Privacy Policy
1. Introduction
Opriex needs to collect and use certain types of information about the physical and legal persons that wish to participate in the Opriex Platform managed by Opriex.
The personal information must be collected and dealt with appropriately in accordance with the company AML and KYC policies and in accordance with this Privacy Policy drawn up in accordance with the Canada and United States of America personal data protection act and International standards.
In accordance with the provisions of GDPR any User who provides his information under the present policies confirms that he understands and accepts the reason for the gathering of information and consents to the processing of information for the purposes of money laundering prevention.
Any User is entitled to know who is responsible for the processing of his or hers personal data.
Any data collected during the work of the Platform whether is collected on paper, stored in a computer database, or recorded on other material is subject to this policy and is protected under the applicable law and the GDPR provisions regarding data control and processing.
2. Data Protection Officer
Opriex and its officers and employees shall be collectively referred to as the Data Protection Officer under this policy and in accordance with the relative provisions of the GDPR, which means that it determines what purposes personal information held will be used for. It is also responsible for cooperating with the state regulatory organs regarding the correct application of the state legislation, and the correct use and disclosure of information.
The Data Protection Officer and Opriex in accordance with GDPR take upon themselves the following obligations:
- Implement measure to ensure the compliance with GDPR;
- Implement the necessary security measures to protect the rights of the data subjects when gathering and processing data;
- Conduct data protection impact assessments of high risk processing activities;
- Implement privacy by default design;
- Implement the valid data breach notification.
3. Disclosure
Opriex may share data with the state regulatory organs and other authorities when that is required by the applicable law or the provisions of the AML policy.
The Platform user will be made aware in most circumstances how and with whom their information will be shared.
Every Platform user shall agree with this policy and shall consent to his data being used in accordance with the provisions of this policy and the AML policy regarding analysis of data and disclosure of data.
There are circumstances where the law allows Opriex to disclose data (including sensitive data) without the data subject’s consent.
These are:
- Carrying out a legal duty or as authorised by the Financial Inspection of Estonia or any other competent legal authority.
- Protecting vital interests of any party, including the Platform user.
- The information was already made public by other third parties.
- For the conducting of any legal proceedings, obtaining legal advice or defending any legal rights.
- Disclosing data to state authorities under the AML policy in order to avoid or prevent money laundering.
Any User shall have the right to obtain from the Data Protection Officer the erasure of personal data concerning him or her without undue delay and the Data Protection Officer shall have the obligation to erase personal data without undue delay where one of the following grounds applies:
- the personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed;
- the data subject withdraws consent on which the processing is based (such a withdrawal constitutes that the User understands that the company will be entitled to terminate all cooperation with such a User);
- the personal data have been unlawfully processed;
- the personal data have to be erased for compliance with a legal obligation in European Union or Member State law to which the Data Protection Officer is subject;
In case of any queries or questions in relation to this policy, please contact the Opriex Data Protection Officer at dpo@opriex.com.