NezenX

1. Introduction

This Privacy Policy describes how Nezenx Pte. Ltd. ("Company", "we", "us", or "our") collects, uses, stores, and discloses information when Users access the Nezenx Platform and related services.

By accessing or using the Platform, the User consents to the practices described in this Privacy Policy.

2. Legal Basis and Compliance

Personal Data Protection Act 2012 (PDPA — Singapore)
applicable international data protection standards where relevant
additional safeguards required by Partner Issuers or compliance partners

3. Scope of Data Collected

3(a) Personal Data

Full name
Date of birth
Nationality
Identity documents (passport, ID, driving licence, etc.)
Residential address and contact information
Business registration records (if applicable)

3(b) Platform & Account Data

Account credentials
Login history and device information
IP address and geolocation data
Communication logs between the User and the Company

3(c) KYC / AML Data

Proof of address
Proof of income or source of funds if required
Business verification documents
Advertising account or business justification documents if required

3(d) Transaction & Card Usage Data

Virtual Card creation and usage history
Merchant category codes (MCC)
Transaction amounts and timestamps
Funding and conversion data (fiat or crypto)

No biometric data is collected unless explicitly required by Partner Issuers.

4. Purpose of Data Processing

Account creation and management
KYC/AML verification and fraud prevention
Enabling the use and management of Virtual Cards
Risk analysis, security monitoring, and dispute prevention
Compliance with regulatory obligations
Customer support and account recovery
Service improvements and feature development
Communication about policy updates or security alerts

5. Data Sharing and Disclosure

The Company may share User data only where necessary with:

Partner Issuers (licensed institutions issuing Virtual Cards)
Compliance and KYC service providers
Crypto payment processors (for conversion)
Payment networks and acquiring partners (Visa, Mastercard, etc.)
Regulators or law enforcement when required by applicable laws

The Company does not sell, rent, or trade User data with third parties.

Where data is shared outside Singapore, transfers will follow PDPA cross-border safeguards.

6. Data Retention

The Company retains User data only for as long as necessary to provide the Services, satisfy legal, regulatory, and risk requirements, and respond to disputes or compliance investigations.

Retention periods may be extended if mandated by Partner Issuers or regulatory authorities. After expiration, data will be securely deleted or anonymised.

7. Data Security

7.1 The Company implements administrative, technical, and organizational safeguards to protect User data against unauthorized access, alteration, disclosure, or loss.

7.2 Safeguards may include encryption, access control, two-factor authentication, network security tools, and risk monitoring systems.

7.3 No system is completely immune to vulnerabilities; the User acknowledges that security cannot be guaranteed absolutely.

8. User Rights

request access to personal data stored by the Company
request correction of inaccurate information
request deletion where applicable (except where retention is legally mandatory)
request information on how the Company processes data

Requests can be submitted to: legal@nezenx.com. The Company may request reasonable verification before responding.

9. Cookies and Tracking

The Platform may use cookies and similar technologies to maintain User sessions, analyse Platform usage, and improve navigation and feature accessibility.

Users may disable cookies via browser settings, although certain Platform functions may no longer operate normally.

10. Third-Party Services

10.1 The Platform may include integrations with third-party services such as compliance partners, crypto processors, and Partner Issuers.

10.2 Data shared with third parties shall be limited to what is operationally necessary.

10.3 The Company is not responsible for the privacy practices of third-party systems and encourages Users to review their applicable policies.

11. International Data Transfers

Where data is transferred outside Singapore for operational or compliance reasons, such transfers will comply with PDPA requirements, including the use of Standard Contractual Clauses or equivalent safeguards where necessary.

12. Children’s Privacy

The Platform is intended strictly for business use and is not directed toward children under 18. The Company does not knowingly collect data from minors.

13. Amendments to This Privacy Policy

The Company may update or amend this Privacy Policy at any time. Continued use of the Platform after publication of an amendment constitutes acceptance of the updated terms.

14. Contact

legal@nezenx.com
NEZENX PTE. LTD.
10 Anson Road #33-10, Suite C, International Plaza, Singapore 079903