BitxTrader 9ja Privacy Policy

 

BitxTrader Privacy Policy


Effective date: 15 September 2025


Who we are. BitxTrader is a product of Nano Softwares (“we,” “us,” “our”). This Privacy Policy explains how we collect, use, disclose, and protect information when you use the BitxTrader mobile app and related services (collectively, the “Services”). We operate for users located in Nigeria and require users to be 18+.


By using the Services, you agree to this Privacy Policy and our Terms of Use.

1) Information We Collect


1.1 Account & Profile

  • Name, email address, phone number, password (hashed), and basic profile settings.


1.2 Identity & KYC (Know-Your-Customer)

  • Government-issued ID details (e.g., ID number), images of ID documents, date of birth, and other information you submit for identity verification.

  • Selfie images and verification metadata (e.g., liveness result, match score) as part of compliance checks.

  • Face data / TrueDepth signals as described in Section 3.2 (only on devices that support it and only during liveness checks).


1.3 Payments & Transactions

  • Balance, transaction history, payout requests, and associated details (e.g., bank account information you provide to receive NGN payouts), fees, timestamps, and status updates.


1.4 Device, Usage & Diagnostics

  • Device type, operating system, app version, language, time zone, IP address, and device identifiers.

  • App logs, crash reports, performance data, and notification tokens (if you enable push notifications).

  • Security telemetry (e.g., Firebase App Check token) to protect against abuse.


1.5 Support & Communications

  • Messages you send to support and any information you provide in those communications.

2) How We Use Information


We use information to:

  • Provide and operate the Services (account management, balances, payout requests, status notifications).

  • Verify identity and comply with KYC/AML/CFT obligations (see Section 3).

  • Detect, prevent, and investigate fraud, abuse, security incidents, and violations of our Terms.

  • Communicate with you about your account, transactions, and product updates (you can manage notifications).

  • Improve the Services (analytics, troubleshooting, quality assurance).

  • Comply with legal obligations and enforce our rights.


Legal bases (where applicable): contract performance, legitimate interests (security, fraud prevention, service improvement), legal obligation (KYC/AML), and consent (e.g., push notifications, use of TrueDepth signals).

3) Identity Verification, AML/KYC & Biometric Data


3.1 KYC Process & Third-Party Provider


We partner with a specialist identity verification provider (Smile ID) to perform KYC checks. When you submit ID documents and selfies, these are processed by Smile ID on our behalf to verify your identity and detect fraud. We receive verification results (e.g., pass/fail, match scores, reasons) and retain only what we need to operate the Services and satisfy compliance obligations. See also Section 5 (Sharing).


3.2 Face Data (TrueDepth) — Apple Requirement


On devices that support Apple’s TrueDepth (e.g., Face ID), our liveness step may access depth/face geometry signalsvia the TrueDepth API. We use these signals only at the moment of liveness detection to help confirm that a real person is present and to compare the selfie to the submitted ID.

  • We do not store TrueDepth depth maps or facial geometry on our servers.

  • We do not use face data for advertising, marketing, or profiling.

  • We do not sell face data.

  • If your device does not support TrueDepth or you decline it, we may offer a non-TrueDepth alternative liveness flow where permitted (verification may take longer).


A clear, in-app disclosure and a link to this Policy are shown before any TrueDepth-based capture.

4) Cookies & Similar Technologies


We may use app-level identifiers and analytics to understand feature usage and improve performance. We do not use them for behavioral advertising.

5) How We Share Information


We do not sell personal information. We share information only as described below:

  • Service Providers & Sub-processors

    • Identity verification (KYC): Smile ID (processing of ID images, selfies, liveness signals/metadata, decisioning).

    • Security & infrastructure: cloud hosting, storage, DDoS protection, and security telemetry (e.g., Firebase services).

    • Analytics & diagnostics: crash reporting, performance monitoring.

      These providers process data under contract and only for our instructions and purposes.

  • Financial & payout partners

    To process NGN payouts you request and related compliance checks.

  • Legal, Compliance & Safety

    Where required by law, regulation, court order, or to protect rights, safety, and the integrity of the Services.

  • Business Transfers

    In connection with a merger, acquisition, or asset sale, subject to this Policy’s protections.

6) International Transfers


Your information may be processed and stored in countries outside your country of residence. When we transfer data, we use appropriate safeguards (e.g., contractual clauses) consistent with applicable law.

7) Data Retention

  • KYC artifacts (ID images, selfies, liveness metadata) are retained only for the period necessary to complete verification and meet regulatory/audit requirements (for example, up to 30 days, unless a longer period is required by law or to resolve disputes). We retain verification outcomes and minimal audit logs longer to satisfy record-keeping and fraud-prevention obligations.

  • Account, transaction, and payout records are retained as required by law and for legitimate business purposes.

  • When data is no longer needed, we will delete or de-identify it.

8) Security


We employ administrative, technical, and organizational measures designed to protect information, including encryption in transit, restricted access, signed requests, device/app integrity checks, and monitoring. No system is 100% secure; you are responsible for maintaining your account security (e.g., keeping credentials confidential).

9) Your Choices & Rights

  • Notifications: Optional and permission-based. You can enable/disable in system settings or in-app.

  • TrueDepth / Biometrics: You can decline TrueDepth-based liveness; we may offer an alternative flow where permitted.

  • Access, correction, deletion, and portability: You may request access to or deletion/correction of your personal data (subject to regulatory retention requirements).

  • Objections & restrictions: Where applicable, you may object to or request restriction of processing.

  • How to exercise: Contact us at privacy@nanosoftwares.com . We may need to verify your identity before fulfilling a request.

10) Children’s Privacy


The Services are for users 18 years and older. We do not knowingly collect personal information from children. If you believe a child has provided us data, contact us to request deletion.

11) Changes to This Policy


We may update this Policy from time to time. We will post the updated version with a new effective date. Material changes will be notified in-app or by other reasonable means.

12) Contact Us


Nano Softwares (BitxTrader)

Email: privacy@nanosoftwares.com (or support@nanosoftwares.com)

Address: Lagos, Nigeria 

Comments

Post a Comment

Popular posts from this blog

Bitxtrader AML Key

Image
Bitxtrader BITXTRADER Anti-Money Laundering (AML) / Combating the Financing of Terrorism (CFT) & Know Your Customer (KYC) Policy: The Case of Bitxtrader At Bitxtrader, robust Anti-Money Laundering (AML) and Combating the Financing of Terrorism (CFT) policies are essential to maintain the security and integrity of our operations. These policies are designed to ensure that financial institutions are not used as conduits for illicit activities, including money laundering and terrorism financing. Additionally, Know Your Customer (KYC) procedures play a critical role in identifying and managing risk associated with our clients. AML/CFT Framework at Bitxtrader Customer Due Diligence (CDD) At Bitxtrader, customer due diligence is the foundation of our AML/CFT policy. The company collects detailed information about our customers, verifying identities a...
Read more