Last updated: May 25, 2018
- Control. You control what we do with your data. You decide when or if we receive any personally identifying information. You get to opt in to any third-party marketing. You can configure your browser to not accept cookies from our website. You can ask us to delete your account and information.
If you read this policy and disagree with it, you shouldn’t use Sweetbridge’s Website or Platform.
How We Get Your Information
There are three main ways we get your information:
- You give it to us.
- We get it from others (we’ll tell you how and why)
- Information we automatically collect (this won’t include personally identifying information)
Here’s What Happens if You Visit Our Website:
When you visit the Sweetbridge Website, we do not collect personally identifiable information about you except when you specifically and knowingly provide it to us, through the KYC process or membership sign-up form (see the Member Information section below), for example, or when you communicate with customer service, or reply to our emails, or when you transact business on our Platform. This is information you give us.
When you visit the Sweetbridge Website, we collect information sent to us through your computer, mobile phone, or other access device. This information may include your IP address, device information like your identifier, device name and type, operating system, location, mobile network information, and standard web log information, such as your browser type, traffic to and from our site, and the pages you accessed on our website. This information is used in operational statistics, for protecting against information security attacks within technology owned by Sweetbridge or through security services we utilize from other companies, and to protect against attempts to access or commit fraud. Sweetbridge does not intentionally collect information from or about any individual who is under 13 years old. This is information we automatically collect. If any of this information constitutes personally identifiable information when combined with other information we hold (IP address and location sometimes can, for example), we will treat it the same way we treat the rest of your personally identifying information. We won’t collect any of the information you give us automatically as you browse our site.
Any member visiting Sweetbridge web properties will be presented with an informational prompt that outlines what we do with the cookies. This may include tracking computer source to provide location-based membership service, as well as assigning you to a certain regional Sweetbridge entity. We will never share these cookies with third parties for marketing purposes.
We are committed to providing reasonable and practical access to you to identify and to correct any inaccuracies in the information you may provide. Visitors who have provided personal information on our Website can contact us at [email protected] to correct any inaccuracies.
We are committed to respecting our visitors’ and members’ rights to have their information deleted from our systems. If you ask us to delete your information, we will honor that request for any information other than the exception in 1.7 below.
We have to keep records related to any financial transaction on our Platform to comply with our obligations under various banking or money transmitter laws and regulations. If you ask us to delete your account and you’ve transacted on our Platform, your profile will be flagged as “inactive”, which will result in the inability to contact, receive marketing literature, or conduct further transactions within the economy. If your transaction involves a regulated real-world asset, it must be recorded and retained under the laws that apply to that asset type in your jurisdiction.
If you have opened a support ticket or have directly emailed our customer support department, any information contained within your request will be retained within our systems for the duration specified in our data retention policy, which is a minimum of two years.
Information You Provide Us Through Your Member Application
If you choose to apply for membership to the Sweetbridge Platform, you may be asked to provide the following types of information:
- Contact information – your name, address, phone, email, and other similar information;
- Proof of Identity:
- For individuals – Unexpired government-issued identification evidencing nationality or residence and bearing a photograph or similar safeguard, such as a driver’s license or passport
- For non-individuals (legal entities like corporations and LLCs)- Documents showing the existence of the entity which can include certified articles of incorporation, a government-issued business license, a partnership agreement, or trust instrument.
- Proof of address: A recent utility bill, local authority tax bill, institution statement containing the individual or entity name, address and dated less than 3 months ago.
- Bank Account and Routing Numbers and/or credit card numbers.
- Additional information to verify your identity or address, and/or to manage risk, including your date of birth, taxpayer or government identification number, or other personal information.
The information we need to verify your identity could always change based on new legal requirements, but this is information you can choose to provide or not provide. If you’re uncomfortable with us having any of this information, contact us at [email protected], or decline to join our Platform.
It’s important you know that we collect this information to satisfy our legal obligation to “Know Your Customer” (KYC), which includes our “Customer Identification Program (CIP)” which we require to legally identify you. We don’t collect this information because we want to profit from your information, or share it around—we collect it because it’s the only way to operate a legal, reputable, valuable Platform in many different global jurisdictions. It’s also how we attempt to ensure only good actors access our Platform.
This all falls under the category of information you give us.
We may also obtain information about you from third parties such as credit bureaus and identity verification services. This is part of our legal obligation to conduct a due diligence review to ensure you are who you say you are before we allow you to transact on the Platform. We will not perform a soft or hard “credit check” using this information without your consent. This is information we get from others.
Uses of Information
Now that you know how and why we collect your information, here are our rules on what we do with it, and information about how you can help us protect it, and how you can exercise your right to control it.
Passwords and identity or security devices are private entry keys into the respective Sweetbridge account. A user should never share his or her password or identity or security devices with anyone. If a user needs to walk away from his or her personal computing device (PC) for any reason, the user should log off from the Sweetbridge session. Users should select passwords that are difficult to guess and change them frequently. Passwords should not be stored on the PC or on written notes near the PC. Identity or security devices should be stored in a secure place. Sweetbridge is not responsible if you don’t follow these security procedures. You should also remember that Sweetbridge will never ask you for your password or private key via email or social media. You can contact our support organization at [email protected] if you ever have a concern about your security or the security of the Sweetbridge platform(s).
We will use the information you give us to contact you, if necessary, to service your account or for other administrative purposes. We may also access and use your information to resolve disputes, to troubleshoot problems, to enforce our Sweetbridge Membership Agreement, or for direct marketing from Sweetbridge (not from third parties). In addition, the Sweetbridge Platform may use your transaction details to automate and to streamline your transactions by checking for electronic data compliance, providing reporting features, identifying risky transactions, and transferring data from previous forms to those of the current transaction. We will not provide your personally identifiable information to any third parties unless we must do so to fulfill a legal obligation.
How We Protect and Store Your Information
We store and process your personal and transactional information on our computers in the EU, United States, and elsewhere in the world where Sweetbridge facilities or our service providers are located, and we protect it by maintaining physical, electronic, and procedural safeguards in compliance with applicable EU and U.S. federal and state regulations. We use computer safeguards such as firewalls and data encryption, we enforce physical and logical access controls to our buildings and files, and we authorize access to personal information only for those employees who require it to fulfill their job responsibilities. If gathered from you to pay for any fees associated with being a member, full credit card data (PAN/PIN) is securely transferred and hosted off-site by a payment vendor in compliance with Payment Card Industry Data Security Standards (PCI DSS). This information is never accessible to Sweetbridge employees.
We store our customers’ personal information securely throughout the life of the customer’s Sweetbridge Account. Sweetbridge will retain your personal information for the life of your account plus a minimum of seven years; or as necessary to comply with our legal obligations or to resolve disputes.
Who We Share Your Information With, and Why
We may share your personal information with third party identity verification services in order to prevent fraud, and to comply with our “Know Your Customer,” “Anti-Money Laundering,” and other similar legal responsibilities. This allows Sweetbridge to confirm your identity by comparing the information you provide us to public records and other third-party databases. These service providers may create derivative data based on your personal information that can be used solely in connection with provision of identity verification and fraud prevention services. We do not provide your personal information to those third parties for marketing purposes, nor are they contractually allowed to use it for marketing.
We may share your personal information with service providers under contract who help with parts of our business operations such as bill collection, marketing, and technology services. Our contracts require these service providers to only use your information in connection with the services they perform for us, and prohibit them from selling your information to anyone else. This information will not be used by those third parties for marketing purposes.
We may share your personal information with financial institutions with whom we partner for purposes of maintaining accounts, conducting credit verification, or identification. This information will only be used by them in accordance with the laws that govern financial institutions.
We may share your personal information with companies or other entities that purchase Sweetbridge assets pursuant to a court-approved sale under U.S. Bankruptcy law.
We may share your personal information with government entities, law enforcement, and officials, or other third parties when (a) we are compelled to do so by a subpoena, court order, or similar legal procedure; or (b) we believe in good faith that the disclosure of personal information is necessary to prevent physical harm or financial loss (c) to report suspected illegal activity (d) to report risky transactions (SAR Reports) in accordance with law (e) or to investigate violations of our User Agreement.
We may share your personal information with other third parties with your consent or direction to do so. You would have to opt in to this disclosure.
Before Sweetbridge shares your information with any third party that is not acting as an agent to perform tasks on behalf of and under the instructions of Sweetbridge, Sweetbridge will enter into a written agreement requiring that the third party provide at least the same level of privacy protection as we require.
You can always ask to view all information we have stored related to your Member account. We will respond to your request to access, update or delete Member information as soon as we can after you provide such updates to Sweetbridge Member Services at [email protected].
You may also contact Sweetbridge by phone at +1-415-663-5000 or write to Sweetbridge at 515 E. Grant Street, Suite 150, Phoenix, Arizona 85004, Attention: Legal Affairs.
In the event that Sweetbridge, or substantially all of its assets, are acquired by one or more third parties as a result of an acquisition, merger, sale, reorganization, consolidation or liquidation, such databases containing Member information may be one of the transferred assets. In using the Sweetbridge Website and the Sweetbridge Platform, you consent to such transfer of your information.
For California Residents, Your Rights Are Outlined Below
We do not disclose your personal information to third parties for the purpose of directly marketing their goods or services to you unless you first agree to such disclosure. If you have any questions regarding this policy, or would like to change your preferences, you may contact us at [email protected].