Privacy Policy

Consult the comprehensive privacy policy of Winstovex. Details on data processing, security protocols, GDPR compliance, and the protection of your digital identity in Amsterdam. Privacy Policy and Data Protection Framework – Winstovex Version 3.0 – Last updated: April 9, 2026 Article 1: Identification of the Data Controller This Privacy Policy defines the strict data processing protocols adhered to by Winstovex ("the Platform", "we", "us", or "our"), located at Strawinskylaan 4117, 1077 ZX Amsterdam, Netherlands. We act as the data controller within the meaning of the General Data Protection Regulation (AVG/GDPR). For questions regarding your privacy, please contact our Data Protection Officer (DPO) via [email protected]. Article 2: Categories of Personal Data Processed To ensure an institutional degree of security and precision, we collect the following categories of data: Identity Data: Full legal name, date of birth, and official identification documents required for legal Know Your Customer (KYC) verification. Contact Information: Verified email address, active mobile phone number, and officially registered residential address. Financial Telemetry: Information about the source of wealth, wallet addresses, transaction history, and investor risk profiles. Digital Footprint: IP addresses, device specifications, geographical routing data, and detailed interaction logs of our algorithmic interfaces. Article 3: Legal Basis and Purposes of Processing In accordance with Article 6 of the GDPR, we process data based on: Contractual necessity: For managing your account and providing our analytical services. Legal obligations: Compliance with the Dutch Anti-Money Laundering and Anti-Terrorist Financing Act (Wwft) and the guidelines of the Authority for Financial Markets (AFM). Legitimate interest: For fraud prevention, network security, and the optimization of our AI models through anonymized datasets. Explicit consent: For marketing communication and the use of non-essential cookies. Article 4: Advanced Security and Encryption Winstovex employs enterprise-grade security standards: AES-256 Encryption: All data at rest is stored with military-grade encryption. TLS 1.3 Protocols: All data transfer between the user and our servers is fully encrypted. Sovereign Hosting: Data is exclusively stored on redundant servers within the European Economic Area (EEA) with strict physical and logical access controls. Article 5: Retention Periods and Archiving We retain your data no longer than strictly necessary for the stated purposes: Active Data: For the duration of the contractual relationship. Legal Archives: Personal data and financial records are retained for a period of seven (7) years after termination of the relationship, in accordance with Dutch tax and anti-money laundering legislation. Article 6: Your Rights as a Data Subject The GDPR grants you full control over your information: right of access, rectification, erasure ("right to be forgotten"), restriction of processing, data portability, and right to object. You can exercise these rights by sending an official request to [email protected]. You also have the right to file a complaint with the Dutch Data Protection Authority (AP).