Monerium EMI would like to inform you that your privacy is of crucial importance to us. The success of our business depends on our ability to maintain the trust of our clients. During the course of our business, we are legally bound to gather information about our users, and we would like to inform you about the type of information we gather, why we retain Personal Data, what we do with it and how you can correct and/or modify the information you entrust us with.
We are committed to safeguarding the privacy of our Website visitors and Service users. This Privacy Policy is designed to help you obtain information about our privacy practices and to help you understand your privacy choices when you use our Site and Services.
Our Website is not intended for children and we do not knowingly collect data relating to children.
We have defined some terms that we use throughout the Privacy Policy. You can find the meaning of a capitalized term in the Definitions section.
It’s important that you read this privacy policy together with any other privacy policy or fair processing policy we may provide on specific occasions when we are collecting or processing personal data about you so that you are fully aware of how and why we are using your data. This privacy policy supplements other notices and privacy policies and is not intended to override them.
You agree and understand that this Privacy Policy is subject to the terms and conditions set forth in our Terms of Service. In case of conflict, the Terms of Service shall prevail. You further agree and understand that the defined terms used in this Privacy Policy, if defined in our Terms of Service, shall have the meanings set forth in our Terms of Service.
If any policy or practice of this Privacy Policy is unacceptable to you, please do not visit, access, or use Monerium EMI. Use of the words “we,” “us,” or “our” in this Privacy Policy refers to Monerium EMI and any or all of its affiliates.
Monerium EMI is the controller and responsible for your personal data.
We have appointed a data protection officer (DPO) who is responsible for overseeing questions in relation to this privacy policy. If you have any questions about this privacy policy, including any requests to exercise your legal rights, please contact the DPO using the details set out below.
If you have any questions about this privacy policy or our privacy practices, please contact our DPO in the following ways:
Full name of legal entity: Monerium EMI ehf.
Email: legal@monerium.com
Postal address: Bjargargata 1, 102 Reykjavík, Iceland.
You have the right to make a complaint at any time to the Icelandic Data Protection Authority (Persónuvernd) at www.personuvernd.is. We would, however, appreciate the chance to deal with your concerns before you approach Persónuvernd so please contact us in the first instance.
For clarity, we will:
We collect information about you when you sign up and create an Account and use our Services. Furthermore we may collect information about you when you visit our Website. The following information may be collected and stored for administrative, service related and/or legal purposes:
We may also collect, use and share aggregated data such as statistical or demographic data for any purposes. Aggregated Data could be derived from your personal data but is not considered personal data in law as this data will not directly or indirectly reveal your identity. For example, we may aggregate your usage data to calculate the percentage of users accessing a specific website feature. If we combine or connect aggregated data with your personal data we will treat the combined data as personal data which will be used in accordance with this privacy policy.
We collect and retain Personal Data to comply with legal and regulatory obligations according to anti money laundering and know your customer regulations which we as an Electronic Money Institution are subject to. We may also collect and retain Personal Data for our business purposes. If it is in our legitimate business interests and not prohibited by law, we may retain Personal Data for longer periods than required by law. If your Account is closed, we may take steps to mask Personal Data and other information, but we reserve our ability to retain and access the data for so long as required to comply with applicable laws. We will continue to use and disclose such Personal Data in accordance with this Privacy Policy.
We will only use your personal data when the law allows us to. Most commonly, we will Process your personal data in the following circumstances:
We may Process your information for the following reasons:
Note that we may process your personal data for more than one lawful ground depending on the specific purpose for which we are using your data. Please contact us if you need details about the specific legal ground we are relying on to process your personal data.
We may disclose your Personal Data or other information about you with others in a variety of ways as described in this section of the Privacy Policy.
We send Personal Data to the following sets of data processors in order to perform the Monerium Services:
We may also disclose your personal information in the following circumstances:
In order to:
enforce or apply the Terms of Service and/or the any other agreements between you and us or to investigate potential breaches; or
protect the rights, property or safety of Monerium, our customers or others. This includes exchanging information with other companies and organizations for the purposes of fraud protection and credit risk reduction.
With your consent: We also will share your Personal Data and other information with your consent or direction, including if you authorize an account connection with a third-party account or platform.
You can always withdraw your consent at any time after giving your explicit opt-in consent by contacting support and letting us know.
In addition, Monerium may provide aggregated statistical data to third-parties, including other businesses and members of the public, about how, when, and why Users visit our Website and use our Services. This data will not personally identify you or provide information about your use of the Website or Services. We do not share your Personal Data with third parties for their marketing purposes without your consent.
A significant benefit and innovation of Monerium´s Services is that you can in some instances connect your Account with a third-party account or platform. For the purposes of this Privacy Policy, an “account connection“ with such a third-party is a connection you authorize or enable between your Account and a non-Monerium account, payment instrument, or platform that you lawfully control or own. When you authorize such a connection, Monerium and the third-party will exchange your Personal Data and other information directly. Examples of account connections include:
If you choose to create an account connection, we may receive information from the third-party about you and your use of the third-party service. If you connect your Account to other financial accounts, directly or through third-party service provider, we may have access to your account balance and transactional information, such as purchases and funds transfers.
Your personal data will only be sent to third-parties once you have requested to utilize their services. You can withdraw your consent at any time by contacting support. Please be aware that this may impact your ability to use such services going forward. Please notice that when we share your data with third-parties you will also be subject to their privacy policy as well. Before authorizing an account connection, you should review the privacy notice of any third-party that will gain access to your Personal Data as part of the account connection.
When you visit our Website, use our Services, or visit a third-party website for which we provide online Services, we and our business partners and agents may use cookies and other tracking technologies (collectively, “Cookies“) to recognize you as a User and to customize your online experiences, the Services you use, and other online content and advertising; and to mitigate risk, prevent potential fraud, and promote trust and safety across our Websites and Services. Certain aspects and features of our Services and Website are only available through the use of Cookies, so if you choose to disable or decline Cookies, your use of the Website and Services may be limited or not possible.
Do Not Track (DNT) is an optional browser setting that allows you to express your preferences regarding tracking by advertisers and other third-parties. We do not respond to DNT signals. Please read our Cookie policy for further information.
We will only retain your personal data for as long as reasonably necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, regulatory, tax, accounting or reporting requirements. We may retain your personal data for a longer period in the event of a complaint or if we reasonably believe there is a prospect of litigation in respect to our relationship with you.
Monerium is obligated under the Anti Money Laundering and Countering The Financing of Terrorism Regulations to retain Personal Data about you and your Monerium Transactions for period of five years. Also, as an FSA authorized Electronic Money Institution, we are under further regulatory obligations to retain your data for a certain amount of time. Under the Electronic Money Regulations from 2013, Electronic Money Institutions must keep certain records for seven years. We therefore use this precondition for some personal data that we receive from you. In order to not hold your information for longer than is strictly necessary we will not hold any of your personal data for more than seven years after the termination of our business relationship.
Under data protection laws you have certain rights in relation to your personal data. Accordingly, we have implemented additional transparency and access controls in our Privacy Settings to help you take advantage of those rights. For data access, correction, restriction, deletion, or portability requests, please reach out to our support team. In accordance with this Privacy Policy and applicable law you have the right to:
You will not have to pay a fee to access your personal data (or to exercise any of the other rights). However, we may charge a reasonable fee if your request is clearly unfounded, repetitive or excessive. Alternatively, we may refuse to comply with your request in these circumstances.
We may need to request specific information from you to help us confirm your identity and ensure your right to access your personal data (or to exercise any of your other rights). This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it. We may also contact you to ask you for further information in relation to your request to speed up our response.
We try to respond to all legitimate requests within one month. Occasionally it may take us longer than a month if your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you updated.
Where we need to collect personal data by law, or under the terms of a contract we have with you and you fail to provide that data when requested, we may not be able to perform the contract we have or are trying to enter into with you (including the Monerium Services). In this case, we may have to cancel your use of the Monerium Services but we will notify you if this is the case at the time.
No security is foolproof, and the Internet is an insecure medium. We cannot guarantee absolute security, but we work hard to protect Monerium and you from unauthorized access to or unauthorized alteration, disclosure, or destruction of Personal Information we collect and store. We maintain technical, physical, and administrative security measures designed to provide reasonable protection for your Personal Data against loss, misuse, unauthorized access, disclosure, and alteration. The security measures include firewalls, data encryption, physical access controls to our data centers, and information access authorization controls. While we are dedicated to securing our systems and Services, you are responsible for securing and maintaining the privacy of your password(s) and Account registration information and verifying that the Personal Data we maintain about you is accurate and current. We are not responsible for protecting any Personal Data that we share with a third-party based on an account connection that you have authorized.
The Website and Services are not directed to children under the age of 18. We do not knowingly collect information, including Personal Data, from children or other individuals who are not legally able to use our Website our Services. If we obtain actual knowledge that we have collected Personal Data from a child under the age of 18, we will promptly delete it, unless we are legally obligated to retain such data. Please contact us if you believe we have mistakenly or unintentionally collected information from a child under the age of 16.
We may revise this Privacy Policy from time to time to reflect changes to our business, the Website or Services, or applicable laws. The revised Privacy will be effective as of the published effective date. If the revised version includes a substantial change, we will provide you with 30 days prior notice via email.
The data that we collect from you will be transferred to, and stored at, a destination inside of the European Economic Area (EEA) or within a secure third country which the European Commission has confirmed to have an adequate level of data protection. Our operations are supported by a network of computers, cloud-based servers, and other infrastructure and information technology, including, but not limited to, third-party service providers. As we aim to provide an international service your data may be processed outside of the EEA and secure third countries in order for us to fulfill our contract with you to provide the Monerium Services. We will need to process your personal data in order for us, for example, to provide global anti-money laundering and counter terrorist financing solutions and provide ongoing support services. We will take all appropriate steps to ensure that your data is treated securely and in accordance with this Privacy Policy.
Where you have chosen (or we have given you) a password that enables you to access certain parts of our Services, you are responsible for keeping this password confidential. We ask you not to share a password with anyone.
Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our Website, any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorized access.
Please reach out to our support team if you have general questions about our Privacy Policy and practices or questions about our Account information or Personal Data.
We do not engage in automated decision-making.
Account: A Monerium user account.
Device Information: data that can be automatically collected from any device used to access the Website or Services. Such information may include, but is not limited to, your device type; your device network connections; your device name; your device IP address; information about your device web browser and the internet connection being used to access the Website or Services; Geolocation Information; and biometric data (e.g., Touch ID/Fingerprint to verify your identity).
Geolocation Information: information that identifies with reasonable specificity your location by using, for instance, longitude and latitude coordinates obtained through GPS, Wi-Fi, or cell site triangulation. Some of our Services may ask you for permission to share your current location. Some of the WebSite and Services require this information to provide a specific product or online Service. If you do not agree to our collection of the geolocation information, our Website or Services may not function properly when you try to use them.
FSA: the Icelandic Financial Supervisory Authority.
Monerium: Monerium EMI ehf. and parent companies, subsidiaries or affiliates. In this Privacy Policy, Monerium is sometimes referred to as “we“, “us“, or “our“ depending on the context.
Personal Data: personal information that can be associated with an identified or identifiable person. Personal Data can include name, postal address (including billing and shipping addresses), telephone number, email address, payment card number, other financial account information, account number, date of birth and government-issued credentials (e.g., drivers license, national ID, passport, Social Security number and Taxpayer ID). Personal Data does not include information that does not identify a specific User.
Process: any method or way that we handle Personal Data or sets of Personal Data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, and consultation, disclosure by transmission, disseminating or otherwise making available, alignment or combination, restriction, erasure or destruction of Personal Data.
Services: any products, services, content, features, technologies, or functions, and all related websites, applications and services offered to you by Monerium in connection with an Account.
Website: our website monerium.com or other online properties through which Monerium may offer the Services and which has posted or linked to this Privacy Policy.
Technical Usage Data: information we collect from your phone, computer or other device that you use to access the Website or Services. Technical Usage Data tells us how you use the Website and Services, such as what you have searched for and viewed on the Website and the way you use our Services, including your IP address, statistics regarding how pages are loaded or viewed, the websites you visited before coming to the Website and other usage and browsing information collected through Cookies.
User: an individual who uses the Services or accesses the Website and has established a relationship in his own name or through a legal entity with Monerium (for example, by opening an Account and agreeing to the Monerium Terms and Conditions) or otherwise uses the Services.