@fluxStyles
Privacy & Data

Privacy Policy

We take your privacy seriously. This policy explains what data we collect, why we collect it, and exactly how we use and protect it.

Last updated: March 1, 2025 GDPR & CCPA Compliant

1. Who We Are

NexaTrade Ltd. ("NexaTrade", "we", "us") is the data controller for information collected through our platform. We are registered in England & Wales (Company No. 11234567) and regulated by the Financial Conduct Authority (FCA Reference: 987654).

Our registered address is: 25 Canada Square, Canary Wharf, London, E14 5LQ, United Kingdom.

2. Data We Collect

We collect only what we need to provide and improve our services:

Category Examples When Collected
IdentityFull name, date of birth, nationality, government IDRegistration & KYC
ContactEmail address, phone number, home addressRegistration
FinancialBank account details, crypto wallet addresses, transaction historyDeposits / Withdrawals
TradingOrder history, positions, P&L, strategy dataDuring trading activity
DeviceIP address, browser type, operating system, device fingerprintEvery session
BehaviouralPages visited, features used, session duration, click patternsDuring platform use

We do not sell your personal data to third parties, ever.

3. How We Use It

  • Provide, operate, and improve the trading platform
  • Verify your identity and comply with AML/KYC regulations
  • Process transactions and send trade confirmations
  • Detect, prevent and investigate fraud or unauthorized activity
  • Send service notifications and, with your consent, marketing emails
  • Personalize your platform experience and AI signal recommendations
  • Meet legal and regulatory reporting obligations

4. Legal Basis (GDPR)

For users in the UK and European Economic Area, we process your data under the following legal bases:

  • Contract: Processing necessary to provide our trading services to you
  • Legal obligation: KYC, AML reporting, tax records, regulatory submissions
  • Legitimate interests: Fraud prevention, security monitoring, platform improvements
  • Consent: Marketing communications, optional analytics cookies

5. Data Sharing

We share your data only with trusted parties who are contractually obligated to protect it:

  • Liquidity providers — necessary to execute your trades at best price
  • Payment processors — Stripe, Fireblocks, and banking partners for deposits/withdrawals
  • KYC providers — Onfido and Jumio for identity verification
  • Regulators & authorities — FCA, HMRC, and law enforcement when legally required
  • Cloud infrastructure — AWS and Google Cloud (servers in UK/EU only)

6. Data Retention

We retain your data for as long as your account is active and for a period thereafter as required by law:

  • Account and trading records: 7 years post-account closure (FCA requirement)
  • KYC documents: 5 years after business relationship ends (AML regulations)
  • Marketing preferences: Until you withdraw consent
  • Device/session logs: 90 days for security purposes

7. Your Rights

Under GDPR and UK data protection law, you have the right to:

  • Access — request a copy of the personal data we hold on you
  • Rectification — correct inaccurate or incomplete data
  • Erasure — request deletion (subject to legal retention obligations)
  • Portability — receive your data in a structured, machine-readable format
  • Objection — opt out of processing based on legitimate interests
  • Restrict processing — limit how we use your data while a dispute is resolved

To exercise any right, email privacy@nexatrade.io. We will respond within 30 days.

8. Security

We employ industry-leading security measures including 256-bit SSL/TLS encryption in transit, AES-256 encryption at rest, SOC 2 Type II certification, mandatory 2FA for withdrawals, and regular third-party penetration testing. 95% of digital assets are held in offline cold storage.

9. International Transfers

Your data is primarily stored on servers within the UK and European Economic Area. Where we transfer data outside these regions (e.g. to US-based service providers), we do so using Standard Contractual Clauses (SCCs) approved by the UK ICO and European Commission.

10. Contact & DPO

Our Data Protection Officer can be reached at:

  • Email: dpo@nexatrade.io
  • Post: Data Protection Officer, NexaTrade Ltd., 25 Canada Square, London E14 5LQ

If you are unhappy with how we handle your data, you have the right to lodge a complaint with the UK Information Commissioner's Office (ICO) at ico.org.uk or your local EU supervisory authority.