Privacy Policy

ACX+ is an online service that offers cryptocurrency exchange services and is available at https://exchange.acx.plus/. Acx.plus informs you about our policies regarding the collection, use, and disclosure of personal data that you provide to us while using our website or the services it offers. We use your data to provide and improve the user experience on the site. By using our website, you agree to the collection and use of information in accordance with this policy. The privacy policy of acx.plus complies with the General Data Protection Regulation (GDPR) of the European Union.

In this Privacy Policy, ACX+ acts as a data controller, which means that we determine the purposes and means of processing your personal data.

Cookies are small pieces of information that your browser stores on your computer's hard drive. Cookies can only be read by the server that placed them and cannot perform actions such as running programs on your computer, installing viruses, or collecting your personal data.

You can be assured that no personal data about you is collected or stored in the cookies placed by the website and, as such, they cannot be shared with third parties.

Cookies allow us to provide you with a better and more efficient service and to personalize your experience on our website. None of this information is shared with third parties, and it is used solely by us to improve your user experience on our website. The use of these types of cookies does not involve the collection of personal data about you.

Our advertising server may also set a cookie. These cookies are used to track the effectiveness of the content we serve on our website. The use of these cookies does not involve collecting any personal data about you, nor is such information shared with third parties.

Most web browsers automatically accept cookies. However, by changing your browser settings or using specific software programs, you can control how and whether cookies are accepted by your browser. Acx.plus supports your right to block any unwanted internet activity, especially from unscrupulous websites. However, blocking acx.plus cookies may disable certain functionalities on our website and prevent the purchase or use of certain services available on the site. Note that it is possible to block cookie activity from specific websites while still allowing cookies from trusted sites such as acx.plus.

The website uses internet cookies and similar tracking technologies to monitor visitor activity on the blog and to improve the service we provide. Cookies are sent to your browser from the website and stored on your device, thus speeding up the loading process of the blog, while Google Analytics recognizes you as a “returning” user. Cookies such as “_ga”, “_gid”, “gat_gtag_UA”, and “ga” are used to collect and analyze traffic. For the purpose of visit analysis and the collection of similar data via scripts, the website currently uses Google Analytics. Each user can configure their browser to reject all cookies or indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some features on the site.

The website uses the following cookies to enhance the user experience:

Session cookies – Used for high-quality website operation, these cookies are essential for the functioning of the platform and are deleted when you close the browser;
Preference cookies – Used to remember your preferences and settings;
Security cookies – Used to enhance the security of the website;

Your Consent to Cookies:

For cookies that are not strictly necessary for the functioning of the site (e.g., analytics and marketing cookies), we will request your explicit consent through a cookie banner. You can withdraw your consent at any time via your browser’s cookie settings.

PERSONAL DATA

The platform will collect only the personal data necessary to provide services and complete transactions. While using the website, you may be asked to enter certain personal information that can be used to contact or identify you (such as full name, phone number, email address, residential address, and date of birth) in order to access specific features on the website. Personal data, when required for the use of certain website content, will be requested solely through forms that you voluntarily complete.

KYC PROCEDURE

Data collection and processing:

ACX+ collects and processes users' personal data for identification purposes, in accordance with applicable laws and regulations on the prevention of money laundering and terrorism financing.

Types of data collected:

Identification documents (ID card, passport).
Proof of residential address.
User photo (selfie) - biometric data.
Additional information as needed, in accordance with regulatory requirements.

Purpose of processing during the KYC procedure:

Verification of the user's identity
Compliance with legal obligations and regulatory requirements (Legal basis: Legal obligation)
Protection of users and the platform from fraud and other unlawful activities (Legal basis: Legitimate interest)

PURPOSE OF DATA COLLECTION AND USAGE

The website collects, processes, and uses data for the following purposes:

Providing higher-quality content on the website (Legal basis: Legitimate interest)
Enabling the secure use of the website and its content (Legal basis: Legitimate interest)
Notifying users about any changes (Legal basis: Contractual obligation)
Enabling access to interactive website features (Legal basis: Contractual obligation)
Providing support and contact options (Legal basis: Contractual obligation)
Improving the user experience on the website (Legal basis: Legitimate interest)
Detecting, preventing, and resolving technical issues (Legal basis: Legitimate interest)

Your data, including personal data, is transferred to and stored on AWS infrastructure located outside the territory of Bosnia and Herzegovina, in accordance with the Law on Personal Data Protection. It is important to note that all necessary steps are continuously taken to ensure that your data is stored in encrypted form, securely protected, and transmitted exclusively via SSL security protocol.

Session data includes elements such as the IP address, operating system, type of browser software used, and the activities performed by the user while on our website. We collect session data because it helps us analyze aspects such as which items visitors are most likely to click on, how they navigate through the website, how many visitors access various content on the site, how long they stay on the site, and how frequently they return. This also helps us diagnose issues on our servers and allows us to better manage our systems. Additionally, we may use certain session data, such as the content you have viewed on our website, to send you emails with content that may be of interest to you—unless you have previously opted out of receiving such communications.

All collected personal data will be securely stored, and access to that data will be limited to authorized personnel who are bound by confidentiality obligations.

he company will implement appropriate technical and organizational measures to prevent unauthorized access, loss, theft, or damage to the data.

Personal data will be retained only for as long as necessary to fulfill the purpose for which it was collected, unless a longer retention period is required by law or regulation.

Additionally, information about access and use of the service may be collected. This usage data may include information such as the computer's Internet Protocol (IP) address, browser type, browser version, date and time of the visit, time spent on the site, the type of device used, and other diagnostic data.

RIGHTS OF DATA SUBJECTS

According to the Law on Personal Data Protection, data holders have the following rights:

The right to access personal data:
Right to rectification:
The right to erasure ('Right to be forgotten'):
The right to data portability:
The right to object:

You can exercise these rights by contacting the Data Protection Officer at: [email protected]. Your request will be responded to without undue delay and no later than 30 days from the date of receipt. Additionally, you have the right to lodge a complaint with the competent supervisory authority for data protection in Bosnia and Herzegovina, namely the Personal Data Protection Agency of BiH, if you believe that your personal data is being processed contrary to applicable regulations.

Data holders may exercise these rights by contacting us via email: [email protected].

LEGAL CONDITIONS FOR DATA DISCLOSURE

Your data may be disclosed to third parties such as courts, prosecutors, and law enforcement or security agencies only in the following cases:

To fulfill legal obligations;
To protect and defend the rights or property of the website;
To prevent the commission of an offense or crime related to the website's content;
To protect the personal safety, rights, data, and freedoms of others;
To prevent any illegal or unlawful activity.

PROVIDERS AND SOFTWARE

To ensure optimal website functionality and the best possible service, the platform uses several third-party services. In this context, your encrypted data may be stored, transmitted, processed, and analyzed by third parties, with all necessary measures in place to ensure that these third parties cannot identify or disclose your personal data. Key providers and software we use include:

SumSub
Google Analytics
Ledger Bytes
Banxa
Modulus
Fireblocks

The website may also display content from other sources. All such content not owned by the website will be clearly marked and linked to the respective owners, and responsibility for such content lies with the original author.

CONTACT

For any questions or suggestions, you can contact us via email at:

[email protected]

or by phone at

+387 66 888 495.