EQUITEXOS
EQUITEXOS
Legal Framework
This notice details how EQUITEXOS collects, protects, manages, and routes your personal information in compliance with international data privacy laws.
We collect personal information that you voluntarily provide to us when you register on the Services, express an interest in obtaining information about us or our products and Services, participate in activities on the Services, or otherwise contact us. This includes direct identifiers such as real names, postal addresses, telephone or mobile contact numbers, email addresses, contact preferences, billing addresses, and debit/credit card numbers. While we explicitly do not process sensitive personal health or biological credentials, we automatically collect systemic device and usage metadata upon terminal interaction. This automatic telemetry captures your Internet Protocol (IP) address (or proxy server), browser configurations, operating system version, system language preferences, device names, country, location, referring URLs, and hardware model variations[cite: 1]. Additionally, our infrastructure logs service-related, diagnostic, and performance indicators recorded as append-only log files, including specific interaction timestamps, site features engaged, pages or files viewed, lookup strings, and automated server error reports or crash dumps[cite: 1]. Depending on your device permissions, precise or imprecise geographic location telemetry may be processed via GPS or IP mapping technologies to preserve system integrity, though this can be selectively toggled via terminal operating system settings[cite: 1].
We process your personal information to provide, improve, and administer our Services, communicate with you, ensure system security and fraud prevention, and comply with applicable laws, as well as for other matching business needs with your explicit consent[cite: 1]. Specifically, this data acts as the primary runtime fuel to facilitate account creation, authenticate user identity, manage active user records, keep user dashboards in secure working order, and identify overarching platform usage trends[cite: 1]. To support our business reach, we process personal information for marketing and promotional campaigns in strict alignment with your specified communication profiles, using analytical data to gauge campaign execution patterns and deliver targeted advertising or personalized content tailored around your explicit location metrics and interface choices[cite: 1]. Finally, your data undergoes analytical evaluation where critical to prevent active platform harm or save or protect an individual's vital interests[cite: 1].
If you reside within the European Economic Area (EEA), United Kingdom (UK), or Canada, our data processing frameworks rely strictly on valid legal bases recognized under the General Data Protection Regulation (GDPR), UK GDPR, and Canadian privacy laws[cite: 1]. This includes processing based on your explicit or implied consent parameters, which you may formally withdraw at any time[cite: 1]. When consent is not the singular legal anchor, data is processed to satisfy legitimate business interests that do not outweigh your fundamental privacy rights and freedoms[cite: 1]. These legitimate interests include delivering special operational discount routes, compiling usage diagnostics to retain users, and maintaining marketing frameworks[cite: 1]. We also process data to comply with our binding legal obligations—such as cooperating with a law enforcement body or regulatory agency, exercising or defending our legal claims, or supplying discovery evidence in ongoing litigation paths[cite: 1]. In exceptional conditions under Canadian jurisdiction, information may be gathered without consent if explicitly clear it is in the individual's interest and timely consent cannot be obtained, for systemic internal financial abuse evaluations, for legal witness statements in insurance resolutions, or if records are explicitly public or compiled strictly for professional journalism or artistic purposes[cite: 1].
We retain your personal data strictly for the duration necessary to satisfy the specific business purposes outlined in this notice, unless a prolonged storage timeframe is mandated or permitted by active regulatory frameworks (such as tax laws, legal reporting structures, or accounting principles)[cite: 1]. No operational purpose requires us to retain personal assets for longer than six (6) months past the formal termination or closure of a user's account[cite: 1]. Once our ongoing legitimate business requirements for processing your data have concluded, we will either delete or anonymize your information[cite: 1]. If certain elements cannot be immediately purged (for example, because your records are embedded inside secure backup archives), we will securely store and isolate your personal details, blocking further access until automated deletion protocols are executed[cite: 1].
We deploy a multi-layered matrix of organizational and technical security protocols designed to safeguard all personal information under our processing domain[cite: 1]. These technical defenses include persistent transport encryption (TLS 1.3), storage volume encryption (AES-256), perimeter firewalls, and strict rule-based access logging models. However, despite our rigorous safeguards and continuous infrastructure testing, no web transmission or electronic storage layout is 100% secure[cite: 1]. We cannot guarantee that malicious hackers, cybercriminals, or other unauthorized groups will not compromise our security layers to improperly access, alter, or steal your data[cite: 1]. While we maintain continuous vigilance to shield your information, data transmission to and from our services occurs at your own risk, and you should only connect to our platform within a verified, secure digital environment[cite: 1].
EQUITEXOS does not knowingly solicit data from or market its services to children under 18 years of age[cite: 1]. By registering an active account on our services, you represent that you are at least 18 years old, or that you are the legal parent or guardian of a minor dependent and explicitly consent to their supervised use of the platform[cite: 1]. If our compliance team discovers that personal data from a user under 18 has been collected without proper authorization, we will deactivate the associated account profile and take immediate steps to permanently remove all matching files from our active database vaults[cite: 1]. If you believe we possess data from a minor under 18, please contact our data desk immediately at privacy@equitexos.com[cite: 1].
In specific regions—including the European Economic Area (EEA), the United Kingdom (UK), and Canada—you hold explicit statutory rights under modern data protection frameworks[cite: 1]. These include the right to request access to and obtain a direct copy of your personal data file, request structural corrections or complete erasure of inaccurate inputs, restrict ongoing processing of your data, and export your files via a portable data format[cite: 1]. In certain conditions, you can also object to the processing of your data[cite: 1]. To exercise any of these privileges, submit a formal query using the contact paths in our governance section[cite: 1]. We review and process all applications according to regional data laws[cite: 1]. If you reside in the EEA or UK and believe we are processing your details unlawfully, you can lodge a formal complaint with your local data protection supervisory authority[cite: 1]. Swiss residents can contact their regional authority directly at the Federal Data Protection and Information Commissioner portal[cite: 1].
California residents are granted specific statutory protections under the California Consumer Privacy Act (CCPA), as amended by the CPRA[cite: 1]. Under California Civil Code Section 1798.83 ('Shine the Light'), users residing in California can request, once per year and completely free of charge, an itemized disclosure detailing the categories of personal data (if any) we disclosed to third parties for direct marketing, along with the names and addresses of those third parties[cite: 1]. Registered California residents under 18 can request the removal of unwanted data publicly posted on our platform; while we will ensure it is hidden from public view, complete system extraction from all backups cannot be guaranteed[cite: 1]. Over the past twelve (12) months, EQUITEXOS has collected Category A (Identifiers: names, email, IP addresses), Category D (Commercial Information: transaction history and payment details), and Category F (Internet Activity: browsing tracking records)[cite: 1]. We do not process sensitive personal data vectors or sell user profile information to external third parties for profit[cite: 1]. California consumers have the right to request deletion of data, request disclosure of collected data categories, and choose to limit sensitive data usage without facing any form of user discrimination or service reduction[cite: 1].
Under the Virginia Consumer Data Protection Act (VCDPA), 'consumers' refers to Virginia residents acting strictly in an individual or household context, excluding commercial or employment settings[cite: 1]. Personal data covers any data linked or reasonably linkable to an identified or identifiable natural person[cite: 1]. If you are a Virginia consumer, you hold the explicit right to confirm whether we are processing your personal data, access your records, correct inaccuracies, request profile deletion, or secure a clear portable copy of the personal inputs you previously provided to us[cite: 1]. You also hold the right to opt out of data processing if used for targeted advertising, the sale of personal data, or profiling that produces legal effects[cite: 1]. EQUITEXOS does not sell personal data to third parties for monetary value[cite: 1]. Verified consumer requests will be addressed within forty-five (45) days of receipt[cite: 1]. If we decline to take action on your request, we will provide a written explanation of our reasoning; you can file a formal appeal by emailing privacy@equitexos.com, and we will respond in writing within sixty (60) days[cite: 1].
We update this privacy notice dynamically to maintain compliance with changing international laws, tracking protocols, and operational updates[cite: 1]. Every revised edition will be marked with a fresh 'Revised' or 'Last Updated' timestamp and becomes effective the moment it is publicly accessible on our services[cite: 1]. If we introduce material alterations to how we handle or store your personal data, we will alert you by prominently posting a clear service notification banner or by sending a direct update message to your registered email address[cite: 1]. We strongly encourage you to review this policy frequently to stay fully informed on how we protect your personal information[cite: 1].
If you have questions, comments, or formal complaints regarding this notice or our internal data handling, email our compliance team directly at privacy@equitexos.com[cite: 1]. You can also send physical mail to our corporate office at: Equitexos Inc., 548 Market Street, San Francisco, CA 94104, United States[cite: 1]. To review, update, or request the deletion of the personal data we collect from you under regional law, please submit an official application directly to privacy@equitexos.com[cite: 1].
How We Handle Your Social Logins
Our system gives you the option to sign up and authenticate your user account using existing third-party social media profiles, such as Google or similar federated sign-in systems[cite: 1]. When you choose this authentication route, we receive specific profile attributes from your provider[cite: 1]. The data payload we receive varies depending on your chosen provider's specific settings, but routinely includes your real name, email address, profile picture, and associated public profile elements[cite: 1]. We process this incoming profile data strictly for account provisioning and identification purposes as outlined in this document[cite: 1]. We do not control and accept no legal liability for any external data tracking or processing actions managed by your third-party social media provider[cite: 1]. We highly recommend checking their respective privacy statements and account setup blocks to manage your data choices on their platforms[cite: 1].