OTHER TRACKING TECHNOLOGIES

We use information-gathering tools, such as cookies and other tracking technologies, to collect your Personal Information and other information as you use our services. Tracking technologies will only be deployed after you have permitted us to do so by providing consent. 

What Are Cookies? 

Cookies are small text files that are stored through the browser on your computer or mobile device. Cookies serve a variety of functions; they help you navigate between website pages efficiently and may improve the user experience on a website. Cookies vary in duration (they can be “persistent” or “session-based”), and by whom they are served (“first party” cookies are directly from us; “third party” cookies are from other parties on our behalf). They are only one of several types of technologies used to track online behavior.

Why We Use Cookies and Other Tracking Technologies.

EthTrust uses these technologies to collect information that helps us better serve our users and enhance this Site, such as by tracking return visits, collecting Site usage information, and performing research, analysis, and Site analytics. At EthTrust, we use cookies to: 

  • Administer our services 
  • Analyze services usage and trends
  • Track how you were referred to our website
  • Improve service functionality
  • Perform analytics and marketing integration 
  • Deliver personalized advertisements and other marketing offers

Types of Cookies We Use:

On our website, we use the following types of cookies:

  • Functional Cookies – We use cookies that are necessary for our services to run, including optimizing or powering features on the services and helping us identify irregular or fraudulent behavior on the services. 
  • Performance and Analytics Cookies – We use performance and analytics cookies to understand how visitors engage with our website. These cookies help us:
  • Understand how visitors arrive at our website
  • Monitor website usage and performance
  • Remember you when you return to the website, and 
  • Improve our website content. 
  • Marketing and Advertising Cookies – EthTrust and our service providers use marketing and advertising cookies to provide you with advertising based on your browsing activities and interests. These cookies monitor which ads have been served to your browser and which web pages you were viewing when such ads were delivered.
  • Google Analytics and Integration – On our website, we use third party analytics and marketing integration services such as Google Analytics and Hubspot to track and optimize our services’ performance and marketing activities. 
  • Google Analytics – Google Analytics helps us understand how users engage with our website. Like many services, Google Analytics uses first party cookies to track user interactions and in our case, they are used to collect information about how users use our website. This information is used to compile reports and to help us control the use of cookies. You can control the use of cookies through your web browser settings. Please note that if you reject or delete cookies, some of our website features may no longer function to improve our website and services. To learn more about Google Analytics’ privacy practices, please visit Google’s Privacy Policy page at https://policies.google.com/privacy
  • Cross-Device Tracking – EthTrust and our service providers match your browsing activity on our website across different devices. For example, if you browse our website via a mobile device and move to a laptop, we attempt to match your browsing activity from the two devices.

Managing Cookies & Online Tracking 

Where appropriate or legally required, we will describe how we use the information collected about you so that you can make choices about how your information is used. 

  • Managing Cookies – You can control the use of cookies on your device at any time by changing your preferences or options in your browser settings. Each browser provides different mechanisms for managing cookies. You can usually find these settings in the “Options” or “Preferences” menu of your browser; otherwise, look at your browser’s help menu to determine the best way to modify your browser’s cookie storage.  You can also block, disable, or delete the cookies that are stored on your device. However, blocking, disabling, or deleting cookies may limit your ability to view all the pages on our services. To find out more about cookies, including how to see what cookies have been set and how to block and delete cookies, please visit http://www.aboutcookies.org/. 
  • Analytics Preferences For information on how Google Analytics collects and processes data, visit www.google.com/policies/privacy/partners/. To learn more about Google Analytics, visit Google's "How you can control the information collected by Google on these sites and apps" article available here. 
  • “Do-Not-Track” – Some browsers allow a user to send “Do-Not-Track” signals to a website to prevent tracking of that Individual’s activity.  At this time, we do not respond to web browser “Do-Not-Track” signals. To learn more about browser tracking signals and DNT, visit http://www.allaboutdnt.com.
  • Targeted Advertising – Targeted advertising (also known as online behavioral advertising) is the practice of collecting and using Personal Information from a device, particularly concerning browsing history, and using it to deliver advertisements that may be of specific interest to that user. Some companies that we work with may use cookies and other tracking technologies to deliver targeted advertisements.  We will require you to opt in for your Personal Information to be collected in order to receive targeted advertisements. 

5. HOW WE USE PERSONAL INFORMATION

We use Personal Information we have about you as described below to:

  • Provide Our Services – We use the information we have about you to manage your account and provide our services. We also use your information to diagnose and resolve issues with our services, provide technical and customer support, ensure the safety, quality, and availability of the services, including verifying your identity and detecting, preventing, and prosecuting those responsible for security incidents or malicious, deceptive, fraudulent, or illegal activity.
  • Communicate with You – We use the information we have about you to respond to your inquiries, requests, and/or send important notices. This includes, for example, delivering customer support, and periodic emails related to company news, updated policies, product/service updates and information, job openings, or press releases. 
  • Market Our Services – We use the information we have about you to market our services. This includes, for example, sending you email communications about products, offerings, events and webinars or customized offers or materials.
  • Improve Our Services – We use the information we have about you to improve our services. This includes, for example, identifying usage trends, developing data analysis, determining the effectiveness of our promotional campaigns, evaluating our business performance, researching, demonstrating, developing and improving our products and services, and ensuring quality control. This can also include personalizing your experience. 
  • Perform User Testing and Surveys – We use the information we have about you to invite you to participate in user testing and surveys and provide feedback to us (in accordance with any privacy preferences you have expressed to us.)
  • Comply with The Law – We use the information we have about you to comply with applicable laws, regulations, and contractual obligations. This includes, for example, conducting compliance and/or security checks, audits, or assessments, enforcing our contracts and agreements with our customers, or complying with applicable law enforcement obligations.
  • Protect Our Assets – We use the information we have about you to resolve disputes and protect the rights, property, safety and interests or EthTrust and our site visitors, customers, and the public. We ensure the security of our assets, systems and networks, prevent, detect and investigate fraud, unlawful or criminal activities in relation to our services, and enforce our terms and conditions. We enforce any legal terms that govern your use of our website or application.
  • Engage in Other Purposes You Consent To – We use the information we have about you for other purposes if you consent to those uses at the time you provide your Personal Information.
  • Analyze De-identified or Aggregate Information – We use the information we have about you to create de-identified or aggregate information, such as de-identified demographic or location information, information about devices used to access our services, or other relevant analyses. We also share such data with any third parties, including advertisers, promotional partners, sponsors, event promoters, etc.

6. HOW WE SHARE PERSONAL INFORMATION

EthTrust may share the Personal Information we have about you as described below. 

  • Service Providers and Other Third Parties – We share information we have about you with third parties and service providers who assist us with administering the services. This includes, for example, IT service providers, data storage providers, identity verification service providers,  and marketing service providers.
  • Across Our Affiliates – We share information across EthTrust’s family of companies to provide you with our services, prevent fraud, conduct identity verifications, comply with the law, or in the event of a sale, merger, acquisition, or other liquidity event.
  • Business Partners or Joint Offerings – In certain situations, we may offer products or services jointly with a business partner. In such an event, we will share your information with a business partner for the purpose of facilitating the offering. In such a case, the business partner’s name will appear along with ours on the product or service.
  • Advertising Partners – We may share information with third parties to facilitate advertising on third party websites or mobile apps. If you do not want your Personal Information shared with our advertising partners, contact us as described in Section 11 “Contact Us.”
  • Sale, Merger, or Acquisition –As we continue to develop our business, we may buy, merge or partner with other companies. In such transactions, (including in contemplation of such transactions, e.g., due diligence) user information may be among the transferred assets. If a portion or all of EthTrust’s assets are sold or transferred to a third-party, end-user information would likely be one of the transferred business assets.
  • Protection of EthTrust or Others - EthTrust accesses, preserves, and discloses Personal Information in a good faith belief that such access, preservation, or disclosure is permitted by EthTrust's Privacy Program Policy or reasonably necessary or appropriate for any of the following reasons: 
  • To enforce this Privacy Policy, our Terms of Service, or other contracts with you, including investigation of potential violations thereof;
  • To enforce our agreement with our Client (i.e. the applicable Custody Service Agreement); 
  • To respond to your requests for customer service;
  • To protect the rights, property, or personal safety of EthTrust, its agents and affiliates, its users, and the public; and/or to defend EthTrust or others against third party claims or allegations.
  • Legal, Regulatory, Safety, and Compliance Purposes – In certain situations, we may be required to share your information with law enforcement officials or government authorities as required by laws, regulations, legal processes, and governmental requests. These situations may include, but are not limited to:
  • Complying with a subpoena or other legal process requests;
  • Protecting your rights;
  • Protecting your safety or the safety of others;
  • Investigating fraud;
  • Responding to a government request.
  • Any third parties that we share your Personal Information with are limited by law and by contract in their ability to use your Personal Information. EthTrust requires third party service providers acting on our behalf or with whom we share your information to provide appropriate security measures in accordance with industry standards and in compliance with this Policy, their privacy and security obligations, and any other appropriate confidentiality and security measures. However, we are not responsible for the privacy and data security practices of third parties outside of Personal Information we receive from or transfer to them.

If you elect to receive periodic email communication from us (i.e., company news, product and service information), you may choose to opt out from receiving such communications by clicking the ‘Unsubscribe’ link provided in these emails.

7. HOW WE PROTECT PERSONAL INFORMATION

At EthTrust, we take our responsibility to protect the security and privacy of your Personal Information seriously. We are committed to maintaining the confidentiality, integrity, and security of your Personal Information and taking precautions to protect such information. We use reasonable and appropriate administrative, technical, and physical safeguards to protect information we have about you from loss, theft, and unauthorized use, access, modification, or destruction. We regularly review our established policies and procedures to ensure that they are appropriate and effective at meeting our commitment to our community, our customers, and ourselves. We also require third party service providers acting on our behalf or with whom we share your information to maintain security measures consistent with industry standards.

Additionally, to help protect your privacy and maintain security, we verify your identity before granting you access to your information or your account. Our verification methods include requiring Individuals to create video footage of themselves reciting their password before conducting a transaction, and the collection of biometric and geolocation data. Notwithstanding our security safeguards, it is impossible to guarantee absolute security in all situations. If you have any questions about the security of our services, please contact us as described in Section 11 “Contact Us.” For your own online security, please do not send any other confidential Personal Information to us via email or through the contact form on our website.

8. CHILDREN’S PRIVACY

Our services are not intended for persons under the age of 18, and we do not knowingly or intentionally collect any Personal Information from, or market to, Individuals under the age of 13. 

If we become aware, or if you learn that an individual under the age of 13 has provided us with Personal Information contrary to these rules, please contact us as described in Section 11 “Contact Us” and we will delete the information from our systems.

9. THIRD PARTY SERVICES, APPLICATIONS, AND WEBSITES

Certain third party services, websites, or applications used to navigate to and from EthTrust services have separate user terms and privacy policies that are independent of this Policy. We are not responsible for the privacy practices of these third party services or applications. We recommend carefully reviewing the user terms and privacy statement of each third party service, website, and/or application before use.

10. CHANGES TO THIS NOTICE

We may change or update this Online Privacy Notice in the future. When we do, we will post the revised version on our website. This notice was last updated and became effective on the date posted at the top of this page.

11. CONTACT US

If you have questions about this Notice, or if you wish to exercise any of your rights in relation to your Personal Information, please contact us at privacy@ethtrust.co.

EEA/UK (GDPR) Privacy Notice

Last Updated: March 07, 2022

1. APPLICABILITY OF THE GDPR PRIVACY NOTICE

This Privacy Notice (“Notice”) applies to Individuals that are located within the European Economic Area (EEA) and the United Kingdom (UK), and supplements EthTrust’s Online Privacy Notice (available on our EthTrust Privacy Policy Center page). We adopt this Notice to comply with the General Data Protection Regulation (“GDPR”). The GDPR defines Personal Data as any information relating to an identified or identifiable natural person (“Data Subject”).

2. LEGAL BASIS FOR PROCESSING PERSONAL DATA

If you are located in the EEA or the UK, we only process your Personal Data for specific reasons and when we have a valid legal basis for processing under applicable data protection laws. 

The legal bases on which we rely on to process your Personal Data, as appropriate, are set out below:

  • Necessary for the performance of a contract with you or in order to take steps at your request prior to entering into a contract;
  • Necessary for compliance with a legal obligation or regulatory obligation;
  • Necessary for us to realize a justified and legitimate interest considering your privacy and other fundamental rights and interests. This may include:
  • running an effective operation of the EthTrust services and administering related services,
  • operating our services,
  • protecting the security of our systems, detecting or preventing fraud,
  • marketing, market research and business development,
  • internal group administrative purposes;
  • With your consent.

Where applicable, wherever we rely on the consent legal basis, you may withdraw such consent at any time, without affecting the lawfulness of processing based on consent before such withdrawal.

3. PERSONAL DATA WE COLLECT

Personal Data is data relating to an identified or identifiable Individual. Sensitive Personal Data (or “Sensitive Personal Information”) is data that reveals a person's racial or ethnic origin, political opinions, religious or philosophical beliefs, membership in trade unions, genetic data, biometric data, and data concerning health, sex life or sexual orientation. We collect Personal and Sensitive Personal Data from you in several ways when you use our services as described below. For more information, please see our Online Privacy Notice (available on our EthTrust Privacy Center page).

Directly from Individuals:  We collect information when Individuals use our website or mobile application or register with us. We will also collect information when Individuals place an order, subscribe to our marketing activities, respond to a survey, or to report on our Clients’ financial information. This information includes names, email addresses, phone numbers, and other demographic and contact information.

From Third Parties: We collect information from third parties including an Individual’s company and from those who validate identity. Examples of these collection methods include referrals from other EthTrust users, integration of cryptocurrency service providers, and third-party sign-in credentials. (e.g., Google).

From Individuals Passively: We use third party tools to collect information from Individuals when visiting our website and mobile application. Using cookies and other tracking technologies, we will automatically collect:

  • unique device identification numbers
  • device type
  • operating system version
  • browser type and version
  • pages viewed
  • links clicked 
  • IP address 
  • date and time of visit
  • number of times you return to our website
  • geolocation data (GPS-based information)
  • motion tracking (e.g., number of steps taken, heart rate)
  • Wi-Fi connectivity  

For information on how to manage your cookies preferences, please see our Online Privacy Notice (available on our EthTrust Privacy Center page).  

Security and Authentication: We collect certain information to protect our users’ information, and to verify an Individual’s identity. This involves collecting biometric data, such as voiceprints, video and photographic footage, geolocation data, and motion tracking information (see above). These are the only type of Sensitive Personal Data we collect, and we will not collect this information without obtaining your consent first.

Combining Information: We combine information received from third parties with information already stored. We will also combine information from an Individual’s profile with information submitted from surveys.

4. HOW WE USE YOUR PERSONAL DATA

We use the Personal Data we have about you for the purpose for which it was collected or provided to us (as stated at the point of collection). Your Personal Data will be used to: provide our services, communicate with you, market and improve our services, conduct surveys, comply with the GDPR and other applicable laws, protect our assets, perform other purposes with your consent, and create de-identified or aggregate information. For more information about how we use your Personal Data, please see our Online Privacy Notice (available on our EthTrust Privacy Center page).

5. PERSONAL DATA RETENTION & STORAGE

EthTrust only keeps or processes Personal Data for as long as necessary to carry out its business and legal purposes. Personal Data is deleted or anonymized when no longer required for the purposes for which it was collected, in accordance with our Record Retention Policy and Media Sanitization Policy. The specific periods for which we keep information about you vary depending on the nature of the information, why we need it, and whether the Personal Data is de-identified. We also consider the minimum necessary retention period prescribed by applicable laws, recommended by industry standards, and stated in contracts and other legal obligations. Additionally, you may request deletion of your Personal Data consistent with Section 7 “Individual Rights” below. 

We may be legally required to retain your Personal Data to:

  • comply with legal obligations;
  • resolve disputes; and
  • enforce rights.

Storage: We may use data hosting service providers in the U.S., Portugal, and Singapore to store information we have about you, and we use reasonable technical measures to secure your information.

6. PERSONAL DATA SHARED WITH THIRD PARTIES

We share information we have about you with third parties, service providers, and EthTrust affiliates who assist us with administering our services and advertising on third party platforms. We at times partner with other companies to offer products or services jointly; we may share your Personal Data in order to facilitate that offering.

Any third parties that we share your Personal Data with are limited by law and by contract in their ability to use your Personal Data. EthTrust requires third party service providers acting on our behalf or with whom we share your information to provide appropriate security measures in accordance with industry standards and in compliance with this Policy, their privacy and security obligations, and any other appropriate confidentiality and security measures. However, we are not responsible for the privacy and data security practices of third parties outside of Personal Data we receive from or transfer to them. For additional information, please see our Online Privacy Notice (available on our EthTrust Privacy Center page).

7. INDIVIDUAL RIGHTS

EthTrust would like to make sure you are fully aware of all of your data protection rights. Every user in the EEA or UK is entitled to the following:

  • The right to access:  You have the right to request copies of your Personal Data from EthTrust.
  • The right to be informed: You have a right to be informed about the collection and use of your Personal Data.
  • The right to rectification: You have the right to request that EthTrust corrects any information you believe is inaccurate. You also have the right to request that we complete any information you believe is incomplete.
  • The right to erasure: You have the right to request that EthTrust erases your Personal Data, under certain circumstances.
  • The right to restrict processing: You have the right to request that EthTrust restricts the processing of your Personal Data, under certain circumstances.
  • The right to object to processing: You have the right to object to EthTrust’s processing of your Personal Data, under certain circumstances.
  • The right to data portability: You have the right to request that EthTrust transfer its data on you to another organization, or directly to you, under certain conditions.
  • The right not to be subject to a decision based solely on automated processing: You have a right not to be subject to a decision when it is based on automated processing and it produces an adverse legal effect (or a similarly significant effect).
  • If you make a request, we have one month to respond to you. If you would like to exercise any of these rights, please contact us at our email: privacy@ethtrust.co.

8. COOKIES AND OTHER TRACKING TECHNOLOGIES

Cookies are small text files that are stored through the browser on your computer or mobile device. Cookies and other trackers serve a variety of functions; they help you navigate between website pages efficiently and may improve the user experience on a website. Cookies vary in duration (they can be “persistent” or “session-based”), and by whom they are served (“first party” cookies are directly from us; “third party” cookies are from other parties on our behalf.)

EthTrust and our service providers use cookies and similar technologies on our website and mobile application to collect information about your browsing activities over time and across different website pages. At EthTrust, we use these tools to: 

  • Administer our services 
  • Analyze services usage and trends
  • Track how you were referred to our website
  • Improve the services functionality
  • Perform analytics and marketing integration 
  • Deliver advertisements and other marketing offers

We will require you to opt in to each type of tracking device (categorized by their purpose) before they collect your Personal Data.

For further information please review EthTrust’s Cookie Notice (available at Section 4 of the Online Privacy Notice, on our EthTrust Privacy Center page).

9. DATA TRANSFER

EthTrust is a company based in the United States (U.S.). We use data hosting service providers in the U.S. to host the information we collect from or about you. When we transfer your Personal Data outside of the EEA or the UK, we will do so in accordance with the GDPR using a valid cross-border transfer mechanism. To the extent required by applicable law, we will protect the cross-border transfer of your Personal Data through the use of applicable legal adequacy mechanisms. We generally use approved Standard Contractual Clauses to ensure the Personal Data  is adequately protected when it is transferred outside the EEA or the UK to countries without an adequate level of data protection.

Please contact us via email at legal@ethtrust.co if you would like more information about cross-border transfers or to obtain a copy of  the Standard Contractual Clauses. We also transfer your Personal Data to third parties as described above in Section 6, “Personal Data Shared with Third Parties”.

10. PRIVACY POLICIES OF OTHER WEBSITES

The EthTrust website and mobile application contain links to other websites. Our privacy notice applies only to our website and mobile application, so if you click on a link to another website, you should review their privacy notice.

11. CHANGES TO THIS NOTICE

We may change or update this Online Notice in the future. When we do, we will post the revised version on our website. This notice was last updated and became effective on the date posted at the top of this page.

12. CONTACTING SUPERVISORY AUTHORITY

Should you wish to report a complaint or if you feel that EthTrust has not addressed your concerns to your satisfaction or you have other concerns regarding our processing of your Personal Data, you may contact our EU supervisory authority, the Comissão Nacional de Protecção de Dados (“CNPD”).

Email: geral@cnpd.pt
Address:
CNPD - Comissão Nacional de Protecção de Dados
Av. D. Carlos I, 134, 1º
1200-651 Lisboa

13. CONTACT US

If you have any questions about this policy or our privacy practices please contact us. You can write to us at privacy@ethtrust.co.

CCPA Privacy Notice

Last Updated: 03/10/2022

APPLICABILITY OF CCPA PRIVACY NOTICE

This Privacy Notice (“Notice”) applies solely to California residents and supplements EthTrust’s Online Privacy Notice. We adopt this Notice to comply with the California Consumer Privacy Act of 2018 (“CCPA”).

Under the CCPA, ‘Personal Information’ is information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked directly or indirectly with a particular California resident or household.

The CCPA, however, does not apply to certain information, such as information subject to the Gramm-Leach-Bliley Act (“GLBA”), the Fair Credit Reporting Act, and certain other state or federal privacy laws. For example, this CCPA Notice does not apply to information that we collect about Individuals located in the U.S. who seek, apply for, or obtain our financial products and services for personal, family, or household purposes, which is subject to our U.S. Consumer Privacy Notice (available on our EthTrust Privacy Center page).

CATEGORIES OF PERSONAL INFORMATION WE COLLECT AND DISCLOSE

Most of the information we collect is in the context of providing financial products or services and is therefore not subject to the CCPA. We do collect Personal Information relating to California residents in other contexts, including marketing activities and interaction with our website.

In the past 12 months, we may have collected and disclosed to third parties for our business purposes the following categories of Personal Information about you in several ways when you use our services, as described below:

  • Identifiers: name, email, and address (e.g., Social Security Number);
  • Personal Information, as defined in the California safeguards law: contact and financial information;
  • Characteristics of protected classifications under California or federal law: sex and marital status;
  • Commercial Information: products or services purchased and account information;
  • Internet or other similar network activity: browser type, pages viewed, and links clicked;
  • Biometric Information: video footage and voiceprints;
  • Geolocation Data: device location;
  • Professional or employment-related information: occupation or prior employer;
  • Sensory Data: audio recordings of customer care calls, electronic, visual or similar information; and
  • Inferences are drawn from any of the Personal Information listed above to create a profile about, for example, an Individual’s preference and characteristics.

SOURCES OF PERSONAL INFORMATION

The categories of sources from whom we collect Personal Information are:

  • Directly from a California Resident: We collect information when you register on our site or fill out a profile. We also collect information when you create an account with EthTrust (including the identity verification process), subscribe to our promotional campaigns, or respond to a survey.
  • From Third Parties: We may collect information through referrals from other EthTrust users, from an Individual’s employer, or from our service providers (e.g., those that validate identity).
  • From Individuals Passively: We use third party tools to collect information from Individuals from our website and mobile application.
  • Publicly Available Information: We collect information about you via publicly available resources listed in our Online Privacy Notice.
  • Combining Information: We combine information received from third parties with information already stored. EthTrust may also combine information from an Individual’s profile with information submitted from surveys.

HOW WE USE PERSONAL INFORMATION

Most of the information we use is for the provision of financial products or services and is therefore not subject to the CCPA. We may use Personal Information of California residents for one or more of the following business purposes as described below.

  • Auditing related to counting ad impressions;
  • Ensuring security and integrity of our use of your Personal Information;
  • Debugging to repair errors to ensure our products’ functionality;
  • Marketing, particularly short-term use of Personal Information for non-personalized advertising;
  • Business services, including servicing accounts, customer service, processing transactions, etc.;
  • Internal research for technological development;
  • Maintaining the quality and security of EthTrust services.
  • Investigations: detecting, investigating and preventing breaches of policy, and criminal offenses, in accordance with applicable law

For additional information on how we use Personal Information see our Online Privacy Notice (available on our EthTrust Privacy Center page).

SALE OF PERSONAL INFORMATION

As a California resident, you have the right to direct a business that sells your Personal Information to third parties not to sell your Personal Information. This right is referred to as “the right to opt-out of sale of Personal Information.”

Because we do not sell your Personal Information, we do not provide any mechanism for you to exercise the right to opt out.

CATEGORIES OF THIRD-PARTY DISCLOSURES

We may disclose Personal Information to the following third parties for a business purpose.

Category: Affiliates

  • U+1FA99 LLC

Category: Service Providers

  • DocuSign, Google, Amazon Web Services, DocSend

Category: Joint Marketing Partners

  • None

Category: Government Entities

  • Wyoming Banking Commission, California Department of Financial Protection and Innovation (“DFPI”), Texas Department of Banking

Third Party Responsibilities

Any third parties that we share your Personal Information with are limited by law and by contract in their ability to use your Personal Information. EthTrust requires third-party service providers acting on our behalf or with whom we share your information to provide appropriate security measures in accordance with industry standards and in compliance with this Policy, their privacy and security obligations, and any other appropriate confidentiality and security measures. However, we are not responsible for the privacy and data security practices of third parties outside of Personal Information we receive from or transfer to them.

PRIVACY CHOICES AND RIGHTS

The CCPA provides California residents with specific rights regarding their Personal Information. If you are a California resident, you may have the following rights.

  • Request we disclose to you free of charge the following information covering the 12 months preceding your request:
  • the categories of Personal Information about you that we collected;
  • the categories of sources from which the Personal Information was collected;
  • the business or commercial purpose for collecting Personal Information about you;
  • the categories of third parties with whom we share that Personal Information; and
  • the specific pieces of Personal Information we collected about you.
  • Request that we delete any of your Personal Information we collected from you, unless a CCPA exception is applicable

Be free from unlawful discrimination for exercising your rights under the CCPA

We will acknowledge receipt of your request and advise you how long we expect it will take to respond if we are able to verify your identity. Requests for specific pieces of Personal Information will require additional information to verify your identity.


Only you or a person registered with the California Secretary of State that you authorize to act on your behalf, may make a verifiable consumer request related to your Personal Information. If you are an authorized agent, please send us proof that the consumer gave you written permission to submit the request and we will verify your identity as provided above. We may also require the consumer to verify their own identity with us and/or directly confirm with us that they have given you permission to submit the request.


You may only make a verifiable consumer request for access or data portability twice within a 12-month period. The verifiable consumer request must:

  • Provide sufficient information that allows us to reasonably verify you are the person about whom we collected Personal Information or an authorized representative.
  • Describe your request with sufficient detail that allows us to properly understand, evaluate, and respond to it.

We cannot respond to your request or provide you with Personal Information if we cannot verify your identity or authority to make the request and confirm the Personal Information relates to you. We will only use Personal Information provided in a verifiable consumer request to verify the requestor's identity or authority to make the request

We will work to process all verified requests within 45 days pursuant to the CCPA. If we need an extension for up to an additional 45 days in order to process your request, we will provide you with an explanation for the delay.

If you are a California resident, you may submit a request by emailing us at privacy@ethtrust.co

CHANGES TO THIS NOTICE

We may change or update this CCPA Notice in the future. When we do, we will post the revised CCPA Notice on our website. This CCPA Notice was last updated and became effective on the date posted at the top of this page.

CONTACT US

If you have questions about this Notice, or if you wish to exercise any of your rights in relation to your Personal Information, please contact us. You can call us at (833) 384-8778 or write to us at privacy@ethtrust.co

US Consumer Privacy Notice

Last Updated: 10/10/2022

FACTS

WHAT DOES ETHTRUST DO WITH YOUR PERSONAL INFORMATION?

Why?

Financial companies choose how they share your personal information. Federal law gives consumers the right to limit some but not all sharing. Federal law also requires us to tell you how we collect, share, and protect your personal information. Please read this notice carefully to understand what we do.

What?

The types of personal information we collect, and share depend on the product or service you have with us. This information can include:

  • Social Security number and Contact information (name, address, email address, phone number)
  • Date of Birth and Tax ID number
  • Account balances and transaction history
  • Video and/or audio recordings and Device information

Reasons we can share your personal information

For our everyday business purposes—such as to process your transactions, maintain your account(s), respond to court orders and legal investigations, or report to credit bureaus

  • Does EthTrust share? YES
  • Can you limit this sharing? NO

For our marketing purposes—to offer our products and services to you

  • Does EthTrust share? YES
  • Can you limit this sharing? NO

For joint marketing with other financial companies

  • Does EthTrust share? NO
  • Can you limit this sharing? N/A

For our affiliates’ everyday business purposes—information about your transactions and experiences

  • Does EthTrust share? YES
  • Can you limit this sharing? NO

For our affiliates’ everyday business purposes—information about your creditworthiness

  • Does EthTrust share? NO
  • Can you limit this sharing? N/A

For our affiliates to market to you

  • Does EthTrust share? YES
  • Can you limit this sharing? YES

For non-affiliates to market to you

  • Does EthTrust share? NO
  • Can you limit this sharing? N/A

To limit our sharing

Email privacy@EthTrust.co to elect the below choice(s) and one of our representatives will update your privacy choice(s):

“Do not allow your affiliates to use my personal information to market to me.”

Please note:

If you are a new customer, we can begin sharing your information 30 days from the date we sent this notice. When you are no longer our customer, we continue to share your information as described in this notice. However, you can contact us at any time to limit our sharing.

Questions?

Please contact privacy@EthTrust.co

Who is providing this notice?

EthTrust, Inc.

How does EthTrust protect my personal information?

To protect your personal information from unauthorized access and use, we use security measures that comply with federal law. These measures include computer safeguards and secured files and buildings.

We use reasonable and appropriate administrative, technical, and physical safeguards to protect information we have about you from loss, theft, and unauthorized use, access, modification, or destruction. We regularly review our established policies and procedures to ensure that they are appropriate and effective at meeting our commitment to our community, our customers, and ourselves. We also require third party service providers acting on our behalf or with whom we share your information to maintain security measures consistent with industry standards.

How Does EthTrust collect my personal information?

We collect your personal information, for example, when you:

  • open an account or deposit funds
  • take part in our marketing activities
  • respond to a survey

We also may collect information from your company or other third parties, and by using third party tools, like cookies and other trackers.

Why can’t I limit all sharing?

Federal law gives you the right to limit only:

  • sharing for affiliates’ everyday business purposes – information about your creditworthiness
  • affiliates from using your information to market to you
  • sharing for non-affiliates to market to you

State laws and individual companies may give you additional rights to limit sharing.

What happens when I limit sharing for an account I hold jointly with someone else?

When you limit sharing on an account jointly shared with someone else, EthTrust will apply the decision to everyone on the account. Any account holder may express a privacy preference on behalf of the other joint account holders.

Affiliates

Companies related by common ownership or control. They can be financial and non-financial companies.

  • Our affiliates include U+1FA99 LLC

Non-affiliates

Companies not related by common ownership or control. They can be financial and non-financial companies.

  • Non-affiliates we may share you information with can include IT service providers, data storage providers, identity verification service providers, and marketing service providers.

Joint marketing

A formal agreement between nonaffiliated financial companies that together market financial products or services to you.

California Residents:

We will not share information we collect about you with nonaffiliated third parties, except as permitted by law. See our CCPA Privacy Notice for more information. Telephone communications with us may be monitored or recorded.