Privacy Policy

1. Introduction

At APEC Trade, we understand the importance of protecting the privacy and personal data of our users. This Privacy Policy (“Policy”) outlines how we collect, use, disclose, and protect personal information in connection with our website, platform, and services (collectively, the “Services”).

This Policy applies to all users, visitors, clients, and counterparties who access or interact with APEC Trade’s Services, whether through a web browser, mobile application, or third-party API.

By accessing or using our Services, you acknowledge that you have read, understood, and agreed to this Privacy Policy. If you do not agree with any part of this Policy, you should refrain from using our Services.

Purpose of This Policy

The primary purpose of this Privacy Policy is to:

Inform you about the types of personal information we collect and process;

Explain how and why we use your personal data;

Disclose the conditions under which we may share your information with third parties;

Describe the security measures we take to protect your data;

Outline your rights and choices regarding your personal data.

 

We are committed to handling your personal data with care, transparency, and accountability, in compliance with applicable data protection and privacy laws, including but not limited to the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other relevant laws based on your jurisdiction.

Scope of This Policy

This Privacy Policy applies to all interactions with APEC Trade Services, including but not limited to:

Visiting our website or web-based applications;

Creating and managing an APEC Trade account;

Submitting KYC verification information;

Executing trades or other financial transactions;

Participating in support channels, surveys, promotions, or campaigns;

Communicating with our support or compliance team.

 

This Policy does not apply to third-party websites, tools, or platforms that may be linked from or integrated with our Services. We encourage you to review their respective privacy policies before sharing any personal data with them.

Language and Interpretation

This Policy is written in English and may be made available in other languages. In the event of any conflict between translated versions, the English version shall prevail.

 

2. Information We Collect

We collect various types of information to enable the proper functioning of our Services, ensure compliance with legal obligations, maintain security, and deliver a personalized user experience. The categories of data we collect include, but are not limited to, the following:

 

2.1 Account Registration Information

When you create an account with APEC Trade, we collect information necessary to identify and verify you, including:

Full legal name

Username and password

Date of birth

Nationality and residency status

Phone number and identification number (e.g., passport or national ID)

This information is required to establish your account and comply with KYC (Know Your Customer) regulations.

 

2.2 Identity Verification and Compliance Data

To comply with regulatory and legal requirements, especially Anti-Money Laundering (AML) and Counter-Terrorist Financing (CTF) obligations, we may collect additional documentation and information, including:

Government-issued identification documents (e.g., passport, driver’s license)

Proof of address (e.g., utility bills, bank statements)

Tax identification numbers or declarations

Live video verification or biometric scans (where applicable)

Risk profiling data

This information is used strictly for verification and legal compliance purposes and is handled securely.

 

2.3 Financial and Transactional Data

We collect data related to your financial activities on our platform, including:

Trade history (orders, positions, pairs traded, timestamps)

Deposit and withdrawal history

Linked wallet addresses or bank account identifiers

Fiat or crypto asset balances

Fees incurred and revenue earned

This data enables us to operate our Services, provide accurate reporting, and monitor for suspicious activity.

 

2.4 Technical and Device Information

When you use our Services, we automatically collect certain technical data from your device or browser, such as:

IP address

Browser type and version

Operating system and device model

Language settings

Access timestamps and session duration

Referring pages and clickstream behavior

This data helps us maintain platform integrity, troubleshoot issues, and improve system performance.

 

2.5 Usage and Interaction Data

To better understand how users interact with the platform and to enhance the user experience, we collect:

Login activity and logout times

Navigation patterns and clicks within the platform

Pages viewed and time spent per page

Feature usage (e.g., API endpoints accessed, tools used)

Support chat records and user-submitted inquiries

This data supports analytics, product optimization, and customer service improvements.

 

2.6 Cookies and Tracking Technologies

We use cookies, beacons, scripts, and other tracking technologies to:

Maintain user sessions and account security

Remember preferences and personalize your experience

Analyze site traffic and behavior trends

Support marketing and performance campaigns

Details of how we use cookies are further described in Section 6 (Cookies and Tracking Technologies).

 

2.7 Information from Third Parties

We may also receive personal data from third parties or public sources, such as:

Identity verification providers

Sanctions or watchlist screening databases

Analytics vendors or marketing platforms

Partner platforms or affiliate networks

This information is used to supplement or verify the data we collect directly and ensure compliance.

 

Note: We do not intentionally collect sensitive personal information (e.g., racial or ethnic origin, political opinions, religious beliefs, health data) unless required by law or explicitly authorized by you.

 

3. How We Use Your Information

We use the personal information we collect for various business, legal, and operational purposes. All data usage is conducted in accordance with applicable data protection laws and is necessary to provide a secure, compliant, and efficient user experience.

The key purposes for which we use your information include the following:

 

3.1 To Provide and Maintain the Services

We use your personal data to:

Create and manage your account

Authenticate and verify your identity

Process transactions, including deposits, withdrawals, and trades

Maintain platform functionality and availability

Provide access to tools, APIs, and other platform features

 

Without this information, we may not be able to provide you with our Services in a reliable or secure manner.

 

3.2 To Ensure Regulatory and Legal Compliance

We are legally obligated to collect and process personal data to:

Comply with KYC (Know Your Customer), AML (Anti-Money Laundering), and CTF (Counter-Terrorism Financing) requirements

Conduct sanctions screening and risk assessments

Monitor for suspicious transactions or activities

Report to regulators and government authorities when required by law

 

These obligations apply to all users of our Services, regardless of jurisdiction.

 

3.3 To Prevent Fraud and Enhance Security

We process your data to detect, investigate, and prevent:

Unauthorized access or account takeovers

Identity theft or impersonation

Fraudulent financial behavior

Automated bot activity and cyberattacks

 

We implement behavioral analysis, IP reputation checks, and real-time risk assessments to protect users and platform integrity.

 

3.4 To Improve Platform Functionality and User Experience

We analyze technical and behavioral data to:

Understand how users interact with our platform

Improve usability, performance, and design

Identify issues or bugs and optimize performance

Conduct A/B testing and product experiments

Customize user interfaces and recommendations

 

All such processing is conducted on pseudonymized or aggregated data where feasible.

 

3.5 To Conduct Internal Analytics and Research

We use collected data to generate insights that inform business strategy and innovation. This includes:

Market trend analysis and usage forecasting

Modeling user segments and investment behavior

Enhancing our quantitative trading algorithms

Training machine learning models (where applicable)

 

Data used for analytics is anonymized whenever possible.

 

3.6 To Communicate with You

We may use your contact and account information to:

Send administrative messages, transaction alerts, or system notifications

Respond to inquiries or support requests

Share updates on terms, policies, or system changes

Deliver educational or service-related communications

You may opt out of certain types of non-essential communications at any time.

 

3.7 To Market and Promote Our Services (with Consent)

Where permitted by law and subject to your preferences, we may use your data to:

Send promotional materials, newsletters, or product updates

Display personalized content or targeted advertising

Invite you to participate in surveys, contests, or referral programs

You may manage your marketing preferences or withdraw consent at any time through your account settings.

 

We do not use your personal data for profiling, automated decision-making, or resale to third parties. All data processing is performed in a secure and transparent manner, aligned with our contractual and ethical responsibilities.

 

 

4. Information Sharing

APEC Trade respects your privacy and is committed to keeping your personal data secure and confidential. We do not sell, rent, or trade your personal information to third parties for profit. However, there are certain circumstances under which we may share your data, always in accordance with applicable laws and for legitimate operational or legal reasons.

 

4.1 Sharing with Service Providers

We may share your information with third-party vendors, contractors, and partners who perform services on our behalf. These service providers support functions such as:

Identity verification and KYC compliance

Fraud detection and transaction monitoring

Cloud hosting and IT infrastructure

Analytics and usage tracking

Customer support systems

API integrations

 

All third parties are subject to strict contractual obligations, including confidentiality and data protection clauses, and are only permitted to use your data for the specific purposes required to deliver their services.

 

4.2 Sharing with Regulatory Authorities

We may disclose your information to government agencies, regulators, law enforcement bodies, or judicial authorities in the following circumstances:

To comply with a legal obligation, subpoena, court order, or regulatory request

To report suspicious activity under applicable AML/CTF laws

To protect the rights, safety, or property of APEC Trade, its users, or the public

 

To cooperate with tax, financial, or legal investigations

 

We will only disclose what is legally required and will make reasonable efforts to notify you unless prohibited by law.

 

4.3 Sharing with Financial Institutions and Payment Partners

In order to process financial transactions and facilitate settlement, we may share certain information with:

Banks and payment service providers

Custodians and clearinghouses

Blockchain network participants (e.g., for crypto wallet address validation)

Liquidity providers and trading counterparties

 

These entities may require data such as transaction amounts, account identifiers, and verification details to process or validate transactions.

 

4.4 Sharing in Business Transfers

If APEC Trade is involved in a merger, acquisition, restructuring, financing, sale of assets, or similar event, your personal data may be transferred to the involved parties as part of the transaction.

In such cases:

We will ensure that any successor entity is bound by privacy protections no less strict than those set forth in this Policy.

You will be notified of any change in data controller or material privacy changes.

 

4.5 Sharing with Your Consent

We may share your personal information with third parties at your direction or with your explicit consent, such as:

When you link your account to a third-party application or API

When you participate in external programs, partnerships, or referrals

When you request to connect with affiliated financial services

 

Consent-based sharing will always be clearly disclosed and optional.

 

4.6 Data Anonymization and Aggregation

We may share aggregated or anonymized data that cannot reasonably be used to identify you. This data may be used for:

Industry analysis

Research publications

Marketing insights

Platform usage trends

Such data is no longer considered “personal” and falls outside the scope of privacy restrictions.

At all times, we limit information sharing to what is necessary, lawful, and proportionate to its intended purpose. We do not permit third parties to misuse your information or process it for unauthorized purposes.

 

 

 

5. Data Storage and Retention

APEC Trade is committed to ensuring that your personal information is stored securely and retained only for as long as necessary to fulfill the purposes described in this Privacy Policy, or as required by applicable laws and regulations.

 

5.1 Data Storage Locations

Your data may be stored and processed on servers located in jurisdictions where APEC Trade or its trusted service providers operate. These may include regions within:

The United States

The European Economic Area (EEA)

Asia-Pacific regions

Other jurisdictions with appropriate data protection standards

 

We use secure cloud infrastructure and encrypted databases to protect your information, and we ensure that all hosting providers adhere to industry-standard security practices.

 

5.2 Security of Stored Data

We implement a combination of technical, organizational, and administrative safeguards to secure stored data, including:

End-to-end encryption for data in transit and at rest

Firewalls, access control systems, and intrusion detection

Role-based access permissions and audit trails

Regular security audits and vulnerability scans

Business continuity and disaster recovery plans

 

Only authorized personnel with a legitimate business need have access to sensitive data.

 

5.3 Data Retention Period

We retain your personal information for the following purposes and durations:

Account-related data: Retained for the duration of your account activity and for a minimum period after account closure, as required by financial and regulatory laws (e.g., 5–7 years depending on jurisdiction).

Transactional data: Retained to comply with tax, audit, and financial reporting obligations.

AML/KYC documentation: Retained for the minimum statutory retention period required by applicable law, even after account termination.

Communication records: Retained to provide support history, resolve disputes, and maintain service continuity.

 

After the retention period expires, we securely delete or anonymize your personal data unless otherwise required by law.

 

5.4 Account Closure and Data Deletion

Upon closure of your account, you may request that your personal data be deleted. However, certain information may be retained for:

Legal compliance (e.g., AML/CTF laws)

Regulatory investigations

Internal risk assessments

Prevention of future fraud or misuse

 

We will fulfill deletion requests wherever feasible and permitted by law and will confirm the scope and timeline of deletion upon request.

 

5.5 Data Transfers and International Safeguards

Where data is transferred outside of your home jurisdiction, we implement appropriate legal safeguards to ensure data protection, including:

Standard Contractual Clauses (SCCs) approved by the European Commission

Data processing agreements with third-party vendors

Periodic reviews of international data access risks

 

We aim to ensure your data receives a consistent level of protection, regardless of where it is processed.

 

We regularly review our data retention and storage policies to ensure that they meet evolving legal requirements and best practices in information governance.

 

 

6. Cookies and Tracking Technologies

APEC Trade uses cookies and similar tracking technologies to improve the performance, security, and usability of our platform. These technologies help us understand user behavior, tailor content, and ensure that our Services operate efficiently and securely.

By accessing or using our Services, you agree to the use of cookies as described in this section, unless you disable them through your browser settings.

 

6.1 What Are Cookies?

Cookies are small data files stored on your device (such as a computer, mobile phone, or tablet) when you visit a website. They are widely used to remember you and your preferences, either for a single visit (session cookies) or for repeated visits (persistent cookies).

Cookies may be:

Session cookies – deleted when you close your browser

Persistent cookies – stored until manually removed or they expire

First-party cookies – set by APEC Trade

Third-party cookies – set by authorized service providers operating on our behalf

 

 

6.2 Types of Cookies We Use

Strictly Necessary Cookies

These cookies are essential for you to navigate our platform and use secure features such as login and account access. Without them, core services may not function properly.

Functional Cookies

These cookies allow us to remember your settings and preferences, such as language or display choices, to enhance your experience on our platform.

Performance and Analytics Cookies

We use these cookies to collect anonymized data on how users interact with our Services. They help us monitor platform performance, identify issues, and improve site functionality.

Advertising and Targeting Cookies

With your consent, we may use cookies that help us display relevant content or limited advertising messages based on your usage patterns. These cookies do not share personal identity data and are used to improve content relevance.

 

6.3 Other Tracking Technologies

In addition to cookies, we may also use other technologies, such as:

Pixel tags – used to measure engagement, such as opening messages or visiting specific pages

Local storage – stores data within your browser for improved speed and personalization

Device fingerprinting – passively analyzes device characteristics to protect against fraud and unauthorized access

 

These tools are used only in accordance with privacy laws and for the purposes outlined in this Policy.

 

6.4 Managing Your Cookie Preferences

You have control over how cookies are used on your device. Most web browsers allow you to:

View and delete stored cookies

Block specific types of cookies

Set preferences for future browsing sessions

 

Disabling some cookies may affect the functionality and user experience of our platform.

We do not force the use of any non-essential cookies and respect browser-level privacy settings.

 

6.5 Changes to This Section

We may update our cookie practices to reflect changes in law, technology, or our business operations. Any such updates will be reflected in this Privacy Policy, and where required, we will ask for your renewed consent.

7. Data Security Measures

At APEC Trade, the security of your personal data is a top priority. We implement a wide range of technical, organizational, and administrative safeguards to ensure that your information is protected against unauthorized access, disclosure, alteration, or destruction.

While no system can guarantee absolute security, we continuously work to strengthen our defenses and minimize risk.

 

7.1 Technical Security Controls

We apply industry-standard and advanced technical measures to protect your data, including:

Data Encryption: All data in transit is encrypted using secure protocols (e.g., TLS/SSL), and sensitive data at rest is encrypted within our infrastructure.

Multi-Factor Authentication (MFA): Both users and internal staff accounts require MFA to access sensitive systems and accounts.

Firewalls and Intrusion Detection Systems (IDS): We deploy firewalls and intrusion detection/prevention systems to monitor and filter network traffic.

Secure API Interfaces: All data exchanges between systems use encrypted and authenticated APIs.

Secure Coding Practices: All software is developed using secure coding standards and subject to regular security reviews.

 

 

7.2 Organizational and Administrative Safeguards

Beyond technical tools, we enforce policies and controls to protect data access and integrity:

Role-Based Access Control (RBAC): Employees are granted access only to the data necessary for their role.

Internal Security Policies: Staff are trained on data privacy, information security, and incident response procedures.

Device and Endpoint Controls: Company-issued devices are protected with endpoint security software and access management tools.

Regular Staff Training: All employees undergo periodic security awareness and compliance training.

Vendor Risk Management: Third-party service providers are vetted and contractually bound to uphold our security standards.

 

 

7.3 Monitoring, Testing, and Incident Response

We continuously monitor our systems for vulnerabilities and suspicious activity:

24/7 System Monitoring: Infrastructure and application layers are monitored for performance, failures, and anomalies.

Penetration Testing: We conduct regular internal and third-party penetration tests to identify and remediate potential threats.

Vulnerability Management: Identified vulnerabilities are tracked, prioritized, and patched according to severity.

Incident Response Plan: We maintain a formal response protocol to act swiftly in case of data breaches or security incidents, including root cause analysis and mitigation.

 

 

7.4 Data Integrity and Backup

To ensure data accuracy and recoverability:

Automated Backups: Critical systems and databases are backed up regularly and stored securely in geographically separate locations.

Disaster Recovery Plans: Business continuity procedures are in place to recover from unexpected outages or disasters.

Data Audit Trails: Access and changes to data are logged and periodically reviewed for accountability and traceability.

 

 

7.5 User Responsibility

While APEC Trade takes every reasonable step to protect your data, users also play a role in maintaining account security. You are responsible for:

Maintaining the confidentiality of your login credentials

Using strong, unique passwords

Enabling multi-factor authentication where available

Reporting any suspicious activity to our support team promptly

 

8. Your Rights

APEC Trade respects your rights regarding the access, control, and management of your personal data. Depending on your jurisdiction and applicable data protection laws, you may have specific rights over how we process your information.

We are committed to enabling you to exercise these rights in a transparent and timely manner.

 

8.1 Right to Access

You have the right to request confirmation of whether we process your personal data and, if so, to request a copy of the data we hold about you, including:

The categories of personal data collected

The purposes of processing

The recipients or categories of recipients with whom the data is shared

The data retention period or criteria for determining the period

 

 

8.2 Right to Rectification

If you believe that any personal data we hold about you is inaccurate or incomplete, you have the right to request that we correct or update it without undue delay.

This includes the ability to:

Update profile information in your account dashboard

Request assistance in correcting any identity verification or transactional records

 

 

8.3 Right to Erasure (Right to Be Forgotten)

In certain circumstances, you may request that we delete your personal data, such as when:

The data is no longer needed for the purposes it was collected

You withdraw your consent (where consent was required)

The data has been unlawfully processed

You object to the processing and there are no overriding legitimate grounds

 

Please note that certain legal obligations (e.g., AML/CTF laws) may require us to retain some data even after an account is closed.

 

8.4 Right to Restrict Processing

You may have the right to request that we restrict the processing of your data in the following situations:

You contest the accuracy of the data

Processing is unlawful and you oppose deletion

We no longer need the data, but you require it for legal claims

You have objected to processing and verification is pending

 

During restriction, we will continue to store your data but will not process it for other purposes.

 

8.5 Right to Data Portability

Where technically feasible and legally required, you may request to receive a copy of the personal data you have provided to us in a structured, commonly used, and machine-readable format, and to have that data transferred to another service provider.

 

8.6 Right to Object to Processing

You may object to the processing of your personal data based on:

Our legitimate interests, where applicable

Direct marketing purposes (you can opt out of receiving marketing emails at any time)

 

If you object, we will stop processing your data unless we have compelling legitimate grounds or legal obligations.

 

8.7 Right to Withdraw Consent

Where processing is based on your consent (e.g., marketing communications or use of certain cookies), you may withdraw your consent at any time without affecting the lawfulness of prior processing.

Consent can typically be managed through your account settings or browser controls.

 

8.8 Right to Lodge a Complaint

If you believe your data protection rights have been violated, you may file a complaint with the relevant data protection authority in your jurisdiction.

While we encourage you to contact us first to resolve any concerns, you have the legal right to escalate to a supervisory body.

 

How to Exercise Your Rights

To exercise any of the rights listed above, you may submit a request through the appropriate channels within your account or by contacting our support team.

We may ask you to verify your identity before fulfilling your request. We will respond to all legitimate requests within a reasonable timeframe and in accordance with applicable laws.

 

 

9. Protection of Minors

APEC Trade is committed to protecting the privacy and safety of individuals under the age of 18. Our Services are not intended for, and should not be used by, anyone under the age of 18.

9.1 Age Restrictions

By accessing or using our Services, you confirm that you are at least 18 years old or the legal age of majority in your jurisdiction. If you are under this age, you are strictly prohibited from registering for an account, using our platform, or submitting any personal information.

We do not knowingly collect, solicit, or process personal data from minors. Any such data collected unintentionally will be deleted in accordance with this policy.

 

9.2 Parental Responsibility

If you are a parent or legal guardian and believe that your child has provided personal information to APEC Trade in violation of this policy, please notify us immediately. Upon verification, we will promptly:

Delete any identifiable data related to the minor

Disable or remove the associated account

Prevent future registration attempts using the same credentials

 

We strongly encourage parents and guardians to monitor their children’s online activities and to use appropriate parental controls when necessary.

 

9.3 Exceptions

In very limited cases, certain jurisdictions may permit individuals under the age of 18 to access financial services under parental or guardian supervision, or with regulatory approval. APEC Trade does not currently support or offer such exceptions and enforces a strict 18+ policy platform-wide.

 

9.4 Ongoing Compliance

APEC Trade routinely audits user accounts and verification processes to ensure age compliance. We also reserve the right to request proof of age at any time, especially if we suspect a user may be underage or has provided false information during registration.

 

We take the protection of minors seriously and strive to uphold the highest standards of safety, privacy, and compliance across all our operations.

 

 

 

10. Changes to This Privacy Policy

APEC Trade reserves the right to update, revise, or modify this Privacy Policy at any time in response to changes in legal, regulatory, operational, or technological requirements. We are committed to maintaining transparency and will ensure that you are informed of any material changes.

 

10.1 When Changes May Occur

We may update this Privacy Policy:

To reflect new features, products, or services

In response to changes in applicable data protection laws and regulations

To clarify or improve the content of the policy

To address changes in how we collect, use, or share data

 

These updates ensure that our data practices remain current, secure, and compliant.

 

10.2 Notification of Changes

When we make significant changes to this Policy, we will:

Update the “Last Updated” date at the top of the document

Publish the revised version on our official website

Provide additional notice where required by law (e.g., through in-platform alerts)

 

We encourage you to review the Privacy Policy periodically to stay informed about how your personal data is handled.

 

10.3 Continued Use After Changes

Your continued access to or use of the Services after a revised Privacy Policy has been published constitutes your acknowledgment and acceptance of the updated terms.

If you do not agree to the changes, you should discontinue use of the Services and, where applicable, request the closure of your account.

 

10.4 Historical Versions

Past versions of this Privacy Policy may be made available upon request, subject to internal data retention policies and relevant regulatory requirements.

 

By remaining informed and reviewing this Privacy Policy regularly, you help us maintain a trusted and transparent relationship regarding your personal data.