Privacy Policy

1. Introduction

Autentic Global Ltd. (“Autentic”, “we”, “our” or “us”) operates a digital platform that enables fractional investment in real‑world assets (“RWA Platform”). This Privacy Policy explains how we collect, use, disclose and safeguard personal data of platform users (“Users”).

2. Data We Collect

  1. Identification Data – full name, nationality, date of birth, residential address, government‑issued ID numbers and photographs.
  2. Contact Data – e‑mail address, telephone number and preferred language.
  3. Financial & Transaction Data – wallet addresses, transaction hashes, investment amounts, fiat on‑ramp details and dividend distributions.
  4. Technical Data – IP address, device identifiers, browser type, operating system, log files, cookies and similar technologies.
  5. Compliance Data – information generated through KYC/KYB, sanctions screening and ongoing monitoring.

3. Legal Bases for Processing (GDPR)

  • Performance of a contract with the User;
  • Compliance with a legal obligation (e.g., AML/CFT rules);
  • Legitimate interests (platform security, fraud prevention, service optimisation);
  • User consent, where expressly required.

4. Purposes of Processing

  • Onboarding and identity verification;
  • Execution of investment transactions and distribution of proceeds;
  • Provision of customer support and service communications;
  • Fulfilment of statutory obligations;
  • Security monitoring, analytics and product enhancement.

5. Data Sharing

We share personal data only where necessary and lawful, including with:

  • Service Providers – identity‑verification, payment processing, cloud hosting, analytics;
  • Asset Special‑Purpose Vehicles – legal entities issuing RWA fractional ownership units;
  • Competent Authorities – when legally compelled or to protect vital interests.

6. International Transfers

Personal data may be processed outside the European Economic Area. We rely on adequacy decisions, Standard Contractual Clauses or other recognised safeguards.

7. Retention

Personal data are retained for at least five (5) years after the end of the business relationship, or longer where required by applicable law.

8. Your Rights

Access · Rectification · Erasure · Restriction · Portability · Objection · Complaint to a supervisory authority.

9. Security Measures

Encryption in transit and at rest; role‑based access control; continuous penetration testing; incident‑response plan.

10. Contact

[email protected]