supabucks

Privacy Policy

Introduction

Welcome to supabucks.com (hereinafter referred to as "the Website," "we," "us," or "our"). This Privacy Policy is designed to inform you about our practices regarding the collection, use, and disclosure of information that you may provide via this platform and its related services. We are committed to protecting your privacy and ensuring the security of your personal data in compliance with the General Data Protection Regulation (EU) 2016/679 ("GDPR"), the California Consumer Privacy Act ("CCPA"), and other applicable privacy laws and regulations.

By accessing or using our Website, you acknowledge that you have read, understood, and agree to be bound by the terms of this Privacy Policy. If you do not agree with any part of this Privacy Policy, please refrain from using our Website and services.

1. Important Information and Who We Are

1.1 Data Controller: Supabucks.com, a company registered under the laws of [Jurisdiction], with registration number [Number], having its registered office at [Address], is the data controller and responsible for your personal data (collectively referred to as "Supabucks.com," "we," "us," or "our" in this Privacy Policy).

1.2 Data Protection Officer (DPO): We have appointed a Data Protection Officer who is responsible for overseeing questions in relation to this Privacy Policy and ensuring compliance with applicable data protection laws. The DPO can be reached at:
Email: [email protected]

1.3 Legal Basis: We process personal data in accordance with Article 6 of the GDPR, which provides several legal bases for processing, including:
• Consent (Article 6(1)(a))
• Contractual necessity (Article 6(1)(b))
• Legal obligation (Article 6(1)(c))
• Legitimate interests (Article 6(1)(f))

1.4 Changes to this Privacy Policy: We reserve the right to update this Privacy Policy at any time. Any modifications will be effective immediately upon posting on the Website. We will notify you of any material changes through a prominent notice on our Website or by sending you an email notification. Your continued use of the Website following the posting of changes constitutes your acceptance of such changes.

2. Data We Collect About You

2.1 Categories of Personal Data:

  • Identity Data: Including but not limited to first name, maiden name, last name, username or similar identifier, marital status, title, date of birth, gender, and government-issued identification numbers where required by law.
  • Contact Data: Including but not limited to billing address, delivery address, email address, telephone numbers, and any other contact information you provide.
  • Technical Data: Including but not limited to internet protocol (IP) address, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access the Website.
  • Financial Data: Including but not limited to bank account details, payment card details, transaction history, PayPal addresses, cryptocurrency wallet addresses, and any other payment processing information necessary for withdrawals and deposits. We also collect payment processor verification status and related transaction identifiers.
  • KYC (Know Your Customer) Data: This data is collected and stored by our trusted third-party KYC service providers, including but not limited to:
    • Government-issued identification documents (passports, ID cards, driver's licenses)
    • Proof of address documents
    • Facial recognition data
    • Document verification status and results
    • Additional verification documents as required by regulatory compliance
  • Profile Data: Including but not limited to your username and password, purchases or orders made by you, your interests, preferences, feedback, survey responses, and any other information you choose to provide in your account profile.
  • Usage Data: Including but not limited to information about how you use our Website, products, and services, including time spent on pages, click patterns, and features used.
  • Marketing and Communications Data: Including but not limited to your preferences in receiving marketing communications from us and our third parties, and your communication preferences.
  • Behavioral Data: Including but not limited to information about your browsing patterns, preferences, and interactions with our Website and services.

2.2 Methods of Collection:

  • Direct interactions with our Website
  • Automated technologies or interactions
  • Third parties or publicly available sources
  • Cookies and similar tracking technologies
  • User-generated content
  • Social media interactions
  • KYC service providers
  • Payment processors and financial service providers

2.3 Special Categories of Personal Data:

We do not intentionally collect any Special Categories of Personal Data about you (this includes details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health, and genetic and biometric data) unless:
• You have given explicit consent
• The processing is necessary for legal obligations
• The information has been manifestly made public by you
• The processing is necessary for the establishment, exercise, or defense of legal claims

3. How We Use Your Personal Data

3.1 Lawful Bases for Processing:

  • Performance of Contract:
    • To process and deliver your orders
    • To manage payments, fees, and charges
    • To provide customer service and support
    • To maintain your account
  • Legitimate Interests:
    • To improve our products and services
    • To protect against fraud
    • To ensure network and information security
    • To conduct data analytics
    • To develop new products and services
  • Legal Obligations:
    • To comply with legal and regulatory requirements
    • To respond to law enforcement requests
    • To maintain appropriate business records
  • Consent:
    • To send marketing communications
    • To use cookies for non-essential purposes
    • To process special categories of personal data

3.2 Processing Purposes:

We have set out below a detailed description of the ways we plan to use your personal data:

  • Account Creation and Management
  • Service Delivery and Optimization
  • Payment Processing and Financial Transactions
  • Customer Support and Communication
  • Marketing and Promotional Activities
  • Analytics and Research
  • Security and Fraud Prevention
  • Legal Compliance and Protection

4. Data Sharing

4.1 Categories of Recipients:

  • Service Providers:
    • Cloud hosting providers
    • Payment processors
    • Analytics providers
    • Customer support services
    • Marketing and advertising partners
  • Professional Advisers:
    • Lawyers
    • Bankers
    • Auditors
    • Insurers
  • Regulatory Bodies:
    • Government agencies
    • Law enforcement
    • Tax authorities
    • Other regulatory bodies

4.2 Safeguards for Data Sharing:

  • Data Processing Agreements
  • Standard Contractual Clauses
  • Confidentiality Obligations
  • Security Requirements
  • Regular Compliance Audits

5. International Transfers

We may transfer your personal data to countries outside the European Economic Area (EEA) or your country of residence. When we do so, we ensure appropriate safeguards are in place, including:

  • Standard Contractual Clauses approved by the European Commission
  • Binding Corporate Rules
  • Adequacy Decisions issued by relevant authorities
  • Specific derogations provided by Article 49 of the GDPR

6. Data Security

6.1 Technical Measures:

  • Encryption of data in transit and at rest
  • Firewalls and intrusion detection systems
  • Access controls and authentication mechanisms
  • Regular security assessments and penetration testing
  • Backup and disaster recovery procedures

6.2 Organizational Measures:

  • Staff training on data protection
  • Security policies and procedures
  • Access restrictions and need-to-know basis
  • Incident response plans
  • Regular audits and compliance checks

7. Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including:

  • Legal and regulatory requirements
  • Accounting and tax obligations
  • Business operations and continuity
  • Dispute resolution and enforcement of agreements

8. Your Legal Rights

8.1 GDPR Rights:

  • Right to Access (Article 15): Obtain confirmation of processing and a copy of your personal data.
  • Right to Rectification (Article 16): Correct inaccurate or incomplete data.
  • Right to Erasure (Article 17): Request deletion of personal data in specific circumstances.
  • Right to Restrict Processing (Article 18): Limit how we use your data.
  • Right to Data Portability (Article 20): Receive and transfer your data.
  • Right to Object (Article 21): Object to processing based on legitimate interests.
  • Rights Related to Automated Decision Making (Article 22): Not be subject to decisions based solely on automated processing.

8.2 Exercise of Rights:

  • Contact our DPO
  • Use our online forms
  • Submit written requests
  • Verify identity when making requests

8.3 Response Timeline:

  • One month from receipt of request
  • Two-month extension possible for complex requests
  • No fee for standard requests
  • Reasonable fee for excessive or unfounded requests

9. Cookies and Tracking Technologies

9.1 Types of Cookies:

  • Strictly Necessary Cookies: Essential for website functionality
  • Performance Cookies: Analytics and statistics
  • Functional Cookies: Remember your preferences
  • Targeting Cookies: Marketing and advertising

9.2 Cookie Management:

  • Browser settings configuration
  • Cookie consent management tool
  • Third-party opt-out mechanisms
  • Regular cookie audit and updates

10. Third-Party Links and Services

Our Website may include links to third-party websites, plug-ins, and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy statements.

11. Marketing

11.1 Marketing Communications:

  • Consent-based marketing
  • Legitimate interest communications
  • Third-party marketing
  • Promotional offers and newsletters

11.2 Opting Out:

  • Unsubscribe links in emails
  • Account settings management
  • Contact DPO directly
  • Third-party preference centers

12. Children's Privacy

Our Website is not intended for children under 16 years of age. We do not knowingly collect personal data from children. If you become aware that a child has provided us with personal data, please contact us immediately.

13. Data Protection Impact Assessments

We conduct Data Protection Impact Assessments (DPIAs) when using new technologies or where processing is likely to result in a high risk to the rights and freedoms of individuals.

14. Complaints

You have the right to lodge a complaint with a supervisory authority. We would, however, appreciate the chance to deal with your concerns before you approach the authority, so please contact us in the first instance.

15. Contact Details

Company Name: Supabucks.com
Data Protection Officer:
Email: [email protected]

16. Updates to This Privacy Policy

This Privacy Policy was last updated on November 14, 2024. Historic versions can be obtained by contacting us.

Document Version: 2.1
Effective Date: November 14, 2024
Next Review Date: May 14, 2025