Introduction

At MetaX, we recognize that our customers form the bedrock of our business. Consequently, we place a premium on transparently managing and safeguarding personal data and privacy. This Privacy Policy delineates our practices and policies in this regard and is applicable to individuals who are current, past, or prospective customers of MetaX.

MetaX, a business entity operating as MetaX Payments Ltd, holds Incorporation Number BC1406436 and is duly registered in British Columbia, Canada, situated at 5577 153A Street, Suite 207, Surrey BC V3S 5K7, Canada.

Registered with FINTRAC in Canada under MSB registration number M23579425, MetaX provides specified services encompassing money transferring services, dealing in virtual currencies, and payment service provider services.

Functioning as the "data controller" for any personal data submitted to us via email, telephone, social media, post, or through our Services, Website, or any other communication channels, we bear the responsibility for determining how personal data about you is collected, used, and managed.

MetaX is dedicated to safeguarding the security and confidentiality of information under its purview, upholding responsible use and protection of personal data, demonstrating transparency, and respecting individual rights in compliance with applicable data protection laws.

It is imperative that you carefully read and comprehend the information below regarding our handling of your personal data. For any inquiries, please reach out to us via email at support@metaxpayments.com.

Types of Personal Data We Collect and Handle

Personal Data:

At MetaX, we systematically collect and manage various forms of personal data provided by you or your representatives when utilizing our products and services. Additionally, we may acquire and process personal data obtained legally from other members of our organization, public authorities, client introducers, or publicly accessible sources, including but not limited to online databases (e.g., Registrars of Companies, Screening databases - sanctions/AML), websites, security searches, and social media.

We gather information when you:

• Complete any forms available on our website
• Communicate with us via telephone, email, social media, or post
• Register for an account or utilize any of our services
• Perform transactions
• Reach out to us for any other reason

When applying to become a MetaX customer, whether an individual, legal entity, partnership, trust, or charity, we will request specific personal information to verify your identity and manage your account. The information required may vary based on the product you are applying for and includes, but is not limited to:

• Personal details such as your name, address, and birth information to confirm your identity
• Contact information, including your telephone number and email address
• Your photograph or video (when necessary for our Know Your Customer (KYC) verification process)
• Employment and occupation details, including your curriculum vitae, professional affiliations, job title, responsibilities, and professional certifications.
• Information regarding any prominent public positions you currently hold or have held, known as politically exposed persons (PEPs)

If you represent or own a legal entity, partnership, trust, charity, or any other organizational structure that is our customer, we may also collect and process additional data about your business or legal entity to confirm it’s existence, ownership structures and other applicable documents.

If you provide us with personal information belonging to others (such as your representative, secretary, or employee) or request that we share their personal information with third parties, you confirm that you have previously informed them of this policy.

Other Data:

We may also gather non-identifying information about you. This non-personal information may include:

• Browser and device data such as IP address, operating system, and browser type, used for statistical analysis of website usage and not identifying individual users.
• Cookie data, such as time spent on the website, pages viewed, language preferences, and other anonymous traffic data (please refer to the Cookies Policy available on our website).
• Information about your company, such as its name, products and services offered, and jurisdiction.

Please note that some links on the MetaX website (www.metaxpayments.com) may lead to other non-MetaX websites or areas with their own data protection policies that may differ from our Privacy Policy. Before accessing other websites or areas, it's crucial to ensure that you agree with the policies of those entities. MetaX is not responsible for any issues arising from third-party websites.

If you are not the intended recipient of this Privacy Policy, please review the privacy practices of the entity responsible for controlling your personal data. MetaX may also be involved in the handling of your information in certain cases as outlined in this policy.

Legal Basis for Processing Your Personal Data

We process your data with the fundamental principle of data minimization, ensuring that only the necessary amount and types of data are processed for lawful purposes. MetaX employs the data for various purposes, including:

Fulfillment of Our Contract: We utilize the collected data to establish your customer record and effectively manage your account. Personal information is employed to verify your identity, and in certain instances, we may share some or all of your data with third parties. These may include fraud prevention agencies, anti-money laundering organizations, credit reference agencies, law enforcement, regulatory bodies, government departments, and providers of our sales or servicing platforms.

Protection of Legitimate Interests: Processing of personal information is conducted to safeguard our legitimate interests, provided such interests do not unduly compromise your rights and freedoms. These interests encompass the improvement of our services, protection of both our and your data through our IT and security systems, and the initiation or preparation for litigation procedures.

Compliance with Legal Obligations: The data enables us to fulfill our legal and regulatory obligations, encompassing compliance with the Electronic Money Regulation, Money Laundering Law, Tax laws, and other applicable statutes. As a regulated entity under FINTRAC in Canada, we adhere to its requirements, utilizing your personal information to prevent fraud and money laundering.

Communication: Your personal data is utilized for communication regarding your account, providing service-related updates, and delivering necessary notifications. While we aim to leverage our e-banking platform for communication, certain situations may necessitate contacting you in a specific manner as dictated by regulations.

Troubleshooting, Analysis, Testing, Research, and Statistical/Survey Purposes: We employ your data for a range of purposes, including troubleshooting, conducting data analysis, testing, research, and gathering statistical and survey data.

Marketing: With your explicit permission, we may utilize your information for marketing purposes. This involves identifying products and services that may align with your interests, ensuring a tailored and relevant approach to our marketing efforts.

Your privacy and data protection are paramount to us, and we operate in accordance with applicable laws and regulations to safeguard your information.

Retention Period

The retention of personal data at MetaX is contingent upon various purposes and is subject to rigorous standards and regulations. In essence, personal data is retained for the duration necessary to provide the requested services, fulfill relevant legal, accounting, or reporting requirements, investigate potential fraud, comply with anti-money laundering and counter-terrorism financing laws, and ensure you have a reasonable opportunity to access your personal data.

In the context of marketing, personal information provided for such purposes will be retained until you opt-out or until we identify inaccuracies in the data.

Disclosure of Your Personal Data

MetaX diligently collects your personal information to execute requests, deliver services, and meet contractual and legal obligations.

Your personal data remains confidential and is not shared with external parties unless deemed essential for our business operations, to fulfill requests, provide services, or mandated by law. Instances where disclosure may be necessary include:

• Service Providers: Collaborating with service providers assisting in delivering requested services, such as IT and system management, cloud computing, cloud storage providers, fraud detection, customer support, remote ID verification, and e-signature providers.
• Financial Transactions: Collaboration with entities facilitating payment transactions, including financial institutions, payment service providers, and international payment organizations such as SWIFT, SEPA, Visa, Mastercard, etc.
• Business Partners: Engagement with partners relevant to our operations, such as banking partners, intermediaries, international payment service providers, card manufacturing and personalization companies, as well as fraud and risk mitigation providers.
• Professional Advisers: Involvement with necessary professional advisers, including attorneys, auditors, and insurers.
• Government Agencies: Compliance with regulatory requirements involves sharing information with government agencies, regulatory bodies, or other entities, in adherence to rules, orders, subpoenas, official requests, or similar legal processes.
• Business Transfers: In situations involving the transfer of business, sharing personal data may be necessary, for instance, in the event of selling a business aspect, assets, or merging with another company.
• Third-party Service Providers: Engagement with third-party service providers to assist in client insight analytics, such as Google Analytics.
• Advertising Networks: Collaboration with advertising networks for organizing competitions, promotions, and displaying advertisements on our website, apps, and various social media platforms.

Rest assured, MetaX prioritizes the security and confidentiality of your personal data and only engages in disclosures when essential for the smooth operation of our services or mandated by legal and regulatory obligations.

Countries Where Your Data May Be Transferred

MetaX, being a globally-reaching company, may process your personal data in the local country of our operations or in other countries where we or our partners operate worldwide, in accordance with legal permissions. Your personal data might be transferred from the European Union/European Economic Area (EU/EEA) or from another country imposing restrictions on personal information transfers to third countries or international organizations. Such transfers may occur under the following circumstances:

• Recognition of Adequate Data Protection Standards: We may transfer data to jurisdictions acknowledged by the European Commission as possessing adequate data protection standards.
• Agreements Based on Standard Contractual Clauses: The recipient of the data may have signed an agreement based on the Standard Contractual Clauses. In cases where the recipient is a group company, binding corporate rules are in effect, supplemented by any necessary additional safeguarding measures.
• Necessity for Contract Performance: Data transfer may be necessary for the performance of a contract between the data subject and MetaX.
• Establishment, Exercise, or Defense of Legal Claims: The transfer may be necessary for the establishment, exercise, or defense of legal claims.
• Legally Recognized Grounds at EU Level: Any other legally recognized grounds at the EU level for transferring data to third countries.

Automated Decision-Making & Profiling

At MetaX, we do not make decisions solely through automated processing. However, specific aspects of your personal data may undergo automated processing in the following situations:

• Data Evaluations for Fraud Prevention: Conducting data evaluations, such as payment transactions, for the purpose of preventing fraud, money laundering, and terrorist financing.
• Promotion of Services and Products: Promoting our services and products, if you have given your consent.

Cookies

Our website utilizes cookies to enhance your browsing experience. For detailed information on how we use cookies, please refer to our Cookie Policy, available on our website.

Your Rights Regarding Your Personal Information

You hold the following rights concerning the personal information we have about you. It's crucial to note that some of these rights apply only under specific conditions, and their applicability may be limited if we have a compelling interest, legal requirement, or data exemption due to confidentiality reasons.

1. Right to Access:

You have the right to request a copy of the personal data retained and confirmation from us about whether personal data is being processed.

2. Right to Correction:

You can request the correction of inaccurate or incomplete personal data related to you. This includes correcting any incorrect personal data about you and completing any incomplete personal data in line with the processing purpose.

3. Right to Erasure:

You may request the erasure of your personal data under the following circumstances:

• The data is no longer needed for its original collection or processing purposes.
• You withdraw your consent, and there's no other legal ground for the processing.
• You object to the data processing.
• The data has been processed illegally.
• Personal data must be erased to comply with a legal obligation.

However, the right to erasure does not apply if the processing is necessary for freedom of expression and information, compliance with a legal obligation, reasons of public interest, or for initiating, pursuing, or defending legal claims.

4. Right to Restriction of Processing:

You have the right to request the temporary suspension of processing certain personal data related to you under the following circumstances:

• You contest the accuracy of your personal data.
• The processing of your data is deemed unlawful.
• We no longer need the processing or retention of certain data, but you require it to establish, assert, or defend a legal claim.
• You raised an objection to data processing, and confirmation is pending on whether our legitimate interest outweighs your rights.

5. Right to Object:

When we process your personal data based on legitimate interests, you have the right to contest it. However, we may still have the right to continue processing your information. Additionally, you can object to the processing of your personal data for direct marketing purposes.

6. Right to Withdraw Consent:

If we process your personal data based on your consent, you have the right to withdraw it at any time. If there's another lawful basis for processing your data, we may continue to do so. Withdrawal resulting in the inability to provide services will be communicated.

However, we may continue to retain your data if there's another valid reason for doing so, such as legal obligations or public interest.

7. Right to File a Complaint:

If you have complaints about data use or the exercise of your rights, please contact our Data Protection Officer at the provided contact details. We will promptly investigate and respond to your complaint.