1. Data Controller
The data controller is Hord Nest Ltd. Our Data Protection Officer can be reached at contact@hordnest.com. We process data under UK GDPR and the Data Protection Act 2018.
2. Data We Collect
- Identity: Full name, date of birth, nationality, government-issued ID documents.
- Contact: Email address, phone number, residential address.
- Financial: Transaction history, wallet addresses, deposit/withdrawal records, tax residency.
- Technical: IP address, browser fingerprint, device type, session tokens.
- Behavioural: Pages visited, features used, click patterns, session duration.
- Communications: Support tickets, email correspondence, chat logs.
3. How We Use Your Data
- Account Management: To create, maintain, and secure your account.
- KYC/AML Compliance: To verify your identity and meet legal obligations.
- Service Delivery: To process deposits, withdrawals, investments, and ROI distributions.
- Security: To detect and prevent fraud, hacking, and abuse.
- Customer Support: To respond to your queries and complaints.
- Legal Compliance: To comply with applicable laws, regulations, and court orders.
- Analytics: To improve our services and user experience.
- Marketing: With your explicit consent, to send updates about new features and promotions.
4. Data Sharing
We do not sell your personal data. We may share it with:
- KYC Providers: Regulated identity verification services to fulfil our legal obligations.
- Cloud Infrastructure: Hosting providers (AWS, Cloudflare) under strict data processing agreements.
- Regulators and Law Enforcement: HMRC, the FCA, and law enforcement where required by law.
- Professional Advisors: Legal, accounting, and audit firms under confidentiality obligations.
5. Data Retention
- Account & KYC data: 5 years after account closure (AML legal requirement).
- Transaction records: 7 years (UK tax law).
- Support correspondence: 3 years after resolution.
- Technical/server logs: 90 days.
6. Your Rights (UK GDPR)
You have the right to: access your data, rectify inaccuracies, erase data where lawful, restrict processing, data portability, object to processing, and not be subject to automated decision-making.
To exercise any right, email contact@hordnest.com. We respond within 30 days. You may also complain to the ICO at ico.org.uk.
7. Security
We protect your data with AES-256 encryption at rest, TLS 1.3 in transit, multi-factor authentication, regular third-party penetration testing, and 24/7 anomaly detection.
8. Cookies
See our Cookie Policy for full details on cookies and tracking technologies we use.