Legal

Privacy Policy

Last Updated: 15 June 2026

This Privacy Policy explains how DigiMaaya ("DigiMaaya", "Maaya", "we", "us", or "our") collects, uses, stores, shares, and protects personal data when you access or use www.digimaaya.com, our web applications, dashboards, token-related services, Springboard/incubator products, loyalty and rewards programs, events, community channels, marketing pages, and any future digital asset exchange, wallet, trading, banking-style, or related services offered by us.

By accessing or using our services, you agree to this Privacy Policy. If you do not agree with this Privacy Policy, please do not use our services.

DigiMaaya is a digital asset and Web2.5 financial ecosystem. DigiMaaya is not a traditional bank, does not provide guaranteed returns, and does not provide investment, legal, tax, or financial advice.

01

Information We Collect

We may collect the following categories of information:

1.1 Account and Contact Information

We may collect your name, email address, phone number, country, address, username, referral details, communication preferences, and account login information.

1.2 Identity, KYC and Compliance Information

Where required, we may collect information for Know Your Customer (KYC), Anti-Money Laundering (AML), fraud prevention, security, and regulatory compliance purposes.

This may include your date of birth, nationality, government identification documents, PAN or tax identification details, proof of address, photographs, selfie or video verification, source of funds, source of wealth, beneficial ownership information, politically exposed person status, sanctions-screening results, risk profile, and other compliance-related information.

1.3 Transaction, Wallet and Digital Asset Information

We may collect wallet addresses, public blockchain activity, deposits, withdrawals, purchases, token allocations, rewards, loyalty points, trading activity, order history, payment references, on-ramp/off-ramp information, device-linked risk signals, and transaction-monitoring records.

1.4 Payment and Financial Information

We may collect bank account details, card or payment method information, invoices, billing data, tax-related information, and payment processor confirmations.

We do not store full card details unless legally permitted and operationally required.

1.5 Technical, Device and Usage Information

We may collect IP address, browser type, device identifiers, operating system, language, location signals, log data, pages visited, session activity, cookies, analytics data, crash reports, fraud-risk signals, and security logs.

1.6 Communications and Support Information

We may collect information from emails, messages, call notes, support tickets, feedback, survey responses, social or community messages, event registrations, and any information you voluntarily provide to us.

1.7 Information From Third Parties

We may receive information from KYC vendors, AML and sanctions-screening providers, blockchain analytics providers, payment partners, banks, custodians, marketing platforms, analytics providers, public databases, law enforcement, regulators, affiliates, business partners, and public blockchain networks.

02

How We Use Your Information

We use personal data to:

  1. Create, verify, secure, and manage your account.
  2. Provide access to our website, dashboard, Springboard, token, reward, loyalty, exchange, wallet, and related services.
  3. Conduct KYC, AML, sanctions screening, fraud prevention, wallet-risk assessment, transaction monitoring, and regulatory checks.
  4. Process deposits, withdrawals, token purchases, allocations, refunds, rewards, referrals, and related transactions.
  5. Communicate with you about your account, service updates, legal notices, security alerts, campaigns, events, and support requests.
  6. Improve our products, website, user experience, security systems, compliance systems, and customer service.
  7. Prevent fraud, market abuse, unauthorized access, money laundering, terrorist financing, misuse of our platform, and other illegal activity.
  8. Comply with applicable laws, regulations, court orders, regulator requests, tax obligations, law-enforcement requests, and reporting obligations.
  9. Conduct audits, internal reporting, business planning, investor reporting, risk management, and corporate transactions.
  10. Send marketing or promotional communications where permitted by law or with your consent, where required.
04

Cookies and Tracking Technologies

We use cookies, pixels, SDKs, tags, and similar technologies to operate our website, remember preferences, analyze traffic, improve performance, prevent fraud, secure accounts, and support marketing.

You may control cookies through your browser settings or any cookie preference tool provided on our website.

Some cookies are necessary for security and platform functionality and cannot be disabled without affecting the services.

05

How We Share Information

We may share personal data with:

  1. DigiMaaya group companies, affiliates, employees, contractors, and authorized team members.
  2. KYC, AML, sanctions-screening, fraud prevention, cybersecurity, blockchain analytics, hosting, cloud, analytics, CRM, email, support, payment, banking, custody, legal, accounting, audit, and compliance service providers.
  3. Exchanges, liquidity providers, custodians, market makers, launch platforms, payment partners, financial institutions, or settlement partners where required to deliver services.
  4. Regulators, tax authorities, law enforcement, courts, government agencies, dispute-resolution bodies, or other authorities where legally required or reasonably necessary.
  5. Professional advisors, auditors, insurers, consultants, legal counsel, and investors under confidentiality obligations.
  6. Business successors, buyers, or partners in connection with a merger, acquisition, restructuring, financing, sale of assets, or similar corporate transaction.
  7. Third parties where you instruct us, consent to the sharing, or connect your account to a third-party service.

We do not sell your personal data in the ordinary course of business.

06

Blockchain and Public Data

Blockchain transactions may be public, permanent, and independently accessible.

Information recorded on public blockchains may not be controlled by DigiMaaya and may not be capable of being deleted, changed, or hidden by us.

You should not submit personal information directly into public blockchain transaction fields unless you understand the consequences.

07

International Data Transfers

DigiMaaya may operate globally and may store or process your personal data in countries other than your country of residence.

Where required, we use appropriate safeguards for international transfers, including contractual protections, access controls, encryption, and other lawful transfer mechanisms.

08

Data Retention

We keep personal data only for as long as needed for the purposes described in this Privacy Policy, including account operation, legal compliance, dispute resolution, fraud prevention, security, audits, and regulatory reporting.

KYC, AML, transaction, and compliance records may be retained for at least five years after the business relationship ends or the account is closed, or for a longer period where required by law, regulator request, investigation, tax requirement, dispute, or legal proceeding.

When data is no longer required, we delete, anonymize, aggregate, or securely archive it.

09

Security

We use administrative, technical, and organizational safeguards designed to protect personal data from unauthorized access, misuse, alteration, loss, disclosure, or destruction.

These safeguards may include encryption, access controls, monitoring, logging, secure infrastructure, vendor checks, internal policies, and incident response procedures.

No system is completely secure. You are responsible for keeping your login credentials, devices, wallets, private keys, seed phrases, and authentication methods secure.

10

Your Privacy Rights

Depending on your location and applicable law, you may have the right to:

  1. Access the personal data we hold about you.
  2. Correct inaccurate or incomplete data.
  3. Request deletion of your data.
  4. Withdraw consent.
  5. Object to or restrict certain processing.
  6. Request data portability.
  7. Opt out of marketing communications.
  8. File a complaint with us or with a data protection authority.
  9. Nominate another person to exercise your rights where applicable law allows.

To exercise your rights, contact us at: info@digimaaya.com

We may need to verify your identity before processing a request. Some requests may be limited where we must retain data for legal, AML, tax, security, fraud prevention, regulatory, or dispute-resolution reasons.

11

Marketing Communications

You may unsubscribe from marketing emails by using the unsubscribe link or contacting us.

Even if you opt out of marketing, we may still send you service, security, legal, compliance, and account-related communications.

12

Children

Our services are not intended for persons under 18 years of age.

We do not knowingly collect personal data from children. If we learn that a person under 18 has provided personal data, we may delete the information and close or restrict the account.

14

Changes to This Policy

We may update this Privacy Policy from time to time.

The updated version will be posted on our website with a revised "Last Updated" date. Where required by law, we may notify you of material changes.

15

Contact Us

For privacy questions, data requests, complaints, or concerns, contact:

Organisation
DigiMaaya
Registered Address
Euro House, Richmond Hill Road, Kingstown, St. Vincent and the Grenadines.