Privacy Policy

We collect identity data, contact data, transaction data, and technical data, including full name, date of birth, identity documents, email address, wallet addresses, transaction amounts, timestamps, IP address, browser type, device information, and access times.

We process personal data to provide and operate the platform, fulfill KYC/AML obligations, ensure security, prevent fraud, and maintain technical operations.

Processing relies on contract performance, legal obligation, and legitimate interest under Art. 6 GDPR where applicable.

Personal data is shared only with licensed service providers acting as processing partners, including AMLBot, Kalyssi, and Yellow Card Financial.

No personal data is sold or disclosed to other third parties except where required by law or a competent authority. Transfers to third countries are based on Standard Contractual Clauses under Art. 46 GDPR or another applicable transfer mechanism.

Personal data is retained only as long as necessary for the purposes for which it was collected or as required by law. AML/KYC data may be retained for 5 to 10 years under applicable financial regulations, then securely deleted or anonymized.

EEA users may have rights of access, rectification, erasure, restriction, portability, objection, and complaint to a supervisory authority.

To exercise these rights, contact privacy@aureum.is. We will respond within 30 days.

aureum.is uses only technically necessary cookies required to operate the platform. We do not use marketing, advertising, or behavioral tracking cookies without explicit prior consent.

Aureum LLC implements technical and organizational measures to protect personal data against unauthorized access, loss, or disclosure. Data transfers between your browser and our servers are encrypted using TLS.

Aureum may update this Privacy Policy at any time. Material changes will be communicated through the platform and/or by email at least 14 days before taking effect.