Em pouco tempo, a Oxus conquista o mercado e levanta R$ 14 milhões.
Em pouco tempo, a Oxus conquista o mercado e levanta R$ 14 milhões.
TALK TO US
Oxus - Privacy Policy
Last updated: August 15, 2025
Introduction
This Privacy Policy explains how Oxus Pay LLC ("Oxus Pay," "we," "us," or "our"), a Delaware limited liability company, collects, uses, shares, and protects personal information when you use our services (the "Services"). We are committed to handling your information securely and responsibly.
Definitions
As the Data Controller, Oxus Pay determines the purposes and means of processing personal data. Our vendors and partners who process data on our behalf are considered Data Processors.
This policy is designed to comply with major data protection regulations, including the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA) in the United States, and Brazil's General Data Protection Law (LGPD).
Information We Collect
1.1 Information You Provide:
1.1.1. Identity Data: Full name, date of birth, gender, nationality, passport number, social security number, driver's license number, and national ID card details.
1.1.2. Contact Data: Email address, phone number, physical address, and mailing address.
1.1.3. Financial Data: Bank account numbers, tax identification number, and financial transaction history.
1.1.4. Employment Data: Employment details and job titles.
1.2. Information We Collect Automatically:
1.2.1. Transaction Data: Purchase and sale history, transaction amounts, and payment methods used.
1.2.2. Usage Data: Website or app usage patterns, session durations, and pages visited.
1.2.3. Location Data: IP addresses and other location information.
1.3. Information from Third Parties:
1.3.1. Payment Service Providers: Financial institutions that process your transactions.
1.3.2. Identity Verification Partners: Vendors who verify your identity as required by law.
How We Use Your Data
Our use of your data is based on lawful purposes, including:
2.1.1 Performance of a Contract: To provide and maintain our Services, process payments, and manage user accounts.
2.1.2 Legal Obligation: To comply with applicable laws and regulations, such as anti-money laundering (AML) and counter-financing of terrorism (CFT) requirements, and to prevent fraud.
2.1.3 Legitimate Interests: To improve our Services, conduct research and development, and communicate with you about our Services. We only rely on legitimate interests when they do not override your fundamental rights.
2.1.4 Consent: For specific purposes where we have obtained your explicit consent, such as for marketing communications.
2.1.5 Purposes of Data Use:
We use your data for various purposes, including:
2.1.6 Providing and Maintaining Services and Apps: To ensure the functionality and availability of our services.
2.1.7 Payment Processing and Order Execution: To process payments and complete orders in compliance with rules of transparency and competitiveness.
2.1.8 Fraud Prevention: To detect and prevent fund losses, including those resulting from fraud and misuse of our services and apps.
2.1.9 Compliance with Laws and Regulations: To ensure compliance with relevant laws and regulations, such as anti-money laundering and terrorism financing.
2.2.1 User Communication and Support: To communicate directly with you or through our partners for customer support, notifications regarding changes and updates to services, important service-related information, marketing, and promotions
2.2.2 Service Improvement: To continuously improve the quality, performance, and features of our services.
2.2.3 Research and Development: To conduct research and development activities related to our services, including the development of new features and functionalities of the app.
2.2.4 Measurement and Analytics: To understand how users interact with our services, analyze user behavior, and identify preferences.
2.2.5 Safety and Security: To promote the safety and integrity of your funds, our services, and data through protective measures and ongoing monitoring.
2.2.6 User Account Management: To manage user accounts, including account setup, recovery, and termination.
2.2.7 Personalization: To tailor user experiences based on preferences and behaviors, providing personalized content and recommendations.
3. How We Share Your Data
We may share your information with third parties to support our business operations:
3.1. Vendors and Service Providers: Who assist us in areas such as identity verification, fraud prevention, and technology infrastructure.
3.2. Credit and Financial Institutions: To process your transactions and complete your orders.
3.3. Partners: Authorized third parties with whom you have a direct relationship and who use our API to provide integrated services.
3.4. Law Enforcement and Regulatory Authorities: To comply with legal obligations, support investigations, and ensure the safety and security of our platform.
3.5. Transfers, Mergers, and Acquisitions: In the event of insolvency, bankruptcy, acquisition, transfer of ownership, sale of assets, or succession, your personal information may be disclosed to the new owner, acquirer, or successor of the company or other relevant third parties.
Data Security
We implement robust technical and organizational security measures to protect your personal information against unauthorized access, disclosure, alteration, and destruction. These measures include:
4.1. Access Controls: Restricting access to personal information to authorized personnel only.
4.2. Data Encryption: Using industry-standard encryption to protect data during transmission and at rest.
4.3. Employee Training: Training our team on data security best practices.
4.4. Incident Response: Maintaining incident response procedures to promptly address and mitigate security incidents.
Data Retention
We retain your personal information only for the period necessary to fulfill the purposes for which it was collected, or as required by law. For example, we are legally obligated to retain certain financial and transaction data for a minimum of 5 years to comply with AML regulations.
6. Your Rights as a Data Subject
Under applicable data protection laws, you have the following rights:
6.1.1 Right to Access: Request access to the personal data we hold about you.
6.1.2 Right to Rectification: Request the correction of inaccurate or incomplete personal data.
6.1.3 Right to Erasure (Right to Be Forgotten): Request the deletion of your personal data, subject to our legal and regulatory obligations.
6.1.4 Right to Restriction of Processing: Request the limitation of how we process your personal data.
6.1.5 Right to Data Portability: Receive your data in a structured, machine-readable format.
6.1.6 Right to Object: Object to the processing of your data for direct marketing or when we rely on legitimate interests.
6.1.7 Rights Related to Automated Decision-Making and Profiling: Request human intervention and review of decisions made solely by automated means that affect you significantly.
As a financial services provider, we are subject to certain regulatory obligations that may limit our ability to delete some of your data:
6.1.8 Anti-Money Laundering (AML) Compliance: We are legally required to retain certain transaction data and identification information to comply with financial regulations and to file Suspicious Activity Reports (SARs) when necessary.
6.1.9 Financial Record-Keeping: Applicable laws require us to maintain certain financial records for specified periods, typically between 5-7 years depending on the jurisdiction.
6.2.1 Fraud Prevention: Some data may be retained for the legitimate purpose of detecting and preventing fraudulent activities.
7. International Data Transfers
As a global business, we may transfer and process data across multiple jurisdictions. We handle international data transfers in compliance with applicable laws:
7.1. US-Based Operations: As a Delaware company, we comply with US federal and state data protection regulations.
7.2. Brazilian Operations: For data processed in connection with our Brazilian operations, we adhere to LGPD requirements.
7.3. Transfers from the EU/EEA: When transferring data from the European Union, we use Standard Contractual Clauses (SCCs) and conduct data transfer impact assessments to ensure adequate protection.
Global Data Protection Framework
To ensure consistent data protection across all jurisdictions where we operate:
7.4. We apply a baseline of data protection measures that meet the highest standards required in any jurisdiction where we operate.
7.5. We implement additional safeguards where necessary to address specific regional requirements.
7.6. We regularly review and update our practices to reflect evolving international data protection laws and standards.
Data Localization Requirements:
7.8. Where applicable local laws require data to be stored within specific territories, we maintain the necessary infrastructure to ensure compliance with such data localization requirements while still providing seamless global service.
We are committed to maintaining the highest standards of data protection regardless of where your data is processed or stored. If you have questions about how your data is handled in a specific country or region, please contact our Data Protection team.
8. Age Restrictions
Our Services are not intended for individuals under the age of 18. We do not knowingly collect personal information from minors. If you believe we have inadvertently collected such information, please contact us immediately at policy@oxuspay.io.
9. Policy Changes
We may update this Privacy Policy periodically. We will notify you of any significant changes through our website or other communication channels.
10. Contact Details
For any inquiries, requests, or concerns related to this Privacy Policy, please contact us at:
Oxus Pay LLC
16192 Coastal Highway
Lewes, Delaware 19958, USA
Email: policy@oxuspay.io
Introduction
This Privacy Policy explains how Oxus Pay LLC ("Oxus Pay," "we," "us," or "our"), a Delaware limited liability company, collects, uses, shares, and protects personal information when you use our services (the "Services"). We are committed to handling your information securely and responsibly.
Definitions
As the Data Controller, Oxus Pay determines the purposes and means of processing personal data. Our vendors and partners who process data on our behalf are considered Data Processors.
This policy is designed to comply with major data protection regulations, including the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA) in the United States, and Brazil's General Data Protection Law (LGPD).
Information We Collect
1.1 Information You Provide:
1.1.1. Identity Data: Full name, date of birth, gender, nationality, passport number, social security number, driver's license number, and national ID card details.
1.1.2. Contact Data: Email address, phone number, physical address, and mailing address.
1.1.3. Financial Data: Bank account numbers, tax identification number, and financial transaction history.
1.1.4. Employment Data: Employment details and job titles.
1.2. Information We Collect Automatically:
1.2.1. Transaction Data: Purchase and sale history, transaction amounts, and payment methods used.
1.2.2. Usage Data: Website or app usage patterns, session durations, and pages visited.
1.2.3. Location Data: IP addresses and other location information.
1.3. Information from Third Parties:
1.3.1. Payment Service Providers: Financial institutions that process your transactions.
1.3.2. Identity Verification Partners: Vendors who verify your identity as required by law.
How We Use Your Data
Our use of your data is based on lawful purposes, including:
2.1.1 Performance of a Contract: To provide and maintain our Services, process payments, and manage user accounts.
2.1.2 Legal Obligation: To comply with applicable laws and regulations, such as anti-money laundering (AML) and counter-financing of terrorism (CFT) requirements, and to prevent fraud.
2.1.3 Legitimate Interests: To improve our Services, conduct research and development, and communicate with you about our Services. We only rely on legitimate interests when they do not override your fundamental rights.
2.1.4 Consent: For specific purposes where we have obtained your explicit consent, such as for marketing communications.
2.1.5 Purposes of Data Use:
We use your data for various purposes, including:
2.1.6 Providing and Maintaining Services and Apps: To ensure the functionality and availability of our services.
2.1.7 Payment Processing and Order Execution: To process payments and complete orders in compliance with rules of transparency and competitiveness.
2.1.8 Fraud Prevention: To detect and prevent fund losses, including those resulting from fraud and misuse of our services and apps.
2.1.9 Compliance with Laws and Regulations: To ensure compliance with relevant laws and regulations, such as anti-money laundering and terrorism financing.
2.2.1 User Communication and Support: To communicate directly with you or through our partners for customer support, notifications regarding changes and updates to services, important service-related information, marketing, and promotions
2.2.2 Service Improvement: To continuously improve the quality, performance, and features of our services.
2.2.3 Research and Development: To conduct research and development activities related to our services, including the development of new features and functionalities of the app.
2.2.4 Measurement and Analytics: To understand how users interact with our services, analyze user behavior, and identify preferences.
2.2.5 Safety and Security: To promote the safety and integrity of your funds, our services, and data through protective measures and ongoing monitoring.
2.2.6 User Account Management: To manage user accounts, including account setup, recovery, and termination.
2.2.7 Personalization: To tailor user experiences based on preferences and behaviors, providing personalized content and recommendations.
3. How We Share Your Data
We may share your information with third parties to support our business operations:
3.1. Vendors and Service Providers: Who assist us in areas such as identity verification, fraud prevention, and technology infrastructure.
3.2. Credit and Financial Institutions: To process your transactions and complete your orders.
3.3. Partners: Authorized third parties with whom you have a direct relationship and who use our API to provide integrated services.
3.4. Law Enforcement and Regulatory Authorities: To comply with legal obligations, support investigations, and ensure the safety and security of our platform.
3.5. Transfers, Mergers, and Acquisitions: In the event of insolvency, bankruptcy, acquisition, transfer of ownership, sale of assets, or succession, your personal information may be disclosed to the new owner, acquirer, or successor of the company or other relevant third parties.
Data Security
We implement robust technical and organizational security measures to protect your personal information against unauthorized access, disclosure, alteration, and destruction. These measures include:
4.1. Access Controls: Restricting access to personal information to authorized personnel only.
4.2. Data Encryption: Using industry-standard encryption to protect data during transmission and at rest.
4.3. Employee Training: Training our team on data security best practices.
4.4. Incident Response: Maintaining incident response procedures to promptly address and mitigate security incidents.
Data Retention
We retain your personal information only for the period necessary to fulfill the purposes for which it was collected, or as required by law. For example, we are legally obligated to retain certain financial and transaction data for a minimum of 5 years to comply with AML regulations.
6. Your Rights as a Data Subject
Under applicable data protection laws, you have the following rights:
6.1.1 Right to Access: Request access to the personal data we hold about you.
6.1.2 Right to Rectification: Request the correction of inaccurate or incomplete personal data.
6.1.3 Right to Erasure (Right to Be Forgotten): Request the deletion of your personal data, subject to our legal and regulatory obligations.
6.1.4 Right to Restriction of Processing: Request the limitation of how we process your personal data.
6.1.5 Right to Data Portability: Receive your data in a structured, machine-readable format.
6.1.6 Right to Object: Object to the processing of your data for direct marketing or when we rely on legitimate interests.
6.1.7 Rights Related to Automated Decision-Making and Profiling: Request human intervention and review of decisions made solely by automated means that affect you significantly.
As a financial services provider, we are subject to certain regulatory obligations that may limit our ability to delete some of your data:
6.1.8 Anti-Money Laundering (AML) Compliance: We are legally required to retain certain transaction data and identification information to comply with financial regulations and to file Suspicious Activity Reports (SARs) when necessary.
6.1.9 Financial Record-Keeping: Applicable laws require us to maintain certain financial records for specified periods, typically between 5-7 years depending on the jurisdiction.
6.2.1 Fraud Prevention: Some data may be retained for the legitimate purpose of detecting and preventing fraudulent activities.
7. International Data Transfers
As a global business, we may transfer and process data across multiple jurisdictions. We handle international data transfers in compliance with applicable laws:
7.1. US-Based Operations: As a Delaware company, we comply with US federal and state data protection regulations.
7.2. Brazilian Operations: For data processed in connection with our Brazilian operations, we adhere to LGPD requirements.
7.3. Transfers from the EU/EEA: When transferring data from the European Union, we use Standard Contractual Clauses (SCCs) and conduct data transfer impact assessments to ensure adequate protection.
Global Data Protection Framework
To ensure consistent data protection across all jurisdictions where we operate:
7.4. We apply a baseline of data protection measures that meet the highest standards required in any jurisdiction where we operate.
7.5. We implement additional safeguards where necessary to address specific regional requirements.
7.6. We regularly review and update our practices to reflect evolving international data protection laws and standards.
Data Localization Requirements:
7.8. Where applicable local laws require data to be stored within specific territories, we maintain the necessary infrastructure to ensure compliance with such data localization requirements while still providing seamless global service.
We are committed to maintaining the highest standards of data protection regardless of where your data is processed or stored. If you have questions about how your data is handled in a specific country or region, please contact our Data Protection team.
8. Age Restrictions
Our Services are not intended for individuals under the age of 18. We do not knowingly collect personal information from minors. If you believe we have inadvertently collected such information, please contact us immediately at policy@oxuspay.io.
9. Policy Changes
We may update this Privacy Policy periodically. We will notify you of any significant changes through our website or other communication channels.
10. Contact Details
For any inquiries, requests, or concerns related to this Privacy Policy, please contact us at:
Oxus Pay LLC
16192 Coastal Highway
Lewes, Delaware 19958, USA
Email: policy@oxuspay.io
