# Privacy Notice for EU Users (GDPR Compliance) At Hexbit, we are committed to protecting the privacy and personal data of our users, especially those located in the European Economic Area (EEA). This Privacy Notice explains how we collect, use, store, and protect your personal data in accordance with the General Data Protection Regulation (GDPR) (EU 2016/679). *** ## 1. Data Controller Hexbit Exchange (“Hexbit”, “we”, “us”, or “our”) is the data controller responsible for the processing of your personal data. *** ## 2. Scope This Privacy Notice applies to users located within the EEA, regardless of your nationality or citizenship. If you access or use Hexbit from within the EEA, this notice applies to you. *** ## 3. What Data We Collect We may collect the following categories of personal data:\ • Identity Data: Full name, date of birth, nationality, government-issued ID\ • Contact Data: Email address, phone number, residential address\ • Financial Data: Bank account details, wallet addresses, transaction history\ • Usage Data: IP address, browser type, device information, geolocation data\ • Compliance Data: AML/KYC documentation and verification data *** ## 4. Legal Basis for Processing We process your personal data based on one or more of the following legal grounds:\ • To perform a contract with you (e.g., account registration and trading)\ • To comply with legal obligations (e.g., anti-money laundering laws)\ • Based on your consent (e.g., for marketing emails)\ • For legitimate interests (e.g., platform security and fraud prevention) *** ## 5. Your Rights Under GDPR If you are located in the EEA, you have the following rights:\ • Access to your personal data\ • Correction of inaccurate or incomplete data\ • Erasure (“right to be forgotten”) under certain conditions\ • Restriction of processing\ • Data portability\ • Object to certain processing activities\ • Withdraw consent at any time, where processing is based on consent\ • Lodge a complaint with your local data protection authority *** ## 6. Data Retention We retain your personal data only as long as necessary to fulfill the purposes described in this notice, including legal and regulatory obligations. *** ## 7. International Data Transfers Your data may be transferred to and processed outside the EEA, including in countries that may not provide the same level of data protection. In such cases, we implement appropriate safeguards, such as Standard Contractual Clauses (SCCs). *** ## 8. Data Security We implement industry-standard technical and organizational measures to protect your data from unauthorized access, loss, or misuse. *** ## 9. Contact Us If you have questions or concerns regarding this Privacy Notice or wish to exercise your rights, please contact us: Hexbit Compliance Team\ Email: \ Address: ul. MICKIEWICZA 39A, apt. 3, Grudziądz. Poland. Postcode: 86-300 --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://hexbit.gitbook.io/hexbit-docs/legal/privacy-notice-for-eu-users-gdpr-compliance.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.