Privacy Policy

    At FINX Technologies, Inc. we place significant emphasis on protecting your personal information. This Privacy Policy explains how we collect, use, safeguard, and disclose information from your use of finx.global and the FINX platform. Please read it carefully.
  

1. Introduction

FINX Technologies, Inc. ("us", "we", or "our") operates https://finx.global and the FINX mobile application (referred to as "Service"). This Privacy Policy governs your use of our Service and explains how we collect, safeguard, and disclose information resulting from your use.

We use your data to provide and improve our Service. By using the Service, you agree to the collection and use of information in accordance with this policy. Our Terms of Service govern all use of our Service and, together with this Privacy Policy, constitute your agreement with us.

2. Definitions

SERVICE

The https://finx.global website and FINX mobile application operated by FINX Technologies, Inc.

PERSONAL DATA

Data about a living individual who can be identified from those data (or from those and other information in our possession or likely to come into our possession).

USAGE DATA

Data collected automatically, either generated by the use of the Service or from Service infrastructure itself (e.g., the duration of a page visit).

Small files stored on your device (computer or mobile device).

DATA CONTROLLER

A natural or legal person who determines the purposes and manner in which personal data are processed. For this Privacy Policy, we are the Data Controller of your data.

DATA PROCESSORS

Any natural or legal person who processes data on behalf of the Data Controller. We may use various Service Providers to process your data.

DATA SUBJECT

Any living individual who is the subject of Personal Data.

THE USER

The individual using our Service. The User corresponds to the Data Subject.

BIOMETRICS

A study of people's unique physical and behavioral characteristics used to identify individuals. At FINX, we use biometrics to create a Biometric Template of your face and voice to confirm your identity.

BIOMETRIC TEMPLATE

A digital map of your face or voice (not the original video or scan). It is a mathematical representation of your unique physical attributes used for identity verification.

3. Information We Collect

We collect several different types of information for various purposes to provide and improve our Service to you.

Personal Data

Usage Data

Biometric Data

Location Data

Payment Data

4. Types of Data Collected

Personal Data

While using our Service, we may ask you to provide personally identifiable information ("Personal Data") that may include, but is not limited to:

Contact details (name, email, address, telephone number)
Business contact information (employer name, job title, business email and phone)
Academic institution attended (name, dates of attendance, graduation date)
Physical characteristics (gender, height)
Government-issued identification (Social Security number, passport, driver's license, and copies of ID documents)
Digital photographs (images from your mobile device camera)
Biometric data (digital images of fingerprints, irises, and face)
Payment information (billing address, card number, expiration date, security code)
Demographic details (birthdate, place of birth, citizenship, income, education, family and employment status)
Location information (GPS data from your mobile device)
Health information (where applicable via FINX Pass for eligibility or access purposes)
Other information you provide or authorize us to receive

We may use your Personal Data to send you newsletters or marketing materials. You may opt out at any time by following the unsubscribe link in any communication.

Usage Data

We may collect information your browser sends when you visit our Service ("Usage Data"), including your IP address, browser type and version, pages visited, time and date of visit, time spent on pages, and unique device identifiers.

When accessing the Service from a mobile device, Usage Data may also include device type, unique device ID, mobile OS, and mobile browser information.

Tracking & Cookies Data

We use cookies and similar tracking technologies to track activity on our Service. Cookies are small data files sent to your browser and stored on your device. You can instruct your browser to refuse all cookies, though some portions of our Service may not function properly without them.

We use the following types of cookies:

Session Cookies — required to operate our Service
Preference Cookies — to remember your preferences and settings
Security Cookies — for security and fraud prevention purposes

5. Use of Data

FINX Technologies, Inc. uses collected data for the following purposes:

To provide and maintain our Service
To notify you about changes to our Service
To allow you to participate in interactive features of our Service
To provide customer support
To verify your identity
To detect and prevent fraudulent transactions
To ensure internal quality control
To enforce our Terms of Service
To gather analytics to improve our Service
To monitor the usage of our Service
To detect, prevent, and address technical issues
To fulfill any other purpose for which you provide information
To carry out our obligations and enforce our rights under any contracts between you and us, including billing and collection
To provide you with notices about your account and/or subscription
To provide news, special offers, and information about our goods and services (where you have not opted out)
For any other purpose with your consent

6. Retention of Data

We will retain your Personal Data only for as long as necessary for the purposes set out in this Privacy Policy. We retain and use your Personal Data to the extent necessary to comply with legal obligations, resolve disputes, and enforce our legal agreements and policies.

Usage Data is generally retained for a shorter period, except when used to strengthen security or improve functionality, or when we are legally required to retain it longer.

7. Retention of PII

FINX retains the PII we receive as described in this Policy for as long as you use our Services or as necessary to fulfill the purpose(s) for which it was collected, resolve disputes, establish legal defenses, conduct audits, pursue legitimate business purposes, enforce our agreements, and comply with applicable laws.

8. Legal Bases for Processing Your PII

Where applicable law requires, we identify the legal basis for processing your personal information:

Contractual obligations — To fulfill our commitments to you, including creating your account and providing our Services.
Legitimate interests — To further our legitimate business interests, including: providing a safe and enjoyable user experience; customer service; marketing communications; protecting our users, personnel, and property; analyzing and improving our business; and managing legal issues.
Legal compliance — To comply with applicable laws and regulations.
Consent — Where required by law or otherwise appropriate, based on your express or implied consent.
Vital interests — To protect the vital interests of individuals where necessary.

9. Transfer of Data

Your information, including Personal Data, may be transferred to and maintained on computers located outside your state, province, country, or other jurisdiction where data protection laws may differ from those of your jurisdiction.

If you are located outside the United States and choose to provide information to us, please note that we transfer data, including Personal Data, to the United States and process it there. Your consent to this Privacy Policy, followed by your submission of such information, represents your agreement to that transfer.

FINX Technologies, Inc. will take all reasonably necessary steps to ensure your data is treated securely and in accordance with this Privacy Policy. No transfer of Personal Data will take place to an organization or country unless there are adequate controls in place, including the security of your data.

10. KYC & Identity Verification Services

Among the Services we perform are know your customer ("KYC") and other identity verification services, including provision of FINX IDV. When performing KYC or other identity verification services, we are hired by a third party to collect your PII for identification purposes.

When you submit PII for KYC or identity verification purposes, you consent to FINX disclosing any portion of such PII to the third party who has hired us to perform such services, as permitted by applicable laws and regulations.

11. Disclosure of Data

We may disclose personal information that we collect, or you provide, in the following circumstances:

Law Enforcement — Under certain circumstances, we may be required to disclose your Personal Data if required by law or in response to valid requests by public authorities.
Subsidiaries and Affiliates — We may share your information with our subsidiaries and affiliated companies.
Business Transfers — In connection with a merger, acquisition, or sale of assets, your Personal Data may be transferred.
With Your Consent — We may disclose your information for any other purpose with your consent.

12. Security of Data

Security is a core business principle at FINX. We always keep personal information encrypted in secure locations with strict access controls. We continually test our systems to ensure compliance with top industry standards for information security.

Several times a year, external audits are carried out to verify that our security arrangements remain compliant. Our platform is certified under ISO/IEC 27001:2022, ISO/IEC 27017:2015, ISO/IEC 27018:2019, and ISO 9001:2015.

13. Your Ability to Share Your PII

Some of our Services allow you to share your FINX profile and PII with third parties. You are the only one who can consent to and request that your information be sent to a third party. Once you direct FINX to share your PII, FINX is not liable for any actions that third party may take with respect to your data.

We encourage you to review the privacy policies of any third parties you choose to share your information with.

14. Biometric Data Retention

FINX will retain biometric data only until the earlier of the following: (i) the initial purpose for collecting or obtaining such biometric data has been fulfilled, or (ii) you delete the information from your profile, either partially or in full.

15. Your Data Protection Rights Under GDPR

If you are a resident of the European Union (EU) or European Economic Area (EEA), you have certain data protection rights under the General Data Protection Regulation (GDPR). We aim to take reasonable steps to allow you to correct, amend, delete, or limit the use of your Personal Data.

To inquire about or request removal of your Personal Data, email us at contact@finx.global.

Right to Access

Access, update, or delete the information we hold about you.

Right of Rectification

Have inaccurate or incomplete information corrected.

Right to Object

Object to our processing of your Personal Data.

Right of Restriction

Request that we restrict the processing of your data.

Right to Portability

Receive a copy of your data in a structured, machine-readable format.

Right to Withdraw Consent

Withdraw consent at any time where we rely on your consent to process data.

We may ask you to verify your identity before responding to such requests. You also have the right to complain to a Data Protection Authority about our collection and use of your Personal Data.

16. California Privacy Rights (CalOPPA)

CalOPPA requires commercial websites that collect personally identifiable information from California consumers to post a conspicuous privacy policy. In accordance with CalOPPA:

Users can visit our site anonymously.
Our Privacy Policy link includes the word "Privacy" and is easily accessible from our homepage.
Users will be notified of any privacy policy changes on this Privacy Policy page.
Users may change their personal information by emailing us at contact@finx.global.

Do Not Track Signals — We honor Do Not Track signals and do not track, plant cookies, or use advertising when a Do Not Track browser mechanism is in place. You can enable or disable Do Not Track in your browser's Preferences or Settings page.

17. Service Providers

We may employ third-party companies and individuals to facilitate our Service ("Service Providers"), provide the Service on our behalf, perform Service-related services, or assist us in analyzing how our Service is used.

These third parties have access to your Personal Data only to perform these tasks on our behalf and are obligated not to disclose or use it for any other purpose.

18. Analytics

Google Analytics — We use Google Analytics to monitor and analyze use of our Service. Google uses the data collected to track and monitor usage and may share it with other Google services. For more information, visit the Google Privacy Terms page and Google's data safeguarding policy.

19. CI/CD Tools

We may use third-party Service Providers to automate the development process of our Service.

GitHub — Provided by GitHub, Inc., GitHub is a development platform used to host and review code, manage projects, and build software. For more information, see the GitHub Privacy Statement.

20. Payments

We may provide paid products and/or services within our Service. Payment processing is handled by third-party payment processors. We do not store or collect your payment card details — that information is provided directly to our payment processors, whose use of your personal information is governed by their own Privacy Policies.

Our payment processors comply with PCI-DSS standards as managed by the PCI Security Standards Council.

Stripe — Privacy Policy

21. Links to Other Sites

Our Service may contain links to third-party sites not operated by us. We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services. We strongly advise you to review the Privacy Policy of every site you visit.

22. Children's Privacy

Our Services are not intended for use by children under the age of 13. We do not knowingly collect personally identifiable information from children under 13. If you become aware that a child has provided us with Personal Data, please contact us. If we become aware that we have collected Personal Data from children without verification of parental consent, we take steps to remove that information from our servers.

23. Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the effective date at the top. We will also notify you via email and/or a prominent notice on our Service prior to the change becoming effective.

You are advised to review this Privacy Policy periodically. Changes are effective when posted on this page.

24. Contact Us

If you have any questions about this Privacy Policy, please contact us:

Get in touch

For privacy inquiries, data requests, or questions about this policy.

Privacy inquiries: contact@finx.global

Legal: legal@finx.global

finx.global