WhiteRock Privacy Policy
Last modified: 25 April 2025
01 — Introduction
WhiteRock, together with its international affiliates (collectively "WhiteRock", "we", "our" or "us"), is committed to protecting your privacy when you use our decentralised and token services, including our dApp, visit our websites, or purchase and redeem ERC-20 share tokens.
02 — Scope
This Policy explains what personal information we collect, why we process it, when we share it, how we protect it, how long we keep it, and the rights available to you under applicable law.
Third-party services
Our sites and dApp may link to, or interact with, services we do not own or control— for example: external wallets, node or RPC providers, identity-verification platforms, authentication gateways, blockchain-analytics APIs, content-delivery networks, community forums, or block-explorer pages. This Policy does not apply to those third-party services.
03 — Information we collect
We may collect:
• Identification data you provide during onboarding (name, date of birth, nationality, government ID, selfie, proof of address).
• Blockchain data such as wallet addresses and on-chain transaction history when you interact with our smart contracts.
• Payment data including bank-transfer references or wallet addresses linked to deposits or redemptions.
• Communication data contained in emails, support tickets or surveys you send us.
• Local-storage data saved in your browser to remember preferences and improve performance.
We may also receive limited information from:
• a regulated identity-verification provider that performs KYC/AML checks;
• a licensed cryptocurrency exchange that converts deposits;
• public sanctions or politically-exposed-person databases.
04 — Why we process your information
• Compliance – to meet KYC/AML, sanctions and other legal obligations.
• Contract performance – to accept deposits, issue tokens, process redemptions and provide support.
• Legitimate interests – to secure our platform, prevent fraud and improve user experience.
• Consent – for optional matters such as marketing emails (you may withdraw consent at any time).
05 — Sharing of data
We do not sell personal information. We share it only with service providers that help us operate, professional advisers bound by confidentiality, regulators or law-enforcement when required, or another entity in the event of a merger, acquisition or re-organisation. International transfers rely on recognised safeguards such as standard contractual clauses.
06 — Security
We apply industry-standard administrative, technical and physical safeguards to protect personal information. No method of transmission or storage is completely secure.
07 — Retention
We retain personal information only as long as necessary for the purposes above and to meet legal or record-keeping obligations. Anti-money-laundering rules typically require us to keep KYC/AML records for up to five years after an account closes or a transaction completes, unless local law specifies otherwise.
08 — Your rights
If you reside in the European Union/EEA (GDPR) or another jurisdiction granting similar rights, you may:
• request access to the personal information we hold about you;
• ask us to correct or delete information that is inaccurate or no longer needed;
• object to, or request restriction of, certain processing;
• receive a portable copy of information you provided to us;
• withdraw consent where processing is based on consent.
Email us (Section 10) to exercise these rights. We may need to verify your identity before responding.
09 — Children
Our services are intended for persons 18 years or older. We do not knowingly collect data from children.
10 — Contact
Email privacy enquiries to contact@whiterock.fi. You may also lodge a complaint with your local data-protection authority.
11 — Updates
We may update this Policy from time to time. Material changes will be announced on our website or by email at least 14 days before they take effect. Continued use of our services after an update constitutes acceptance of the revised Policy.
WhiteRock Privacy Policy
Last modified: 25 April 2025
01 — Introduction
WhiteRock, together with its international affiliates (collectively "WhiteRock", "we", "our" or "us"), is committed to protecting your privacy when you use our decentralised and token services, including our dApp, visit our websites, or purchase and redeem ERC-20 share tokens.
02 — Scope
This Policy explains what personal information we collect, why we process it, when we share it, how we protect it, how long we keep it, and the rights available to you under applicable law.
Third-party services
Our sites and dApp may link to, or interact with, services we do not own or control— for example: external wallets, node or RPC providers, identity-verification platforms, authentication gateways, blockchain-analytics APIs, content-delivery networks, community forums, or block-explorer pages. This Policy does not apply to those third-party services.
03 — Information we collect
We may collect:
• Identification data you provide during onboarding (name, date of birth, nationality, government ID, selfie, proof of address).
• Blockchain data such as wallet addresses and on-chain transaction history when you interact with our smart contracts.
• Payment data including bank-transfer references or wallet addresses linked to deposits or redemptions.
• Communication data contained in emails, support tickets or surveys you send us.
• Local-storage data saved in your browser to remember preferences and improve performance.
We may also receive limited information from:
• a regulated identity-verification provider that performs KYC/AML checks;
• a licensed cryptocurrency exchange that converts deposits;
• public sanctions or politically-exposed-person databases.
04 — Why we process your information
• Compliance – to meet KYC/AML, sanctions and other legal obligations.
• Contract performance – to accept deposits, issue tokens, process redemptions and provide support.
• Legitimate interests – to secure our platform, prevent fraud and improve user experience.
• Consent – for optional matters such as marketing emails (you may withdraw consent at any time).
05 — Sharing of data
We do not sell personal information. We share it only with service providers that help us operate, professional advisers bound by confidentiality, regulators or law-enforcement when required, or another entity in the event of a merger, acquisition or re-organisation. International transfers rely on recognised safeguards such as standard contractual clauses.
06 — Security
We apply industry-standard administrative, technical and physical safeguards to protect personal information. No method of transmission or storage is completely secure.
07 — Retention
We retain personal information only as long as necessary for the purposes above and to meet legal or record-keeping obligations. Anti-money-laundering rules typically require us to keep KYC/AML records for up to five years after an account closes or a transaction completes, unless local law specifies otherwise.
08 — Your rights
If you reside in the European Union/EEA (GDPR) or another jurisdiction granting similar rights, you may:
• request access to the personal information we hold about you;
• ask us to correct or delete information that is inaccurate or no longer needed;
• object to, or request restriction of, certain processing;
• receive a portable copy of information you provided to us;
• withdraw consent where processing is based on consent.
Email us (Section 10) to exercise these rights. We may need to verify your identity before responding.
09 — Children
Our services are intended for persons 18 years or older. We do not knowingly collect data from children.
10 — Contact
Email privacy enquiries to contact@whiterock.fi. You may also lodge a complaint with your local data-protection authority.
11 — Updates
We may update this Policy from time to time. Material changes will be announced on our website or by email at least 14 days before they take effect. Continued use of our services after an update constitutes acceptance of the revised Policy.
WhiteRock Privacy Policy
Last modified: 25 April 2025
01 — Introduction
WhiteRock, together with its international affiliates (collectively "WhiteRock", "we", "our" or "us"), is committed to protecting your privacy when you use our decentralised and token services, including our dApp, visit our websites, or purchase and redeem ERC-20 share tokens.
02 — Scope
This Policy explains what personal information we collect, why we process it, when we share it, how we protect it, how long we keep it, and the rights available to you under applicable law.
Third-party services
Our sites and dApp may link to, or interact with, services we do not own or control— for example: external wallets, node or RPC providers, identity-verification platforms, authentication gateways, blockchain-analytics APIs, content-delivery networks, community forums, or block-explorer pages. This Policy does not apply to those third-party services.
03 — Information we collect
We may collect:
• Identification data you provide during onboarding (name, date of birth, nationality, government ID, selfie, proof of address).
• Blockchain data such as wallet addresses and on-chain transaction history when you interact with our smart contracts.
• Payment data including bank-transfer references or wallet addresses linked to deposits or redemptions.
• Communication data contained in emails, support tickets or surveys you send us.
• Local-storage data saved in your browser to remember preferences and improve performance.
We may also receive limited information from:
• a regulated identity-verification provider that performs KYC/AML checks;
• a licensed cryptocurrency exchange that converts deposits;
• public sanctions or politically-exposed-person databases.
04 — Why we process your information
• Compliance – to meet KYC/AML, sanctions and other legal obligations.
• Contract performance – to accept deposits, issue tokens, process redemptions and provide support.
• Legitimate interests – to secure our platform, prevent fraud and improve user experience.
• Consent – for optional matters such as marketing emails (you may withdraw consent at any time).
05 — Sharing of data
We do not sell personal information. We share it only with service providers that help us operate, professional advisers bound by confidentiality, regulators or law-enforcement when required, or another entity in the event of a merger, acquisition or re-organisation. International transfers rely on recognised safeguards such as standard contractual clauses.
06 — Security
We apply industry-standard administrative, technical and physical safeguards to protect personal information. No method of transmission or storage is completely secure.
07 — Retention
We retain personal information only as long as necessary for the purposes above and to meet legal or record-keeping obligations. Anti-money-laundering rules typically require us to keep KYC/AML records for up to five years after an account closes or a transaction completes, unless local law specifies otherwise.
08 — Your rights
If you reside in the European Union/EEA (GDPR) or another jurisdiction granting similar rights, you may:
• request access to the personal information we hold about you;
• ask us to correct or delete information that is inaccurate or no longer needed;
• object to, or request restriction of, certain processing;
• receive a portable copy of information you provided to us;
• withdraw consent where processing is based on consent.
Email us (Section 10) to exercise these rights. We may need to verify your identity before responding.
09 — Children
Our services are intended for persons 18 years or older. We do not knowingly collect data from children.
10 — Contact
Email privacy enquiries to contact@whiterock.fi. You may also lodge a complaint with your local data-protection authority.
11 — Updates
We may update this Policy from time to time. Material changes will be announced on our website or by email at least 14 days before they take effect. Continued use of our services after an update constitutes acceptance of the revised Policy.