Gold BTLogo

Privacy Policy

Last updated: 10 July 2026

This Privacy Policy explains how [Gold.bt legal entity name] ("Gold.bt", "we", "us") collects, uses, stores, and shares information when you use the Gold.bt website, dashboard, and related services (the "Service").

1. Information We Collect

We collect the following categories of information:

  • Account information — name, email address, phone number, password (stored hashed, never in plain text).
  • Identity verification (KYC) information — citizenship/passport document type and number, date of birth, nationality, gender, and the document image you submit for review.
  • Transaction information — purchase, redemption, and claim history, wallet addresses used to pay or receive funds, and cumulative purchase totals.
  • Session & device information — login timestamps, IP address, device/browser identifiers, and session tokens, used to secure your account.
  • Support communications — anything you send us when contacting support.

2. How We Use Information

  • To verify your identity and meet Know-Your-Customer (KYC) and Anti-Money-Laundering (AML) obligations, including verification against government identity records where available.
  • To process your orders, redemptions, and claims, and to maintain accurate records of your holdings.
  • To detect, investigate, and prevent fraud, abuse, and unauthorized account access.
  • To operate account security features, including session management and the ability to block a compromised or fraudulent account.
  • To communicate with you about your account, transactions, and material changes to the Service or these policies.
  • To comply with legal and regulatory obligations, including responding to lawful requests from authorities.

We do not use your KYC documents or transaction history for advertising, and we do not sell your personal information to third parties.

3. Identity Verification & Government Records

Where available, we verify identity documents (such as citizenship IDs) against relevant government verification services to confirm document authenticity before approving Tier 1 access. Where automated verification is unavailable, submissions are reviewed manually by an authorized administrator. Document images are retained only for as long as needed for verification, audit, and regulatory record-keeping purposes described in Section 6.

4. Storage & Security

Identity documents and other sensitive data are stored in encrypted, access-controlled object storage, separate from your everyday account data. Access is restricted to authorized personnel who need it to perform verification, support, or compliance duties, and administrative actions (such as approving or rejecting a verification) are logged for audit purposes. Passwords are hashed and never stored or transmitted in plain text.

No system is perfectly secure. If we become aware of a breach affecting your personal information, we will notify you and the relevant authorities as required by applicable law.

5. Sharing of Information

We share information only with:

  • Regulators and law enforcement, where required by law or a valid legal process.
  • Service providers who process data on our behalf under contract (e.g. cloud storage, government identity-verification services), bound to use it only for the purpose we specify.
  • Fulfilment and custody partners, limited to what is necessary to process a specific redemption (e.g. confirming your claim at the point of physical pickup).
  • A successor entity in the event of a merger, acquisition, or sale of assets, subject to the same protections described here.

We do not sell your personal information.

6. Data Retention

We retain KYC and transaction records for as long as your account is active, and for the additional period required by applicable financial-services record-keeping and AML regulations after account closure. Session and device logs are retained for a shorter period for security purposes. When retention is no longer required, data is deleted or irreversibly anonymized.

7. Your Rights

Subject to our legal retention obligations, you may:

  • Request a copy of the personal information we hold about you.
  • Request correction of inaccurate information.
  • Request deletion of information we are not legally required to retain.
  • Withdraw consent for non-essential communications at any time.

To exercise any of these rights, contact us at [privacy contact email].

8. Cookies & Similar Technologies

We use essential cookies to keep you signed in and to remember preferences such as theme and sidebar state. We do not use third-party advertising or tracking cookies.

9. International Transfers

Where information is processed or stored outside your home jurisdiction (for example, by a cloud infrastructure provider), we require safeguards consistent with applicable data-protection law.

10. Children's Privacy

The Service is not directed to individuals under 18, and we do not knowingly collect personal information from minors.

11. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be notified through the Service before they take effect.

12. Contact

Questions about this Privacy Policy can be sent to [privacy contact email].