This Privacy Policy describes how Eczodex Group LTD (“we”, “our”, or “us”) collects, uses, discloses, and protects personal data when you visit our website (https://eczodex.com/) or use our products and services.

This Privacy Policy applies to Eczodex Group LTD and its subsidiaries and affiliated entities (collectively, the “Eczodex Group”), including but not limited to USCY Digital Asset LLC, Eczodex Enterprises LLC, and Eczodex LTD. It governs the processing of personal data across the Eczodex Group, regardless of which group entity provides or supports a particular product, service, or function.

If you have any questions about this Privacy Policy, you can contact us at enquiries@eczodex.com.

We may collect the following types of personal data:

Contact information (e.g., name, email address, company name, job title), account credentials and authentication data, IP address and technical metadata (e.g., device type, browser information), usage data and system logs generated through use of our services, communications submitted via website forms, support channels, or email, and mandatory compliance-related information required for customer onboarding and ongoing regulatory obligations (e.g., KYC-related identifiers), which is processed via regulated third-party service providers. We do not intentionally collect special categories of personal data.

We use personal data for the following purposes: to operate, maintain, and secure our services, to provide customer support and respond to inquiries, to onboard customers and users, to authenticate users and manage access controls, to monitor, prevent, and detect security incidents, fraud, or misuse, to comply with legal and regulatory obligations, and to improve our products, services, and user experience.

We use personal data for the following purposes: to operate, maintain, and secure our services, to provide customer support and respond to inquiries, to onboard customers and users, to authenticate users and manage access controls, to monitor, prevent, and detect security incidents, fraud, or misuse, to comply with legal and regulatory obligations, and to improve our products, services, and user experience.

We process personal data based on one or more of the following legal grounds, as applicable:

• Consent
• Contractual necessity
• Legitimate interests (such as securing and improving our services)
• Compliance with legal and regulatory obligations

We may share personal data with third-party providers in connection with regulated digital asset and banking services, including entities acting in issuer, custodian, and trustee capacities, such as Brale Inc., Northern Trust, Zodia, and CSC Global, which process personal data solely in accordance with Global, which process personal data solely in accordance with applicable laws, contractual obligations, and regulatory requirements.

We may also share personal data with cloud infrastructure and hosting providers, communications service providers, identity and access management providers, security monitoring and logging providers, analytics providers, compliance platforms, and professional service providers, including Microsoft Azure and Twilio, for purposes including but not limited to hosting, analytics, and payment processing.

We retain personal data for as long as necessary to fulfill the purposes for which it was collected, including the provision of services and compliance with legal, regulatory, and contractual obligations, or as required by law. When personal data is no longer needed, it is securely deleted or anonymized.

Personal data may be transferred to and processed in countries outside of the data subject's jurisdiction. Where such transfers occur, we implement appropriate safeguards, including standard contractual clauses (SCCs), contractual data protection obligations, and reliance on adequacy decisions where applicable.

Our services are intended for business customers (B2B), authorized users, partners, vendors, and website visitors. Our services are not directed to children, and we do not knowingly collect personal data from individuals under the age of 18.

This Privacy Policy is designed to comply with applicable data protection laws and regulations, including the Abu Dhabi Global Market (ADGM) Data Protection Regulations 2021 and the UK General Data Protection Regulation (UK GDPR). Where personal data is processed in other jurisdictions, we apply equivalent data protection safeguards and standards consistent with these frameworks and comply with applicable local legal requirements where they apply.

Depending on your jurisdiction, you may have rights relating to your personal data, including the right to access, correct, delete, or restrict processing of your personal data, and the right to object to certain processing activities. Requests may be submitted by contacting us using the details below.

For questions or requests relating to this Privacy Policy or our data protection practices, please contact us at:

Email: enquiries@eczodex.com

We may update this Privacy Policy from time to time to reflect changes in legal, regulatory, or operational requirements. Any updates will be posted on our website, and the “Last updated” date will be revised accordingly.