Welcome to TradeXcapital

Sign In / Register
Browse Categories

Privacy & Data Protection Policy

Last updated: 11 May 2025

TradexCapital ("TXC", "we", "our" or "us") respects your privacy. We are committed to safeguarding personal information in accordance with the Protection of Personal Information Act 4 of 2013 ("POPIA"), the EU/UK General Data Protection Regulation ("GDPR"), and other applicable data-protection laws. This Policy explains how we collect, use, disclose, store, protect and otherwise process Personal Data when you visit tradexcapital.co.za, use our web or mobile applications, or engage with our services (collectively, the "Platform").

By accessing the Platform or otherwise providing Personal Data, you acknowledge that you have read and understood this Policy.

1. Introduction

South African Regulatory Context: This Policy also reflects our obligations under ECTA, FICA, PAIA, the Constitution (Section 14), and the Cybercrimes Act.

2. Scope

This Policy governs all Personal Data Processing activities, including digital interfaces, transactional workflows, marketing, HR, vendor management, and legal/regulatory processes.

3. Key Definitions

Includes terms like Affiliate, AML/CFT, Cookie, Controller, Data Subject, Operator, Personal Data, Processing, Responsible Party, Special Category Data, etc.

4. Categories of Personal Data We Collect

  • Identification Data
  • Contact Data
  • Financial & Tax Data
  • Transactional Data
  • Technical and Usage Data
  • Marketing Preferences
  • Special Categories (e.g. biometrics, PEP checks)

5. Purposes & Lawful Bases for Processing

We process data based on contract necessity, legal obligations, legitimate interests, or consent—covering areas such as KYC, payments, fraud detection, analytics, and customer support.

6. How We Share Personal Data

  • Intra-group disclosures
  • Transaction counterparties
  • Service providers & operators
  • Regulators & courts
  • Professional advisers
  • Corporate transactions
  • Aggregated insights
  • We do not sell personal data

7. International Data Transfers

Transfers governed by POPIA §72, GDPR Articles 44-49, including use of SCCs, TIAs, encryption, and compliance with Schrems II.

8. Data Security Measures

  • Encryption & tokenisation
  • Role-based access control & MFA
  • Secure SDLC & network monitoring
  • Penetration testing
  • Incident response
  • Employee training & vendor security
  • Business continuity

9. Data Retention

Retention periods vary (5–7 years typically), based on legal or operational needs. Includes secure disposal and legal hold protocols.

10. Cookies & Similar Technologies

Usage of cookies for sessions, security, performance analytics, and marketing, with full consent options and opt-out controls.

11. Your Rights

  • Access, Rectification, Erasure
  • Restriction, Objection, Data Portability
  • Withdraw consent & lodge complaints

12. Marketing Communications

Policy on opt-in, unsubscribe, and segmentation for various communication types including product updates, promotions, and education.

13. Children’s Data

Not intended for users under 18. We do not knowingly process minors' data.

14. Contact Us

Data Protection Officer (DPO)
TradexCapital (Pty) Ltd
Waterford Office Park, Fourways, 2196, South Africa
Email: hello@tradexcapital.io