Privacy Policy

We use your information only with your consent or as permitted by law. We obtain your consent to collect, use, disclose, and store personal information when you or your authorized representatives:

• Create an Account on behalf of a business entity.
• Use our Services.
• Submit information for identity verification and know-your-business procedures.
• Communicate or interact with us.

By using our Services, you give your affirmative consent to the practices outlined in this Privacy Policy. This includes complying with all related terms and conditions as well as applicable laws and regulations. Your consent remains valid throughout your relationship with BlackGallo. If you disagree with any part of the Privacy Policy, we advise you not to use our Services. Some processing is required by law or necessary to provide the Services and cannot be withdrawn while your Account remains active.

We collect, use, disclose, and retain personal information with your knowledge and consent, except where permitted or required by law.

We process personal information as necessary to: (a) provide and secure the Services; (b) verify identity and conduct know-your-business (KYB), know-your-customer (KYC), and beneficial ownership verification, and prevent fraud; (c) comply with legal and regulatory obligations, including anti-money laundering and counter-terrorist financing requirements and reporting to FINTRAC; and (d) enforce our Terms and protect the integrity of our Platform.

Data Protection: We are committed to keeping your information safe. We employ technological and administrative safeguards, including encryption of data in transit and at rest, secure infrastructure, and strict access controls. However, no service can be completely secure. If you have concerns about a data breach, please contact us immediately.

Data Retention: We retain personal information as necessary, subject to applicable laws and regulations. In accordance with our record-keeping obligations under FINTRAC regulations, we will retain Accounts and Personal Information for at least a period of five (5) years after the last transaction or account closure. We may retain certain information for longer periods where required to comply with legal or regulatory obligations, respond to lawful requests, resolve disputes, enforce our agreements, or prevent fraud.

Post-Retention Data Management: Data is securely deleted or de-identified after the retention period. Deletion permanently erases data, while de-identification prevents identifying individuals.

International Data Transfers: Personal information may be processed or stored outside of Canada by our service providers (for example, cloud hosting, identity verification, analytics, or security providers). When information is located outside Canada, it may be subject to the laws of the jurisdiction where it is stored and may be accessible to courts, law enforcement, or regulatory authorities in that jurisdiction. We do not represent that the Services comply with the data protection laws of jurisdictions outside Canada.

Children's Privacy: Our services are not intended for individuals under 18. We do not knowingly collect data from minors. If a minor provides data without consent, we will remove it and terminate the associated Account.

Under PIPEDA, you have the following rights regarding your personal information:

• Accessing and Correcting Your Data: You have the right to access your personal information and obtain a copy. If information is inaccurate, you can request changes. Requests must provide enough detail for us to identify the information.
• Withdrawing Consent: You may withdraw consent for our data processing under certain conditions. Withdrawing consent may impact our ability to provide the Services and may result in suspension or termination of your Account where processing is required by law or necessary to comply with regulatory obligations.
• Unsubscribing from Promotional Emails: You can unsubscribe from promotional emails by clicking the "Unsubscribe" link in the email or contacting us.

How to Exercise Your Rights: To exercise your rights, contact us by email at support@blackgallo.net. BlackGallo will action your request only where this is not inconsistent with its Terms and Conditions, legal, and regulatory obligations. In certain circumstances, applicable anti-money laundering laws may restrict what we can disclose to you, including situations where disclosure could interfere with regulatory reporting or investigations.

We use cookies and similar tracking technologies to enhance your experience on our Platform. Cookies are small data files stored on your device.

Types of Cookies We Use:

• Essential Cookies: Necessary for the operation of our website.
• Performance Cookies: Collect information about how you use our website to help us improve it.
• Functional Cookies: Remember your preferences and personalise your experience.

Managing Cookies: You can manage your cookie preferences through your browser settings. Disabling cookies may affect the functionality of our Services.

We may use third-party service providers to assist us in understanding the use of our Platform. Our service providers may place cookies on the hard drive of your computer and receive information that helps us understand how visitors navigate our site. Our service providers are contractually restricted from using information they receive from our Platform other than to assist us.

By continuing to use our Platform, you consent to our use of cookies as described above. For more information, please see our Cookie Policy.

We use your Personal Information for the purposes indicated at the time you provide us with such information, and/or otherwise for the purposes set out in this Privacy Policy and/or as otherwise permitted by law.

You acknowledge that by using our Services and your acceptance of the BlackGallo Terms and Conditions, you will be providing us with Personal Information. You consent to us disclosing that information where we are required by law, to third parties for electronic identification purposes as outlined above, to integrated third-party digital asset service providers where you have elected to use such services, and to FINTRAC or other regulatory authorities as required. In certain circumstances, we may be legally prohibited from notifying you that such a disclosure has occurred or from providing further details.

Non-personally identifiable visitor information may be provided to other parties for analytics purposes. We do not sell your personal information to third parties.

Any third party that receives or has access to Personal Information shall be required by us to protect such Personal Information and to use it only to carry out the services they are performing for you or for BlackGallo, unless otherwise required or permitted by law. We will ensure that any such third party is aware of our obligations under this Privacy Policy and we will enter into contracts with such third parties by which they are bound by terms no less protective than the obligations we undertake to you under this Privacy Policy.

We have implemented security measures to ensure the confidentiality of your Personal Information and to protect it from loss, misuse, alteration, or destruction. These security measures include: password-protected directories and databases to safeguard your information, SSL/TLS technology to ensure that your information is fully encrypted and sent across the Internet securely, and other measures to protect our systems from vulnerabilities.

Only authorised personnel of BlackGallo have access to your Personal Information, and these personnel are required to treat the information as confidential. The security measures in place will, from time to time, be reviewed in line with legal and technical developments.

If you have any questions about this Privacy Policy, please contact us at: