Last Updated: 11/06/2025

1. Introduction

1.1. This Privacy Policy explains how Blockridge collects, processes, stores, and protects personal data in compliance with the General Data Protection Regulation (GDPR) and other applicable data protection laws.

1.2. By using Blockridge’s website and platform, users consent to the collection, use, and processing of their personal data as outlined in this Privacy Policy.

1.3. Blockridge is committed to protecting user privacy and ensuring that personal data is processed lawfully, fairly, and transparently.

2. What Data We Collect

2.1. Blockridge collects the following categories of personal data:

• Identity Data, including full name, date of birth, nationality, and government-issued identification.
• Contact Data, including email address, phone number, and physical address.
• Financial Data, including blockchain wallet addresses and transaction history.
• KYC and AML Compliance Data, including documents required for identity verification.
• Technical Data, including IP address, browser type, device information, and login details.

2.2. Certain data, such as transaction records on the blockchain, may be permanently recorded and cannot be modified or deleted, even upon request.

3. How We Use Your Data

3.1. Blockridge processes personal data for the following purposes:

• Identity Verification: To verify user identities and comply with Know Your Customer (KYC) and Anti-Money Laundering (AML) regulations.
• Transaction Processing: To facilitate tokenized asset transactions and ensure regulatory compliance.
• Fraud Prevention and Security: To detect, prevent, and investigate fraudulent activity, money laundering, and other illicit actions.
• User Support and Platform Optimization: To enhance customer service, improve platform functionality, and optimize security protocols.

4. Legal Basis for Processing Personal Data

4.1. Blockridge processes personal data based on the following legal grounds:

• Contractual necessity: When data processing is required to provide the services that users have signed up for.
• Legal obligation: When data processing is required to comply with legal and regulatory requirements, such as financial compliance laws.
• Legitimate interests: When data is processed for fraud prevention, security enhancement, and business improvement, provided such interests do not override user rights.
• User consent: When users have given explicit consent, such as opting into marketing communications.

5. Data Sharing and International Transfers

5.1. Blockridge does not sell or rent personal data to third parties.

5.2. Blockridge may share personal data with:

• Regulatory authorities, where required by law for compliance with financial regulations.
• Third-party service providers, such as KYC verification partners, fraud prevention services, and cloud hosting providers.
• Affiliated companies, for operational and compliance purposes.

5.3. Some user data may be transferred outside the European Economic Area (EEA). In such cases, Blockridge ensures that appropriate safeguards, such as EU-approved Standard Contractual Clauses (SCCs) or Binding Corporate Rules (BCRs), are in place to protect user data.

6. Blockchain-Specific Data Protection Safeguards

6.1. Due to the nature of blockchain technology, transactions recorded on a blockchain ledger are immutable and cannot be altered or deleted. This means that once a transaction, including personal data such as a wallet address or tokenized asset ownership, is recorded, it cannot be modified or erased.

6.2. Blockridge minimizes the inclusion of personally identifiable information in blockchain transactions by:

• Using pseudonymous identifiers instead of personal names where possible.
• Encrypting and securely storing sensitive user data off-chain to reduce exposure.
• Implementing privacy-enhancing technologies, such as zero-knowledge proofs or selective disclosure protocols, where applicable.

6.3. Users acknowledge that their blockchain transaction history is publicly accessible and that Blockridge cannot edit, modify, or erase records stored on a decentralized ledger.

6.4. Where blockchain-based data conflicts with GDPR rights, Blockridge will explore alternative compliance measures, such as:

• Minimizing on-chain personal data exposure by using cryptographic techniques.
• Providing data portability solutions to enable users to export and manage their data securely.

7. User Rights Under GDPR

7.1. Users located in the European Union and other GDPR-compliant jurisdictions have the following rights regarding their personal data:

• Right to Access: Users can request a copy of their personal data held by Blockridge.
• Right to Rectification: Users can request correction of inaccurate or incomplete personal data.
• Right to Erasure (“Right to be Forgotten”): Users may request the deletion of their personal data, subject to regulatory obligations and blockchain immutability limitations.
• Right to Restrict Processing: Users can request that Blockridge temporarily or permanently stop processing their data.
• Right to Object: Users can object to processing based on legitimate interests or direct marketing purposes.
• Right to Data Portability: Users can request a structured, commonly used format of their personal data to transfer it elsewhere.
• Right to Withdraw Consent: Users who have provided consent for specific data processing activities may withdraw it at any time.

7.2. To exercise any of these rights, users should submit a request to : [email protected]

8. Data Retention

8.1. Blockridge retains personal data only for as long as necessary to fulfill legal, regulatory, and operational requirements.

8.2. For KYC and AML compliance, Blockridge may retain user data for up to five years after account closure, in accordance with financial regulations.

8.3. Blockchain transactions are permanently recorded and cannot be erased, but Blockridge will take steps to minimize exposure of personal data on public ledgers.

9. Security Measures

9.1. Blockridge employs industry-standard security measures to protect personal data, including:

• End-to-end encryption for data transmission and storage.
• Access controls and multi-factor authentication to prevent unauthorized access.
• Regular security audits and penetration testing to identify and mitigate vulnerabilities.
• Continuous monitoring to detect suspicious activity and cyber threats.

9.2. While Blockridge implements robust security protocols, users are also responsible for securing their accounts, including using strong passwords and enabling two-factor authentication.

10. Updates to This Privacy Policy

10.1. Blockridge reserves the right to update this Privacy Policy in response to changes in legal requirements or operational practices. The most recent version will always be available on our website.

10.2. If significant changes are made, Blockridge will notify users via email or through the Platform.

11. Additional Privacy Rights for California Residents (CCPA Compliance)

11.1. This section applies exclusively to residents of California, United States, in accordance with the California Consumer Privacy Act (CCPA). It describes the rights that California residents have regarding their personal data and how they can exercise those rights.

11.2. Categories of Personal Information Collected

In addition to the data listed in Section 2 of this Privacy Policy, Blockridge collects the following categories of personal information as defined under the CCPA:

• Identifiers: Name, email address, phone number, blockchain wallet addresses.
• Commercial Information: Transaction history and purchase details related to our services.
• Internet or Other Network Activity: IP address, browsing history on Blockridge’s website, and interactions with our platform.
• Geolocation Data: General location based on IP address.
• Professional or Employment-Related Information: If provided during the KYC process.

11.3. User Rights Under CCPA

California residents have the following rights under the CCPA:

• Right to Know: Users can request information about the categories and specific pieces of personal data Blockridge has collected, the sources of data collection, the purposes for collecting the data, and whether Blockridge has disclosed or sold the data to third parties.
• Right to Request Deletion: Users can request the deletion of their personal information, subject to legal and regulatory exceptions.
• Right to Opt-Out of Sale of Personal Information: Blockridge does not sell personal data. However, if this practice changes in the future, users will have the right to opt out.
• Right to Non-Discrimination: Blockridge will not discriminate against users for exercising their CCPA rights, including by denying services, charging different prices, or offering different levels of service.

11.4. How to Exercise Your CCPA Rights

To exercise any of the rights outlined in this section, California residents may contact Blockridge using one of the following methods:

• Email: Submit a request to [[email protected]] with “CCPA Request” in the subject line.
• Postal Mail: Send a written request to [Company Address] with “CCPA Privacy Request” clearly marked.

Before fulfilling a request, Blockridge may require users to verify their identity to prevent unauthorized data access.

11.5. Data Retention for California Residents

Blockridge retains personal information collected from California residents only as long as necessary for legal, operational, and compliance purposes. This includes:

• Retaining KYC and AML data for up to five years, in accordance with financial regulations.
• Keeping transaction records permanently on the blockchain, as required by decentralized ledger technology.

11.6. Changes to CCPA Privacy Rights

If Blockridge updates its CCPA compliance practices, users will be notified via email or through the platform. California residents should periodically review this section to stay informed of their rights.

12. Contact Information

For privacy-related inquiries or to exercise GDPR rights, users may contact Blockridge at:

Email: [email protected]

Address: BlockRidge New York Office
100 Quentin Roosevelt Blvd, Suite: 503, Garden City, New York, 11530