Spot Futures
Sign inCreate an account
Sign in

PRIVACY POLICY

ABCEX.io — Privacy Policy

1. General Provisions

1.1. This Privacy Policy describes what personal data is collected and processed by NUEVA CRYPTOLOGIA, S.A.S. DE C.V. (hereinafter the "Operator", "we") when providing access to the ABCEX.io Platform.

1.2. This Policy applies to Platform users, website visitors, and persons who interact with support or partners in connection with the use of the Platform.

1.3. The Operator strives to comply with international privacy standards (including a GDPR-based approach) to the extent applicable to the Operator's activities and jurisdiction.

2. Data Controller and Contacts

2.1. Data controller: NUEVA CRYPTOLOGIA, SOCIEDAD POR ACCIONES SIMPLIFICADA DE CAPITAL VARIABLE (abbrev.: NUEVA CRYPTOLOGIA, S.A.S. DE C.V.), Republic of El Salvador.

2.2. Address: Avenida La Revolución, Plaza Presidente, Level 6, Unit 1, Colonia San Benito, San Salvador, San Salvador Centro, District San Salvador, El Salvador. Tel.: 77411981.

2.3. Contacts: privacy@abcex.io (privacy matters), legal@abcex.io (legal notices), support@abcex.io (support).

3. What Data We Collect

3.1. We may collect the following categories of data (depending on the features used and the level of verification):

  • Identification data: full name, date of birth, citizenship, identity document details, selfie/video verification (if required).
  • Contact data: email, phone number, messengers.
  • Address data: residence/registration address (if required), supporting documents.
  • Account data: usernames, security settings, 2FA metadata (without access to 2FA secrets).
  • Transaction data: transaction history on the Platform, deposit/withdrawal addresses, amounts, fees, metadata.
  • Technical data: IP address, device identifiers, browser, operating system, logs, cookies, session information.
  • Compliance data: sanctions screening results, risk scoring, Source of Funds/Source of Wealth (SoF/SoW) documents (if required).
  • Communications: correspondence with support, requests, call recordings (where applicable and not prohibited by law).

3.2. We do not ask you to provide private keys, seed phrases, or passwords for external wallets. Do not share such data with third parties.

3.3. Data is obtained: (a) directly from the user; (b) from KYC/AML providers; (c) from partners (to the extent necessary to process requests and ensure compliance); (d) from public sources (sanctions lists, adverse media) for compliance purposes; (e) automatically via cookies and technical logs.

4. Purposes of Processing and Legal Bases

PurposeDescriptionLegal basis
Provision of servicesAccount creation, access to Platform features, processing of transactions.Performance of a contract (ToS)
SecurityFraud prevention, account protection, monitoring of abuse.Legitimate interests / performance of a contract
ComplianceKYC/AML/KYT, sanctions screening, investigations, interaction with authorities.Legal obligation / legitimate interests
SupportHandling requests and communications.Performance of a contract / legitimate interests
AnalyticsStatistics, testing, user interface improvements.Legitimate interests / consent (where required)
MarketingInforming about products and updates.Consent / legitimate interests (depending on applicable law)

5. Disclosure of Data to Third Parties

5.1. We may disclose data to the following categories of recipients:

  • KYC/AML/KYT and sanctions screening providers;
  • Infrastructure providers (hosting, cloud services, monitoring, anti-DDoS);
  • Partners — to the extent necessary to process requests and ensure compliance;
  • Communications providers (email/SMS/push) — as needed;
  • Legal and audit advisors — as needed;
  • Competent authorities — where there is a lawful basis or a binding request.

5.2. We do not sell personal data and do not provide it to advertisers for independent use.

6. International Data Transfers

6.1. Data may be transferred and processed outside the user's country of residence because infrastructure and counterparties may be located in different jurisdictions.

6.2. We apply reasonable measures to ensure an adequate level of protection in cross-border transfers (contractual terms, access controls, encryption).

7. Retention Periods

7.1. We retain data only for as long as necessary for the purposes of processing, performance of the contract, legal compliance, and protection of the Operator's rights.

7.2. KYC/AML and transaction data may be retained for a longer period in accordance with applicable law requirements and internal policies.

8. User Rights

8.1. Depending on applicable law, the user may have the following rights: access, rectification, erasure, restriction, portability, objection, and withdrawal of consent.

8.2. To exercise your rights, you may contact privacy@abcex.io. We may request identity verification before fulfilling a request.

8.3. Certain requests may be limited if processing is necessary for legal compliance, compliance purposes, or the protection of the Operator's rights.

9. Data Security

9.1. We apply organisational and technical security measures, including access control, logging, monitoring, and incident response procedures.

9.2. Despite the security measures, absolute security cannot be guaranteed. The user must comply with the security measures for their account.

10. Cookies and Similar Technologies

10.1. We use cookies and similar technologies for website operation, security, analytics, and user preferences.

10.2. The user may restrict cookies through browser settings, but this may affect the availability of certain features.

11. Policy Changes

11.1. We may update this Policy. The new version becomes effective upon publication on the Platform, unless otherwise stated.