MWX Marketplace Privacy Policy

Introduction

MWX Marketplace is committed to protecting your privacy. This global Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you use our platform, and outlines your rights and choices. We comply with international data protection laws including the EU/UK General Data Protection Regulation (GDPR), Singapore’s Personal Data Protection Act (PDPA), Indonesia’s Personal Data Protection law (PDP), and the United Arab Emirates’ data protection regulations, among others, to ensure all users worldwide have strong privacy protections. By using MWX Marketplace, you agree to the practices described in this Privacy Policy.

Data We Collect

We collect personal data from you to provide and improve our services. The types of information we may collect include:

• Identity and Contact Information: Such as your name, email address, date of birth, phone number, and any username or display name you choose.
• Account Credentials: If you register with us directly, we collect your password (stored in hashed form). If you choose to sign up or log in via a third-party account (for example, using a single sign-on authentication service), we receive information from that provider (e.g. your email and profile name) with your consent.
• Verification Data: We verify your email address by sending a confirmation (and we note when an email is verified). We may also ask for additional verification information (like a government ID or other documents) if required for identity confirmation or compliance with legal obligations.
• Payment and Financial Information: If you make purchases or transactions on the marketplace, we collect payment information such as your payment card details (cardholder name, billing address, card number, expiration date, etc.) or alternative payment details. For certain transactions, we may also collect a cryptocurrency wallet address if you choose to use a digital wallet.
• Geolocation Data: We may collect approximate geolocation information, such as your country or city, derived from your IP address or (with your permission) via your device settings. This helps us customize your experience and comply with regional requirements.
• Device and Usage Information: We automatically collect technical data when you interact with our services. This includes your IP address, device type, operating system, browser type, device identifiers, and browsing actions on our site (such as pages visited, features used, and time spent). We also use cookies and similar technologies to remember your preferences, keep you logged in, and analyze site usage (see Cookies and Tracking below).
• Communications: If you contact support or otherwise communicate with us (such as through email or chat), we collect the information you provide in those interactions, including the content of messages and attachments, to assist you and improve our services.

We collect only what is necessary for the purposes described in this policy, and we do not collect sensitive personal data (such as government ID numbers or biometric data) unless it is required and provided by you for verification purposes. We do not sell or rent personal information to third parties[1].

How We Use Your Data

We use the personal data we collect for the following purposes:

• Providing and Improving Services: To create and maintain your account, enable transactions (such as buying or selling on the marketplace), provide the features and functionality of MWX Marketplace, and personalize your experience. For example, we use your contact information to log you in and send necessary account or transaction communications.
• Verification and Security: To verify your identity (for example, confirming your email or checking that you meet age requirements), authenticate users, and ensure the security of our platform. This includes using information to prevent fraud, abuse, or other malicious activities and to enforce our terms of service.
• Transactions and Payments: To process payments or payouts for marketplace transactions. Payment and wallet information is used to complete your purchases or sales, and to facilitate refunds or withdrawals when necessary. We use your financial information solely for transaction processing through secure, compliant payment providers.
• Communication: To communicate with you about your account, transactions, and updates to our platform. We send service-related emails such as confirmations, receipts, technical notices, updates, security alerts, and support messages. If you subscribe to marketing communications, we may send newsletters or promotions, but you can opt out at any time.
• Analytics and Product Development: To understand how users use our marketplace and to improve our services. We analyze usage data and cookie data to troubleshoot issues, perform research and analysis, and develop new features or offerings. This helps us make informed decisions about product design and performance enhancements.
• Legal Compliance: To comply with applicable legal obligations and regulatory requirements across different jurisdictions. For instance, we may use your date of birth to ensure compliance with age-related laws, or retain transaction records for financial reporting and audits. We may also process data as needed to respond to lawful requests by public authorities or to meet national security or law enforcement requirements.
• Protection of Rights and Safety: To protect our users, our company, and the public. We may process personal data to investigate and prevent fraudulent transactions, unauthorized access, hacking, and other illegal activities. If necessary, we will use information to pursue remedies or limit damages in the event of a legal claim, or to enforce our agreements and policies.

We ensure that we have a valid legal basis for processing your data as required by law. Depending on the context, the legal basis may be your consent, the necessity to fulfill our contract with you (e.g. Terms of Service), our legitimate interests (such as improving our services or ensuring security), or compliance with a legal obligation.

Cookies and Tracking Technologies

MWX Marketplace uses cookies and similar tracking technologies (such as web beacons or device identifiers) to recognize you and customize your experience:

• Essential Cookies: These are necessary for the site to function and enable core features like user authentication, security (to keep your account safe), and network management. For example, when you sign in, we use cookies to keep you logged in.
• Preference Cookies: We use these to remember your settings and preferences (such as language or region), so you have a tailored experience.
• Analytics Cookies: These cookies collect information about how you interact with our services, which helps us understand usage patterns and improve the platform. For instance, we might use analytics tools to see which pages are most visited or where users encounter errors. We only use this information in aggregate form or in a manner that does not directly identify individuals.
• Advertising Cookies: (If applicable) If our marketplace ever displays promotions or third-party ads, we may use cookies to personalize advertising and measure its effectiveness. Currently, we do not sell personal data or share information for third-party advertising targeting.

You can control or delete cookies through your browser settings. Most browsers allow you to refuse cookies or alert you when cookies are being used. However, note that if you disable certain cookies, some features of our site may not function properly. For more details on our use of cookies and how to change your preferences, please see our Cookie Policy or the cookie consent tool on our website.

How We Share Your Data

We value your trust and handle your personal data with care. We do not sell your personal information to third parties[1]. We only share data in the following circumstances:

• Service Providers: We share necessary information with third-party service providers and partners who assist us in operating our business and providing our services. This includes cloud hosting providers (for data storage and infrastructure), payment processors or banking partners (to handle credit card transactions or crypto payments), email delivery services (to send verification emails and other communications), analytics services (to help us understand how the platform is used), and customer support tools. These service providers process data on our behalf and are contractually obligated to protect it and use it only for the purposes we specify.
• Business Transactions: If we are involved in a merger, acquisition, financing, due diligence, reorganization, bankruptcy, receivership, sale of company assets, or transition of service to another provider, your information may be transferred as part of that transaction. In such cases, we will ensure the confidentiality of any personal data involved and provide notice before any personal information is transferred and becomes subject to a different privacy policy.
• Legal Compliance and Protection: We may disclose personal data to government authorities, regulators, or other third parties if required to do so by law or legal process. This includes complying with court orders, responding to lawful requests by public authorities (such as subpoenas or warrants), or meeting law enforcement or national security requirements. We may also share information when we believe in good faith that disclosure is necessary to protect our rights, your safety or the safety of others, investigate fraud, or respond to a government request.
• Affiliates: We may share information with our corporate affiliates (for example, if MWX Marketplace is part of a group of companies or has subsidiaries) for purposes consistent with this Privacy Policy. Any such affiliates are bound to maintain that information in accordance with this policy.
• With Your Consent: In cases where you have provided consent for us to share your information, we will do so in accordance with the scope of your consent. For example, if you opt-in to a feature that involves sharing data with a third party, we will inform you and only share as necessary with your permission.

When we share data with third parties, we ensure that they have appropriate privacy and security practices in place. We do not allow our vendors to use your personal data for their own marketing or other purposes not related to providing the services requested by us.

Data Storage and International Transfers

MWX Marketplace is a global service. The personal data that we collect from you may be transferred to, and stored at, secure facilities in different countries. Currently, your data is stored on cloud infrastructure located in Singapore, with backups possibly maintained in other regional locations (such as in Indonesia or additional Singapore data centers). By using our services, you acknowledge that your information may be processed outside of your home country, including in Singapore.

When we transfer or store your data in other jurisdictions, we take steps to ensure that appropriate safeguards are in place to protect your personal information. In particular, for users located in the European Economic Area (EEA), the United Kingdom, or other regions with data transfer restrictions, we rely on approved legal mechanisms to transfer data internationally. These may include contractual protections such as the European Commission’s Standard Contractual Clauses (SCCs) or other equivalent agreements, which contractually obligate recipients to handle personal data in accordance with GDPR-level standards[2]. We also consider the local laws of the destination country and implement additional technical and organizational measures as needed to ensure your data remains protected.

Regardless of where your data is processed, we apply the same level of protection described in this policy. Our service providers are carefully vetted and required to use your information in a manner consistent with this Privacy Policy and applicable law.

Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, or as required or permitted by law. In general:

• For active accounts and subscriptions, we keep your information for the duration of your relationship with us, so we can provide services to you.
• If your subscription expires or you deactivate your account, we will retain your information for a grace period of 90 days post-expiry. This retention allows for easy reactivation if you return, or to resolve any disputes or issues that may arise after account closure. Please note: Currently, we do not have an automated deletion process in place after 90 days. Your data may remain in secure storage beyond this period until our systems implement deletion. However, we will not use it for any new purposes, and we continue to safeguard it.
• In certain cases, we may retain data longer than 90 days if necessary. For example, we might retain some information to comply with our legal obligations (such as financial records for accounting/tax purposes or logs required by security regulations), to resolve disputes, or to enforce our agreements. We also might keep backup copies for a limited time to ensure integrity and business continuity.
• When we have no ongoing legitimate need or legal obligation to retain your personal information, we will take steps to delete, destroy, or anonymize it. If deletion (or anonymization) is not immediately feasible (for example, because the data is stored in backup archives), we will securely store your personal data and isolate it from any further processing until deletion is possible.

Data Security

We take the security of your personal data seriously and implement a variety of technical and organizational measures to protect it from unauthorized access, alteration, disclosure, or destruction. These measures include:

• Encryption: We use Secure Socket Layer (SSL)/Transport Layer Security (TLS) encryption to protect data transmitted between your device and our servers. (For example, when you enter sensitive information on our website, that data is encrypted in transit.) We also encrypt personal data at rest within our databases and storage systems.
• Network Security: Our servers are protected by firewalls and other network security controls to prevent unauthorized access. We maintain up-to-date software and apply security patches regularly to guard against vulnerabilities.
• Intrusion Detection & Monitoring: We employ intrusion detection systems and continuously monitor our systems for potential attacks or breaches. This includes maintaining activity logs and using automated alerts for suspicious behavior. Continuous monitoring and logging help us detect anomalies and respond quickly to potential incidents.
• Access Controls: We limit access to personal data strictly to authorized personnel who need it to perform their job duties (see Internal Access Policy below). We enforce role-based access control, use multi-factor authentication for administrative access, and require strong passwords that are updated periodically for those with system permissions.
• Incident Response: We have a formal incident response plan. If a security incident (such as a data breach) is suspected or detected, we will investigate promptly, contain the issue, and notify affected users and regulators as required by law. Our team is trained to handle such incidents, and we regularly review and test our incident response procedures.
• Additional Safeguards: We conduct periodic security audits and risk assessments. Our staff receive privacy and security training to ensure they understand their responsibilities in protecting user data. We utilize anti-malware protection on our systems, and our infrastructure is hosted with reputable providers who implement robust physical and environmental security measures.

Please be aware that while we strive to protect your information, no security measure is infallible. The internet is not 100% secure, and we cannot guarantee absolute security of data. However, we continually update and improve our security practices to meet or exceed industry standards.

Internal Access and Confidentiality

Within MWX Marketplace, your personal information is accessible only to a limited number of authorized personnel who require it to operate and develop our services. We maintain strict internal policies to safeguard your data:

• Need-to-Know Access: Only employees or contractors with a legitimate business need (such as DevOps engineers or developers responsible for maintaining the platform) can access personal data, and even then, only the specific data necessary for their task. For example, a developer troubleshooting an account issue may need to view your user profile data, but would not be granted access to your payment information.
• Training and Confidentiality: All team members with access to personal data are trained in data protection best practices and are bound by confidentiality obligations. They understand that misuse of personal data is prohibited and may lead to disciplinary action or termination.
• Access Controls: We utilize strict role-based access controls internally, ensuring that each staff member’s system permissions align with their job responsibilities. Administrator and other privileged accounts are limited in number and closely monitored.
• Audit Logs: Access to sensitive data is logged. We keep records of who accessed what information and when, and we monitor these logs for any unauthorized or unusual access patterns.
• Third-Party Access: We do not give direct access to your personal data to any third parties unless absolutely necessary for a service function (as outlined in the “How We Share Your Data” section). Any contractor or service provider with potential access to data is subject to stringent contractual obligations to maintain confidentiality and security.

Our commitment is that your data remains confidential within our organization. We regularly review access privileges and promptly revoke any that are no longer needed. By maintaining tight control over internal access, we further protect your privacy and reduce the risk of unauthorized disclosure.

Your Privacy Controls

We believe you should have control over your personal information. MWX Marketplace provides various tools and options to manage your data and how it is used:

• Account Settings: If you have an account, you can access and update certain information by logging into your profile. For example, you can edit your contact details (like your email or phone number), change your password, or update preferences.
• Email Preferences: You can opt out of marketing or promotional emails at any time. Every marketing email we send includes an "unsubscribe" link at the bottom; clicking that will stop further marketing communications]. You can also manage your email subscription preferences within your account settings or by contacting us. (Please note: even if you opt out of marketing messages, we may still send you essential transactional or service-related communications, such as purchase receipts or security alerts, as those are necessary for providing our services.)*
• Cookies Preferences: When you first visit our site, you have the option to set your cookie preferences through our cookie banner or settings. You can adjust these preferences later by visiting our Cookie Policy page or using your browser’s settings to clear or block cookies. (See Cookies and Tracking Technologies above for more on how to control cookies.)
• Third-Party Analytics Opt-Out: We use third-party analytics tools to help us improve our services. If you wish to opt out of analytics data collection, you can use tools provided by some analytics providers (for example, a browser add-on to opt out of Google Analytics) or adjust your device settings to limit ad tracking. (We do not use your data for third-party advertising personalization without your consent.)
• Do Not Track: Some browsers have "Do Not Track" features. While there is currently no consensus on how to respond to Do Not Track signals, we treat such signals as a preference and honor them to the extent possible. We instead provide you with the direct controls described above (such as cookie controls and account settings) to manage your data.
• Privacy Dashboard (if available): We may offer a privacy dashboard or similar interface where you can review the data we have about you and manage settings. For example, this could allow you to download a copy of your data, delete certain information, or adjust privacy settings. (If this feature is not currently available, you can achieve the same results by contacting us with your request.)

In general, we aim to make it easy for you to update, manage, export, or delete your information[5]. If any privacy control or preference is unclear, please reach out to us and we will guide you on how to exercise your choices.

Your Rights under Global Privacy Laws

No matter where you are located, MWX Marketplace strives to uphold the core privacy rights granted by major regulations. These include rights to access, correction, deletion, and portability of your personal data, among others. In practice, this means:

• Right to Access: You have the right to request a copy of the personal data we hold about you, as well as information on how we use it. (This is sometimes called a “Data Subject Access Request.”) We will provide you with your data in a structured, commonly used format.
• Right to Correction: If any of your information is inaccurate or incomplete, you have the right to request that we correct or update it. You can also correct some of your data directly through your account settings.
• Right to Deletion: You can ask us to delete your personal data. This is also known as the “right to be forgotten.” We will honor deletion requests provided we do not have a legal obligation or other compelling reason to retain the data. For example, we may retain certain transaction records if required for legal compliance, but we'll inform you if such an exception applies.
• Right to Data Portability: You have the right to obtain your personal data in a portable format, so you can move it to another service. Where applicable, we can also directly transfer your data to an alternative provider at your request, if technically feasible.
• Right to Withdraw Consent: If we are processing your personal information based on your consent (for example, optional profile fields or marketing subscriptions), you have the right to withdraw that consent at any time. Withdrawing consent will not affect the lawfulness of any processing we conducted prior to your withdrawal.
• Right to Object or Restrict Processing: You may have the right to object to our processing of your personal data, particularly if we are processing it under a legitimate interest basis. For instance, you can request that we stop using your data for direct marketing purposes, and we will honor that request. In certain cases, you can also request that we temporarily restrict processing of your data (for example, while we verify an accuracy concern or consider an objection).
• California Privacy Rights: If you are a California resident, you have specific rights under the CCPA/CPRA. These include the right to know what personal information is collected, the right to request deletion or correction of your data, the right to opt out of the “sale” or “sharing” of personal information, and the right not to receive discriminatory treatment for exercising your rights. (As noted earlier, we do not sell personal data, and we extend this non-discrimination principle to all users.)
• Other Regional Rights: Depending on your locale, you may have additional rights. For example, residents of some jurisdictions have the right to not be subject to certain automated decisions, or the right to lodge a complaint with a data protection authority. We endeavor to comply with all such requirements and will respect any additional rights applicable to you.

Exercising Your Rights: To exercise any of these rights, please contact us using the information in the Contact Us section below. Provide sufficient information that allows us to verify your identity and understand your request. For certain requests, we will need to verify your identity before proceeding, to protect your privacy. For example, if you have an account with us, we may ask you to log in or provide additional identification information to confirm your identity. If someone (such as an authorized agent) makes a request on your behalf, we will require proof of that authorization and still need a way to verify that the request relates to your data.

We will respond to your request within the timeframe required by applicable law (for example, GDPR typically requires a response within one month). Normally, you will not have to pay a fee to exercise your rights. However, if a request is manifestly unfounded or excessive, we may charge a reasonable fee or refuse to act on it, as permitted by law (we will explain our reasoning in such cases).

Importantly, we will not discriminate against you for exercising any of these rights (for instance, we won’t deny you services or provide a lesser experience simply because you made a privacy request). Our services and pricing will remain the same for you whether or not you choose to exercise your privacy rights.

Children’s Privacy

MWX Marketplace is not directed to individuals under the age of 16 (or the relevant age of digital consent in your region). We do not knowingly collect personal information from children without verifiable parental consent. If you are a parent or guardian and believe your child has provided us with personal data, please contact us immediately. If we discover that we have inadvertently collected personal information from a child under the required age, we will take steps to delete that information promptly in accordance with applicable laws.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or for other operational reasons. When we make significant changes, we will notify you in a manner appropriate to the significance of the changes, such as by prominently posting a notice on our website or emailing you (for major changes). The “Effective Date” at the top of this policy indicates when the current policy came into effect. We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information.

If you continue to use MWX Marketplace after an update takes effect, it means you accept the revised policy. However, if we were to make a material change that retroactively affects how we handle previously collected personal data, we would seek your consent or provide an opportunity to opt out, as required by applicable laws.

Jurisdiction and Governing Law

This Privacy Policy is governed by the laws of Panama. By using our services or providing personal information to us, you consent to the application of Singapore law in all matters relating to this Privacy Policy and your data. 

Planned Transition: MWX Marketplace is evaluating a potential relocation of its legal entity to the United Arab Emirates. If and when this transition occurs, we will update this Privacy Policy to reflect any change in governing law or jurisdiction. In such case, the laws of the new jurisdiction (for example, the UAE’s data protection law) may apply to the processing of personal data, and we will ensure ongoing compliance with all applicable regulations. Until any such change is officially made and communicated, Singapore law remains the governing law for this Privacy Policy.

Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us. We are here to help and will respond as promptly as possible.

Contact Information:
- Support Email: support@mwxmarket.ai (for general support or account issues)
- Mailing Address: 55 street East, P.H. SL55 Building, Floor 21, Suite 3, Panama City, Republic of Panama

We will do our best to address any issue or query you have about your privacy. If you feel we have not resolved your concern satisfactorily, you have the right to contact your local data protection authority or privacy regulator.

Thank you for trusting MWX Marketplace with your personal data. We are committed to safeguarding your privacy and providing a safe, secure experience for all our users.