Privacy Policy

1. Data Controller Information
   Company Name: ATLANTIC EXCHANGES SPA (hereinafter, the “Company” or the “Controller”).
   CIF: 77.896.935-1
   Address: Calle Curanipe 4436, Ñuñoa, Región Metropolitana, Santiago de Chile
   Phone: +1 814 300 8017 // +34 876 712 517
   Email for Data Protection communications: info@atlanticexchanges.com

1.1. Applicable Regulations
Our Privacy Policy is in accordance with the EU General Data Protection Regulation (GDPR) 2016/679 of the European Parliament and of the Council of April 27, 2016, and the Spanish Organic Law 3/2018 of December 5 on the Protection of Personal Data and Guarantee of Digital Rights.

By providing your data, you declare that you have read and understood this Privacy Policy, granting your explicit and informed consent to the processing of your personal data for the purposes described herein.

The Company may modify this Privacy Policy to adapt it to legal, jurisprudential, or regulatory developments. This policy may be supplemented by the Legal Notice, Cookie Policy, and General Terms applicable to specific services.

1.2. Data Protection Officer (DPO)
Company: CODEFUSION LABS SL
CIF: B56342645
Address: CALLE AGUACATE, 41, BUILDING A1, BASEMENT 3, 28054 – MADRID, SPAIN
Phone: +34 643 851 079
Email: SOPORTE@360CONSULTORES.ES

2. Purpose of Data Processing
   The data collected through this website will be used for the following purposes:

• To process user registration for fiat-to-crypto currency exchange and money transfer services.

• To verify the user’s identity through document and selfie submission.

• To manage the contracted services (transfers in USDT and other cryptocurrencies).

• To provide operational communications and personalized customer support via WhatsApp.

• To send commercial or promotional information if explicit consent has been given.

2.1. Data Retention Period
We will retain your personal data from the moment you provide your consent until it is withdrawn or limited. In such cases, your data will be blocked and retained only for the legally required periods.

3. Legal Basis and Data Collection
   The legal basis for processing your data is your explicit consent, given through a positive action (filling out the form, uploading your ID and selfie, and checking the acceptance box).

3.1. Consent to Process Data
By completing the registration form, checking the “I accept the Privacy Policy” box, and submitting your information, or by sending documentation via WhatsApp or email, you declare that you have read and accepted this policy, granting your express consent for your data to be used for identity verification, transaction processing, and direct communication throughout the process.

3.2. Categories of Data Collected
The data collected includes identification and verification data such as:

• Full name

• Phone number

• Postal address

• Identification document (ID, RUT, NIE, DNI o Passport)

• Selfie for identity verification

• Email address

• Bank information linked to the transaction

• IP address used to access the form or communicate digitally

4. Security Measures
   ATLANTIC EXCHANGES SPA is committed to safeguarding your personal data and has implemented technical and organizational measures to ensure an appropriate level of security in accordance with Article 32 of GDPR.

These include:

• Encryption

• Access controls

• Secure protocols (SSL/TLS)

• Authentication measures

• Data backup procedures

• Internal privacy policies

Our staff and authorized providers are bound by confidentiality obligations and have received appropriate training on data protection regulations.

5. Data Sharing
   Data is not shared with third parties, unless necessary for service provision (e.g., financial institutions, messaging platforms, tech support), to meet legal obligations (e.g., tax, judicial, AML), or with explicit user consent.
   No international transfers will be made without proper GDPR-compliant safeguards. All third-party processors have signed appropriate contracts in accordance with Article 28 of GDPR.

6. User Rights
   You have the right to know whether we are processing your data, to access your data, to request its correction or deletion, to limit its processing, to object to its processing, to request portability, and to withdraw your consent. You may also file a complaint with the Spanish Data Protection Agency.

6.1. How to Exercise Your Rights
To exercise your rights, contact the Controller using the contact details below. A form will be provided if needed. Please include a copy of a document that verifies your identity.
Phone: +34 876 712 517
Email: info@atlanticexchanges.com

7. Consent for Electronic Communications
   In accordance with Law 34/2002 of July 11 on Information Society Services and Electronic Commerce, by filling out the data collection form and checking the box “I agree to receive electronic communications,” the user consents to receive marketing, operational, and promotional messages from ATLANTIC EXCHANGES SPA via email, WhatsApp, phone, or similar channels. Consent may be revoked at any time using the designated contact methods.