Digital Trends, Corp., a corporation organised under the laws of the Republic of Panama, is the controller responsible for personal data processed through the Simply.Exchange Platform. You can reach us at v@simply.exchange or at the registered address above.
We respect your privacy. This Policy explains what we collect when you use our non-custodial interface and what we do not collect (especially payment card and bank credentials). The Company is a technology provider; fiat payments and identity verification (KYC) are handled by independent, licensed Third-Party Processors under their own privacy policies.
Payment Data Security: The Platform does not collect, store, or process sensitive financial data, including credit card numbers, CVV codes, or bank routing details. When utilizing the fiat-to-crypto checkout, all financial data is entered directly into a secure, encrypted interface managed by our third-party payment processors. All transmissions are compliant with the Payment Card Industry Data Security Standard (PCI-DSS). The Platform only receives post-transaction confirmation tokens and wallet addresses via API to verify delivery status.
Primary fiat flows for retail buy use onramp and offramp operators we integrate. Each operator's privacy policy applies to payment and KYC data collected on their hosted pages.
| Category | Examples | Purpose |
|---|---|---|
| Wallet & transaction context | Withdrawal address, coin, network, country selection, fiat amount | Generate quotes and checkout links |
| Technical | IP address, browser type, logs, timestamps | Security, fraud prevention, debugging |
| Communications | Support emails you send us | Respond to inquiries |
| Cookies / local storage | Session preferences, country selection cache | UX (see §9) |
| HRPT orders (if applicable) | Order ID, webhook status, treasury settlement metadata | Fulfil token sale flow |
We do not intentionally collect government ID, payment card data, or bank account numbers on the Platform.
We use information to:
Where GDPR applies, we rely on: contract (providing the interface), legitimate interests (security, product improvement), and legal obligation where required. Processor licensing and product rules may vary by country (including EEA users paying in EUR via hosted buy); availability is processor-determined, not guaranteed by us.
We may share data with:
onramp-api in us-east-1) under confidentiality obligations; andWe do not sell personal information for money as defined under applicable US state privacy laws.
We and our Third-Party Processors may process and disclose personal data where necessary to comply with anti-money-laundering (AML), counter-terrorist-financing (CFT), and sanctions obligations, or in response to lawful requests by competent authorities, courts, or regulators. Identity verification and sanctions screening for fiat transactions are performed by the licensed processor at the point of payment.
Processors and infrastructure may process data outside your country (including the United States and Panama). We use appropriate safeguards where required (e.g. Standard Contractual Clauses for EEA transfers to vendors).
We may use essential cookies and similar technologies for security and preferences. If we add non-essential analytics, we will update this Policy and, where required, obtain consent.
We retain personal data only as long as needed for the purposes below, then delete or anonymise unless law requires longer storage:
| Data type | Retention period |
|---|---|
| API and security logs | 12 months |
| Checkout quotes, order IDs, webhook metadata | 7 years (tax, fraud, dispute) |
| Support email correspondence | 3 years after last message |
| Cookies / local preference cache | Until cleared by user or 13 months (non-essential, if added) |
We implement reasonable administrative, technical, and organisational measures. No method is 100% secure.
Depending on jurisdiction, you may have rights to access, correct, delete, restrict, object to, or port your personal data, and to complain to a supervisory authority. Contact us at v@simply.exchange. Requests regarding KYC or payment data held by an onramp or offramp operator (or other processor) must be directed to that processor, which controls that data.
The Platform is not directed to children under 18 (or age of majority in your jurisdiction). We do not knowingly collect their data.
We may update this Policy. The effective date will change; material updates will be posted on the Platform.
This Policy is governed by the substantive laws of the Republic of Panama, excluding conflict-of-law rules, consistent with our Terms of Service.