Privacy Policy

This Privacy Policy (this “Policy”) applies to the trading platform (including any applicable mobile applications used to access the same) (collectively the “Platform”) and when you use our website https://wickie.io/ (the “Website”) provided by “GreatIdee” UAB (the “Company,” “we,” “us” or “our”). It describes how the Company collects, uses, and discloses Personal Data that we obtain from users (the “User”) of the Platform and any account by services provided through the Platform as well as other our collected personal data, and how we use and disclose that information. For purposes of this Policy, “Personal Data” refers to information supplied by a person from which the identity of such person may be directly or indirectly determined.

By registering for and using the Platform, you confirm that you are aware that your Personal Data will be handled as described in this Policy and the Terms and Conditions applicable to the Platform (the “Service Agreement”).

Capitalized terms used herein shall have the same meaning as set forth in the Service Agreement.

The Data We Collect About You and How We Collect It

We collect and process Personal Data about you directly from you when you contact us, register to use the Platform or submit such information as a part of the Know-Your-Client (“KYC”), as well as automatically through your use of the Platform. We may also collect or receive Personal Data from third party service providers, state institutions or other persons that may have a legal ground to provide the Personal Data to us.

Data We Collect Directly from You

Identification Information: We may collect the following information when you register an Account: full name, email address, password, country of residence, date of birth. When your Account meets certain standard, we may collect additional information: name as in identity card/passport, identity card/passport number and photo, date of expiry, mailing address, residential address, proof of address, mobile telephone number. We also collect any other information relating to you which you have provided to us in any forms that you may have submitted to us, or in other forms of interaction with you.

Biometric Data: includes scan of face geometry, which we use for your identification.

Financial Information, such as Your bank account information, credit card information (including the card number, expiry date and CVC), tax identification number, transaction history and trading data.

Transaction Information: may include transaction information as you use our services, including deposit snapshots, account balances, trade history, order activity and distribution history, bank account number, identification data of electronic money account, account statement;

Information collected in accordance with the requirements of the laws: Results from Politically Exposed Persons (PEP) screening & sanction screening, any additional Personal Data required for proving Source of Funds (e. g. employment contract, certificate of inheritance, etc.), biometric checks, AML screening, address, ID document, video and e-mail verification, data on the management structure and business activity, etc.

Profile Information: includes your account full name and password, username, preferences, feedback and survey responses.

Employment Information: includes your employment history, education background and income levels.

Communications with Us: We may collect information you give us during any support and feedback communications via email, telephone, or when you contact us through contact forms on the Platform. We use this information to respond to your inquiries, provide support, facilitate transactions, and improve our Platform.

Usage Information: We may collect information about your use of our Platform, including cookies, IP (internet protocol) address, computer and connection information, device type and unique device identification numbers (e. g. IMEI number, MAC address), bandwidth, mobile network information, mobile operating system and type of mobile browser, statistics on page views, and traffic to and from our websites, and other technical data collected through cookies and other similar technologies that uniquely identifies your browser.

Marketing and Communications Data includes your consent and preferences in receiving direct marketing from us and our third parties and your communication preferences.

Please note that if you are acting as an authorized individual on behalf of a User and are providing Personal Data for such User, you are responsible for ensuring that you have all required permissions and consents to provide such Personal Data to us for use in connection with the Platform and that our use of such Personal Data you provide to the Platform does not violate any applicable law, rule, regulation or order.

How is your Personal Data collected?

We use different methods to collect Personal Data from and about you including through:

a)      Direct interactions

You may provide us with your Personal Data by filling in forms or by corresponding with us via our Website or by post, phone, email or otherwise. This includes Personal Data you provide when you:

1.       apply to use our services;

2.       create an Account on our Platform;

3.       log into the Users account in the Platform and / or make transactions;

4.       give us some feedback or lodge a query.

b)      Third parties or publicly available sources

We may receive Personal Data about you from various third parties and public sources as set out below:

1.       Our partner who shares your Personal Data with us so that (a) you can use our services on their behalf; and (b) they can pay money to you (for example, your salary if you are their employee or payment for goods and/or services if you are their supplier);

2.       analytics providers such as Google based outside the EU;

3.       advertising networks such as Google based inside OR outside the EU; and

4.       search information providers Google based inside OR outside the EU;

5.       Electronic Identity Verification providers from data brokers or aggregators based inside or outside the EU;

6.       We may also record and verify personal identity documents such as passports electronically including screen grabs;

7.       Identity data and contact data from publicly availably sources based inside the EU;

In order to provide contracted services, we may need verify details with Credit Reference agencies, anti-Fraud agencies, Sanction screening and politically exposed persons (PEP) listings.

Data We Collect Automatically

When you use the Platform, our servers automatically record information using cookies and other tracking technologies, including information that your browser sends whenever you visit the Platform or your mobile application sends when you’re using it. This log data may include your Internet Protocol

address, the address of the web page you visited before coming to the Platform, your browser type and settings, the date and time of your request, information about your browser configuration and plug-ins, language preferences, and cookie data.

In addition to log data, we may also collect information about the device you use for the Platform, including what type of device it is, what operating system you’re using, device settings, unique device identifiers, and crash data. Whether we collect some or all of this information may depend on what type of device you’re using and its settings.

We may combine this information with other information that we have collected about you, including, where applicable, your full name, username, email address, and other Personal Data.

Geolocation. If you have provided permission through your mobile device to allow us to collect location information through a mobile application, we may obtain your physical location information in terms of latitude and longitude from technologies like GPS, Wi-Fi, or cell tower proximity. You are able to withdraw your permission for us to acquire such physical location information from your mobile device through your mobile device settings, although we do not control this process. If you have questions about how to disable your mobile device’s location services, we recommend you contact your mobile device service provider or the mobile device manufacturer.

Lawful basis for processing Personal Data

We process your Personal Data using one of the following legal basis:

a)   Performance of a contract means processing your data where it is necessary for the performance of a contract to which you are a party or to take steps at your request before entering into such a contract;

b)   Legitimate interest means the interest of our business in conducting and managing our business to enable us to give you the best service/product and the best and most secure experience. We make sure we consider and balance any potential impact on you (both positive and negative) and your rights before we process your Personal Data for our legitimate interests. We do not use your Personal Data for activities where our interests are overridden by the impact on you (unless we have your consent or are otherwise required or permitted to by law). You can obtain further information about how we assess our legitimate interests against any potential impact on you in respect of specific activities by contacting us;

c)   Legal requirement means processing your Personal Data where it is necessary for compliance with a legal or regulatory obligation that we are subject to;

d)   Consent means processing your Personal Data using your written consent.

Note that we may process your Personal Data for more than one lawful ground depending on the specific purpose for which we are using your data. Please contact us if you need details about the specific legal ground, we are relying on to process your Personal Data.

Generally, we do not rely on consent as a legal basis for processing your Personal Data other than in relation to sending third party direct marketing communications to you via email or text message. You have the right to withdraw consent to marketing at any time by contacting us.

How We Use Your Data

We will only use your Personal Data when the law allows us to. Most commonly, we will only disclose your Personal Data to the third parties which shall be considered as data processors for the following purposes:

·            To provide our Platform to you, to facilitate communications and transactions on the Platform, to communicate with you about your use of our Platform, to respond to your inquiries, to fulfill your orders, and for other customer service purposes;

·            To process transactions – in order to allow you to make the payment(s) and/or receive funds through your payment devices and by the Platform;

·            To verify your identity – in order to verify your identity, perform transactions you instruct on us or for the purposes of fraud detection or protection, or in other situations involving suspicious or illegal activities we use and share your data with credit-checking/reference agencies and fraud prevention agencies. We may as well perform a search of your credit file, if this is necessary and/or required to deliver our services to you;

·            To perform our services and payments – we use and share your data with banking, including Electronic Money Institutions, crypto exchanges and financial service partners such as banking intermediaries, international payment services providers and regulated distribution agents;

·            To tailor the content and information that we may send or display to you, to offer location customization, and personalized help and instructions, and to otherwise personalize your experiences while using our Platform;

·            To better understand how Users access and use the Platform, both on an aggregated and individualized basis, in order to improve our Platform and respond to User desires and preferences, and for other research and analytical purposes;

·            To manage our relationship with you, including notifying you about changes to our Terms or Privacy Policy, ask you to leave a review or take a survey;

·            To enable you to partake in a prize draw, competition or complete a survey;

·            To pursue legitimate interests of the Company – video or electronic surveillance for the protection of property and health, legal compliance, IT systems monitoring, fraud prevention, debt management;

·            To administer and protect our business and this Website (including troubleshooting, data analysis, testing, system maintenance, support, reporting and hosting of data);

·            For direct marketing and promotional purposes. For example, we may use your information, such as your email address, to send you news and newsletters, special offers, and promotions, to conduct sweepstakes and contests, or to otherwise contact you about products or information we think may interest you. We also may use the information that we learn about you to assist us in advertising our Platform on third-party websites.

In addition, we or our partners may transfer or disclose your Personal Data to:

·            comply with any legal obligation required under legal requirement (e. g. to state authorities);

·            enforce any part of our agreements concluded between you and us or to investigate potential breaches; or

·            protect our rights or our property, or those of our other clients. This includes exchanging information with other companies and organizations for the purposes of fraud protection and credit risk reduction.

We require all third parties to respect the security of your Personal Data and to treat it in accordance with the law. We do not allow our third-party service providers to use your Personal Data for their own purposes and only permit them to process your Personal Data for specified purposes and in accordance with our instructions.

How We Share Your Data

Affiliates. We may disclose the information we collect from you to our affiliates or subsidiaries solely for the purpose of providing the Platform to you; however, if we do so, their use and disclosure of your personally identifiable information will be maintained by such affiliates and subsidiaries in accordance with this Policy.

Service Providers. We may disclose the information we collect from you to third-party vendors, service providers, contractors or agents who perform functions on our behalf (e.g. auditors, accountants, lawyers, credit-checking/reference agencies and fraud prevention agencies, banking institutions), provided such third parties have agreed to only use such information to provide services to us.

Business Transfers. If we are in negotiations with, or are acquired by or merged with another company or entity, if substantially all of our assets are transferred to another company or entity, or as part of a bankruptcy proceeding, we may transfer the information we have collected from you to the other company or entity.

In Response to Legal Process. We also may disclose the information we collect from you in order to comply with the law, a judicial proceeding, court order, or other legal process, such as in response to a subpoena.

To Protect Us and Others. We also may disclose the information we collect from you if we believe it is necessary to investigate, prevent, or take action regarding illegal activities, suspected fraud, situations involving potential threats to the safety of any person, violations of our Service Agreement or this Policy, or as evidence in litigation in which we are involved.

Aggregate and De-Identified Data. We may collect, process, analyse and share aggregate or de-identified information about Users with third parties and publicly for product development, marketing, advertising, research or similar purposes.

Our Use of Cookies and Other Tracking Mechanisms

We and our third-party service providers use cookies and other tracking mechanisms to track information about your use of our Platform. We may combine this information with other Personal Data we collect from you (and our third-party service providers may do so on our behalf).

Further information on how We use cookies and other tracking mechanisms is laid out in our Cookie Policy https://wickie.io/cookies-policy.html.

Third-Party Links

Our Platform may contain links to third-party websites. Any access to and use of such linked websites is not governed by this Policy, but instead is governed by the privacy policies of those third-party websites. We are not responsible for the information practices of such third-party websites.

Security of Your Personal Data

We have implemented reasonable precautions consistent with applicable laws and regulations to protect the Personal Data we collect from loss, misuse, and unauthorized access, disclosure, alteration, and destruction. Please be aware that despite our efforts, no data security measures can guarantee 100% security. Therefore, all Users (including their authorized individuals) of the Platform shall comply with the security requirements in the Terms and take the following additional steps to help ensure the security of their Personal Data and the access to their account:

a)          You should choose a robust user identification, password, and/or PIN to access your account (“User Credentials”) that nobody else knows or could easily guess. User Credentials must meet the requirements we specify when you establish those User Credentials. You should keep your User Credentials secure and private, and not share your User Credentials with any third party.

b)          You should install anti-virus, anti-spyware, and firewall software in your personal computers and mobile devices;

c)          You should update operating systems, anti-virus, and firewall products with security patches or newer versions on a regular basis;

d)          You should remove file and printer sharing in computers, especially when they are connected to the internet;

e)          You should make regular backups of your critical data;

f)           You should consider the use of encryption technology to protect highly sensitive or confidential information;

g)          You should completely log off and clear your browser cache after finishing each online session with the Platform;

h)          You should not install software or run programs of unknown origin;

i)           You should delete junk or chain emails;

j)           You should not open email attachments from strangers;

k)          You should not disclose personal, financial, or credit card information to little-known or suspect websites;

l)           You should not use a computer or a device that cannot be trusted; and

m)        You should not use public or internet café computers to access online services or perform financial transactions.

Each member of the staff can access the systems only by using his unique login credentials. Staff have access to Personal Data only for the purposes of performing their roles.

You may have set a password in order to access certain parts of our Platform. You are responsible for keeping this password confidential. We ask you not to share a password with anyone.

We seek to put in place appropriate technical and organisational measures to help protect your Personal Data from unauthorised access, use, disclosure, alteration or destruction consistent with applicable Data Protection Laws. Nevertheless, you are responsible for using of the secure internet connection and the transmission of information via third party networks.

We have put in place procedures to deal with any suspected Personal Data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.

You should immediately notify us at privacy@wickie.io if you become aware of any unauthorized use or access of your Account or User Credentials. We are not responsible for any lost, stolen, or compromised User Credentials or for any activity on your Account via unauthorized activity using your User Credentials.

Rights of access, correction, and deletion

You can access, edit, update, or delete your Account or Personal Data we have collected at any time by accessing your account settings or emailing us at privacy@wickie.io We will respond to your requests within a reasonable period of time, but no later than the time period required by law.

Under certain circumstances, you have the following rights under data protection laws in relation to your Personal Data:

·            Request access to your Personal Data (commonly known as a “data subject access request”). This enables you to receive a copy of the Personal Data we hold about you and to check that we are lawfully processing it.

·            Request correction of the Personal Data that we hold about you. This enables you to have any incomplete or inaccurate data we hold about you corrected, though we may need to verify the accuracy of the new data you provide to us.

·            Request erasure of your Personal Data. This enables you to ask us to delete or remove Personal Data where there is no good reason for us continuing to process it. You also have the right to ask us to delete or remove your Personal Data where you have successfully exercised your right to object to processing (see below), where we may have processed your information unlawfully or where we are required to erase your Personal Data to comply with local law. Note, however, that we may not always be able to comply with your request of erasure for specific legal reasons which will be notified to you, if applicable, at the time of your request.

·            Object to processing of your Personal Data where we are relying on a legitimate interest (or those of a third party) and there is something about your particular situation which makes you want to object to processing on this ground as you feel it impacts on your fundamental rights and freedoms. You also have the right to object where we are processing your Personal Data for direct marketing purposes. In some cases, we may demonstrate that we have compelling legitimate grounds to process your information which override your rights and freedoms.

·            Request restriction of processing of your Personal Data. This enables you to ask us to suspend the processing of your Personal Data in the following scenarios: (a) if you want us to establish the data’s accuracy; (b) where our use of the data is unlawful but you do not want us to erase it; (c) where you need us to hold the data even if we no longer require it as you need it to establish, exercise or defend legal claims; or (d) you have objected to our use of your data but we need to verify whether we have overriding legitimate grounds to use it.

·            Request the transfer of your Personal Data to you or to a third party. We will provide to you, or a third party you have chosen, your Personal Data in a structured, commonly used, machine-readable format. Note that this right only applies to automated information which you initially provided consent for us to use or where we used the information to perform a contract with you.

·            Withdraw consent at any time where we are relying on consent to process your Personal Data. However, this will not affect the lawfulness of any processing carried out before you withdraw your consent. If you withdraw your consent, we may not be able to provide certain products or services to you. We will advise you if this is the case at the time you withdraw your consent;

·            Not to be the subject only to automated processing, including profiling. You have a right to demand that processing of your Personal Data would be reviewed by a real person and to object to the decision made by automated means.

·            To submit an appeal on the actions or inactions of us, related to the implementation of the data subject’s rights to the Data Protection authority that is located in member state of the European Union where you reside; and

·            You are entitled to compensation, which you must apply for to the competent court that is located in member state of the European Union where you reside, if you have suffered damage as a result of a violation of the data subject’s rights.

Please note that notwithstanding the foregoing, there may be circumstances in which we are unable to accommodate a request to edit, update, access, or delete an account profile or Personal Data. This includes but is not limited to:

·            any basis where such request can be denied under applicable law;

·            where we need to retain the information to comply with international or national laws or for accounting or tax purposes;

·            where we need to comply with a civil, criminal, or regulatory inquiry, investigation, subpoena, or summons by state, or local authorities;

·            where we need to cooperate with law enforcement agencies concerning conduct or activity that the business, service provider, or third party reasonably and in good faith believes may violate laws;

·            where we need to retain information to exercise or defend legal claims;

·            where the information contains legal privilege or proprietary information of another party; or where complying with the request would compromise others’ privacy or other legitimate rights.

If we determine that we cannot respond to any request in any particular instance, we will provide you with an explanation of why that determination has been made and a contact point for any further inquiries. To protect your privacy, we will take commercially reasonable steps to verify your identity before responding to any request under this provision, including complying with any applicable legal requirement for verifying your identity.

Transfer of Data

Please note, we may store your Personal Data on servers located in the countries where our main offices are located. We will ensure that security provisions are in place consistent with our obligations to maintain the security of your Personal Data under the laws of your jurisdiction of residence.

Retention

We retain your Personal Data as long as you maintain an Account on the Platform. We will cease to retain your Personal Data, or remove the means by which the Personal Data can be associated with particular individuals, as soon as it is reasonable to assume that:

a)          the purpose for which that Personal Data was collected is no longer being served by its retention; and

b)          retention is no longer necessary for legal, accounting or business purposes.

Please note that certain laws may require us to retain records of transactions or accounts for a certain period of time.

To determine the appropriate retention period for Personal Data, we consider the amount, nature, and sensitivity of the Personal Data, the potential risk of harm from unauthorized use or disclosure of your Personal Data, the purposes for which we process your Personal Data and whether we can achieve those purposes through other means, and the applicable legal requirements and recommendations.

Children Under 18

Our Platform is not designed for children under 18. If we discover that a child under 18 has provided us with Personal Data, we will delete such information from our systems.

Contact Us

If you have questions about the privacy aspects of our Platform or would like to make a complaint or wish to submit a data subject request, please contact our privacy team at privacy@wickie.io.

Changes to this Policy

This Policy is current as of the Last Update Date set forth below. We may change this Policy from time to time, so please be sure to check back periodically. We will post any changes to this Policy on the Platform. If we make any changes to this Policy that materially affect our practices with regard to the Personal Data we have previously collected from you, we will endeavor to provide you with notice in advance of such change by highlighting the change on our Platform or providing a push notification through the Website (you should make sure your Website settings allow for such push notifications) or sending an email that you have provided in your Account, (for this reason you should make sure to update your account information promptly if it changes).

 

LAST UPDATE DATE: 21 March, 2024