Privacy Policy

Last revised: July 2026

This document describes how Monivex actually handles data today. It has not been reviewed by counsel and should be replaced with jurisdiction-specific, attorney-reviewed content (e.g. GDPR/CCPA-specific disclosures) before Monivex accepts real funds or users at scale.

This Privacy Policy explains what personal information Monivex collects, how we use it, and the choices you have. It applies to your use of the Monivex website and dashboard.

1. Information We Collect

Account information: email address, name, and a securely hashed password (we never store your plaintext password) or a Google account identifier if you sign in with Google. Security information: two-factor authentication status, registered passkeys, an optional anti-phishing code, and session metadata (IP address, browser/device type, and timestamps) recorded each time you log in — visible to you under Account & Security → Devices and Login History. Verification information: if you submit identity verification, we store the document type, issuing country, and references to the submitted materials, along with a review status. Trading and wallet data: your orders, trades, internal wallet balances, deposit/withdrawal/transfer records, and address book entries. Support data: messages you send us through the contact form or a support ticket, including your email and message content.

2. How We Use Information

We use your information to operate your account (authenticate logins, process orders against live market data, maintain your balances and trade history), to secure your account (send verification codes, detect suspicious logins, maintain login history), to communicate with you (transactional emails such as login codes, withdrawal confirmations, and support replies), and to review identity-verification submissions where applicable. We do not sell your personal information.

3. Cookies and Similar Technologies

Monivex uses a session cookie to keep you signed in between page loads (managed by our authentication library). We do not use third-party advertising or tracking cookies.

4. Third-Party Service Providers

We rely on a small number of service providers to operate Monivex: Resend, to deliver transactional emails (login codes, password resets, withdrawal confirmations, support replies); Google, if you choose to sign in with Google; MoonPay, if you use the card on-ramp feature; and public market-data providers (CoinGecko, Coinbase Exchange, the European Central Bank, and comparable sources) to price the assets shown on the platform — these providers do not receive your personal account information as part of that pricing data. Each provider processes only the information necessary to perform its function and is bound by its own privacy practices.

5. Data Retention

We retain account and transaction data for as long as your account is active, and for a reasonable period afterward to meet legitimate business, security, and recordkeeping needs (for example, login history and audit logs). You may request account closure and deletion of your personal data by contacting support, subject to any records we are required to keep.

6. Data Security

Passwords are hashed with bcrypt and never stored or transmitted in plaintext. We support two-factor authentication (TOTP) and passkeys (WebAuthn) as additional account protections, log every login attempt (successful and failed), rate-limit sensitive endpoints, and maintain an internal audit log of administrative actions. No system is completely secure, and we cannot guarantee absolute security of information transmitted to or from Monivex.

7. Your Rights

Depending on your jurisdiction, you may have rights to access, correct, export, or delete the personal information we hold about you, and to withdraw consent where processing is based on consent. You can update your profile information directly from your dashboard, or contact support to exercise other rights.

8. Children's Privacy

Monivex is not directed to individuals under 18, and we do not knowingly collect personal information from children.

9. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be reflected by an updated "last revised" date on this page.

10. Contact

Questions about this Privacy Policy or your personal data can be sent through the Support page, which reaches our team by email.