Privacy Policy

How we treat your personal data…

What is Invity?

Invity is a platform operated by our company mainly on the https://www.invity.io website (the “Website”) that advertises third-party websites and services including, but not limited to, cryptocurrency exchange, purchase and sale services, or cryptocurrency hardware wallets sales (the “Services”).

We would like to stress out, that our company solely advertises the Services and allows users an access to such Services. However, our company does not provide the Services directly to users (even if the users can use the Website to access them). We also do not serve as an agent of any third-party Services provider.

Why should I read this document?

You may have heard about Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 (the ”Regulation”) more commonly known as GDPR.

Under the Article 13 and 14 of the Regulation, we must provide our customers and other data subjects with information on the collection, handling, protection and processing of their personal data.

Therefore, in this Privacy Policy you may learn more about these topics regarding the personal data that we collect when you access the Website and/or the advertised Services.

Who collects my personal data?

We are a commercial company called Invity.io s.r.o., incorporated and existing under the laws of the Czech Republic, Id. No. 083 88 032, with registered office at Kundratka 2359/17a, Libeň, 180 00 Prague 8, Czech Republic, registered in the commercial register kept by the Metropolitan Court in Prague under file No. C 318166.

What personal data do you process?

Personal data collected in connection to the use of the Website and access to the advertised Services

When you access the Website and/or access the advertised Services, we will, as a data controller, collect, store and process your personal data.

The collection of your personal data in connection to the use of the Website and access to the advertised Services is as limited as possible. We usually collect and process only the following personal data:

  • address of your cryptocurrency wallet;
  • your IP address;
  • information filled in by you in the user account area (cryptocurrency address etc.);
  • other information about you and your activities on our Website accessible in the user account area (history of your activities and transactions, KYC status for some of the third-parties etc.).

In case you have created a user account, we will collect and process also the following personal data:

  • your email address;
  • your phone number;
  • a Universally Unique Identifier (UUID) generated by us, serving as a customer ID.

In case you have any questions regarding the Website and/or access to the advertised Services or if you need any support you may contact us via email [email protected].

If you drop us an email, we will try to answer your question or help you to solve any problem related to the Website and/or the access to the advertised Services. In connection with provision of the above support, we collect and process also the following personal data:

  • your email address;
  • content of the emails you send us and other personal data related to our communication.

Personal data collected when you subscribe to our newsletter (commercial communications)

On the website, you may subscribe to our newsletter by entering your email, clicking on the subscribe box. If you subscribe to our newsletter, we will regularly inform you about the latest news from Invity, in particular about our services and products.

As a data controller, we collect, store and process the email addresses of users who subscribe to our newsletter.

In case you change your mind and you do not want to receive the newsletter anymore, you can unsubscribe any time for free. We will always indicate within the newsletter how to unsubscribe.

Personal data collected when providing the advertised Services

As we have stated above, we do not provide you the Services and we do not serve as an agent of the third parties who actually provide the Services (the “Providers”). We solely advertise the Services and sometimes allow you an access to the Services through our Website.

Therefore, all of your personal data related to the provision of the Services (such as your identification or details of the transaction) are collected, stored and processed solely by the Providers not by us.

Only the Providers are processing these data as data controllers. We do not process these personal data as a data controller, we do not determine the purpose or means of the processing, we do not know for how long these data are processed, we do not know and we are not responsible for how are these data processed and protected.

Processing of these personal data is governed by the privacy policy of the respective Provider. We always let you know the Provider of the particular Service on our Website so that you could acquaint yourself with their terms and conditions as well as with their privacy policy.

If you have any troubles with accessing the terms and conditions or privacy policy of a Provider, we are ready to help you via above mentioned support email address. However, we are not able to answer your questions or objections related to this data processing since we do not control it. We are not responsible for fulfillment of the obligations imposed on the Provider as a data controller.

We may be granted an access to these personal data controlled by the Provider and process them only in case the Provider provides us with such data for a particular reason. In that event we will process your personal data as a data processor pursuant to the terms agreed between us and the respective Provider. That does not change anything for you - the data processing will still be governed by the terms of the respective Provider.

Payment gateways

Our Website contains links to payment gateways provided by third parties which you may use in order to make payments while using the Services. You will have to fill in your personal data related to the payment when using the payment gateways.

These data are processed by the respective provider of the payment gateway as a data controller and the data processing is governed by terms and conditions and privacy policy of the payment gateway provider. We do not process these data and we do not have any access to such data unless stated otherwise herein.

We will always include a name of the payment gateway provider on the Website, so you may contact them to find all the information about how the payment gateway provider treats your personal data.

Why do you process my personal data?

Personal data collected in connection to the Website and/or the access to the Services

It is quite simple. We collect, store and process the above mentioned personal data in order to allow you an use of the Website and/or the access to the advertised Services.

To comply with legal requirements, we must mention that we collect, store and process such personal data pursuant to Article 6 (1) (b) of the Regulation. That means that processing of such personal data is necessary for the performance of a contract which we concluded - the contract established between you and our company when you access and use the Website and/or attempt to access the advertised Services.

We may collect, store and process such personal data pursuant to Article 6 (1) (f) of the Regulation. That means that it is in our legitimate interest to collect, store and process such personal data (even when the contract is terminated), since we have to be able to protect ourselves during the period when you or any third party may contest that we have broken any of our obligations or have violated any applicable laws in relation to the requested issue.

Personal data collected when you subscribe to our newsletter (commercial communications)

As we have stated above, we collect, store and process these personal data because you subscribed to our newsletter. So we are processing your email in order to send you the newsletters.

To comply with legal requirements, we must mention that we collect, store and process such personal data pursuant to Article 6 (1) (a) of the Regulation. That means that you have given us a consent to the processing of your personal data for the commercial communications purpose.

In order to be able to prove that you have given us your consent to sending our newsletter (and processing your personal data for the commercial communications purposes), we may collect and store the information that you have given us this consent (e.g. the logs). We collect and store these data pursuant to Article 6 (1) (f) of the Regulation. That means that it is in our legitimate interest to collect, store and process such personal data.

For how long will you process my personal data?

We process and store your personal data only for the time necessary to meet the purposes of its processing specified above, or for the time consented by you, or for the time that is either necessary to comply with our obligations under the applicable law or set forth by the applicable law or in accordance therewith. We comply with the mandatory rules for data archiving.

Once the purpose of the personal data processing disappears, we will destroy the personal data.

Personal data collected in connection to the Website and/or the access to the advertised Services

We will process and store such personal data for the duration of the contract established between you and our company when you use and access the Website and/or access the Services or until an issue requested by you is solved and also for the subsequent period thereafter that is either necessary to comply with our obligations under the applicable law or set forth by the applicable law or in accordance therewith, or during which you or any third party may contest that we have broken any of our obligations or have violated any applicable laws in relation to the requested issue.

Personal data collected when you subscribe to our newsletter (commercial communications)

We will process and store such personal data (your email) until you unsubscribe to our newsletter. You can unsubscribe any time for free. We will indicate how to unsubscribe within the newsletter.

We will process and store the information that you have given us the consent (e.g. the logs) to send you newsletter for the duration of the consent and also for the subsequent period thereafter that is either necessary to comply with our obligations under the applicable law or set forth by the applicable law or in accordance therewith, or during which you or any third party may contest that we have broken any of our obligations or have violated any applicable laws in relation to the commercial communications sent to you.

Who will have access to my personal data?

We take care of your personal data security and so we choose the partners to whom we entrust your personal data very carefully.

All our partners must be able to provide sufficient security of your personal data to prevent unauthorized or accidental access thereto or other abuse thereof and all our partners must undertake a confidentiality obligation and must not use your personal data for any purpose other than the purpose for which the data were made available to them.

The recipients that may have access to your personal data are following:

  • persons who provide us with the technological services or technology operators that we use to provide our services;
  • persons who provide our services and websites with security and integrity and who regularly test such security and integrity;
  • providers of accounting, legal and administrative services;
  • our staff.

Our aim is and always will be to ensure your personal data are as anonymous as possible and unavailable to all third parties. However, under certain specifically defined conditions we will be under some circumstances required, in accordance with the applicable law, to transfer certain personal data to public authorities.

When collecting, storing and processing personal data we sometimes may use personal data processors such as Google, which under some circumstances transmit your personal data to third countries. In such an event we always make sure such transmission is compliant with the Regulation. In particular, we specify that the personal data may be transmitted to the United States of America and in such event the transmission is compliant with the “Privacy Shield” program.

How are my personal data protected?

All your personal data is secured by standard procedures and technologies using the industry best practice approach. We provide data protection against unauthorized or accidental access, alteration, destruction, loss, unauthorized transmission or any other unauthorized processing, as well as against any other abuse of records containing the personal data.

We are not able to guarantee the security of your personal data without your help and responsible behavior. Therefore, we ask you to help us ensure the security of your data by keeping in secret.

Do you use cookies?

On our Website we use cookies to analyze traffic and to personalize content and ads. We will, as a data controller, collect, store and process any personal data collected by such cookies (the personal data may include your IP address, information about your activity on our website, information about your advertisement preferences etc.).

It is in our legitimate interest to collect, store and process such personal data for marketing purposes and for website traffic analysis, since (i) it allows us to improve our products and services and to provide you with personalized content and advertisement, (ii) we do not attempt to identify you using such personal data, (iii) there is little to no restriction of your interests, rights and freedoms, and (iv) you may at any time delete stored cookies permanently and change your cookie settings to disable or limit storage of any new cookies.

Please, read our Cookie Policy available on our website to learn more about the cookies that we use.

What are my rights in relation to personal data protection?

In relation to the personal data you shall have in particular the following rights:

  • a right to withdraw your consent at any time;
  • a right to correct or make additions to the personal data;
  • a right to request restrictions to processing of your personal data;
  • a right to object or complain against processing of your personal data under certain circumstances;
  • a right to request transfer of your personal data;
  • a right to access your personal data;
  • a right to be informed of the personal data security breach under certain circumstances;
  • a right to request deletion of your personal data (a right to be „forgotten“) under certain circumstances; and
  • other rights set forth in Act No. 110/2019 Coll., on personal data processing (Personal Data Protection Act) and the Regulation.

You have a right to object, on grounds relating to your particular situation, at any time to processing your personal data which is based on Article 6 (1) (f) of Regulation (it means that we have legitimate interest to process such personal data). You have also a right to object to processing your personal data for direct marketing purposes.

Additionally, you have a right to contact the Office for Personal Data Protection with a request for remedial measures in case of any violation of the obligations set forth in the Regulation at the following address: Office for Personal Data Protection, Pplk. Sochorova 27, 170 00 Prague 7, Czech Republic, phone number +420 234 665 111 (central telephone exchange).

How can I contact you?

If you have any questions regarding this Privacy Policy, please do not hesitate to contact us using the contact details below:

Contract address: Kundratka 2359/17a, Libeň, 180 00 Prague 8, Czech Republic

Contact point (support): https://www.invity.io

Email address: [email protected]

When is this Privacy Policy effective? This Privacy Policy comes into effect on August 1, 2021.

We reserve the right to amend and update this Privacy Policy at any time.

In Prague on August 1, 2021 Invity.io s.r.o.