Privacy Policy

Your privacy is our priority. This policy explains how we collect, use, and protect your information across our website and mobile application.

Last updated: April 21, 2025

1. Introduction

This Privacy Policy ("Policy") governs the manner in which Cashtaq ("we," "our," or "us") collects, uses, maintains, and discloses information collected from users ("you" or "your") of our website (cashtaq.com) and mobile application ("App") (collectively, the "Services"). This Policy applies to all products and services offered by Cashtaq.

By accessing or using our Services, you acknowledge that you have read, understood, and agree to be bound by this Policy. If you do not agree with our policies and practices, please do not use our Services. We reserve the right to modify this Policy at any time, and such modifications shall be effective immediately upon posting of the modified Policy. Your continued use of the Services following the posting of changes to this Policy will mean you accept those changes.

2. Information Collection and Use

We collect several types of information from and about users of our Services, including:

  • Personal Identification Information: Name, email address, phone number, mailing address, government-issued identification, date of birth, and other information you provide when registering for our Services or completing transactions.
  • Financial Information: Bank account details, credit card information, transaction history, investment preferences, risk tolerance, and other financial data necessary to provide our Services.
  • Technical Information: IP address, browser type, device information, operating system, mobile device identifiers, app usage data, and other technical data collected through cookies and similar technologies.
  • Usage Information: Information about how you interact with our Services, including pages visited, features used, time spent, and other usage patterns.
  • Location Information: Precise or approximate location data if you enable location services in the App.
  • Biometric Information: Fingerprint or facial recognition data if you enable biometric authentication.

We collect this information directly from you when you provide it to us, automatically as you navigate through our Services, and from third parties, such as financial institutions, credit bureaus, and identity verification services. The information we collect is necessary for the performance of our contract with you, to comply with legal obligations, and for our legitimate business interests.

3. Legal Basis for Processing

We process your personal information based on the following legal grounds:

  • Performance of a Contract: Processing necessary for the performance of our contract with you or to take steps at your request before entering into a contract.
  • Legal Obligation: Processing necessary to comply with our legal obligations, including anti-money laundering laws, tax regulations, and financial reporting requirements.
  • Legitimate Interests: Processing necessary for our legitimate interests or those of a third party, provided such interests are not overridden by your interests or fundamental rights and freedoms.
  • Consent: Processing based on your consent, which you may withdraw at any time without affecting the lawfulness of processing based on consent before its withdrawal.

4. Information Use and Disclosure

We use the information we collect for the following purposes:

  • To provide, maintain, and improve our Services, including processing transactions, managing accounts, and delivering customer support.
  • To verify your identity and prevent fraud, including through identity verification services and anti-money laundering checks.
  • To comply with legal and regulatory requirements, including reporting to tax authorities and financial regulators.
  • To communicate with you about our Services, including sending important updates, security alerts, and marketing communications (where permitted by law).
  • To personalize your experience and provide tailored financial insights and recommendations.
  • To conduct research and analysis to improve our Services and develop new features.

We may disclose your information to:

  • Service providers and business partners who assist in operating our Services, subject to confidentiality obligations.
  • Financial institutions and payment processors to facilitate transactions.
  • Regulatory authorities, law enforcement agencies, and other third parties as required by law or to protect our legal rights.
  • Third parties in connection with a business transfer, such as a merger, acquisition, or sale of assets.

5. Data Security and Retention

We implement appropriate technical and organizational measures to protect your personal information against unauthorized or unlawful processing, accidental loss, destruction, or damage. These measures include:

  • End-to-end encryption for all financial data and sensitive communications.
  • Secure authentication methods, including multi-factor authentication and biometric verification.
  • Regular security audits and penetration testing to identify and address vulnerabilities.
  • Access controls and employee training to ensure data is only accessed by authorized personnel.
  • Secure data centers and cloud storage with industry-standard security certifications.

We retain your personal information for as long as necessary to fulfill the purposes outlined in this Policy, unless a longer retention period is required or permitted by law. When we no longer need your information, we will securely delete or anonymize it.

6. Your Rights and Choices

Depending on your jurisdiction, you may have certain rights regarding your personal information, including:

  • The right to access your personal information and receive a copy of the data we hold about you.
  • The right to correct inaccurate or incomplete personal information.
  • The right to request deletion of your personal information, subject to legal requirements.
  • The right to restrict or object to the processing of your personal information.
  • The right to data portability, allowing you to receive your data in a structured, commonly used format.
  • The right to withdraw consent at any time, where processing is based on consent.
  • The right to lodge a complaint with a supervisory authority.

To exercise these rights, please contact us using the information provided in the "Contact Us" section below. We may need to verify your identity before processing your request.

7. International Data Transfers

Your personal information may be transferred to, and processed in, countries other than your country of residence. These countries may have data protection laws that are different from those in your jurisdiction. We ensure appropriate safeguards are in place for such transfers, including:

  • Standard contractual clauses approved by the European Commission.
  • Binding corporate rules for intra-group transfers.
  • Other appropriate safeguards as required by applicable law.

8. Children's Privacy

Our Services are not intended for individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have collected personal information from a child without parental consent, we will take steps to delete such information.

9. Contact Us

If you have any questions about this Privacy Policy or our privacy practices, please contact us at: [email protected]