Privacy Policy
1. Introduction
At Mega Rich Currency Exchange (“we”, “us”, or “our”), accessible via megarichcurrencyexchange.com, we are committed to safeguarding the privacy and personal data of our users. We understand the importance of data protection and strive to maintain the highest level of transparency and legal compliance under applicable data protection laws, including the General Data Protection Regulation (“GDPR”) and the California Consumer Privacy Act (“CCPA”). This Privacy Policy explains how we collect, use, disclose, store, and protect your personal data when you interact with our website and services.
2. Scope of This Policy and Data Controller Role
This Privacy Policy applies to any personal data collected through our website, megarichcurrencyexchange.com, or via associated services. For the purposes of applicable data protection legislation, Mega Rich Currency Exchange is the “data controller” of your personal data. This means we determine the purposes and methods of processing your information.
3. Categories of Data We Collect and Process
We collect and process various categories of personal data, as outlined below:
a. Usage Data
Information about your interactions with the website, such as browser type, Internet Protocol (IP) address, time zone setting, session duration, pages viewed, referring URLs, and other diagnostic or analytical data.
b. Account Data
Personal identifiers provided during account registration or verification processes, including your full name, physical address, email address, and contact telephone number.
c. Profile Data
Information relating to your preferences, purchase history, browsing behavior, saved settings, and other habits or interests associated with your user profile.
d. Communication Data
Records of any communication or correspondence between you and our support team, including support inquiries, complaints, and customer service conversations.
e. Technical Data
Device identifiers, system configuration data, browser plug-in types, operating systems and versions, screen resolutions, and platform types.
f. Transaction Data
Information related to financial or payment transactions, including payment card details, bank information (subject to tokenization/encryption), billing and delivery information, and currency exchange transaction history.
g. Preference Data
Marketing and communication preferences, such as consent to receive promotional communications, product-category interests, and perceived relevance feedback.
4. Legal Bases for Processing Personal Data
We process your personal data under the following lawful bases, as required by the GDPR:
– Legitimate Interests: To operate, improve, and secure our platform in ways that do not override your fundamental rights and freedoms.
– Contractual Necessity: To perform our agreement with you, such as processing transactions or managing your account.
– Consent: Where you have freely given explicit consent for us to process your data, such as for marketing communications.
– Legal Obligation: To comply with applicable statutory or regulatory requirements.
5. Your Rights Under Data Protection Laws
Depending on your location and applicable law, you may have the following rights with respect to your personal data:
– Right of Access – To request copies of your personal data.
– Right to Rectification – To request correction of inaccurate or incomplete data.
– Right to Erasure – To request deletion of your data under certain conditions.
– Right to Restrict Processing – To request limits on how your data is processed.
– Right to Data Portability – To request to receive your personal data in a structured, machine-readable format or to have it transferred to another controller.
To exercise any of these rights, please contact us at: [email protected].
6. Security Measures
We implement industry-standard safeguards to protect your personal data against unauthorized access, disclosure, alteration, or destruction. These include:
– Secure Sockets Layer (SSL) encryption
– Role-based access controls
– Regular data backups and integrity checks
– Staff training on privacy and data handling
– Firewall and threat monitoring systems
Despite our efforts, no security measures can be guaranteed to be completely failsafe.
7. International Data Transfers
Personal data you provide may be transferred to and processed in countries outside your country of residence, including countries that may not offer the same level of data protection. When we engage in such transfers, we utilize appropriate safeguards, including Standard Contractual Clauses (SCCs), and ensure that international data transfers comply with GDPR and applicable local laws.
8. Data Retention Policy
We retain your personal data only for as long as necessary to fulfill the purpose for which it was collected, including for legal, accounting, or reporting obligations. Specific retention periods include:
– Usage and Technical Data – up to 12 months
– Account and Profile Data – for the duration of your relationship with us plus 6 years
– Communications Data – up to 3 years from the date of last contact
– Transaction Data – retained as required for tax and regulatory compliance (minimum 7 years)
– Preference Data – until consent is withdrawn or after 2 years of inactivity
9. Cookie Policy
Our website uses cookies and similar tracking technologies to ensure proper functionality and enhance user experience. Categories of cookies include:
– Essential Cookies: Necessary for website navigation and core services
– Functional Cookies: Remember user preferences to streamline experience
– Analytics Cookies: Gather aggregated data for traffic and usage analysis
– Performance Cookies: Measure and enhance website performance metrics
10. Cookie Management and User Control
We comply with GDPR and CCPA requirements regarding cookies. Users are given the choice to accept or decline non-essential cookies upon visiting megarichcurrencyexchange.com. You may disable cookies via your browser settings at any time. Please note, disabling certain cookies may affect the functionality of our services.
Under the CCPA, California residents have the right to opt out of the sale of their personal data. We do not sell your data to third parties. However, any future engagement in such practices would comply fully with relevant opt-out provisions.
11. Children’s Privacy
Our services are not intended for use by children under the age of 13. We do not knowingly collect, use, or share personal data from individuals under the age of 13 without verified parental consent. If we become aware of such data being collected inadvertently, we will take steps to delete the information promptly.
12. Changes to This Policy
We reserve the right to update this Privacy Policy as necessary to reflect changes in our practices or legal obligations. Users will be notified of material changes through megarichcurrencyexchange.com or via email where appropriate. Continued use of our services after such updates constitutes your agreement to the revised policy.
13. Contact Us
If you have any questions, concerns, or requests related to this Privacy Policy or your personal data, please reach out using the contact information below:
Email: [email protected]
We are committed to lawful, fair, and transparent data processing practices. If at any time you believe that your data protection rights have been infringed, you are encouraged to contact us or lodge a complaint with the relevant supervisory authority.