Data Privacy Policy
This Data Privacy Policy ("Policy") explains how Zynk Ltd (“Zynk”,"we," "us," or "our"), an exempted company incorporated in the Cayman Islands, collects, processes, uses, discloses, stores or otherwise protects personal data of our clients and end users (“you” or “your”) as well as the rights available to you This policy applies to all clients, and end users, interacting with or otherwise using our services (“Services”).
We are committed to protecting your privacy and ensuring the secure handling of your personal information, particularly in the context of service provided by us.
We may share your personal data with our partners and/or affiliates (“Partners” ) as well as trusted third parties and service providers (“Third Parties”) in order to offer our Services and comply with our legal requirements. Accordingly, personal data that we process and collect may be transferred between companies, services and employees affiliated with us as a normal part of conducting business and offering our Services to you.
Your access to, use of, and/or interaction with, the Services is subject to this Policy. Please read this Policy carefully to ensure you understand the terms herein.
By using, accessing or otherwise interacting with our Services, you agree to the terms outlined in this Policy. If you do not agree, you must refrain from using the Services. If you have any questions or suggestions about our Policy, please do not hesitate to contact us at compliance@zynk.money.
We may update this Policy from time to time. If we make any changes, we will change the Last Updated date above. We encourage you to periodically review the Policy for the latest information on our privacy practices. Any modifications to this Policy will be effective upon our posting of the updated Policy. In all cases, your continued use, access to and/or interaction with the Services following the posting of any updated Policy indicates your acceptance of the updated Policy.
This Policy does not apply to any products, services, websites, or content offered or provided by third parties, and Zynk is not responsible in any way for those third-party offerings. Please review any separate privacy policies which may be made available by those third parties.
This Data Privacy Policy ("Policy") explains how Zynk Ltd (“Zynk”,"we," "us," or "our"), an exempted company incorporated in the Cayman Islands, collects, processes, uses, discloses, stores or otherwise protects personal data of our clients and end users (“you” or “your”) as well as the rights available to you This policy applies to all clients, and end users, interacting with or otherwise using our services (“Services”).
We are committed to protecting your privacy and ensuring the secure handling of your personal information, particularly in the context of service provided by us.
We may share your personal data with our partners and/or affiliates (“Partners” ) as well as trusted third parties and service providers (“Third Parties”) in order to offer our Services and comply with our legal requirements. Accordingly, personal data that we process and collect may be transferred between companies, services and employees affiliated with us as a normal part of conducting business and offering our Services to you.
Your access to, use of, and/or interaction with, the Services is subject to this Policy. Please read this Policy carefully to ensure you understand the terms herein.
By using, accessing or otherwise interacting with our Services, you agree to the terms outlined in this Policy. If you do not agree, you must refrain from using the Services. If you have any questions or suggestions about our Policy, please do not hesitate to contact us at compliance@zynk.money.
We may update this Policy from time to time. If we make any changes, we will change the Last Updated date above. We encourage you to periodically review the Policy for the latest information on our privacy practices. Any modifications to this Policy will be effective upon our posting of the updated Policy. In all cases, your continued use, access to and/or interaction with the Services following the posting of any updated Policy indicates your acceptance of the updated Policy.
This Policy does not apply to any products, services, websites, or content offered or provided by third parties, and Zynk is not responsible in any way for those third-party offerings. Please review any separate privacy policies which may be made available by those third parties.
Data Collection
We collect the following types of personal and sensitive data from our Partner and their end users:
We collect the following types of personal and sensitive data from our Partner and their end users:
Name, phone number, email address, residential address, date of birth (DOB), bank account details, wallets.
Name, phone number, email address, residential address, date of birth (DOB), bank account details, wallets.
Data collected as part of the Know Your Business (KYB)/Know your Customer (KYC) process, which may include company documents, identification documents, financial statements, and other information according to our Internal AML Policy.
Data collected as part of the Know Your Business (KYB)/Know your Customer (KYC) process, which may include company documents, identification documents, financial statements, and other information according to our Internal AML Policy.
Storage Locations: User data is stored in our authorized Google database, with additional documentation on Google Drive under strict organizational controls.
Storage Locations: User data is stored in our authorized Google database, with additional documentation on Google Drive under strict organizational controls.
Purpose of Data Collection
We collect, process, and retain data attributes as necessary to provide our services, enabling you to make cross-border and domestic payments in real time. Additionally, we process personal data to comply with all applicable laws and regulatory requirements.
We collect, process, and retain data attributes as necessary to provide our services, enabling you to make cross-border and domestic payments in real time. Additionally, we process personal data to comply with all applicable laws and regulatory requirements.
Consent for Data Processing
Please note, we do not engage directly with end users. When our client chooses to avail our services, they provide consent for us to process personal information that they have collected from end users, solely for the purpose of delivering our services. All processing activities are conducted in accordance with applicable data protection regulations and the terms agreed between us and our clients.
Moreover, you understand and hereby consent that this Information may be transferred to any third party for the purpose of providing Services through the Platform or to any third-party providers for rendering Services, any jointly developed or marketed services, payment processing, order fulfilment, customer services, data analysis, information technology services and such other services which enable us to provide Services through the Platform.
Please note, we do not engage directly with end users. When our client chooses to avail our services, they provide consent for us to process personal information that they have collected from end users, solely for the purpose of delivering our services. All processing activities are conducted in accordance with applicable data protection regulations and the terms agreed between us and our clients.
Moreover, you understand and hereby consent that this Information may be transferred to any third party for the purpose of providing Services through the Platform or to any third-party providers for rendering Services, any jointly developed or marketed services, payment processing, order fulfilment, customer services, data analysis, information technology services and such other services which enable us to provide Services through the Platform.
Security and Data Protection Measures
We store and process your personal information using third party servers located in data centers in the United States. This information is protected by physical, electronic and procedural safeguards in compliance with applicable US federal and state laws and regulations. We also use computer safeguards such as firewalls and data encryption and we authorize access to personal information only for those employees who require it to fulfill their job responsibilities.
We strive to ensure security on our systems. Despite our efforts, we cannot guarantee that personal information may not be accessed, disclosed, altered or destroyed by breach of our administrative, managerial and technical safeguards. If we learn of a systems security breach, we may attempt to notify you electronically so that you can take appropriate protective steps. By using the Services, you agree that Zynk Ltd may communicate with you electronically. Zynk Ltd may post a notice on the website or mobile application if a security breach occurs.
We store and process your personal information using third party servers located in data centers in the United States. This information is protected by physical, electronic and procedural safeguards in compliance with applicable US federal and state laws and regulations. We also use computer safeguards such as firewalls and data encryption and we authorize access to personal information only for those employees who require it to fulfill their job responsibilities.
We strive to ensure security on our systems. Despite our efforts, we cannot guarantee that personal information may not be accessed, disclosed, altered or destroyed by breach of our administrative, managerial and technical safeguards. If we learn of a systems security breach, we may attempt to notify you electronically so that you can take appropriate protective steps. By using the Services, you agree that Zynk Ltd may communicate with you electronically. Zynk Ltd may post a notice on the website or mobile application if a security breach occurs.
WE SHALL NOT BE LIABLE FOR ANY LOSS OR DAMAGE SUSTAINED BY REASON OF ANY DISCLOSURE (INADVERTENT OR OTHERWISE) OF ANY DATA, IF THE SAME IS EITHER (A) REQUIRED FOR SHARING YOUR INFORMATION FOR LEGITIMATE PURPOSES; OR (B) WAS EFFECTED THROUGH NO FAULT, ACT, OR OMISSION OF THE COMPANY. B. BY USING ZYNK’s PLATFORM OR SERVICES, YOU EXPLICITLY ACCEPT, WITHOUT LIMITATION OR QUALIFICATION, THE COLLECTION, USE AND TRANSFER OF THE INFORMATION IN THE MANNER DESCRIBED HEREIN. C. PLEASE READ THIS PRIVACY POLICY CAREFULLY AS IT AFFECTS YOUR RIGHTS AND LIABILITIES UNDER LAW.
Data Sharing and Legal Basis
We may share your information with our trusted partners, affiliates or third parties that assist in providing our services to you. We may also share aggregated, non-personally identifiable information publicly and with our partners.
We may share your information with our trusted partners, affiliates or third parties that assist in providing our services to you. We may also share aggregated, non-personally identifiable information publicly and with our partners.
We may also disclose your personal information in any of the following cases, which includes and not limited to:
We may also disclose your personal information in any of the following cases, which includes and not limited to:
As required by applicable law to comply with a judicial order, executive order, requirements by a law enforcement authority;
As required by applicable law to comply with a judicial order, executive order, requirements by a law enforcement authority;
If We believe in good faith that disclosures are necessary to comply with legal requirements, safety of others or investigate fraud or crime,
If We believe in good faith that disclosures are necessary to comply with legal requirements, safety of others or investigate fraud or crime,
If We (or our affiliates, partners) are involved in a merger, acquisition or sale of substantially all of its assets or equity. Such information shall be disaggregated to the extent possible and shall be subject to execution of appropriate non-disclosure agreements and binding privacy undertakings.
If We (or our affiliates, partners) are involved in a merger, acquisition or sale of substantially all of its assets or equity. Such information shall be disaggregated to the extent possible and shall be subject to execution of appropriate non-disclosure agreements and binding privacy undertakings.
Cross-Border Data Transfers
Your information may be transferred to and stored in locations outside the jurisdiction where the Company is registered. Such transfers will only occur when the destination jurisdiction provides an adequate and appropriate level of data protection, the transfer is lawful, and it is necessary for us to fulfill our contractual and legal obligations.
When we transfer your personal data from your Home Country (the country, state, or city where you are located) to an Alternate Country (a different country, state, or city),
we will comply with all relevant legal and regulatory requirements. This includes ensuring a lawful basis for the transfer and implementing appropriate safeguards to guarantee that your personal data receives an adequate level of protection. We will ensure that any recipient in the Alternate Country is legally obligated to protect your personal data to a standard comparable to that provided under applicable data protection laws. Our lawful basis for such transfers will be based on contractual terms or other safeguards permitted by applicable laws.
Your information may be transferred to and stored in locations outside the jurisdiction where the Company is registered. Such transfers will only occur when the destination jurisdiction provides an adequate and appropriate level of data protection, the transfer is lawful, and it is necessary for us to fulfill our contractual and legal obligations.
When we transfer your personal data from your Home Country (the country, state, or city where you are located) to an Alternate Country (a different country, state, or city),
we will comply with all relevant legal and regulatory requirements. This includes ensuring a lawful basis for the transfer and implementing appropriate safeguards to guarantee that your personal data receives an adequate level of protection. We will ensure that any recipient in the Alternate Country is legally obligated to protect your personal data to a standard comparable to that provided under applicable data protection laws. Our lawful basis for such transfers will be based on contractual terms or other safeguards permitted by applicable laws.
Travel Rule Compliance
While our organization itself is not a Financial Institution or a Virtual Asset Service Provider (VASP), some of our partners may qualify under these definitions and be subject to the Travel Rule mandated by the Financial Action Task Force (FATF) Recommendation 16. The Travel Rule requires these entities to collect, retain, and transmit specific identifying information about the originators and beneficiaries of fund transfers to ensure transparency and traceability throughout the transaction chain.
To support our partners' compliance with the Travel Rule, we will transmit all required originator and beneficiary information along with the funds flow through our API services. This ensures that necessary data "travels" securely and seamlessly with the payment across the entire transaction process, aiding regulatory adherence without compromising security and privacy principles.
While our organization itself is not a Financial Institution or a Virtual Asset Service Provider (VASP), some of our partners may qualify under these definitions and be subject to the Travel Rule mandated by the Financial Action Task Force (FATF) Recommendation 16. The Travel Rule requires these entities to collect, retain, and transmit specific identifying information about the originators and beneficiaries of fund transfers to ensure transparency and traceability throughout the transaction chain.
To support our partners' compliance with the Travel Rule, we will transmit all required originator and beneficiary information along with the funds flow through our API services. This ensures that necessary data "travels" securely and seamlessly with the payment across the entire transaction process, aiding regulatory adherence without compromising security and privacy principles.
Data Retention and Deletion
Data Retention:
Data Retention:
We retain personal data only for as long as is necessary to fulfill the purposes for which it was collected, or as required or permitted by law. The period of retention may vary depending on the nature of the data, the purpose of processing, any legal or regulatory obligations, and the need to establish, exercise, or defend legal claims. We regularly review the personal data we hold and securely delete or anonymize any information no longer needed.
We retain personal data only for as long as is necessary to fulfill the purposes for which it was collected, or as required or permitted by law. The period of retention may vary depending on the nature of the data, the purpose of processing, any legal or regulatory obligations, and the need to establish, exercise, or defend legal claims. We regularly review the personal data we hold and securely delete or anonymize any information no longer needed.
Data Deletion:
Data Deletion:
Upon expiry of the retention period or upon request from the data subject, personal data will be securely deleted or anonymized unless retention is required by law or for legitimate business purposes. Even after deletion, some data may remain on backup or archival systems for a limited period for legal, tax, or regulatory compliance before final destruction. We apply appropriate technical and organizational measures to ensure that all personal data is deleted securely to prevent unauthorized access or use.
Upon expiry of the retention period or upon request from the data subject, personal data will be securely deleted or anonymized unless retention is required by law or for legitimate business purposes. Even after deletion, some data may remain on backup or archival systems for a limited period for legal, tax, or regulatory compliance before final destruction. We apply appropriate technical and organizational measures to ensure that all personal data is deleted securely to prevent unauthorized access or use.
Data Breach Response
In the event of a personal data breach, defined as any accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to personal data, we commit to promptly respond and manage the incident in accordance with the Cayman Islands Data Protection Act.
If a personal data breach occurs, we will notify the Cayman Islands Data Protection Ombudsman and the affected Partners, End Customers without undue delay, and no later than 15 days after becoming aware of the breach with the exercise of due diligence. Our notification will include details on the nature of the breach, potential consequences, measures taken or proposed to address the breach, and recommended actions for affected individuals to mitigate adverse effects.
We maintain robust internal procedures for breach detection, investigation, and reporting to minimize impact and prevent recurrence.
In the event of a personal data breach, defined as any accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to personal data, we commit to promptly respond and manage the incident in accordance with the Cayman Islands Data Protection Act.
If a personal data breach occurs, we will notify the Cayman Islands Data Protection Ombudsman and the affected Partners, End Customers without undue delay, and no later than 15 days after becoming aware of the breach with the exercise of due diligence. Our notification will include details on the nature of the breach, potential consequences, measures taken or proposed to address the breach, and recommended actions for affected individuals to mitigate adverse effects.
We maintain robust internal procedures for breach detection, investigation, and reporting to minimize impact and prevent recurrence.
© 2025 Zynk
© 2025 Zynk
© 2025 Zynk
© 2025 Zynk