PRIVACY POLICY

Last updated: April 29, 2020
Please carefully read this Privacy Policy (“Policy“), which governs how IZIBITS OÜ, a company registered in accordance with legislation of Estonia, with registration number 14407679 at Harju maakond, Tallinn, Kesklinna linnaosa, Roseni tn 13, 10111, (“Service Provider”, “we”), collects, uses and discloses information, when you access or use the website https://chatex.com/ (collectively with all of its subdomains and all their respective pages, the “Website”), the online services at the Website (“Services”), any software product such as “Chatex Bot”’ (automated software product available at: https://t.me/Chatex_bot) or when you otherwise interact with us.
This Policy is an integral part of the Terms of Use for the Website.

⦁ Definitions
⦁ In addition to the definitions contained elsewhere in the text of this Policy, the following terms and expressions shall have the following meaning ascribed to them for use in this Policy:
“Service Provider” means the IZIBITS OÜ, a company registered in accordance with legislation of Estonia, with registration number 14407679 at Harju maakond, Tallinn, Kesklinna linnaosa, Roseni tn 13, 10111, its respective past, present and future employees, officers, directors, contractors, consultants, attorneys, accountants, financial advisors, equity holders, suppliers, vendors, service providers, parent companies, subsidiaries, affiliates, agents, representatives, predecessors, successors and assigns.
“Consent” has the meaning set out for this term in Article 5.1. hereof.
“Controller” or “controller responsible for the processing” means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by EU legislation.
“Cookies” means a text file containing an identifier (a string of letters and numbers) that is sent by a web server to a web browser and is stored by the browser. The identifier is then sent back to the server each time the browser requests a page from the server. Cookies may be either “persistent” cookies or “session” cookies: a persistent cookie will be stored by a web browser and will remain valid until its set expiry date, unless deleted by the user before the expiry date; a session cookie, on the other hand, will expire at the end of the user session, when the web browser is closed. Cookies do not typically contain any information that personally identifies a user, but personal information that we store about you may be linked to the information stored in and obtained from cookies. For more information on managing cookies, please go to www.allaboutcookies.org, or visit www.youronlinechoices.com.
“Data subject” means any identified or identifiable natural person, whose personal data is processed by the controller responsible for the processing.
“EU Persons” means Personal Data subjects who are in the European Union.
“GDPR” means Regulation (EU) 2016/679 of the European Parliament and the Council of 27 April 2016, on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation).
“Personal Data” means any information relating to an identified or identifiable natural person (data subject); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
“Processing” means any operation or set of operations which is performed on Personal Data or on sets of Personal Data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction. “Process”, “Processed” and other similar terms shall be construed accordingly.
“Processor” means a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.
“Profiling” means any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to a natural person, in particular to analyze or predict aspects concerning that natural person’s performance at work, economic situation, health, personal preferences, interests, reliability, behavior, location or movements.
“Recipient” means a natural or legal person, public authority, agency or another body, to which the personal data are disclosed, whether a third party or not. However, public authorities which may receive personal data in the framework of a particular inquiry in accordance with Union or Member State law shall not be regarded as recipients; the processing of those data by those public authorities shall be in compliance with the applicable data protection rules according to the purposes of the processing.
“Restriction of processing” means the marking of stored personal data with the aim of limiting their processing in the future.
“Terms of Use” means the document describing the terms of use for the Website available at http://bizonex.com (as may be amended from time to time).
“User Account” means an account which may be provided to you by the Service Provider for the purpose of improving your experience at the Website and use of the Services, as well as obtaining access to specific additional products, utilities and offerings provided by Service Provider.

⦁ Applicability and Acceptance of Policy
⦁ This Policy defines the Personal Data, explains how Personal Data is used and Processed, and in instances when the Service Provider shares or permits collection of the Personal Data by the Service Provider or state authorities.
⦁ This Policy shall come into effect at the moment you first access to the Website or commence use of any of the Services. By accessing, browsing or using the Website and/or any of the Services you irrevocably and unconditionally accept and adhere to provisions of this Policy without any exemptions, limitations and/or exclusions.
If you access to the Website or use any of the Services on behalf of a business (whether registered or operating without registration), that business hereby accepts this Policy.
⦁ In the event you disagree with any provision of this Policy or would not like to provide your consent for Processing of your Personal Data, you shall cease using the Website or any of the Services immediately.
⦁ Information about the Data Controller
⦁ The data controller of this Website is IZIBITS OÜ, a company registered in accordance with legislation of Estonia, with registration number 14407679 at Harju maakond, Tallinn, Kesklinna linnaosa, Roseni tn 13, 10111. Contact details: legal@chatex.com.

⦁ Legal Grounds for Personal Data Processing
⦁ Processing of Personal Data is permitted only on the following legal grounds:
⦁ Consent to Personal Data Processing, when the data subject has given Consent to the Processing of his or her Personal Data for one or more specific purposes;
⦁ contractual relationships, where the Personal Data Processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract;
⦁ controller’s legal obligation, when the Processing is necessary for compliance with a legal obligation to which the controller is subject;
⦁ vital interests protection, when the Processing is necessary in order to protect the vital interests of the data subject or of another natural person;
⦁ public interests compliance, when the Processing is necessary for the performance of a task carried out in the public interest or in the exercise of an official authority vested in the controller;
⦁ controller’s legitimate interests, when the Processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of Personal Data, in particular where the data subject is a child.
⦁ We Process your Personal Data on the basis that it is:
⦁ necessary for the performance of a contract, therefore, where we have a contract with you, we will process your Personal Data in order to fulfil that contract (in particular, to provide you with the Services);
⦁ authorized by your Consent, which you give us as it is set out in Article 5 (Consent to Personal Data Processing) hereof;
⦁ necessary for compliance with our legal obligation, in particular, when we are obliged to respond to a court order or a regulator;
⦁ necessary for performance our legitimate interests, as it is more detailed described in Article 4.3 hereof; or
⦁ permitted by applicable legislation, if the respective legal ground for Personal Data Processing is not mentioned in, or contradicts to, the provisions of this Policy.
⦁ You are welcome to contact us for further details on the legal grounds that we rely on, in relation to any specific Processing of your Personal Data.
⦁ We Process the Personal Data for a number of legitimate interests, including to provide and improve the Services, administer our relationship with you and our business, for marketing, and in order to exercise our rights and responsibilities. In particular, we Process the Personal Data to:
⦁ set up and administer your User Account, provide technical and customer support and training, verify your identity, and send important account, subscription and Service information;
⦁ administer our relationship with you, our business and our third-party providers (e.g., to send invoices);
⦁ deliver and suggest tailored content such as news, research, reports and business information. We analyse the way you use our Services to make suggestions to you. on the features or Services that we believe you will also be interested in, and so that we can make our Services more user-friendly;
⦁ personalize your experience with our Services. We may retain your browsing and usage information to make your searches within our Services more relevant and use those insights to target advertising to you online on our Website;
⦁ share your Personal Data across our Services so that we can make all the Services we deliver to you more intuitive (e.g., rather than requiring you to enter the same data many times);
⦁ contact you in relation to, and conduct, surveys or polls you choose to take part in and to analyse the data collected for market research purposes;
⦁ display information you choose to post, share, upload or make available in chat rooms, messaging services, and community and event forums (including in community and event profiles) and for related collaboration, peer connection, games and information exchange;
⦁ conduct internal research and development and to improve, test and enhance the features and functions of our Services;
⦁ provide you with marketing materials as permitted by law;
⦁ meet our internal and external audit requirements, including our information security obligations;
⦁ exercise, protect and/or enforce our rights, privacy, safety, networks, systems and property, or those of other persons;
⦁ prevent, detect or investigate a crime, fraud or other breach of law or requirement;
⦁ prevent or detect any loss incurred by Service Provider or third persons;
⦁ comply with requests from courts, law enforcement agencies, regulatory agencies, and other public and government authorities, including where they are outside your country of residence;
⦁ defend Service Provider from claims;
⦁ comply with laws and regulations that apply to us or third parties with whom we work.
Where we rely on legitimate interests as a lawful ground for Processing your Personal Data, we balance those interests against your interests, fundamental rights and freedoms. For more information on how this balancing exercise has been carried out, please contact us by sending an email to legal@chatex.com.

⦁ Consent to Personal Data Processing
§1. EU Persons Consent to Personal Data Processing
⦁ If you are an EU Person and to Process your Personal Data we need to receive your consent, as it is prescribed by GDPR, we will process your Personal Data only in the case we have received from you a freely given, specific, informed and unambiguous indication of your wishes by which you signify agreement to the processing of your Personal Data (“Consent”).
⦁ You may give your Consent by ticking a box when visiting the Website In the case you tick the respective box, you irrevocably and unconditionally consent and agree that the Service Provider shall be entitled to Process your Personal Data as it is indicated by your Consent.
⦁ Your Consent covers all Processing activities with your Personal Data carried out for the same purpose or purposes. When the Processing has multiple purposes, your Consent should be deemed given for all of them.
⦁ You have the right to withdraw your Consent at any time. You can submit such request by sending us an email to legal@chatex.com. Your withdrawal of Consent shall not affect the lawfulness of your Personal Data Processing based on Consent before its withdrawal.
⦁ Except as required or enabled by law (including, for the avoidance of doubt, the laws of Estonia), we will not use or disclose your Personal Data for any purpose for which you refuse Consent or later withdraw your Consent. If you withdraw Consent, you agree that in spite of this withdrawal, we may continue to use those Personal Data previously provided to us to the extent that we are contractually or otherwise legally obliged to do so and to the extent necessary to enforce any contractual obligation you may have towards the Service Provider or in any other way permitted by law. You also understand that although you can use the Website for some purposes without providing your Personal Data, we need certain Personal Data, including data linked to payment or involving an ongoing relationship with the Service Provider or our partners. If you refuse to provide us with Personal Data we require or later withdraw your consent, we may no longer be able to provide you with certain Services or access to the Website
§2. Non-EU Persons Consent to Personal Data Processing
⦁ If you are not an EU Person, by transferring to us your Personal Data via the Website or otherwise, you irrevocably and unconditionally consent and agree that the Service Provider shall be entitled, in accordance with this Policy:
⦁ To Process in any manner, including to collect, store, use, disclose, share and transfer (including cross-border), your Personal Data so provided to us, as well as your Personal Data collected from your use of the Website and the Services (i.e. your Personal Data which we collet automatically and/or from other sources); and
⦁ to use cookies and web beacons (pixel tags) to collect your Personal Data and associate the Personal Data with your computer and web browser, as well as, in the event you access the Website and/or the Services logged in to your User Account, with your User Account.

⦁ Collection of Personal Data
§1. General Provisions
⦁ The type of Personal Data we collect depends on how you are interacting with us and which Services you are purchasing or using. In many cases, you can choose whether or not to provide us with Personal Data, but if you choose not to, you may not get full functionality from the Website or its additional Services.
⦁ When you visit the Website, you may provide us with the following types of Personal Data: (i) Personal Data that you voluntarily disclose that is collected on an individual basis; (ii) Personal Data collected automatically when you use the Website and its Services; and (iii) Personal Data which we collect from sources other than the Website.
⦁ You may always refuse to supply your Personal Data, though this may prevent you from engaging in certain activities and/or obtaining certain Services.
⦁ The Website contains links to other third-party websites that may collect Personal Data about you, including through cookies or other technologies. If you use our links to visit another websites you will exit the Website and this Policy will not apply to your use of, and activity on those other websites. You should consult these other websites’ privacy policies as we have no control over them and are not responsible for any information that is submitted to or collected by these third parties.
§2. Personal Data You Provide to Us
⦁ In order to perform the Services and the functionality of the Website, we are entitled to ask you to provide Service Provider with your Personal Data, including (but not limited):
⦁ For individual users:
a) Full Name (for KYC);
b) Username (when user create the account on the Website or in any software of the Service Provider);
c) E-mail address (optional contact information);
d) Cryptocurrency wallet address (when user create the account on the Website or in any software of the Service Provider);
e) Mailing address (for KYC);
f) mobile phone number (for two-factor authorisation);
g) personal identification document details, including the user’s photo with ID document (for KYC);
h) Password (or “’PIN Code’’) (if applicable);
⦁ For institutional customers:
a) Institution legal name (for KYC);
b) Username (when institutional user create the account on the Website or in any software of the Service Provider);
c) Employer identification number and/or tax identification number and/or any comparable identification number issued by a government (if applicable for KYC);
d) Full legal name (of all account signatories and beneficial owners) (if applicable for KYC)
e) Email address (of all account signatories ) (when institutional user create the account on the Website or in any software of the Service Provider);
f) Mobile phone number (of all account signatories) (when institutional user create the account on the Website or in any software of the Service Provider);
g) Address (principal place of business and/or other physical location) (if applicable for KYC);
h) Proof of legal existence (e.g., state certified articles of incorporation or certificate of
formation, unexpired government-issued business license, trust instrument, or other comparable legal documents as applicable) (if applicable);
i) Contract information of owners, principals, and executive management (if applicable);
j) Proof of identity (e.g., driver’s license, passport or government-issued ID) for each individual beneficial owner that owns 10% or more, as well as all account signatories (if applicable);
k) Identifying information for each entity beneficial owner that owns 10% or more (see individual customer information collected above for more details).
l) payment information, such as, payment card number (credit or debit card), and the security code associated with institutional user payment instrument.
⦁ Personal Data set out in Article 6.5. hereof is collected only when voluntarily offered, and solely for purposes that are clearly identified at the Website or in this Policy.
⦁ Without prejudice to the provisions set out in the Terms of Use for the Website, in the case you do not provide Service Provider with the Personal Data set out in Article 6.5. hereof, or provide them with inaccurate, misleading or incomplete Personal Data, Service Provider at its sole discretion shall be entitled, without any notice to you, to:
⦁ impose limitations and restrictions on your use of the Website and/or the Services; and/or
⦁ suspend or terminate your access to the Website, your User Account or the Services.
§3. Personal Data We Collect Automatically
⦁ Service Provider may collect the Personal Data from you in a variety of ways and circumstances, including, but not limited to, registration at the Website, placement of an order or a request (if applicable), subscription to a newsletter, response to a survey, filling out a form, use of a live chat (if applicable), providing us with feedback on our products or Services. Service Provider shall be entitled to combine Personal Data collected in the course of your interaction with different sections of the Website or the Services with any other relevant available information.
⦁ Personal Data collected by or transmitted to Service Provider in the course of accessing, interacting and operating of the Website and provision of the Services may include, without limitation, the following Personal Data:
⦁ device information, which may include (but is not limited to) information about the computer or mobile device you use to access the Website, including the hardware model, operating system and version, the web browser you use, and other device identifiers;
⦁ usage information and browsing history, such as, information about how you navigate within the Website, your browsing history and which elements of the Website or which Services you use the most;
⦁ location data, for Services with location-enhanced features. If we need your consent to collect geo-location data, we will collect this separately;
⦁ demographic information, such as, your country, and preferred language;
⦁ server log information, which may include (but is not limited to) your login details, the date and time of visits, the pages viewed, your IP address, time spent at the Website and the websites you visit just before and just after the Website;
⦁ usage information. If you use the Website, we will collect metadata about the files you upload for storage and we will record instances in which you have used your private key to authenticate communications;
⦁ information collected by cookies and other tracking technologies. We and our service providers use various technologies to collect information when you interact with the Website, including cookies and web beacons. ‘Cookies’ are small data files that are stored on your device when you visit a website which enable us to collect information about your device identifiers, IP address, web browsers used to access the Website, pages or features viewed, time spent on pages, mobile app performance and links clicked. Web beacons are graphic images that are placed on a website or in an email that is used to monitor the behavior of the user visiting the website or sending the email. They are often used in combination with cookies.
⦁ Invitations. If another User sends you an invitation through the Website, Service Provider may receive certain personal information, such as your name, email address, or phone number. If you are an invited guest, we will automatically send you an invitation to our Platform, and, if unanswered, a one-time follow-up invitation. Service Provider stores this contact information only to send these invitations and evaluate their success. You may unsubscribe from future invitations using the instructions in those messages. You may also contact us at legal@chatex.com to request that we remove this information from our database.
⦁ Personal Data collected hereunder in the course of operation of the Website and provision of the Services may differ depending on whether you access to the Website and the Services logged in to your User Account or without logging in.
⦁ The Website use the following cookies:
Name  Origin  Purpose  Duration

⦁ The data subject to may, as stated above, prevent the setting of cookies through our Website at any point of time by means of a corresponding adjustment of the web browser used and thus permanently deny the setting of cookies. For example, most browsers allow you to refuse to accept cookies and to delete cookies. The methods for doing so vary from browser to browser, and from version to version. You can however obtain up-to-date information about blocking and deleting cookies via these links:
https://support.google.com/chrome/answer/95647?hl=en (Chrome);
https://support.mozilla.org/en-US/kb/enable-and-disable-cookies-website-preferences (Firefox);
http://www.opera.com/help/tutorials/security/cookies/ (Opera);
https://support.microsoft.com/en-gb/help/17442/windows-internet-explorer-delete-manage-cookies (Internet Explorer);
https://support.apple.com/kb/PH21411 (Safari); and
https://privacy.microsoft.com/en-us/windows-10-microsoft-edge-and-privacy (Edge).
⦁ You may also act according to the following:
⦁ Opting-Out
As part of our commitment to fair information practices, Service Provider allows you to opt out of the use of information, about your activities on other websites to provide you with Interest-based advertising. You can opt out of Google Analytics by installing Google’s opt-out browser add-on, and out of interest-based Google ads using Google’s Ads Settings. Even if you opt out, you may still receive Service Provider`s advertising. It just means that the advertising you see will not be customized for you.
⦁ Refusing Cookies
We and our affiliates honor, Do Not Track (DNT) signals and Do Not Track, plant cookies, or use advertising when a Do Not Track browser mechanism is in place. You can limit the collection of your information by disabling cookies on your browser. You may also be able to modify your browser settings to ‘require your permission’ each time a site attempts to set a cookie. However, our Website (and many other websites) rely on cookies to enable certain functionality. If you choose to disable cookies, some of the services available on our Website may not work properly.
⦁ Caution regarding automatic Cookie Functionality
Browsers such as Microsoft Internet Explorer allow you to store passwords and login IDs so you do not need to re-enter this information each time you access a web site. Service Provider strongly urges you NOT to use this functionality to prevent unauthorized use of your online banking access code(s).
⦁ The user is notified that blocking all cookies will have a negative impact upon the usability of many websites. If you block cookies, you will not be able to use all or certain features in our Website
§4. Data We Collect from Other Sources
⦁ We may also receive information about you from other sources, such as when you log in to your User Account by using your account credentials for a separate third-party service. We will receive information from that service as indicated in the relevant third party’s authorization screen.

⦁ Use of Personal Data
⦁ We use Personal Data to provide and improve the Website and its Services and for other purposes that are in our legitimate interests, as well as for compliance purposes.
⦁ We will use the Personal Data for purposes of:
⦁ providing, maintaining, delivering or improving the Website, the Services or other products or services provided through the Website;
⦁ verifying that you are a unique individual or entity;
⦁ analysing and tracking Personal Data to determine the usefulness or popularity of certain content, and to better understand the online activity of the Website users;
⦁ fulfilling our legal or regulatory requirements;
⦁ providing you with the information, products or services that you have requested;
⦁ answering your inquiry or responding to a communication from you;
⦁ developing new products or services;
⦁ sending you technical notices, support or administrative notifications;
⦁ communicating with you about news, products, Services, events and other information we think will be of interest to you;
⦁ monitoring and analysing trends, usage and activities in connection with the Website;
⦁ detecting, investigating and preventing fraudulent transactions or unauthorized or illegal activities;
⦁ protecting the rights and property of the Service Provider;
⦁ linking, connecting or combining information we collect from or about you with other information; and
⦁ carrying out with any other purpose or reason for which Personal Data was collected.

⦁ Disclosure of Personal Data
⦁ The Service Provider treats Personal Data as confidential and may not pass on or use any such data without valid legal grounds.
⦁ We will only disclose your Personal Data in the following circumstances:
⦁ with your Consent or at your instruction;
⦁ with companies under common control or ownership with us or our offices internationally;
⦁ for everyday business purposes, such as to process transactions, maintain accounts, respond to court orders and legal investigations or report to credit bureaus;
⦁ certain information you may choose to share may be displayed publicly, such as your username and any content you post when you use interactive areas of the Website like our online forums;
⦁ in connection with a merger or sale of our company assets, or if we do a financing or are involved in an acquisition, or any other situation where Personal Data may be disclosed or transferred as one of our business assets;
⦁ in response to a request for information if we believe disclosure is in accordance with, or required by, any applicable law, regulation or legal process, including but not limited in response to a request of Estonian FIU;
⦁ if we believe your actions are inconsistent with our user agreements, policies or legislation, or to protect the rights, property and safety of any assets of the Service Provider or third parties;
⦁ with third parties where aggregate Personal Data is disclosed which cannot be reasonably used to identify you.
⦁ Please note that third parties that support our customer identification and anti-fraud controls may retain and use information about you to perform services on our behalf and to improve their services. By using our Services, you consent to the retention and use of such information by these service providers to improve their services.
⦁ Service Provider may without limitations share aggregated or de-identified information, which cannot reasonably be used to identify you.

⦁ Transmission of Personal Data
⦁ The transmission of Personal Data or any other information (including communications by e-mail) over the Internet or other publicly accessible networks is not one hundred percent secure. Service Provider is not liable for the security of any Personal Data or any other information you are transmitting over the Internet, or third-party content.
⦁ Information about you may be transferred to, and processed in countries other than the country in which you are a resident. We have taken appropriate safeguards to require that your information will remain protected in accordance with this Privacy Policy.
⦁ Transmission of Personal Data of European Union (EU) Persons to recipients, both internally or externally, is subject to the authorisation requirements and pursuant to defined purposes. Personal Data of EU Persons transmitted to a recipient outside the European Economic Area must be subject to protection at least equivalent to that sought by the General Data Protection Regulation (GDPR). It may be processed by a staff member operating outside the European Economic Area (EEA) who work for us or for one of our suppliers. Such staff may be engaged in amongst other things, the fulfilment of your order, the processing of your payment details and the provision of support services. By submitting your personal data, you agree to this transfer, storing or processing. We will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this privacy policy.

⦁ Protection of Personal Data. Security Measures
⦁ We take appropriate security, administrative and technical measures to protect any Personal Data you provide regarding the collection, storage and Processing of Personal Data, as well as security measures to protect your User Account against unauthorized access, modification, disclosure or destruction of your Personal Data.
⦁ Personal Data is safeguarded from unauthorised access and unlawful Processing or disclosure, as well as accidental loss, modification or destruction, through state-of-the-art technical and organisational measures. These are adjusted and updated continuously in tandem with technical developments and organizational changes. Additionally, Personal Data protection audits and other controls are carried out on a regular basis.
⦁ We take reasonable steps to protect the security of the Personal Data communicated through the Website However, no computer security system is entirely fool proof and the Internet is not a secure method of transmitting information. As a result, we do not assume any responsibility for the Personal Data you submit to or receive from us through the Internet, or for any unauthorized access or use of that information, and we cannot and do not guarantee that information communicated by you to us or sent to you by us will be received, or that it will not be altered before or after its transmission to us. You agree to not hold Service Provider liable for any loss or damage of any sort incurred as a result of any misappropriation, interception, modification, deletion, destruction or use of information provided through the Website
⦁ Most web browsers are set to accept cookies as a default. You may wish to opt out by turning off cookies (please refer to the help menu on your browser); however, switching off cookies may restrict your use of the Website You may also opt out of receiving promotional communications from us at any time by following the instructions in those communications. If you opt out, we may still send you non-promotional communications, such as technical notices, support or administrative notifications or information about your User Account (if you have one).
⦁ Personal Data provided to us is stored in accordance with applicable laws of the jurisdiction of the Service Provider. The period for which the Personal Data will be stored is determined by the applicable laws of the jurisdiction of the Service Provider. The Service Provider has ensured that appropriate security standards are in place regarding the safeguarding, confidentiality and security of Personal Data.
⦁ Retention of Information
⦁ In accordance with applicable laws and as needed to provide the Services to our users, Service Provider may hold your Personal Data. This requirement is conditioned by a need to comply with legal obligations and resolve possible disputes.
⦁ Service Provider may retain your Personal Data so long as your User Account is active. Moreover, your Personal Data may be held beyond the above-mentioned period until it is indispensable for the Service Provider to have relevant information to respond to any issues that may arise later.

⦁ EU Persons’ Rights
⦁ The Service Provider value protection of all Website and Services users’ rights relating to their Personal Data, hence, the Service Provider is committed to making sure you can exercise your respective rights effectively and free of charge. The Service Provider will ensure each your request related to your Personal Data be reviewed in a timely fashion.
⦁ EU Persons shall acknowledge, that their rights relating to Personal Data are provided in the GDPR and other applicable laws of the member states of the European Union. In particular, EU Persons have the following rights relating to their Personal Data:
⦁ right to access. You can request access to your Personal Data and obtain a copy of such Personal Data in a format acceptable to you (e.g. PDF, DOC, DOCX, etc.). You can submit such request by sending an email to legal@chatex.com. After your request is received, our privacy team reviews the form and conducts requestor’s identity verification, without undue delay. Upon successful verification, you are provided with a copy of your Personal Data;
⦁ right to data portability. You have the right to receive your Personal Data, which you have provided to us, in a structured, commonly used and machine-readable format and have the right to transmit those data to another service provider (controller) without hindrance from us;
⦁ right to erasure (“Right to be forgotten”) and right to rectification. You are entitled to request erasure or rectification of your Personal Data by sending us a respective request to legal@chatex.com. We will handle requests for Personal Data to be rectified or deleted, unless there is a legal requirement that prohibits such request to be fulfilled. When request is fulfilled, you will be informed that your Personal Data is changed or erased and is not-longer collected, however, to fulfil our legal requirements the Service Provider will store information about each requestor for the purposes of providing an evidence that a request has been fulfilled;
⦁ right to object. At all times, you are entitled to object to Processing of your Personal Data. Right to object can be exercised by sending an email to legal@chatex.com. Upon receipt of the request, the Service Provider ceases the Processing, unless there is a legal or statutory ground for such Processing;
⦁ right to be informed. If you are inquiring about Processing activities conducted with respect to your Personal Data, the Service Provider, without undue delay, will provide information about: (i) purposes of Processing; (ii) categories and types of Personal Data; (iii) the recipients or categories of recipients to whom the personal data have been or will be disclosed to, in particular recipients in third party countries or international organizations (iii) retention period; (v) source of the relevant Personal Data; (vi) privacy rights and information on data portability; (vii) where the personal data are not collected from the data subject, any available information as to their source; (viii) the existence of automated decision-making, including profiling, referred to in Article 22(1) and (4) of the GDPR and, at least in those cases, meaningful information about the logic involved, as well as the significance and envisaged consequences of such processing for the data subject; (ix) information as to whether personal data are transferred to a third country or to an international organization. Where this is the case, the data in subject to, shall have the right to be informed of the appropriate safeguards relating to the transfer. However, all information about the categories of Personal Data and Processing operational conducted by Service Provider is available in this Policy; and
⦁ the right to lodge a complaint with a supervisory authority. Supervisory authority means an independent public authority which is established by an EU member state pursuant to Article 51 GDPR.

⦁ Children`s Privacy
⦁ The Website and any products or Services available at the Website are not intended to solicit information of any kind to and from persons under 18 years of age.

⦁ Alterations to Policy
⦁ We have the right, at our discretion, to update this Policy at any time. We recommend that you frequently check this Policy to find any changes and stay informed about how we help protect the Personal Data.
⦁ By using the Website, you will acknowledge and agree that it is your responsibility to periodically review this Policy and be aware of the changes.
⦁ The subsequent use of the Website or the Services after changes to this Policy will also be considered as your acceptance of these changes.
⦁ This Policy may from time to time be translated into other languages. To the extent that any discrepancy may exist between the English version of this Policy and its version in another language, the English version prevails.

⦁ Data Protection Officer
⦁ The Service Provider appoints an expert on data privacy who works independently to ensure that the Service Provider is adhering to the policies and procedures set forth in the GDPR (data protection officer). Data protection officer assists the Service Provider to monitor internal compliance, inform and advise on data protection obligations, provide advice regarding data protection impact assessments (DPIAs) and act as a contact point for data subjects and the supervisory authorities.
⦁ In the case the Service Provider appoints such data protection officer, it will publish its contact details on the Website.

⦁ Feedback
⦁ We welcome your questions and suggestions with respect to the implementation or amendment of this Policy. Please use this feedback for communicating with us: legal@chatex.com.