Documents

KUNA Tech’s Privacy Policy

Last updated on “10th” April 2023

This Privacy Policy along with Cookies Policy describes types of data we collect, how we process it and rights that you have under the current legislation.

DISCLAIMER. If you do not agree with this Privacy Policy or any part of it, please, leave the website immediately.

If you have any questions regarding this policy, don’t hesitate to contact us at: support@kuna.ae

GENERAL CONDITIONS

In relation to your use of our services and visiting our Website, KUNA Tech DMCC acts as the controller of your personal data. Personal data refers to any information related to an identified or identifiable natural person. This means that if you can be identified, directly or indirectly, by your name,location data, online identifier or any other specific factors, then such information would be considered as personal data.

Please be aware that KUNA Tech DMCC will not gather any sensitive personal data. All information we collect from you in order to provide our services will be protected in accordance with legislative requirements.

KUNA Tech DMCC does not intentionally collect any information about individuals who are under the age of 18. Furthermore, we do not knowingly gather information about individuals who have been recognized by a court as incapacitated or partially incapacitated. Such individuals are unable to legally enter into relationships with us.

TYPES OF DATA WE COLLECT

All data we collect from you can be grouped in certain types as following:

  • Personal Data: your name, email address, nickname. Also we collect screen recordings made during video calls between you and KUNA Tech DMCC, which were requested by using the “Book a Demo” option or any other way of interaction.
  • Usage data: information about how you use the Website and other offerings made available by us, including:
  1. device download time,
  2. interaction type and time,
  3. event time, name and source.
  • Marketing data: your preferences in receiving marketing from us or third parties.
  • Online Identifiers: geo location/tracking details, browser fingerprint, operating system, browser name and version, and/or personal IP addresses.

We may also automatically receive and record the following information on our server logs:

  • how you came to the Website;
  • device type and unique device identification numbers;
  • device event information (such as crashes, system activity and hardware settings, browser type, browser language, the date and time of your request and referral URL).
  • how your device interacts with the Website, including pages accessed and links clicked;
  • broad geographic location (e.g. country or city-level location); and
  • other technical data collected through cookies, pixel tags and other similar technologies that uniquely identify your browser.

DISCLOSURE

KUNA Tech DMCC may share your personal data with third-party service providers, agents, subcontractors, and other associated organizations, including our group companies and affiliates, in order to provide the services to you on our behalf.

We may also share your personal data with the following:

  • Companies that we plan to merge with or be acquired by (should such a combination occur, we will notify you and will require that the newly combined entity follow this Privacy Policy with respect to your personal data);
  • Law enforcement, government officials, or other third parties when we are compelled to do so by a subpoena, court order, or similar legal procedure, or we believe in good faith that the disclosure of personal data is necessary to prevent physical harm or financial loss, to report suspected illegal activity, or to investigate violations of any of our policies;
  • Fraud or crime prevention agencies to help fight against crimes including fraud, money-laundering, and terrorist financing;
  • Our vendors and agents, hired by us to provide you with the services;

We take appropriate measures to ensure that any third parties who handle your personal data will provide sufficient protection of your personal data, as required by applicable data protection laws.

DATA RETENTION

At KUNA Tech DMCC, we will retain your personal data only for as long as it is necessary to fulfill the purpose for which it was collected or as required by applicable law, even if our relationship with you has ended. We may also retain certain data for legitimate business purposes such as fraud prevention, future abuse prevention, analysis of aggregated, non-personally-identifiable data or if required by law.

For our website, we take the privacy and security of our customers' data very seriously. In order to ensure that our customers' data, we use Amazon Web Services (AWS) to store and manage our data. AWS provides a secure, scalable, and reliable infrastructure for our platform.

The data centers that AWS uses to store our data are located in various regions around the world. These data centers comply with strict security standards and regulations.

In addition to the physical security of the data centers, AWS also provides advanced security features such as encryption, access controls, and monitoring to ensure that our users' data is protected from unauthorized access and data breaches.

We are committed to protecting the privacy and security of our customers' data, and our use of AWS helps us to ensure that their data is stored in a safe and secure manner. If you have any questions or concerns about the storage of your data, please do not hesitate to contact us.

YOUR RIGHTS

As a visitor of our Website, you have certain rights with respect to your personal data. These rights include the right to access, correct, or delete personal data that we hold about you, as well as the right to restrict or object to our processing of your personal data, and the right to data portability. You may also have the right to withdraw any consent you have given for the processing of your personal data. If you wish to exercise any of these rights, please contact us using the contact information provided in the beginnig of this Privacy Policy. We will respond to your request as soon as reasonably possible.

CHANGES

KUNA Tech DMCC reserves the right to modify or amend this Privacy Policy at our sole discretion. The date of the most recent modification will always be indicated at the top of this page. In the event of any changes to the Privacy Policy, we will notify you in a manner commensurate with the nature of the changes made. Where required by applicable data protection regulations, we will seek your approval for any major changes. If you do not accept a new edition of the Privacy Policy, you must stop using the Website.

KUNA Tech’s Cookies Policy

Last updated on “10th” April 2023

We created this Cookies Policy to explain how we use cookies and similar technologies and how you can manage your cookie choices.

The terms in this Policy are used in accordance with the applicable data protection legislation.

If you have any questions about this Cookies Policy, don’t hesitate to contact us at: support@kuna.io

1. WHAT ARE COOKIES?

A cookie is a small text file that a website stores on your computer or mobile device when you visit the site.

Cookies can be “session” or “persistent”.

Session cookies expire when you close your browser at the end of your user session.

Persistent cookies are cookies that are stored on your browser and may capture your settings, activities, and preferences on the website or other websites until the specified expiry date unless deleted earlier. Most cookies collect aggregate

data (such as how users arrive at and use a website), but some cookies may collect personal information.

Cookies can be placed by KUNA TECH LANDING - the website operator (first party cookies) or a third party may place cookies for its own purposes (such as advertising to you).

More information on cookies and their use can be found at www.aboutcookies.org.

2. HOW DO WE USE COOKIES?

KUNA TECH uses the following kinds of cookies:

  • Strictly Necessary Cookies: KUNA TECH uses cookies that are required for the operation of the KUNA TECH LANDING website, such as cookies that permit you to login to your account with KUNA.
  • Statistics Cookies: statistic cookies help KUNA TECH to understand how visitors interact with KUNA TECH’s website by collecting and reporting information anonymously.
  • Marketing Cookies: the intention is to record your use of the KUNA TECH’s website (including the pages you view and the links you click) to deliver targeted content to you.

3. HOW CAN YOU MANAGE COOKIES?

  • Removing cookies from your device: you can delete all cookies that are already on your device by clearing the browsing history of your browser. This will remove all cookies from all websites you have visited. Be aware though that you may also lose some saved information (e.g. saved login details, site preferences).
  • Managing site-specific cookies: for more detailed control over site-specific cookies, check the privacy and cookie settings in your preferred browser
  • Blocking cookies: you can set most modern browsers to prevent any cookies from being placed on your device, but you may then have to manually adjust some preferences every time you visit a site/page. And some services and functionalities may not work properly at all (e.g. profile logging-in).

More information on how to manage most popular browsers can be found here: Google Chrome, Safari, Firefox, Internet Explorer.

4. CHANGES TO THIS POLICY

We may modify this Cookies Policy from time to time which will be indicated by changing the date at the top of this page. You will be notified about changes when you first visit our website after the change.

Kuna Tech’s Privacy Policy

Last updated on 17th march 2023

1. Introduciton

We take your privacy and data security seriously. KUNA is committed to transparency in the collection and use of your personal information.

Acceptance of this Privacy Policy.

By visiting, accessing or using any of our website, mobile application or cryptocurrency trading and related services, you consent to this Privacy Policy ("Policy") so please read it carefully. If you consider any term or condition of this Privacy Policy to be unacceptable, please do not visit, access or use the KUNA's website(s) or services.

The terms in this Policy are used in accordance with the Terms of Use, Anti-Money Laundering Policy and the applicable data protection legislation.

If you have any questions about this Privacy Policy, please contact us via email: support@kuna.io

2. Who we are?

According to applicable data protection legislation (namely, General Data Protection Regulation and Canada Personal Information Protection and Electronic Documents Act) we are controllers of your personal data. A personal data controller is a person who determines the purposes and means of the processing of personal data. Since we are operating in several countries, for your convenience, you may find in the table below the respective details relevant to you when it comes to the exact entity which is the data controller of your personal data:

If you are dissatisfied with the way we process your personal data, you have the right to lodge a complaint with the supervisory authority for data protection issues. We would, however, appreciate the chance to deal with your concerns before you approach the supervisory authority for data protection issues.

If you are a resident of an EEA Member State, you may find the information about your supervisory authority here.

3. Collection and use of personal data

Personal data means any information relating to an identified or identifiable natural person (data subject); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person. Personal data does not include a person's name, title, business address or telephone number, as an employee of an organization. Where this Policy states that a list of items is "including", the lists so described are meant to be examples and not exhaustive or exclusive.

We use different methods to collect personal data about our users and visitors. Usually, you personally provide us with your data by directly interacting with us when you:

visit our website(s) or services;

apply for our services;

create an account;

make use of any of our services;

request marketing to be sent to you, for example by subscribing to our newsletters;

enter a competition, promotion or survey, including through social media channels;

give us feedback or contact us.

We will also use third parties and/or publicly available sources to obtain data related to you. We may use the following sources:

fraud and crime prevention agencies;

publicly available information on the Internet;

public blockchain.

3.1. Information you voluntarily provide to us

Depending on whether and how you use our services, we'll ask you to provide us with some important information about yourself, which we have grouped in categories as follows:

Identity and Contact data: full name (full legal name), email address, home address, work address, date of birth and gender, nationality, phone number, visual image of your face.

Documents: national identity cards, passports, driving licenses or other forms of identification documents, tax ID number, visa information, utility bills, proof of legal formation (e.g. Articles of Incorporation), personal identification information for all material beneficial owners, and/or any other documents deemed necessary to comply with our legal obligations under financial or anti-money laundering laws.

Financial data: bank account information, payment card primary account number (PAN), transaction history, trading data, and/or tax identification, source of funds and related documentation.

Transactional data: details about payments to and from you, such as the name of the recipient, your name, the amount, and/or timestamp.

Employment data: office location, job title, and/or description of role.

Correspondence: chat messages with KUNA's Customer Support, chat attachments which may include screenshots, photos, videos etc., survey responses.

Please note, if you choose not to share certain information with us, we may not be able to serve you as effectively or offer you our services. As we add new features and services, you may be asked to provide additional information.

3.2. Information we collect from you automatically

To the extent permitted under the applicable law, we may collect certain types of information automatically, such as whenever you interact with our website(s) or use the services. This information helps us to improve our website(s) and services, and tailor content, recommendations, and advertisements we and third parties display to you. Information collected automatically includes:

Usage data: information about how you use the website(s) and services, and other offerings made available by us, including:

device download time,

install time,

interaction type and time,

event time, name and source.

Marketing data: your preferences in receiving marketing from us or third parties.

Online Identifiers: geo location/tracking details, browser fingerprint, operating system, browser name and version, and/or personal IP addresses.

We may also automatically receive and record the following information on our server logs:

how you came to our website(s) and use the services;

device type and unique device identification numbers;

device event information (such as crashes, system activity and hardware settings, browser type, browser language, the date and time of your request and referral URL);

how your device interacts with our website(s) and services, including pages accessed and links clicked;

broad geographic location (e.g. country or city-level location); and

other technical data collected through cookies, pixel tags and other similar technologies that uniquely identify your browser.

4. Children’s personal data

Our services are exclusively offered to individuals at least 18 years old. We do not process any personal data of children under this age.

5. Purpose of processing personal data

We will process your personal data only for the purpose of providing to you the services that you ask us to provide you, to satisfy the legal obligations stemming from regulatory obligations that arise from providing you the services and our legitimate interest (clause 6 of the GDPR for individuals who are located in the European Economic Area).

We will use your personal data for the following purposes:

to manage risk and crime prevention including performing anti-money laundering, counter terrorism, sanction screening, fraud and other background checks, detect, investigate, report and prevent financial crime in broad sense, obey laws and regulations which apply to us and response to complaints and resolving them;

to process and deliver our services to you, including registering you as a new user, contacting you via email or calls, etc.;

to manage, process, collect and transfer payments, fees and charges and to ensure good management of our payments, fees and charges;

to keep our records updated and to study how customers use our products/services;

to gather market data for studying customers' behavior including their preference, interest and how they use our products/services, determining our marketing campaigns and growing our business

to administer and protect our website(s) and services in order to provide network security and prevention of the fraud;

to deliver relevant website content and advertisements to you;

to improve our website(s) and services; and

or any purpose that you provide your consent.

Your information, whether public or private, will not be sold, exchanged, transferred, or given to any other company for any reason whatsoever, without your consent, other than for the purpose of delivering the requested services and improving our services. However, if you choose to limit the use of your personal information, certain features or services may not be available to you.

6. Data subject rights

You have the following rights:

receive confirmation as to whether or not personal data concerning you is being processed, and access your stored personal data, together with supplementary information;

receive a copy of personal data you directly volunteer to us in a structured, commonly used and machine-readable format;

request rectification of your personal data that is in our control;

request erasure of your personal data;

object to the processing of personal data by us;

request to restrict processing of your personal data by us;

lodge a complaint with a supervisory authority.

However, please note that these rights are not absolute, and may be subject to our own legitimate interests and regulatory requirements. If you wish to exercise any of the aforementioned rights or receive more information, please contact us at support@kuna.io.

Please note that we may request that you provide some details necessary to verify your identity when you request to exercise a legal right regarding your personal data.

7. Disclosure of personal data

We share your personal data with our third-party service providers, agents, subcontractors and other associated organizations, our group companies, and affiliates (as described below) in order to complete tasks and provide the Services to you on our behalf.

We may share your personal data with:

companies that we plan to merge with or be acquired by (should such a combination occur, we will notify you and will require that the newly combined entity follow this Privacy Policy with respect to your personal data);

law enforcement, government officials, or other third parties when we are compelled to do so by a subpoena, court order, or similar legal procedure; or we believe in good faith that the disclosure of Personal Data is necessary to prevent physical harm or financial loss, to report suspected illegal activity or to investigate violations of any of our policies;

identity verification agencies to undertake required verification checks;

fraud or crime prevention agencies to help fight against crimes including fraud, money-laundering and terrorist financing;

our vendors and agents, hired by us to provide you with the Services;

transaction processors (for the purpose of ensuring transaction performance and their operation).

Our website(s) may, from time to time, contain links to and from the websites or services of our partner networks, advertisers, transaction processors, etc. If you follow a link to any of these websites or services, please note that these websites and any services that may be accessible through them have their own privacy policies and that we do not accept any responsibility or liability for these policies or for any information, including personal data that may be collected through these websites or services, such as contact and location data. Please check these policies before you submit any information or personal data to these websites or use these services.

8. Security of personal data

Data security is of great importance to us, and to protect your personal data we have put in place suitable physical, electronic and managerial procedures to safeguard and secure data collected through our website(s). Steps we take to secure and protect your data include:

the pseudonymization and TLS 1.2 encryption of personal data;

2FA;

the access control;

the ability to ensure the ongoing confidentiality, integrity, availability and resilience of our processing systems and services;

the ability to restore the availability and access to personal data in a timely manner in the event of a physical or technical incident;

only authorized personnel of KUNA has access to your personal data, and this personnel is required to treat the information as confidential.

Notwithstanding the security measures that we take, it is important to remember that the transmission of data via the Internet may not be completely secure and that you are advised to take suitable precautions when transmitting to us data via the Internet. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our site, and any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorized access.

9. International transfer

Our contractors and affiliates are situated at different locations and we sometimes need to transfer your personal data to third countries to provide our services to you.

When transferring personal data outside of Canada, Flexy Pay inc is guided by the principles set out in PIPEDA.

UAB "Kuna Pro" may transfer your personal data only in the following cases:

if the country where we transfer your personal data provides an adequate level of personal data protection (based on the relevant decision of European Commission);

if we take appropriate safeguards to ensure that your rights as a data subject are protected;

if any derogations for specific situations apply (for instance, if such transfer is necessary for the establishment, exercise or defense of legal claims or for an important reason of public interest).

10. Data retention

We will keep your personal data for as long as it remains necessary for the identified purpose or as required by law, which may extend beyond the termination of our relationship with you. We may retain certain data as necessary to prevent fraud or future abuse, or for legitimate business purposes, such as analysis of aggregated, non-personally-identifiable data, account recovery, or if required by law.

For the purposes of complying with our legal or regulatory obligations and the world industry standards for data storage, you give us consent and permission to keep records of such information throughout the term of existence a Business Relationship with you, as well as for 5 (five) years after the termination of Business Relationship.

11. Changes to privacy policy

We may modify this Privacy Policy from time to time which will be indicated by changing the date at the top of this page. If we make any material changes, we will notify you by email (sent to the email address specified in your account). If you do not accept a new edition of the Privacy Policy, you must stop using the website and services.

Kuna Tech’s Privacy Policy

Last updated on 17th march 2023

1. Introduciton

We take your privacy and data security seriously. KUNA is committed to transparency in the collection and use of your personal information.

Acceptance of this Privacy Policy.

By visiting, accessing or using any of our website, mobile application or cryptocurrency trading and related services, you consent to this Privacy Policy ("Policy") so please read it carefully. If you consider any term or condition of this Privacy Policy to be unacceptable, please do not visit, access or use the KUNA's website(s) or services.

The terms in this Policy are used in accordance with the Terms of Use, Anti-Money Laundering Policy and the applicable data protection legislation.

If you have any questions about this Privacy Policy, please contact us via email: support@kuna.io

2. Who we are?

According to applicable data protection legislation (namely, General Data Protection Regulation and Canada Personal Information Protection and Electronic Documents Act) we are controllers of your personal data. A personal data controller is a person who determines the purposes and means of the processing of personal data. Since we are operating in several countries, for your convenience, you may find in the table below the respective details relevant to you when it comes to the exact entity which is the data controller of your personal data:

If you are dissatisfied with the way we process your personal data, you have the right to lodge a complaint with the supervisory authority for data protection issues. We would, however, appreciate the chance to deal with your concerns before you approach the supervisory authority for data protection issues.

If you are a resident of an EEA Member State, you may find the information about your supervisory authority here.

3. Collection and use of personal data

Personal data means any information relating to an identified or identifiable natural person (data subject); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person. Personal data does not include a person's name, title, business address or telephone number, as an employee of an organization. Where this Policy states that a list of items is "including", the lists so described are meant to be examples and not exhaustive or exclusive.

We use different methods to collect personal data about our users and visitors. Usually, you personally provide us with your data by directly interacting with us when you:

visit our website(s) or services;

apply for our services;

create an account;

make use of any of our services;

request marketing to be sent to you, for example by subscribing to our newsletters;

enter a competition, promotion or survey, including through social media channels;

give us feedback or contact us.

We will also use third parties and/or publicly available sources to obtain data related to you. We may use the following sources:

fraud and crime prevention agencies;

publicly available information on the Internet;

public blockchain.

3.1. Information you voluntarily provide to us

Depending on whether and how you use our services, we'll ask you to provide us with some important information about yourself, which we have grouped in categories as follows:

Identity and Contact data: full name (full legal name), email address, home address, work address, date of birth and gender, nationality, phone number, visual image of your face.

Documents: national identity cards, passports, driving licenses or other forms of identification documents, tax ID number, visa information, utility bills, proof of legal formation (e.g. Articles of Incorporation), personal identification information for all material beneficial owners, and/or any other documents deemed necessary to comply with our legal obligations under financial or anti-money laundering laws.

Financial data: bank account information, payment card primary account number (PAN), transaction history, trading data, and/or tax identification, source of funds and related documentation.

Transactional data: details about payments to and from you, such as the name of the recipient, your name, the amount, and/or timestamp.

Employment data: office location, job title, and/or description of role.

Correspondence: chat messages with KUNA's Customer Support, chat attachments which may include screenshots, photos, videos etc., survey responses.

Please note, if you choose not to share certain information with us, we may not be able to serve you as effectively or offer you our services. As we add new features and services, you may be asked to provide additional information.

3.2. Information we collect from you automatically

To the extent permitted under the applicable law, we may collect certain types of information automatically, such as whenever you interact with our website(s) or use the services. This information helps us to improve our website(s) and services, and tailor content, recommendations, and advertisements we and third parties display to you. Information collected automatically includes:

Usage data: information about how you use the website(s) and services, and other offerings made available by us, including:

device download time,

install time,

interaction type and time,

event time, name and source.

Marketing data: your preferences in receiving marketing from us or third parties.

Online Identifiers: geo location/tracking details, browser fingerprint, operating system, browser name and version, and/or personal IP addresses.

We may also automatically receive and record the following information on our server logs:

how you came to our website(s) and use the services;

device type and unique device identification numbers;

device event information (such as crashes, system activity and hardware settings, browser type, browser language, the date and time of your request and referral URL);

how your device interacts with our website(s) and services, including pages accessed and links clicked;

broad geographic location (e.g. country or city-level location); and

other technical data collected through cookies, pixel tags and other similar technologies that uniquely identify your browser.

4. Children’s personal data

Our services are exclusively offered to individuals at least 18 years old. We do not process any personal data of children under this age.

5. Purpose of processing personal data

We will process your personal data only for the purpose of providing to you the services that you ask us to provide you, to satisfy the legal obligations stemming from regulatory obligations that arise from providing you the services and our legitimate interest (clause 6 of the GDPR for individuals who are located in the European Economic Area).

We will use your personal data for the following purposes:

to manage risk and crime prevention including performing anti-money laundering, counter terrorism, sanction screening, fraud and other background checks, detect, investigate, report and prevent financial crime in broad sense, obey laws and regulations which apply to us and response to complaints and resolving them;

to process and deliver our services to you, including registering you as a new user, contacting you via email or calls, etc.;

to manage, process, collect and transfer payments, fees and charges and to ensure good management of our payments, fees and charges;

to keep our records updated and to study how customers use our products/services;

to gather market data for studying customers' behavior including their preference, interest and how they use our products/services, determining our marketing campaigns and growing our business

to administer and protect our website(s) and services in order to provide network security and prevention of the fraud;

to deliver relevant website content and advertisements to you;

to improve our website(s) and services; and

or any purpose that you provide your consent.

Your information, whether public or private, will not be sold, exchanged, transferred, or given to any other company for any reason whatsoever, without your consent, other than for the purpose of delivering the requested services and improving our services. However, if you choose to limit the use of your personal information, certain features or services may not be available to you.

6. Data subject rights

You have the following rights:

receive confirmation as to whether or not personal data concerning you is being processed, and access your stored personal data, together with supplementary information;

receive a copy of personal data you directly volunteer to us in a structured, commonly used and machine-readable format;

request rectification of your personal data that is in our control;

request erasure of your personal data;

object to the processing of personal data by us;

request to restrict processing of your personal data by us;

lodge a complaint with a supervisory authority.

However, please note that these rights are not absolute, and may be subject to our own legitimate interests and regulatory requirements. If you wish to exercise any of the aforementioned rights or receive more information, please contact us at support@kuna.io.

Please note that we may request that you provide some details necessary to verify your identity when you request to exercise a legal right regarding your personal data.

7. Disclosure of personal data

We share your personal data with our third-party service providers, agents, subcontractors and other associated organizations, our group companies, and affiliates (as described below) in order to complete tasks and provide the Services to you on our behalf.

We may share your personal data with:

companies that we plan to merge with or be acquired by (should such a combination occur, we will notify you and will require that the newly combined entity follow this Privacy Policy with respect to your personal data);

law enforcement, government officials, or other third parties when we are compelled to do so by a subpoena, court order, or similar legal procedure; or we believe in good faith that the disclosure of Personal Data is necessary to prevent physical harm or financial loss, to report suspected illegal activity or to investigate violations of any of our policies;

identity verification agencies to undertake required verification checks;

fraud or crime prevention agencies to help fight against crimes including fraud, money-laundering and terrorist financing;

our vendors and agents, hired by us to provide you with the Services;

transaction processors (for the purpose of ensuring transaction performance and their operation).

Our website(s) may, from time to time, contain links to and from the websites or services of our partner networks, advertisers, transaction processors, etc. If you follow a link to any of these websites or services, please note that these websites and any services that may be accessible through them have their own privacy policies and that we do not accept any responsibility or liability for these policies or for any information, including personal data that may be collected through these websites or services, such as contact and location data. Please check these policies before you submit any information or personal data to these websites or use these services.

8. Security of personal data

Data security is of great importance to us, and to protect your personal data we have put in place suitable physical, electronic and managerial procedures to safeguard and secure data collected through our website(s). Steps we take to secure and protect your data include:

the pseudonymization and TLS 1.2 encryption of personal data;

2FA;

the access control;

the ability to ensure the ongoing confidentiality, integrity, availability and resilience of our processing systems and services;

the ability to restore the availability and access to personal data in a timely manner in the event of a physical or technical incident;

only authorized personnel of KUNA has access to your personal data, and this personnel is required to treat the information as confidential.

Notwithstanding the security measures that we take, it is important to remember that the transmission of data via the Internet may not be completely secure and that you are advised to take suitable precautions when transmitting to us data via the Internet. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our site, and any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorized access.

9. International transfer

Our contractors and affiliates are situated at different locations and we sometimes need to transfer your personal data to third countries to provide our services to you.

When transferring personal data outside of Canada, Flexy Pay inc is guided by the principles set out in PIPEDA.

UAB "Kuna Pro" may transfer your personal data only in the following cases:

if the country where we transfer your personal data provides an adequate level of personal data protection (based on the relevant decision of European Commission);

if we take appropriate safeguards to ensure that your rights as a data subject are protected;

if any derogations for specific situations apply (for instance, if such transfer is necessary for the establishment, exercise or defense of legal claims or for an important reason of public interest).

10. Data retention

We will keep your personal data for as long as it remains necessary for the identified purpose or as required by law, which may extend beyond the termination of our relationship with you. We may retain certain data as necessary to prevent fraud or future abuse, or for legitimate business purposes, such as analysis of aggregated, non-personally-identifiable data, account recovery, or if required by law.

For the purposes of complying with our legal or regulatory obligations and the world industry standards for data storage, you give us consent and permission to keep records of such information throughout the term of existence a Business Relationship with you, as well as for 5 (five) years after the termination of Business Relationship.

11. Changes to privacy policy

We may modify this Privacy Policy from time to time which will be indicated by changing the date at the top of this page. If we make any material changes, we will notify you by email (sent to the email address specified in your account). If you do not accept a new edition of the Privacy Policy, you must stop using the website and services.