Table of Contents
Introduction
Trade on tv is committed to protecting your personal data and complying with the General Data Protection Regulation (GDPR). This policy explains how we collect, process, and protect your data in accordance with GDPR requirements.
As a company processing the personal data of individuals in the European Union, we take our data protection responsibilities seriously and have implemented comprehensive measures to ensure compliance.
Your Rights Under GDPR
Under the General Data Protection Regulation (GDPR), you have several important rights regarding your personal data. We are committed to respecting these rights and making it easy for you to exercise them:
Right of Access
You have the right to request copies of your personal data that we hold. We will provide this information in a structured, commonly used, and machine-readable format.
Right to Rectification
You have the right to request that we correct any inaccurate or incomplete personal information we hold about you.
Right to Erasure
Also known as the 'right to be forgotten', you can request the deletion of your personal data when there is no compelling reason for its continued processing.
Right to Restrict Processing
You have the right to request that we limit the way we use your personal data in certain circumstances.
Right to Data Portability
You have the right to receive your personal data to use for your own purposes across different services.
Right to Object
You have the right to object to the processing of your personal data in certain circumstances, including for direct marketing purposes.
To exercise any of these rights, please contact our Data Protection Officer using the contact information provided at the end of this policy. We will respond to your request within one month.
Data We Collect
To provide our services and ensure the best possible user experience, we collect and process the following categories of personal data:
Account Information
- •Name and contact information
- •Email address
- •Username and password
- •Account preferences
Usage Data
- •Viewed market data
- •Watchlists and portfolios
- •Feature usage patterns
- •User preferences and settings
Technical Data
- •IP address
- •Device information
- •Browser type and version
- •Operating system
- •Time zone and location
Communication Data
- •Customer support queries
- •Feedback and survey responses
- •Communication preferences
How We Collect This Data
Direct Interactions
Information you provide when creating an account, using our services, or contacting us
Cookies and Tracking
Information collected automatically through cookies and similar technologies
Third Parties
Information received from third-party service providers and partners
Legal Basis for Processing
Under GDPR, we must have a valid legal basis to process your personal data. Depending on the specific context and purpose of data processing, we rely on one or more of the following legal bases:
Contract
Processing is necessary for the performance of a contract to which you are a party or in order to take steps at your request prior to entering into a contract.
Examples:
- • Processing your account info to provide our services
- • Processing payment details to complete transactions
Consent
You have given clear consent for us to process your personal data for a specific purpose.
Examples:
- • Sending marketing communications
- • Use of cookies for analytics and personalization
Legal Obligation
Processing is necessary for compliance with a legal obligation to which we are subject.
Examples:
- • Record keeping for tax purposes
- • Complying with financial regulations
Legitimate Interests
Processing is necessary for our legitimate interests or the legitimate interests of a third party, unless there is a good reason to protect your personal data which overrides those legitimate interests.
Examples:
- • Improving and developing our services
- • Ensuring network and information security
- • Fraud prevention and detection
We will always be transparent about the legal basis we rely on for each processing activity. If you have questions about the legal basis we use for specific types of data processing, please contact our Data Protection Officer.
Data Security
We have implemented appropriate technical and organizational measures to ensure a level of security appropriate to the risk of processing your personal data. These measures include:
Encryption
We use industry-standard encryption technologies to protect your data both in transit and at rest. This includes TLS/SSL for data transmission and strong encryption algorithms for stored data.
Access Controls
We implement strict access controls and authentication mechanisms to ensure only authorized personnel can access personal data. Access rights are regularly reviewed and updated.
Security Assessments
We conduct regular security assessments, vulnerability scans, and penetration testing to identify and address potential security weaknesses in our systems.
Data Backup
We maintain regular backups of our systems and data to ensure we can recover from data loss incidents, while protecting the integrity and confidentiality of your information.
Staff Training
Our employees receive regular training on data protection and security best practices to ensure they understand their responsibilities when handling personal data.
Incident Response
We have established procedures to detect, report, and investigate personal data breaches, allowing us to respond timely and effectively to security incidents.
Our Commitment to Data Security
We are committed to maintaining the security of your personal data and continuously improving our security measures to address emerging threats and vulnerabilities. In the event of a data breach affecting your personal information, we will notify you and the relevant supervisory authority in accordance with GDPR requirements.
International Transfers
As a global service, we may transfer your personal data to countries outside the European Economic Area (EEA). When we do so, we ensure appropriate safeguards are in place to protect your information and comply with GDPR requirements.
Standard Contractual Clauses (SCCs)
We primarily rely on the European Commission's Standard Contractual Clauses, which provide appropriate safeguards for international data transfers. These contractual obligations ensure your personal data receives an adequate level of protection.
Adequacy Decisions
When applicable, we transfer data to countries recognized by the European Commission as providing adequate protection for personal data, such as Canada, Switzerland, and Japan.
Binding Corporate Rules
For transfers within our corporate group, we may use Binding Corporate Rules approved by EU data protection authorities, establishing consistent data protection standards across our global operations.
Transfer Impact Assessments
Before transferring your data outside the EEA, we conduct transfer impact assessments to evaluate the level of protection in the destination country and implement supplementary measures when necessary to ensure your data remains protected.
If you would like more information about the specific mechanisms we use when transferring your personal data outside the EEA, please contact our Data Protection Officer.
Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including meeting any legal, accounting, or reporting requirements.
Retention Periods
Different types of personal data are subject to different retention periods based on the processing purpose and legal requirements. We regularly review our retention periods.
Data Deletion
Prior to data deletion, when personal data is no longer necessary, we securely delete or anonymize it. Our deletion processes ensure data cannot be recovered after the retention period expires.
Legal Basis for Retention
We retain data based on legitimate business needs, contractual obligations, and legal requirements. For example, financial transaction data may be kept longer to comply with tax and accounting regulations.
Common Retention Periods
| Data Category | Retention Period | Reason |
|---|---|---|
| Account Information | Duration of your account plus 2 years | Providing service and account recovery support |
| Transaction Data | 7 years | Tax and financial regulations |
| Communication Records | 3 years after last contact | Customer support and dispute resolution |
| Usage Data | 2 years | Service improvement and analytics |
| Marketing Preferences | Until opt-out or consent withdrawn | To respect your communication preferences |
Contact Information
If you have any questions about this GDPR policy, wish to exercise your rights, or have concerns about how we process your personal data, please contact our Data Protection Officer:
Postal Address
Data Protection Officer
Trade on tv
KHALID SHABAN
Office No. 305-427
Meydan Road, Nad Al Sheba
Dubai, United Arab Emirates
Phone
+971 554 308 640
Response Time
We will respond to all legitimate requests within one month. If your request is particularly complex or you have made several requests, it may occasionally take longer. In this case, we will notify you and keep you updated on progress.
Supervisory Authority
You have the right to make a complaint at any time to the supervisory authority for data protection issues in your country. In the UK, this is the Information Commissioner's Office (ICO): https://ico.org.uk. However, we would appreciate the chance to deal with your concerns before you approach the supervisory authority, so please contact us in the first instance.
Need Help With Your Data Privacy Rights?
Our dedicated Data Protection team is here to assist with any GDPR-related inquiries or requests.