1. Introduction
Mintoria Ltd. (“Mintoria,” “we,” “us,” or “our”) provides its services subject to these Terms and Conditions. By using our websites, mobile apps, APIs, and financial services (the “Services”), you agree to comply with these terms and all applicable laws and regulations.
2. Data Collection & Privacy
We collect and process personal data as described in our Privacy Policy, including identification, financial, KYC/KYB, biometric, device, and communication data. Sensitive data is protected and never sold or used for profiling or advertising.
3. Use of Services
- You must provide accurate information and comply with KYC/KYB requirements.
- Services may include crypto, stablecoin, and fiat transactions, virtual card issuance, and account management.
- Fraud monitoring and AML/sanctions compliance are enforced.
- You agree not to use the Services for unlawful, fraudulent, or prohibited activities.
4. Legal Basis & Compliance
Our processing is based on contractual necessity, legal obligations, legitimate interests, and consent (where applicable). You agree to comply with all relevant laws, including GDPR, CCPA/CPRA, GLBA, PIPEDA, and BIPA.
5. Automated Decision-Making
Automated systems may be used for fraud detection and account review. Final decisions are subject to human oversight.
6. Biometric Data
- Biometric verification is performed by WithPersona.
- Mintoria does not store biometric templates; data is encrypted and stored by WithPersona.
- Biometric data is used only for onboarding, fraud protection, and compliance, and retained for a maximum of 3 years unless required by law.
- You may opt-out after onboarding is completed.
7. Third-Party Services
- We share data only with verified partners: WithPersona (identity/biometric), Bridge.xyz (fiat payments), Zoho (CRM/support).
- All partners are bound by Data Processing Agreements and may not reuse or resell your data.
8. User Rights
- You may request access, correction, deletion, restriction, portability, objection, and withdrawal of consent for your data.
- California residents may restrict use of sensitive data under CPRA.
- Contact privacy@mintoria.com or use Settings → Privacy to exercise your rights.
9. Data Retention
- Transaction records: 7 years
- KYC/KYB data: 5 years after account closure
- Biometric data: Max 3 years with consent
- Session logs & account metadata: Deleted or anonymized within 6 months of closure
10. Security
- AES-256 and TLS 1.3 encryption
- Role-based access, zero-trust infrastructure, and MFA
- Automated breach monitoring, audit logs, and threat detection
11. International Data Transfers
Your data may be stored or processed in the U.S., Canada, EU, or other jurisdictions, with appropriate safeguards in place.
12. Children’s Privacy
We do not knowingly collect data from users under 16. If discovered, such data will be deleted. Contact privacy@mintoria.com if you believe this has occurred.
13. Data Breach Notification
If a breach poses a risk to your data rights or freedoms, affected users will be notified promptly, in line with applicable laws.
14. Changes to Terms
We may update these terms as laws or services evolve. Material changes will be communicated via email, dashboard, or alerts.
15. Contact Information
For questions, data access requests, or complaints:
support@mintoria.com
Mintoria Ltd.
8 The Green, Suite #14329
Dover, DE 19901, USA