Privacy Notice
Hypergate Ltd (“Hypergate,” “we,” “us,” or “our”) processes your personal data in full compliance with the Data Protection Act 2018 implementing the General Data Protection Regulation (“UK GDPR”) and other applicable data protection regulations.
Please read this Privacy Notice carefully to understand what personal data we collect, how we use it and what privacy rights you have.
Please note that this Privacy Notice will apply as soon as you access our website www.hyper-gate.co.uk or use the services available thereon or otherwise provided by Hypergate Ltd (“Services”)
Hypergate is a cryptoassets business, providing crypto exchange services. This business is registered under the Money Laundering Regulations and Financial Conduct Authority Rules which provide for additional requirements on collection, processing and retention of the personal details of our clients.
-
Personal Data
Personal Data is information relating to an individual. This may include any information that identifies or is reasonably capable of identifying an individual, directly or indirectly, such as name, address, financial information, etc. The categories of Personal Data we collect and the purposes for which we process it are further described in this Privacy Notice.
-
Data controller
Hypergate Ltd (company number: 13343144, registered address: Investment House, 28 Queens Road, Weybridge, United Kingdom, KT13 9UT) is the provider of the Services and the controller of your Personal Data.
To provide the Services we may also share your Personal Data with third parties who are individual data controllers, meaning they are responsible for the processing of the Personal Data subject to their privacy policies. Such third parties may include service providers, responsible for operating parts of the Services (e.g. identity verification, risk analysis, fraud prevention or service acquiring partners and other payment service providers), other cryptoasset businesses and public authorities. The categories of third parties we may share your Personal data with are outlined in Section 5.
-
Sources
The sources from which we collect your Personal Data are described below.
Direct collection: We collect your Personal Data when you interact with us directly by accessing or registering for and using the Services or contacting Hypergate.
Cookies and technical collection: We may automatically collect some Personal Data by using cookies or similar technologies. This may include collecting information of your IP address, device and browser details, information of your actions on the web-site and other technical details required for the functioning of the web-site and the provision of the Services.
Indirect collection: We may collect your Personal Data which is publicly available or is provided to us by third parties such as financial organisations, identity verification service providers, marketing partners, Apple App Store or Google Play Store, social media, and other third party sources.
-
Categories, purpose and legal basis
We may collect and process the following categories of Personal Data:
|
Category |
Purpose |
Legal Basis |
|
Identity: Name, date of birth, address, e-mail address, personal ID and tax ID numbers, phone number |
To provide you the Services and carry out our obligations arising from contracts |
Necessary for the performance of contractual obligations |
|
To comply with anti-money laundering laws and other legal requirements and apply client due diligence measures |
Necessary to comply with legal obligations |
|
|
To provide you with information about other products and services we offer that are similar to those that you have already purchased or enquired about |
Legitimate interest to develop the Services our business |
|
|
To make suggestions and recommendations to you about the Services |
Legitimate interest to develop the Services products/services and grow our business |
|
|
To provide better marketing communications to individual clients |
Consent |
|
|
Biometric: Pictures of your face and document, signatures |
To perform remote identity verification and client due diligence procedures |
Necessary for the performance of contractual obligations Necessary to comply with legal obligations |
|
Corporate ownership: Name, address, e-mail address, company name, phone number, shareholder reference number |
To maintain the shareholder register, dividend payments, voting, elections, annual report correspondence, identifying relevant products and services |
Necessary for compliance with our legal obligations; Legitimate interest for the purpose of our business |
|
Financial: Bank account, bank or payment card, balance, source of funds and income details, employment or business information |
To provide you the Services and carry out our obligations arising from any contracts |
Necessary for the performance of contractual obligations |
|
To comply with anti-money laundering laws and other legal requirements and apply client due diligence measures |
Necessary to comply with legal obligations |
|
|
To make suggestions and recommendations to you about the Services |
Legitimate interest to develop the Services products/services and grow our business |
|
|
Transactions: Details of transaction you perform via Hypergate and in connection with the Services, amounts of funds you spend or use |
To provide you the Services and carry out our obligations arising from any contracts |
Necessary for the performance of contractual obligations |
|
To comply with anti-money laundering laws and other legal requirements and apply client due diligence measures |
Necessary to comply with legal obligations |
|
|
To make suggestions and recommendations to you about the Services |
Legitimate interest to develop the Services products/services and grow our business |
|
|
Communications: Logs of emails, messages, complaints and other correspondence you send us, recordings of video interviews and calls |
To provide you the Services and carry out our obligations arising from any contracts |
Necessary for the performance of contractual obligations |
|
To comply with anti-money laundering laws, apply client due diligence measures |
Necessary for the performance of contractual obligations Necessary to comply with legal obligations Legitimate interest for the purpose of our business operation |
|
|
To provide better marketing communications to individual clients |
Consent |
|
|
Technical details: Technical information such as your IP address, device, operating system and browser data, location data, details of access to and actions on the web-site
|
To keep the web-site safe from unauthorised access and attacks To ensure correct operation of the web-site and the provision of the services To identify clients’ actions and ensure safe handling of Personal Data To enable third-parties engaged in the operation of the web-site of the provision of the Services perform their obligations towards Hypergate and you |
Necessary for the performance of contractual obligations Legitimate interest for the purpose of our web-site operation |
|
To provide better marketing communications to individual clients |
Consent |
If we need to process your Personal Data for any other purpose or for a different legal basis, we will contact you and notify or ask you permission to do so.
-
Sharing and disclosing
Affiliates and subsidiaries: We may sometimes need to share your Personal Data with other entities we have close links with, such as our affiliate companies and subsidiaries. This is required to provide the Services, as some of its functions may be carried out by entities. We may also share your Personal Data in case our business is acquired or merged with any third party.
Service providers: We outsource some of the functions required to provide the Services to third parties, such as advisors, identity verification service providers, accounting and auditing firms. We may also share your Personal Data with such service providers. This is required to ensure correct provision of the Services and comply with legal obligation.
Financial institutions: We may share your Personal Data with banks, payment acquiring partners and other relevant financial institutions involved in the provision of the Services. This is required to process your transactions with Hypergate.
Other crypto businesses: Due to the requirement to accompany all cryptoasset transfers with the information of the originator and the beneficiary we are required to share your Personal Data with other crypto businesses operating the accounts you use in connection with the Services.
Authorities: We may be required to disclose your Personal Data to competent authorities under applicable legal requirements or direct request of an authority.
Marketing service providers: We may share your Personal Data with our advertising partners to improve the Services and provide you with better individualised advertising content.
The list of the third parties may vary from time to time. If you wish to know the current updated list of third parties we have shared the Personal Data with, please contact us.
Please note that all third parties only have access to your Personal data on a need-to-know basis, must treat your personal data with the same diligence as us and in compliance with applicable legal requirements. However, we are unable to control the processing of your Personal Data by third parties and are not responsible for it in any way.
-
Security measures and protection
We are serious about the security of Your Personal Data. Taking into account the nature of the Personal Data and the threats posed, we have implemented different physical and technical measures to prevent unauthorised access to Your Personal Data, keep Your Personal Data safe, and make sure it is not improperly used or disclosed.
All Personal Data processed by us is stored on secure servers with control over access to information using both physical and electronic means. We are also regularly audited to confirm we remain compliant with our security certifications. As part of these audits, our security is validated by external auditors.
-
Retention and deletion
We never store your Personal Data for longer when necessary and delete it as soon as we do not need it to fulfil the purpose of its processing or any other legitimate reason and are not required to retain it under applicable law.
At your request we may delete your Personal Data which we are not required to store under applicable law.
The statutory retention period in the UK may be up to 5 years from the end of relations with the client (e.g. closure of your Hypergate account). This means that we are unable to delete your Personal Data during this period.
Please also note that we are unable to alter or remove any information from the Blockchain as it is technically impossible.
-
Cookies
To operate the web-site and to provide the Services we use Cookies – small text files stored on your device when you visit the web -site. Cookies help us identify you, adjust the website settings and ensure it is displayed and works correctly.
We may also use analytical cookies, pixel tags web beacons which allow us to analyse your use of the web-site and improve it.
You may use the Do Not Track (DNT) function of your browser to limit the tracking applied by advertisers and other third parties.
-
Your privacy rights
UK GDPR guarantees you the following rights under applicable data protection laws, subject to certain exceptions (e.g. obligatory retention periods):
Access and Rectification: You may submit a request that we disclose to you the Personal Data that we process about you and correct any inaccurate personal data.
Erasure and Retention: You may submit a request that we delete the Personal Data that we have about you. We may be prohibited from deleting certain types of Personal Data due to applicable money laundering regulations.
Restriction of Processing and Right to Object: You have the right to restrict or object to our processing of your Personal Data under certain circumstances.
Data Portability: You have the right to receive the Personal Data you have provided to us in an electronic format and to transmit that Personal Information to another data controller.
Consent withdrawal: You may withdraw your consent to processing of your Personal Data, where we process it on the basis of your consent.
Automated decision-making and profiling. We may use automated decision-making for purposes of fraud detection and prevention, analyse the provided client due diligence data and wallets. We implement measures to safeguard your rights and freedoms and legitimate interests, including the right to obtain human intervention, to express your point of view and to contest the decision.
Complaints: In case of any questions or complaints we ask you to contact Hypergate first via: support@hyper-gate.co.uk so that we can resolve your any issues. You also have the right to submit a complaint to the Information Commissioner’s Office.
Marketing opt-out: To keep you up-to-date with latest Hypergate news, new Services, we may share marketing materials with you. We will only do this subject to your content. You may opt-out from receiving marketing materials at any time by contacting us via: [email protected]
When handling requests to exercise your privacy rights, we check the identity of the requesting party to ensure that they are indeed the data subject. For security reasons, we may ask you to prove your identity before satisfying your request.
To use the rights listed above or receive clarifications, please contact us via: [email protected]
-
Storage and transfer
We store your Personal Data in the European Economic Area (EEA).
In some cases to provide the Services we may transfer your Personal Data to a non-EEA country. In such cases we will ensure that the transfer is lawful and that data processors in third countries are obliged to comply with the UK GDPR. We will implement appropriate technical and organisational measures to protect your Personal Data, taking into account the nature, scope, context and purpose of the processing and the risks involved in processing.
By using the Services, You consent to Your Personal Data being transferred to other countries, including countries that have differing levels of privacy and data protection laws than Your country. In all such transfers, we will protect Your Personal Data as described in this Privacy Notice and ensure that appropriate information-sharing contractual agreements are in place.
-
Protection of privacy rights
We apply technical, physical, and administrative security measures designed to provide protection for your Personal Data from loss, misuse, unauthorised access, disclosure, and alteration. The security measures include firewalls, data encryption, physical access controls and information access authorisation controls.
You are responsible for securing and maintaining the privacy of your passwords, account credentials and financial information.
-
Amendments
We may update this Privacy Notice from time to time. In case this Privacy Notice is updated we will notify you and by email.
-
Contact