Privacy Policy

The subsequent Privacy Policy expounds in detail on how PREX MARKETS LIMITED (here after called as "PREX") manages the acquisition, administration, and safeguarding of all sensitive user information.

Introduction

Preserving your privacy holds paramount importance to us. We are unswervingly dedicated to the protection and observance of your personal data. This Privacy Policy explicates the types of personal data we amass about you upon opting to utilize our services, the ways in which we will employ your personal data, the circumstances and parties with whom we will share it, and the measures we will enact to maintain its security. Moreover, it expounds upon your entitlements regarding our processing of your personal information and the mechanisms through which you can exercise these rights. We urge you to thoroughly peruse and grasp this policy.

We reserve the right to effect alterations to this Notice periodically, and it is vital for you to verify this Notice for any updates. All personal information in our possession shall be subject to the existing privacy notice at the relevant time. Should we make significant changes that we deem noteworthy, we will communicate them to you.

Please be advised that this notice is directed towards both customers and potential customers. In the event you are an FxPro employee, a contractor to PREX, or a third-party service provider, your personal information will be processed in accordance with your employment contract, contractual relationship, or in congruence with our distinct policies, which can be obtained by contacting us.

In the text of this privacy notice, any mention of 'us', 'our', 'we', 'FIXIO, 'FiXiFX'  or 'PREX' pertains to each respective group company within the PREX Group in accordance with context, unless specified otherwise.

Likewise, every instance of 'you', 'your', 'yours', or 'yourself' within this privacy notice refers to any of our customers and potential customers as necessitated by context, unless specified otherwise.

By accessing our websites, including utilizing any communication channels for contact, we assume that you have read and comprehended the terms of this notice and the procedures governing our processing of any disclosed information, including personal data, prior to becoming a client. Once you establish an accounPREXth us, you acknowledge that this notice, including any modifications, will oversee how we collect, store, employ, share, and process your personal data, as well as your rights during and after our business relationship.
 

Our Identity

This privacy notice pertains to the processing activities carried out by the subsequent data controller entities within the PREX group of companies:

Prex Markets Limited conducts significant processing on behalf of other FxPro group entities. Therefore, if you are a customer of non-European group entities, your personal data will be managed in accordance with this notice, affording you the same safeguards and rights delineated herein.

Nature of Acquired Personal Data and Storage

Within the ambit of our operational domain, we gather personal data from customers and potential customers, encompassing the following particulars:

1. Name, surname, and contact details
2. Date of birth and gender
3. Income and wealth information, comprising asset and liability specifics, account balances, trade statements, tax records, and financial statements
4. Professional and employment details
5. Geographical data
6. Trading knowledge, risk tolerance, and risk profile
7. IP address, device specifications, and other data associated with trading experiences
8. Bank account, e-wallet, and credit card particulars
9. Visits to our Website or Apps, incorporating traffic data, location data, weblogs, and other communication data
10. Cookies, deployed for storing and collecting information on website usage

Moreover, we maintain records of trading activities, encompassing:

1. Trading products
2. Trade and investment history, including invested amounts
3. Preferences for specific services and products

Legal requisites mandate the verification of your identity and details when establishing a new account or adding a new signatory to an existing account. In adherence to anti-money laundering laws, we are obligated to examine and document specific documents, both photographic and non-photographic, in compliance with stipulated standards. This necessitates identification documents such as passports, driver's licenses, national identity cards, utility bills, trust deeds, credit checks, or any additional data necessary to fulfill our obligations.

Corporate clients are required to provide supplementary information, encompassing corporate documents related to address, shareholders, directors, officers, and additional personal information on shareholders and directors in compliance with legal and regulatory requisites.

Data acquisition occurs through various means, including service usage, account application submissions, demo sign-up forms, webinar enrollment forms, website cookies, and comparable tracking technologies. Third parties, including marketing lists, publicly accessible sources, social media, affiliates, intelligence databases, and other associates, may also be sources of information.

Additionally, communications in various forms, electronic or otherwise, may be documented and retained as evidence of interaction.

Disclosure of Personal Data

Personal data may be disclosed to the following entities as per our operational obligations:

1. Fellow FxPro group companies providing financial and related services
2. Third-party app providers for apps, communication systems, and trading platforms
3. Contracted service providers for administrative, IT, analytical, online marketing optimization, financial, regulatory, compliance, insurance, research, and other services
4. Introducing brokers and affiliates with mutual affiliations
5. Payment service providers and transaction-processing banks
6. Auditors, contractors, and advisers for audit, assistance, and advisory purposes
7. Courts, tribunals, and regulatory authorities in compliance with law or agreements
8. Government bodies and law enforcement agencies as required by law and regulations

Personal data shared with third parties is confined to the minimum necessary for fulfilling contractual obligations. These third-party service providers are prohibited from utilizing the personal data for any purpose other than service provision.

Third-party websites linked to our websites and apps are not governed by this privacy notice. The privacy practices and procedures of such websites are distinct and should be verified individually with each third party.
 

Consent and Lawful Bases

Processing of personal data is predicated on one or more lawful bases, contingent on the specific purpose for which the data is being utilized:

1. Fulfillment of contractual obligations
2. Adherence to legal and regulatory requirements
3. Pursuit of legitimate interests

Any processing beyond these lawful bases necessitates consent, which should be provided voluntarily by the data subject. Consent can be revoked by contacting us or unsubscribing from email lists.

Personal data may be used for marketing and communication purposes, and you possess the right to opt out.
 

Management of Personal Data

Robust technical and organizational measures are in place to safeguard personal data against destruction, loss, alteration, unauthorized access, disclosure, or processing.

A Data Protection Officer oversees the management of personal data. External organizations handling personal data must uphold privacy rights and comply with data protection laws.

Data

 protection measures include employee training, password and two-factor authentication, segmented access to data, data encryption, firewalls, intrusion detection systems, virus scanning, secure networks, clean desk policies, physical and electronic access controls.
 

Storage and Retention

Personal data is stored in secure facilities and disposed of securely when no longer needed. Certain records are retained to comply with legal obligations, including investment services, anti-money laundering, and regulatory requirements. Data from incomplete or rejected account applications may be retained for six months.

Transfers of personal data outside the EEA are undertaken with appropriate safeguards.
 

Data Subject Rights

You are entitled to:

1. Access your personal data
2. Rectify inaccuracies
3. Erase personal data (subject to legal constraints)
4. Object to processing
5. Restrict processing
6. Transfer data
7. Withdraw consent

Requests can be made via email or online portal. Complaints can also be addressed through email and escalated to supervisory authorities.

Fees may apply for certain rights. Queries and complaints can be directed to us and escalated further.

In the case of inquiries or complaints, contact us via email ([email protected]) .