Privacy Notice

Last modified: 2025/04/04

1. General Provisions

1.1. Purpose of this Privacy Notice

This Privacy Notice explains how FUTCOIN (“Company,” “we,” “us,” or “our”) collects, uses, stores, and protects personal data of individuals (“users,” “you”) who interact with our services. It also outlines users’ rights regarding their personal data and how they can exercise these rights.

The purpose of this Privacy Notice is to ensure transparency regarding:

The types of personal data we collect;
The purposes for which we process personal data;
How we protect personal data;
Users’ rights and how to exercise them;
How and with whom we share personal data.

This Privacy Notice applies to all users outside the European Economic Area (EEA). Users residing in the EEA should refer to our GDPR Privacy Notice here, which is specifically designed to comply with the General Data Protection Regulation (GDPR).

By using our services, you acknowledge that you have read and understood this Privacy Notice. If you do not agree with any part of this Privacy Notice, you should discontinue using our services.

1.2. Scope and Applicability

This Privacy Notice applies to:

Our websites, mobile applications, and online services;
Any interactions with us, including customer support, marketing activities, and participation in promotions;
Any services, transactions, or activities that involve the collection and processing of personal data by FUTCOIN.

This Privacy Notice does not apply to:

Third-party websites, platforms, or services that are linked to our website but are not under our direct control. We encourage users to review the privacy policies of such third parties separately.

1.3. Definitions

For the purposes of this Privacy Notice, the following definitions apply:

"Personal Data" – Any information that can identify an individual, either directly or indirectly, including but not limited to names, email addresses, IP addresses, and transaction history.
"Processing" – Any operation performed on personal data, such as collection, storage, modification, retrieval, or deletion.
"Data Controller" – The entity that determines the purposes and means of processing personal data. FUTCOIN acts as the Data Controller for the processing of personal data under this Privacy Notice.
"Data Processor" – A third-party entity that processes personal data on behalf of the Data Controller under contractual obligations.
"Consent" – A freely given, specific, informed, and unambiguous indication of the data subject’s agreement to the processing of their personal data.
"Legitimate Interests" – A legal basis for processing personal data when such processing is necessary for the business operations of FUTCOIN and does not override the fundamental rights and freedoms of users.

2. Categories of Personal Data Collected

We collect and process different categories of personal data to provide and improve our services while ensuring compliance with applicable data protection laws. The specific types of data collected depend on how users interact with our platform.

2.1. Personal Identification Data

We collect personal information that directly identifies users, including:

Full name;
Username and password (for account authentication);
Email address;
Phone number (optional);
Mailing address (when required for service delivery).

2.2. Financial and Transactional Data

To facilitate transactions and process payments, we collect:

Transaction history (e.g., purchases, refunds, deposits, withdrawals);
Billing and shipping addresses;
Payment method details (e.g., masked card number, expiration date).

Payment Security Disclaimer:
FUTCOIN does not store full credit or debit card details. Instead, payment credentials are securely handled by third-party payment providers that comply with Payment Card Industry Data Security Standard (PCI DSS).

2.3. Technical and Device Information

When users interact with our platform, we collect certain technical data, including:

IP address;
Device type and operating system;
Browser type and settings;
Log files and timestamps;
Cookies and tracking identifiers (see Section 9. Use of Cookies and Tracking Technologies).

2.4. User Interaction and Behavioral Data

To enhance our services and personalize the user experience, we collect:

Pages visited and time spent on each page;
Clickstream data (e.g., navigation patterns);
Referral sources (e.g., how users arrive at our website);
Preferences and interests based on user activity.

2.5. Marketing Preferences

When users subscribe to marketing communications, we collect:

Preferences for promotional emails and advertisements;
Opt-in or opt-out status for marketing communications.

Users can adjust their marketing preferences at any time (see Section 10.6. Opting Out of Marketing Communications).

2.6. Special Categories of Data

We do not intentionally collect or process sensitive personal data, including:

Racial or ethnic origin;
Political opinions;
Religious or philosophical beliefs;
Health or biometric data;
Sexual orientation.

If a user voluntarily provides such information, it will be processed only with explicit consent and in compliance with applicable data protection laws.

3. Methods of Data Collection

We collect personal data through various methods to ensure the effective delivery of our services while maintaining compliance with applicable data protection laws. Data is collected in three primary ways: (1) directly from users, (2) automatically through technology, and (3) from third-party sources.

3.1. Data Provided by Users

Users voluntarily provide personal data when they:

Create an account (e.g., name, email, password);
Make transactions (e.g., payment details, billing/shipping addresses);
Submit inquiries via customer support;
Participate in promotions, contests, or surveys;
Adjust privacy and marketing preferences.

Note: Some personal data is mandatory to access certain services. Users who do not provide required information may be unable to use specific features.

3.2. Data Collected Automatically

We collect certain technical and behavioral data automatically when users interact with our website or services. This includes:

3.2.1. Cookies and Tracking Technologies

We use cookies, web beacons, and tracking pixels to collect browsing data (see Section 9. Use of Cookies and Tracking Technologies).
Users can manage cookie preferences through browser settings or via our Cookie Consent Management Tool.

3.2.2. Log Files and Device Data

IP address, browser type, operating system, and timestamps are logged for security, fraud prevention, and analytics.
We track session data and website navigation patterns to improve user experience.

3.2.3. Analytics and Usage Data

We use third-party analytics services (e.g., Google Analytics, Meta Pixel) to collect anonymized behavioral data.
This data helps us understand user engagement and optimize our platform.

3.3. Data Received from Third Parties

We may receive personal data from third-party sources, including:

Payment processors – To verify transactions and prevent fraud.
Advertising and marketing platforms – To personalize ads and measure campaign effectiveness.
Social media platforms – If users interact with our services via social media integrations.
Affiliated business partners – When users engage with our partners' services through our platform.

Third-Party Compliance: We ensure that any third-party data processing complies with applicable data protection regulations and inform users about data-sharing practices.

4. Purposes of Processing Personal Data

FUTCOIN processes personal data strictly for legitimate business purposes, ensuring compliance with applicable data protection laws. The specific purposes of data processing include account management, service provision, fraud prevention, and marketing activities.

4.1. Account Registration and User Authentication

We process personal data to:

Create and manage user accounts;
Authenticate users during login;
Maintain account security and prevent unauthorized access;
Manage user settings and preferences.

4.2. Order Processing and Payment Transactions

To fulfill orders and process transactions, we collect and use personal data to:

Verify user identity and ensure compliance with anti-fraud policies;
Process payments via third-party payment providers (e.g., credit card, PayPal, cryptocurrency);
Issue invoices, receipts, and transaction confirmations;
Handle refunds and disputes.

4.3. Customer Support and Communication

We process personal data to:

Respond to user inquiries and technical support requests;
Manage complaints and dispute resolution;
Send important service-related notifications (e.g., security alerts, policy updates).

4.4. Fraud Prevention and Security Measures

To protect user accounts and prevent fraudulent activities, we process personal data for:

Detecting and mitigating fraud, unauthorized transactions, and suspicious activities;
Monitoring website usage for security purposes;
Implementing anti-money laundering (AML) and Know Your Customer (KYC) procedures where applicable.

4.5. Marketing and Promotional Communications

With user consent, we process personal data to:

Send promotional emails, newsletters, and special offers;
Personalize marketing campaigns based on user preferences;
Conduct retargeting and behavioral advertising (users may opt out at any time).

Users can withdraw consent for marketing communications at any time (see Section 10.6. Opting Out of Marketing Communications). Withdrawal of consent does not affect the lawfulness of processing carried out before consent was withdrawn.

4.6. Website Analytics and User Experience Optimization

To improve our platform and user experience, we process personal data to:

Analyze website traffic and usage trends;
Test and optimize website performance;
Improve navigation, accessibility, and content relevance.

All analytics data is either anonymized or pseudonymized where possible.

5. Legal Basis for Processing Personal Data

FUTCOIN processes personal data based on clear and lawful grounds to ensure compliance with applicable data protection regulations. Depending on the nature of the processing, we rely on one or more of the following legal bases.

5.1. Consent-Based Processing

We process personal data when users provide explicit and informed consent for specific purposes. This includes, but is not limited to:

Subscribing to marketing communications (newsletters, promotional emails);
Accepting cookies and tracking technologies;
Participating in surveys, promotions, or contests.

Users have the right to withdraw consent at any time (see Section 10.6. Opting Out of Marketing Communications). Withdrawal of consent does not affect the lawfulness of processing carried out before consent was withdrawn.

5.2. Contractual Necessity

We process personal data when it is necessary to fulfill a contract with the user or to take steps at the user’s request before entering into a contract. This includes:

Registering and managing user accounts;
Processing transactions and fulfilling orders;
Providing customer support.

5.3. Legal and Regulatory Compliance

We process personal data when required to comply with legal obligations, including:

Financial reporting and tax compliance;
Responding to legal requests from authorities (e.g., law enforcement agencies);
Anti-fraud and anti-money laundering (AML) compliance.

5.4. Legitimate Business Interests

We process personal data based on our legitimate interests, provided that such processing does not override users' fundamental rights and freedoms. Examples include:

Fraud Prevention: Monitoring transactions to detect and prevent fraudulent activities;
Service Optimization: Analyzing user behavior to enhance website functionality and user experience;
Marketing and Advertising: Conducting targeted advertising campaigns (users can opt out at any time);
Security Monitoring: Detecting and preventing unauthorized access, cyber threats, and data breaches.

Users have the right to object to processing based on legitimate interests (see Section 10.5. Right to Object to Processing).

6. Data Retention Policy

We retain personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Notice or as required by applicable laws and regulations. Once the retention period expires, personal data is securely deleted or anonymized to prevent unauthorized access or misuse.

6.1. Retention Periods for Different Data Categories

Data Category	Retention Period	Reason for Retention
User account data	Retained until account deletion request is submitted	Necessary for account management
Transaction history	Retained for at least 5 years after the transaction	Compliance with financial regulations and fraud prevention
Marketing preferences	Retained until the user withdraws consent	Ensuring compliance with opt-out requests
Technical logs (IP, cookies, log files)	Retained for up to 12 months	Website security, fraud detection, and analytics
Customer support inquiries	Retained for 2 years from the last interaction	Improving service quality and resolving disputes
Legal compliance data (AML/KYC, if applicable)	Retained for 5-7 years	Compliance with anti-money laundering (AML) and legal obligations

6.2. Criteria for Determining Retention Periods

We determine the appropriate retention periods based on the following factors:

Legal and regulatory requirements (e.g., financial reporting, tax laws, AML compliance);
Operational and business needs (e.g., maintaining records for customer support);
Security and fraud prevention measures (e.g., keeping logs to detect unauthorized access);
User consent and preferences (e.g., opting out of marketing communications).

6.3. Data Deletion and Anonymization Procedures

Once data is no longer required, we take the following actions:

Deletion: Personal data is permanently erased from all active and backup storage systems.
Anonymization: Where applicable, data is irreversibly anonymized for statistical and analytical purposes.

Users can request data deletion by submitting a request (see Section 10.3. Right to Erasure). Certain data may be retained for legal and regulatory compliance even after a deletion request.

7. Sharing of Personal Data

FUTCOIN does not sell or rent personal data to third parties. However, we may share personal data with third-party service providers, regulatory authorities, and business partners under strict legal and security safeguards.

7.1. Data Shared with Third-Party Service Providers

We engage third-party service providers to support our operations. Personal data may be shared with:

Category of Third Party	Purpose of Data Sharing
Payment Processors	To process transactions and prevent fraud
Cloud Storage Providers	To securely store and manage user data
Customer Support Platforms	To provide technical assistance and resolve inquiries
Marketing and Analytics Providers	To improve user experience and personalize communications
Fraud Prevention Services	To detect and mitigate fraudulent activities

Payment Security:
We engage third-party payment processors to securely handle transactions. FUTCOIN does not store full credit or debit card details. Instead:

A tokenized payment reference is used for future transactions.
Payment providers comply with PCI-DSS security standards.
Users can remove saved payment methods at any time in their account settings.

All service providers are contractually bound by confidentiality obligations and data protection agreements.

7.2. Legal and Regulatory Data Disclosures

We may disclose personal data to law enforcement agencies, regulatory bodies, or government authorities if required by law or to:

Comply with legal obligations (e.g., tax, AML, anti-fraud laws);
Respond to lawful requests (e.g., subpoenas, court orders);
Protect the rights, safety, and security of our users, employees, and platform.

7.3. Business Transfers and Mergers

In the event of a merger, acquisition, or sale of assets, user personal data may be transferred to the successor entity. In such cases:

Users will be notified in advance of any changes in ownership or data processing practices.
The new entity must continue to process data in compliance with this Privacy Notice.

8. International Data Transfers

FUTCOIN operates globally, which may require the transfer of personal data to countries outside of the user’s jurisdiction. We take appropriate measures to ensure that such transfers comply with applicable data protection laws and maintain an adequate level of security.

8.1. Data Transfers Outside Your Jurisdiction

Personal data may be transferred to and processed in countries where FUTCOIN, its affiliates, or third-party service providers operate. These jurisdictions may have different data protection laws than the country in which users reside.

We ensure that all cross-border data transfers:

Are necessary for the performance of our services;
Are conducted under strict security and legal safeguards;
Do not compromise the privacy rights of our users.

8.2. Safeguards for International Transfers

To protect user data when transferred internationally, we implement the following safeguards:

Standard Contractual Clauses (SCCs): We use legally approved contractual obligations to ensure an adequate level of data protection.
Data Processing Agreements (DPAs): We require third-party providers to comply with our strict data protection policies.
Encryption and Security Measures: All transferred data is protected through industry-standard encryption and security protocols.

Users can contact us for more details on international data transfer mechanisms (see Section 15. Contact Information and Complaints).

9. Use of Cookies and Tracking Technologies

FUTCOIN uses cookies and similar tracking technologies to improve user experience, analyze website performance, and provide personalized content. This section explains how we use these technologies and how users can manage their preferences.

9.1. Types of Cookies and Their Purposes

Cookies are small text files stored on a user’s device when visiting our website. We use the following types of cookies:

Type of Cookie	Purpose
Essential Cookies	Required for website functionality, user authentication, and security measures. Disabling these cookies may prevent access to certain services.
Performance & Analytics Cookies	Collect anonymized data to analyze traffic, improve website usability, and detect issues. We use third-party tools such as Google Analytics.
Functional Cookies	Store user preferences (e.g., language settings, theme customization) for an improved experience.
Marketing & Advertising Cookies	Track browsing behavior to deliver personalized ads and promotional content. These cookies may be set by third-party advertising partners such as Google Ads, Meta Pixel.

9.2. Managing Cookie Preferences

Users can manage or disable cookies by:

Adjusting browser settings to block or delete cookies;
Using our Cookie Consent Management Tool to customize preferences;
Opting out of tracking by third-party analytics providers (e.g., via Google’s opt-out tool).

Note: Disabling cookies may impact website functionality.

9.3. Third-Party Tracking and Analytics

We use third-party analytics and advertising tools to optimize services. These include:

Google Analytics – Tracks website traffic and user behavior.
Meta Pixel – Measures ad performance and retargeting effectiveness.
Other third-party ad networks – Used for personalized marketing campaigns.

Users may opt out of third-party tracking via their privacy settings.

10. User Rights and Control Over Personal Data

FUTCOIN respects users' rights regarding their personal data. Depending on applicable laws, users have certain rights over their data, which they can exercise as described below.

10.1. Right to Access

Users have the right to request access to the personal data we hold about them, including:

Confirmation of whether we process their personal data;
A copy of the personal data we store;
Information on how we process the data, including purposes and legal bases.

10.2. Right to Rectification

If a user's personal data is inaccurate or incomplete, they have the right to request corrections. Users can also update certain information through their account settings.

10.3. Right to Erasure ("Right to Be Forgotten")

Users may request the deletion of their personal data under certain circumstances, such as:

When the data is no longer necessary for the purposes for which it was collected;
If the user withdraws their consent and no other legal basis applies;
When the user objects to processing, and there are no overriding legitimate interests;
If their data has been unlawfully processed.

Exceptions: Some data may be retained to comply with legal obligations (e.g., financial regulations, fraud prevention).

10.4. Right to Restrict Processing

Users may request a restriction on processing if:

They contest the accuracy of their personal data;
The processing is unlawful, but they prefer restriction over deletion;
FUTCOIN no longer needs the data, but the user requires it for legal claims;
The user has objected to processing, and verification of legitimate interests is pending.

10.5. Right to Object to Processing

Users may object to the processing of their personal data based on:

Legitimate interests: If our processing is based on legitimate interests, users can object unless we demonstrate compelling legal grounds.
Direct marketing: Users can opt out of marketing communications at any time.

10.6. Opting Out of Marketing Communications

Users can opt out of receiving promotional emails, SMS messages, or push notifications.

How to Opt Out:

Use the "unsubscribe" link provided in marketing emails;
Adjust marketing preferences in account settings.

Exceptions:
Users may still receive service-related emails (e.g., transaction confirmations, security alerts).

10.7. Exercising User Rights

To exercise any of these rights, users can contact FUTCOIN at support@futcoin.net with:

Their full name and registered email;
The specific request and relevant details;
Proof of identity (if required for security reasons).

We will process requests within the legally required timeframe and notify users if additional time is needed.

11. Automated Decision-Making and Profiling

FUTCOIN may use automated decision-making and profiling to enhance security, prevent fraud, and improve user experience. These processes are implemented in compliance with applicable data protection laws to ensure transparency and fairness.

11.1. Use of Automated Systems for Fraud Prevention

To protect users and maintain platform integrity, we employ automated fraud detection mechanisms that:

Assess risk levels and detect unusual activity patterns;
Flag transactions or account actions as potentially fraudulent;
Require additional verification before processing certain actions.

11.2. Profiling for Security and Risk Management

We analyze user activity to assess potential risks and take appropriate security measures. This helps us:

Ensure compliance with legal and regulatory requirements;
Enhance fraud prevention strategies;
Maintain a secure transaction environment.

Legal Basis for Automated Processing:
Automated processing for fraud detection and security monitoring is conducted under the legal basis of:

Legitimate Interests – To protect users from unauthorized access and financial fraud;
Contractual Necessity – To provide a secure service;
Legal Obligations – To comply with anti-money laundering (AML) and regulatory requirements.

11.3. Right to Challenge Automated Decisions

Users affected by an automated decision have the right to:

Request a human review of the decision;
Obtain an explanation of the decision-making process;
Contest the decision if they believe it was incorrect.

How to Challenge an Automated Decision:
Users can contact support@futcoin.net to request a review of any automated decision affecting their account. FUTCOIN will respond within the legally required timeframe.

FUTCOIN does not use automated decision-making for:

Making decisions that produce legal effects without human intervention;
Profiling users for targeted advertising without explicit consent.

12. Security Measures to Protect Personal Data

FUTCOIN is committed to protecting the security and integrity of personal data. We implement technical, organizational, and administrative measures to safeguard personal data against unauthorized access, disclosure, alteration, and destruction.

12.1. Encryption and Access Control

To ensure the confidentiality and security of personal data, we use:

SSL/TLS encryption for data transmitted between users and our platform;
AES-256 encryption for stored data to prevent unauthorized access;
Role-based access controls (RBAC) to limit data access to authorized personnel only;
Two-factor authentication (2FA) for employees handling sensitive data.

12.2. Security Audits and Incident Response

We conduct regular security assessments and penetration testing to identify vulnerabilities.
An Incident Response Plan (IRP) is in place to detect, respond to, and mitigate security threats.
In the event of a data breach, we will:
- Notify affected users without undue delay;
- Report the breach to the relevant authorities as required by law.

Despite our best efforts, no security system is entirely impenetrable. If users suspect a security issue, they should contact us immediately at support@futcoin.net.

13. Third-Party Links and External Websites

FUTCOIN’s website and services may contain links to third-party websites, applications, or services that are not operated or controlled by us. This section explains our limited responsibility for such external content.

13.1. Liability Disclaimer for Third-Party Websites

Clicking on third-party links may redirect users to websites with different privacy policies and data protection practices.
FUTCOIN does not control or assume responsibility for how third-party websites collect, use, or process personal data.
Users should review the privacy policies of third-party services before providing personal data.

13.2. Third-Party Services Integrated with FUTCOIN

Certain third-party services may be integrated into FUTCOIN’s platform (e.g., payment gateways, analytics tools). While we ensure contractual compliance with data protection laws, users should be aware that:

Third-party payment processors handle financial transactions under their own terms.
Analytics and advertising partners (e.g., Google Analytics, Meta Pixel) may collect usage data independently.

13.3. Social Media and Third-Party Plugins

If users engage with our content via social media integrations (e.g., sharing buttons, social logins), these platforms may collect personal data as per their own privacy policies.

FUTCOIN does not receive full access to such data. Users should refer to the privacy policies of respective social media platforms for further details.

14. Changes to this Privacy Notice

FUTCOIN reserves the right to modify or update this Privacy Notice at any time to reflect changes in legal requirements, industry practices, or our data processing activities. Users will be notified of significant changes as outlined below.

14.1. Notification of Changes

If we make material changes to this Privacy Notice, we will provide notice through:

An email notification sent to registered users;
A prominent banner or notice on our website;
Updates to this page with a revised "Last Updated" date.

If user consent is required for new data processing activities, we will obtain explicit consent before implementing such changes.

14.2. User Responsibility to Review Updates

Users are encouraged to review this Privacy Notice periodically to stay informed about how their personal data is processed.
Continued use of our services after changes take effect constitutes acceptance of the updated Privacy Notice.

15. Contact Information and Complaints

15.1. How to Contact FUTCOIN

FUTCOIN acts as the Data Controller for the processing of personal data described in this Privacy Notice. Users can contact us at:

Email: support@futcoin.net
Registered Address: 2nd Floor 107 Charterhouse Street, London, United Kingdom, EC1M 6HW

15.2. Complaints and Dispute Resolution

If users believe their data protection rights have been violated, they may:

Contact us at support@futcoin.net to resolve the issue directly.
File a complaint with the relevant data protection authority in their jurisdiction.

We encourage users to contact us first so that we can address any concerns before escalating to external authorities.

Two factor authentication