Privacy Policy

1. Statement of Policy

GreenX as a subsidiary of GreenPro Capital Corp. is committed to protect and respect your personal data privacy. We are at the forefront of not only implementing but complying with the Data Privacy Act of 2012. We will provide individuals a Personal Information Collection Statement in an appropriate format and manner whenever we collect personal data from them (i.e. in the Sign Up page of our website, footer of our website, webpages where we collect personal data or in a notice posted at the reception area of GreenX events where participants’ personal data is collected in any form).

This Privacy Policy explains how GreenX as a subsidiary of GreenPro Capital Corp. collects, uses, shares, and protects user information obtained through the GreenX.io website. The terms “GreenX”, “we,” “us,” and “our” refer to GreenPro Capital Corp. a registered company in the federal territory of Labuan, Malaysia, Company Registration Number - LL17729, registered address - Labuan Office, Hall Unit, Unit 7-3A, 4th Floor, Labuan Times Square, Jalan Merdeka, 87000 F.T. Labuan, Malaysia. and it’s affiliates.

2. Definition of Terms

“Data Subject” – refers to an individual whose personal, sensitive personal or privileged information is processed by the organisation. It may refer to officers, employees, consultants, and clients of this organisation.

“Personal Information” – refers to any information whether recorded in a material form or not, from which the identity of an individual is apparent or can be reasonably and directly ascertained by the entity holding the information, or when put together with other information would directly and certainly identify an individual.

“Processing” refers to any operation or any set of operations performed upon personal information including, but not limited to, the collection, recording, organisation, storage, updating or modification, retrieval, consultation, use, consolidation, blocking, erasure or destruction of data.

3. Information Collection and Usage

We want you to understand the types of information we collect when you register for and use GreenX’s services. We collect the following personal information from you when you manually or electronically sign up and register as an user on our website, via your use of our service where you have given your consent. This may include:

3.1Information you provide to us at registration

When you create a GreenX Account, you provide us with personal information that includes your contact information (Email Address, name, and a password). You can also choose to add a phone number for SMS or Google Authenticator account to be used for 2FA verification for improved security.

3.2Information we collect when authenticating user identity

To comply with global industry regulatory standards including Anti-Money Laundering (AML), Know-Your-Customer (KYC), and Counter Terrorist Financing (CTF), GreenX requires user accounts to undergo user identity authentication for both Personal & Enterprise-level accounts. This entails collecting formal identification.

3.3Service Usage Information

Through your use of the GreenX platform, we also monitor and collect tracking information related to usage such as access date & time, device identification, operating system, browser type and IP address. This information may be directly obtained by GreenX or through third party services. This service usage data helps us our systems to ensure that our interface is accessible for users across all platforms and can aid during criminal investigations.

3.4Transaction Information

For all personal and enterprise user accounts, we collect transaction information including deposit snapshots, account balances, trade history, withdrawals, order activity and distribution history. This transaction data is monitored for suspicious trading activity for user fraud protection, and legal case resolution.

3.5Usage of your Personal Information

3.5.1to provide and maintain our services

We use the information collected to deliver our services and verify user identity. We use the IP address and unique identifiers stored in your device’s cookies to help us authenticate your identity and provide our service. Given our legal obligations and system requirements, we cannot provide you with services without data like identification, contact information and transaction-related information.

3.5.2to protect our users

We use the information collected to protect our platform, users’ accounts and archives. We use IP addresses and cookie data to protect against automated abuse such as spam, phishing and Distributed Denial of Service (DDoS) attacks. We analyse trading activity with the goal of detecting suspicious behaviour early to prevent potential fraud and loss of funds to bad actors.

3.5.3to comply with legal and regulatory requirements

Respect for the privacy and security of data you store with GreenX informs our approach to complying with regulations, governmental requests and user-generated inquiries. We will not disclose or provide any personal information to third party sources without review from our legal case team and/or prior consent from the user.

3.5.4to measure site performance

We actively measure and analyse data to understand how our services are used. This review activity is conducted by our operations team to continually improve our platform’s performance and to resolve issues with the user experience. We continuously monitor our systems’ activity information and communications with users to look for and quickly fix problems.

3.5.5to communicate with you

We use personal information collected, like an email address to interact with users directly when providing customer support on a ticket or to keep you informed on log ins, transactions, and security. Without processing your personal information for confirming each communication, we will not be able to respond to your submitted requests, questions and inquiries. All direct communications are kept confidential and reviewed internally for accuracy.

3.5.6to enforce our Terms and Conditions and other agreements

It is very important for us and our customers that we continually review, investigate and prevent any potentially prohibited or illegal activities that violate our Terms and Conditions. For the benefit of our entire user base, we carefully enforce our agreements with third parties and actively investigate violations of our posted Terms and Conditions. GreenX reserves the right to terminate the provision of service to any user found engaging in activities that violate our Terms and Conditions.

4. Disclosing and Transferring Personal Data

We may disclose your Personal Data to third parties and legal and regulatory authorities, and transfer your Personal Data out of Labuan, Malaysia, as described below.

4.1Disclosure to Third Parties

There are certain circumstances where we may transfer your personal data to employees, contractors and to other parties.

4.1.1We may share information about you with other members of our group of companies so we can provide the best service across our group. They are bound to keep your information in accordance with this Privacy Policy;

4.1.2We may also share your information with certain contractors or service providers. They may process your personal data for us, for example, if we use a marketing agency. Other recipients/service providers include advertising agencies, IT specialists, database providers, backup and disaster recovery specialists, email providers or outsourced call centres. Our suppliers and service providers will be required to meet our standards on processing information and security. The information we provide them, including your information, will only be provided in connection with the performance of their function;

4.1.3We may also share your information with certain other third parties. We will do this either when we receive your consent or because we need them to see your information to provide products or services to you. These include credit reference agencies, anti-fraud databases, screening agencies and other partners we do business with.

4.2Disclosure to Legal Authorities

We will ask for your consent before using your information for any purpose that is not covered in this Privacy Policy. We will implement reasonable security practices to help protect the security of your information and will not disclose your non-public information, including name, password and phone number, identification document number, date of birth to any other third party without your prior permission, excepting for the following cases:

4.2.1disclose your information to yourself or a third party with your consent.

4.2.2disclose your information with your consent so that you may use products or services.

4.2.3disclose or share your information to comply with our legal obligations to authorities stipulated by laws and regulations, including without limitation to, administrative authorities and financial authorities.

4.2.4when we believe, in our sole discretion, that the disclosure of your information is necessary to prevent physical harm or financial loss, to report suspected illegal activity, or to investigate violations of or enforce our user agreements or other policies and agreements.

4.3International Data Transfer

We store and process your Personal Data in data centres around the world, wherever GreenX facilities or service providers are located. As such, we may transfer your Personal Data outside of the Philippines. Some of the countries to which your personal data may be transferred for these purposes that are located outside the Philippines do not benefit from an adequacy decision issued by the National Privacy Commission regarding protection afforded to personal data in that country.

Such transfers are undertaken in accordance with our legal and regulatory obligations and appropriate safeguards under Personal Data Protection Act 2010 will be implemented, such as standard data protection clauses with data recipients or processors approved by competent authorities. A copy may be requested at the address set out in the Contact Us section.

5. Your Statutory Rights

Under RA10173, people whose personal information is collected, stored, and processed are called data subjects. Organisations who deal with your personal details, whereabouts, and preferences are duty-bound to observe and respect your data privacy rights.

5.1The right to be informed

As a data subject, you have the right to be informed that your personal data will be, are being, or were, collected and processed.

5.2The right to access

Under the Personal Data Protection Act 2010, you have the right to ask for a copy of any personal information we hold about you, as well as to ask for it to be corrected if you think it is wrong. To do so, please contact our Data Privacy Officer by sending an email with title “Personal Data Request” to [email protected].

5.3The right to erasure

you are entitled to ask us to delete or remove personal data in certain circumstances. There are also certain exceptions where we may refuse a request for erasure, for example, where the personal data is required for compliance with law or in connection with claims.

5.4The right to object

You can exercise your right to object if the personal data processing involved is based on consent or on legitimate interest. When you object or withhold your consent, the PIC should no longer process the personal data, unless the processing is pursuant to a subppoena, for obvious purposes (contract, employer-employee relationship, etc.) or a result of a legal obligation.

5.5The right to damages

You may claim compensation if you suffered damages due to inaccurate, incomplete, outdated, false, unlawfully obtained or unauthorised use of personal data, considering any violation of your rights and freedoms as data subject.

5.6The right to rectify

You have the right to dispute and have corrected any inaccuracy or error in the data a personal information controller (PIC) hold about you. The PIC should act on it immediately and accordingly, unless the request is vexatious or unreasonable. Once corrected, the PIC should ensure that your access and receipt of both new and retracted information. PICs should also furnish third parties with said information, should you request it. To do so, please contact our Data Privacy Officer by sending an email with title “Personal Data Update” to [email protected].

5.7The right to data portability

This right assures that you remain in full control of your data. Data portability allows you to obtain and electronically move, copy or transfer your data in a secure manner, for further use. It enables the free flow of your personal information across the internet and organisations, according to your preference. This is important especially now that several organisations and services can reuse the same data. At GreenX, you have full control of your data. Simply go to “User Settings” tab to download your transaction reports.

5.8The right to complaint

If you feel that your personal information has been misused, maliciously disclosed, or improperly disposed, or that any of your data privacy rights have been violated, you have a right to file a complaint with the NPC by sending an email with title “Data Complaints” to [email protected].

6. Protection of your Personal Data

GreenX has implemented a number of security measures to ensure that your information is not lost, abused, or altered. Our data security measures include, but are not limited to: PCI Scanning, Secured Sockets Layered encryption technology, internal data access restrictions, and strict physical access controls to buildings & files. Please note that it is impossible to guarantee 100% secure transmission of data over the Internet nor method of electronic storage. As such, we request that you understand the responsibility to independently take safety precautions to protect your own personal information.

If you suspect that your personal information has been compromised, especially account and/or password information, please lock your account and contact GreenX Data Privacy Officer (DPO) via email: [email protected] with title “Data Breach”.

7. Retention of your Personal Data

We retain Personal Data for as long as necessary to fulfil purposes described in this Privacy Policy, subject to our own legal and regulatory obligations. The criteria we may use to determine the retention period for certain categories of data includes:

7.1How long you have been a GreenX member;

7.2whether there are contractual or legal obligations that exist that require us to retain the data for a certain period of time;

7.3whether there is any ongoing legal or financial claim that relates to your relationship with us;

7.4whether any applicable law, statute, or regulation allows for a specific retention period; and;

7.5what the expectation for retention was at the time the data was provided to us.

In accordance with our record keeping obligations, we will retain Account and other Personal Data for at least five years (and some up to ten years, as required by applicable law) after an Account is closed.

8. Updates to our Privacy Policy

On occasion, GreenX may revise this Privacy Policy to reflect changes in law or our personal data collection and use practices, so it is advisable to review it frequently. If material changes are made to this Privacy Policy, the changes will be announced by posting on the site “Announcement” page of our website reasonably prior to the time that those changes will take into effect.

9. Final Notes

By using the Site, you consent to the data practices described in this Privacy Policy. When we ask for certain personal information from users it is because we are required by law to collect this information or it is relevant for specified purposes. Any non-required information you provide to us is done so voluntarily. You decided whether to provide us with these non-required information; you may not be able to access or utilise all of our Services if you choose not to.

10. Contact Us

We are committed to respecting the freedoms and rights of all our GreenX users who have placed their trust in our service. If you should have any questions or concerns regarding this Privacy Policy, or if you would like to file a Data Protection request, please contact us by sending an email to [email protected].

Join the vanguard of the RWA revolution

Stay informed and ahead in the realm of ethical, real-world asset investing. Join our platform.