Privacy Policy

1. Introduction

Welcome to CalvenRidge Trust ("we," "us," "our," or "the Platform"). Your privacy is extremely important to us, and we are committed to safeguarding your personal information. This Privacy Policy explains how we collect, use, disclose, store, and secure your data when you access our website, mobile applications, or any related services (collectively, the "Services").

By using CalvenRidge Trust, you acknowledge that you have read and agree to the practices described in this Privacy Policy. If you do not agree, please discontinue use of our Services immediately.

Our data handling practices comply with the Australian Privacy Act 1988 (Cth), including the Australian Privacy Principles (APPs), and where relevant, the European Union’s General Data Protection Regulation (GDPR).

2. Information We Collect

We collect information required to provide, enhance, and protect our Services:

2.1 Personal Information You Provide

During registration or interaction with our platform, you may provide:

• Identity Information: Full name, date of birth, gender, residential address
• Contact Information: Email address, phone number, mailing address
• Financial Information: Banking details, card information, transaction history
• Verification Documents: ID documents (passport, driver’s licence), proof of address
• Account Credentials: Username, password, security question responses

2.2 Information Collected Automatically

We automatically collect certain data when you access our Services:

• Device Information: IP address, browser type, OS, device identifiers
• Usage Insights: Click patterns, session duration, pages viewed, feature usage
• Location Data: Approximate location based on IP address
• Tracking Technologies: Cookies, analytics tools, session trackers

2.3 Information from Third Parties

We may receive additional information from:

• KYC Providers: Identity verification services
• Payment Platforms: Transaction confirmations and payment status updates
• Crypto Exchanges: Trading activity and asset balances (via secure user-authorised APIs)
• Analytics Services: Aggregated platform usage and performance data

3. How We Use Your Information

We use your data to provide secure, efficient, and user-focused trading services:

• Platform Operation: Account management, trade execution, funding processing
• KYC & Compliance: Meeting AML/CTF regulatory requirements in Australia
• Customer Service: Responding to queries and providing troubleshooting support
• Security Protection: Detecting fraudulent activities and ensuring account safety
• Platform Enhancement: Improving features based on usage behaviour
• Notifications: Security alerts, updates, announcements, and optional marketing communications
• Legal Obligations: Responding to regulatory requirements and lawful requests
• Analytics: Performance measurement and industry research (using anonymised data)

4. Legal Basis for Processing (GDPR)

For users located in the EEA, we process data under:

• Contractual Necessity
• Legal Compliance
• Legitimate Interests (security, analytics, fraud prevention)
• Consent (for marketing, optional inputs)

5. How We Share Your Information

We do not sell or trade your information. We may share it with:

5.1 Service Providers

Trusted partners assisting with:

• Payment processing
• Cloud hosting and data storage
• Identity verification
• Email delivery and messaging
• Analytics and performance monitoring

All partners must comply with strict confidentiality and data protection measures.

5.2 Regulatory Authorities

• AUSTRAC
• ASIC
• Law enforcement agencies
• Tax authorities

5.3 Business Transfers

Your data may be transferred to a successor entity in case of merger, acquisition, or restructuring.

6. Data Security

We apply industry-leading protocols to safeguard your data:

• Encryption: SSL/TLS in transit, AES-256 at rest
• Access Controls: Role-based restrictions and secure authentication
• 2FA: Optional but recommended for all accounts
• Audits: Routine penetration testing and risk assessments
• Secure Hosting: Tier-1 data centres with strict physical security
• Incident Response: Defined breach notification protocols

While we take comprehensive measures, no system is ever completely immune to security risks. Users must protect their login credentials.

7. Data Retention

We keep your personal information only as long as necessary:

• Active Accounts: Data retained for the duration of account use
• Closed Accounts: Records maintained for 7 years (AML/CTF compliance)
• Transaction Data: Retained for 7 years for taxation and financial reporting
• Support Records: Stored for 3 years
• Marketing Data: Deleted within 90 days after consent withdrawal

8. Your Privacy Rights

You may request to:

• Access your stored data
• Correct inaccurate details
• Request deletion (within legal limits)
• Restrict or object to certain processing
• Export your data (portability)
• Withdraw marketing consent at any time

Contact: [email protected]

9. International Data Transfers

Your data may be processed outside Australia, including the EU, US, and Asia-Pacific regions. We enforce safeguards such as:

• Standard Contractual Clauses
• Australian Privacy Principle-compliant protections
• Data processing agreements with providers

10. Children's Privacy

CalvenRidge Trust is not intended for individuals under 18. We do not knowingly collect data from minors.

11. Updates to This Privacy Policy

From time to time, we may update this policy to reflect legal, technical, or operational changes. If updates significantly affect your rights, we will provide advance notice.

12. Contact Us

If you have questions regarding privacy or data handling, contact:

Privacy Officer
CalvenRidge Trust
Email: [email protected]
Phone: 1800 Trust (1800 639 843)
Address: Level 12, 120 Collins Street, Melbourne VIC 3000, Australia

If you are dissatisfied with our response, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC) at www.oaic.gov.au.