Privacy Policy

We may update or amend this Privacy Policy at any time to reflect changes in our services, advances in technology, modifications in applicable law, or adjustments to our business operations.

When we make changes, the "Last Updated" date at the top of this page will be revised to indicate the effective date of the updated policy. If the changes are material, we will provide notice in advance through one or more of the following methods:

• A prominent notice on our website;
• An email sent to the address associated with your account;
• Any other method required by applicable law.

We encourage you to review this Privacy Policy periodically to remain informed about how we collect, use, and protect your personal information. Your continued use of our services after an update becomes effective constitutes your acceptance of the revised policy. If you do not agree with the updated terms, you should discontinue use of our services.

We collect personal information to deliver our services effectively, meet legal and regulatory obligations, maintain security, and provide you with a safe and reliable user experience. The information we collect falls into three main categories: information you provide to us directly, information collected automatically when you use our services, and information obtained from trusted third-party sources.

A. Information you provide to us

To create and maintain your account, process transactions, and comply with applicable laws, we may collect:

• Personal identification details such as full name, date of birth, nationality, phone number, email address, and residential address;
• Government-issued identification including driver's licenses, passports, state ID cards, or other official documents, along with supporting documents such as utility bills for address verification;
• Financial information such as bank account numbers, payment card details, transaction history, and tax identification numbers;
• Employment or institutional information such as employer name, employer identification number (EIN), articles of incorporation for business accounts, and details regarding beneficial ownership;
• Transaction-specific information including recipient details, transaction amounts, dates, and timestamps;
• Communications and correspondence including customer support interactions, responses to surveys, and other information you choose to provide to us.

B. Information collected automatically

When you access or use our services, we may collect certain information automatically to ensure system security, prevent fraud, and improve your user experience. This includes:

• Device information such as IP address, browser type, operating system, device identifiers, and language preferences;
• Geolocation data, either approximate or precise, when enabled by your device settings;
• Usage data including pages visited, features used, clicks, authentication events, and session activity;
• Technical data collected through cookies, pixel tags, and similar tracking technologies to manage sessions, detect suspicious activity, and enhance personalization.

C. Information obtained from third parties

We may receive information from reputable third-party sources to verify identities, meet compliance requirements, and enhance security. These sources may include:

• Identity verification service providers for Know Your Customer (KYC) and Anti-Money Laundering (AML) compliance;
• Financial institutions to confirm payment details and process transactions;
• Public databases and regulatory watchlists for compliance screening;
• Marketing and analytics providers to understand how users discover and engage with our services;
• Blockchain analysis providers to identify and prevent illicit activity and ensure compliance with applicable regulations.

We share personal information only when it is necessary to provide our services, comply with applicable laws, protect our users, or operate our business effectively. We do not sell or rent your personal information to third parties. Any sharing is limited to trusted parties who are contractually obligated to protect your data and use it solely for the purposes specified.

A. Sharing for compliance and security

We may share your information with:

• Identity verification service providers to confirm your identity and prevent fraudulent activity. These providers may create derivative data based on your personal information solely for identity verification and fraud prevention purposes;
• Regulatory and law enforcement authorities when required to comply with subpoenas, court orders, or applicable legal obligations, or when we believe in good faith that disclosure is necessary to prevent harm, protect our platform, or investigate potential violations of law.

B. Sharing for payment processing and transactions

We may share your information with:

• Financial institutions with which we partner to process payments, deposits, and withdrawals you authorize;
• Third-party payment processors that facilitate debit card, credit card, ACH transfers, and wire transfers through secure API integrations;
• Blockchain analysis providers to help identify and prevent illicit or prohibited transactions.

C. Sharing with service providers and partners

We may share your information with third-party service providers who assist with:

• Network hosting and infrastructure;
• Data storage and backup solutions;
• Customer support operations;
• Transaction monitoring and risk management;
• Cybersecurity and fraud prevention;
• Marketing and analytics.

These providers are contractually required to protect your information and prohibited from selling or using it for unrelated purposes.

D. Sharing in corporate transactions

If Virtual Assets, Inc. enters into a merger, acquisition, asset sale, reorganization, or similar business transaction, your personal information may be transferred as part of the transaction. Any such transfer will be subject to applicable privacy laws and safeguards.

E. Sharing with your consent

We may share your personal information for any purpose you authorize. This includes situations where you explicitly instruct us to share information with another individual, business, or third-party service provider.

We retain personal information only for as long as necessary to fulfill the purposes for which it was collected, to comply with applicable laws and regulations, to resolve disputes, and to enforce our agreements. Retention periods vary depending on the type of information, the reason for its collection, and applicable legal requirements.

A. General retention guidelines

• Personal information collected to meet legal and regulatory obligations, such as Anti-Money Laundering (AML) and Know Your Customer (KYC) requirements, is retained for the period mandated by law after your account is closed;
• Transaction records are kept for the time necessary to comply with financial reporting and tax requirements;
• Communications and correspondence with our support team may be stored for a period that allows us to review past interactions, resolve disputes, and improve our customer service.

B. Specific retention practices

• Identification documents and verification records: Retained for the legally required period after account closure to comply with AML and KYC laws;
• Financial records and transaction history: Retained to meet accounting, tax, and reporting requirements;
• Contact information for marketing purposes: Retained until you opt out of receiving marketing communications. Once you opt out, your information will be placed on a suppression list to prevent further contact;
• Content you post or submit (such as feedback, reviews, or support tickets): May be retained to prevent fraudulent behavior, address security issues, and comply with applicable laws;
• Technical data collected through cookies and analytics tools: Retained for a defined period from the time of collection, after which it is deleted or anonymized.

C. Secure disposal of information

When personal information is no longer needed and is not required to be retained by law, we securely delete, anonymize, or otherwise dispose of it in accordance with industry best practices.

Depending on your location and the laws that apply to you, you may have certain rights regarding your personal information. We are committed to making it straightforward for you to exercise these rights, subject to applicable legal requirements and any necessary verification steps.

A. Access and portability

You may request a copy of the personal information we hold about you. In certain jurisdictions, you may also have the right to receive your information in a structured, commonly used, and machine-readable format, and to request that we transfer it directly to another data controller where technically feasible.

B. Correction of inaccurate or incomplete information

If any personal information we hold about you is inaccurate or incomplete, you may request that we update or correct it. You can make certain updates yourself through your account settings or by contacting our support team.

C. Deletion of your information

You may request the deletion of your personal information where permitted by law. We will honor such requests unless we are required to retain the information for compliance with legal obligations, dispute resolution, fraud prevention, or other legitimate business purposes.

D. Restriction of processing

In some jurisdictions, you may have the right to request that we restrict the processing of your personal information under specific circumstances, such as when you contest the accuracy of the data or object to its processing.

E. Objection to processing

Where permitted by applicable law, you may object to the processing of your personal information for certain purposes, including direct marketing. If you object to processing for direct marketing purposes, we will stop processing your data for that purpose.

F. Withdrawal of consent

Where we rely on your consent for processing, you may withdraw that consent at any time. Withdrawal will not affect the lawfulness of processing carried out before your consent was withdrawn.

G. Automated decision-making and profiling

If applicable law grants you the right, you may request not to be subject to decisions based solely on automated processing, including profiling, that have a legal or similarly significant effect on you, except in cases where such processing is necessary for entering into or performing a contract, authorized by law, or based on your explicit consent.

H. How to make a privacy rights request

You can submit a request through your account dashboard, or, if you cannot access your account, by contacting us at help@cryptodispensers.com. We may require additional information to verify your identity before fulfilling your request.

As part of providing our services, your personal information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws, which may not provide the same level of protection as the laws in your home jurisdiction.

A. Where we process information

We may process and store your personal information in the United States, as well as in other jurisdictions where we or our trusted service providers operate. This can include locations in North America, Europe, Asia, and other regions, depending on the operational requirements of our services.

B. Safeguards for international transfers

Whenever we transfer your personal information to a country that may not have equivalent data protection laws, we take steps to ensure your information is handled in accordance with this Privacy Policy and applicable laws. These safeguards may include:

• Contractual protections such as Standard Contractual Clauses approved by regulatory authorities;
• Binding corporate rules where applicable;
• Requiring third-party service providers to adhere to strict data protection and security obligations.

C. Your acknowledgment

By using our services, you understand that your personal information may be transferred to, stored in, and processed in countries where our facilities, service providers, or partners are located. While in those jurisdictions, your information may be accessed by courts, law enforcement, and national security authorities in accordance with their laws.

Our services are intended for individuals who are 18 years of age or older. We do not knowingly collect, maintain, or use personal information from anyone under the age of 18.

If we become aware that we have inadvertently collected personal information from an individual under 18, we will take immediate steps to delete that information from our records.

If you believe that a person under the age of 18 has provided personal information to us, please contact us promptly so that we can investigate and take appropriate action.

We also take measures to verify the age of individuals during the account creation and identity verification process to help ensure that our services are not accessed by minors.

If you have questions, concerns, or requests regarding this Privacy Policy or the way we handle your personal information, please contact us using the information below.

Virtual Assets, Inc.
205 N Michigan Ave, Suite 250
Chicago, IL 60601, USA
Email: help@cryptodispensers.com