Privacy policy

Last updated: October 17th, 2024
Version: 1.0
1. Introduction
1.1. We take the handling of personal data seriously to ensure your privacy when processing and safeguarding your personal information. This privacy policy outlines how and why we process, use, and share your personal data when you use our website through (the “website”), software, applications, and other online products and services (collectively referred to as the "services"), or when you interact with us in any other way or receive communication from us.
1.2. By using our services or visiting our website, you expressly consent to the processing of your personal data as outlined in this policy.
1.3. Any mention of "we," "us," "nomo," or the "platform" in this privacy notice refers to Nomo Trade Limited, an International Business Company number 2023-00509 in Saint Lucia, with the registered office is situated at Ground Floor, The Sotheby Building, Rodney Village, Rodney Bay, Gros-Islet, LC01 401, Saint Lucia, unless otherwise stated.
1.4. We may periodically update this privacy policy. The current version, available at , will govern the processing of your personal data. In case of a material change, we may notify you via email, and if required by law, seek your permission or provide an opt-out opportunity for any new use of your personal Information.
1.5. nomo collects and processes personal information necessary for legitimate business purposes, disclosing this to the data subject at the time of collection. We retain your personal data for the duration required to fulfill the purpose for which it was collected and used, unless an extended period is mandated by legal obligations or for defense in a legal matter.
2. Collection of personal data
2.1. The data we collect encompasses various categories, including:
2.1.1. Identity Data:
  • Full name or portions thereof.
  • Username or a comparable identifier.
  • Marital status.
  • Title.
  • Nationality.
  • Date and location of birth.
  • Tax number.
  • Gender
  • Information from identity documents, including biometric details (e.g., facial images).
2.1.2. Contact data:
  • Billing address.
  • Residential address.
  • Email address.
  • Telephone number.
2.1.3. Screening data:
  • Close associations.
  • Political background.
  • Information linked to sanctions and adverse media.
2.1.4. Risk assessment data:
  • Client risk score.
  • Client risk categorization.
2.1.5. Economic and appropriateness data:
  • Employment status.
  • Annual income.
  • Source of income.
  • Current wealth value.
  • Annual investment plans.
  • Investment objectives.
  • Trading experience.
  • Level of education.
2.1.6. Financial data:
  • Bank account details.
  • Payment card details.
2.1.7. Transaction data:
  • Details regarding payments to and from you concerning our services.
2.1.8. Technical data:
  • Internet Protocol (IP) address.
  • Login data.
  • Browser type and version.
  • Time zone setting and location.
  • Browser plug-in types and versions.
  • Operating system and platform.
  • Other technology on the devices used to access the services.
  • Obtaining personal data from various third parties and public sources, including technical data from analytics providers like Google (based outside the EU), advertising networks, and search information providers.
2.1.9. Communication data:
  • Details regarding payments to and from you concerning our services.
2.1.10. Profile data:
  • Username and password.
  • Your interests.
  • Preferences.
  • Feedback.
  • Survey responses.
2.1.11. Usage data:
  • Information pertaining to how you access and utilize our services, including user sessions and, in certain instances, screen recordings.
3. Purpose of your personal data usage
Recogemos, utilizamos, almacenamos y transferimos distintos tipos de datos personales de nuestros clientes en el curso de nuestras operaciones empresariales, únicamente cuando existe fundamento jurídico para ello.Los supuestos jurídicos en los que esto suele ocurrir son:
3.1. Consent. In specific instances, we may handle your personal data solely upon obtaining your explicit consent.
3.2. Execution of a contract. To provide you with our services in adherence to the contractual terms between you and us, we necessitate the use of your personal data.
3.3. Adherence to legal obligations. The nature of the services we furnish compels us to amass and store specific data about you in conformity with the laws governing our operations.
3.4. Legitimate interests. On occasion, we leverage our legitimate interests to process your data, such as enhancing our services. However, we exercise this right only when such interests do not supersede your rights, interests, or fundamental freedoms.
3.5. The subsequent table outlines the potential applications of your personal data and identifies the legal bases nomo employs to ensure lawful data processing:
Purpose/ActivityType of dataLawful basis for processing
To create your account,
  • Identity data.
  • Contact data.
  • Technical data.
Performance of a contract when we provide our Services to you
To verify your identity, carry out checks that we are required to conduct by applicable laws and regulations, including: “know your customer” (KYC), anti-money laundering, fraud, sanctions, politically exposed person (PEP) and liveness checks and perform client risk categorization
  • Identity data.
  • Contact data.
  • Screening data.
  • Transaction data.
  • Risk assessment data.
  • Technical data.
  • Communication data.
  • Financial data.
  • Usage data.
Compliance with our legal obligations under applicable AML/CFT obligations, namely the Money Laundering, Terrorist Financing and Transfer of Funds (Information on the Payer) Regulations 2017
To obtain and assess economic profile and appropriateness information and categorise the client
  • Economic and appropriateness data.
Compliance with our legal obligations under applicable laws including obligations under the Rules of the Financial Conduct Authority (FCA) and AML/CFT obligations under the Money Laundering, Terrorist Financing and Transfer of Funds (Information on the Payer) Regulations 2017
To provide our services and process transactions including, payments, fees and charges.
  • Identity data.
  • Contact data.
  • Financial data.
  • Transaction data.
  • Technical data.
  • Profile data.
Performance of a contract when we provide our services to you
To monitor your transactions for the purposes of detection, storage and reporting of fraudulent activities.
  • Identity data.
  • Contact data.
  • Screening data.
  • Risk assessment data.
  • Financial data.
  • Transaction data.
  • Technical data.
  • Usage data.
Compliance with our legal obligations under applicable AML/CFT obligations, namely the Money Laundering, Terrorist Financing and Transfer of Funds (Information on the Payer) Regulations 2017
To provide customer support.
  • Identity data.
  • Contact data.
  • Transaction data.
  • Transaction data.
Performance of a contract when we provide our services to you.
To send you service notifications related to your use of the services.
  • Contact data.
  • Communication data.
Performance of a contract when we provide our Services to you
To record and store communication with you.
  • Identity data.
  • Contact data.
  • Communication data.
Compliance with our legal obligations under applicable laws, including obligations under the Rules of the Financial Conduct Authority (FCA).
To send you updates and marketing communication as well as to deliver relevant content to you, including ads, suggestions, personalised offers and recommendations.
  • Identity data.
  • Contact data.
  • Financial data.
  • Transaction data.
  • Technical data.
  • Profile data.
  • Usage data.
Consent, or our legitimate interests to promote our services.
To perform data analytics with respect to our services for improvement purposes.
  • Technical data.
  • Usage data.
Our legitimate interests to improve our Services
To manage and protect our business and website including system maintenance.
  • Identity data.
  • Technical data.
  • Usage data.
Our legitimate interests to improve our Services. Performance of a contract when we provide our services to you
To help us improve our Services by completing a survey, feedback, or review.
  • Identity data.
  • Profile data.
Consent.
3.6. If you do not provide the necessary personal information, and it is essential for us to offer you our services or meet legal requirements (like following anti-money laundering rules), then you won't be able to use our services.
4. Collection of personal data
4.1. Purpose of сookies
Our website utilizes cookies to distinguish you from other users, enhancing your browsing experience and allowing us to refine our site.
4.2. Information analysis
Las cookies, que suelen almacenarse en el disco duro de tu computadora, nos ayudan a evaluar la efectividad de nuestro sitio web, analizar tendencias y gestionar la plataforma. Nos proporcionan información para orientar las mejoras en la experiencia de usuario, identificando las secciones más visitadas de nuestro sitio y poniendo de manifiesto los aspectos a corregir en el acceso a la plataforma.
4.3. Email enhancement
We use cookies, web bugs, or clear gifs in emails to confirm receipt and response, personalizing your experience on our site.
4.4. Third-party assistance
Utilizing third-party service providers, we gain insights into site use. These providers place cookies on your computer, offering data on navigation, viewed products, and general transaction information. Aggregate reports assist us in understanding visitor interests and improving our services.
4.5. Data integration
Information from service providers may be linked and combined with data we collect about you while using the platform. Service providers are contractually restricted from using this information for purposes other than assistance to us.
4.6. Agreement to cookie usage
By visiting nomo website, you agree to our use of cookies for the specified purposes.
4.7. More Information
Further details on nomo's use of cookies can be found in our cookie policy, accessible at https://nomotrade.com.
5. Sources of personal data and automated decision-making with respect to your personal data
5.1. We obtain most of your personal data directly from you, such as when you register for our services or engage in communication with us, leading to the receipt of your identity and contact information. Additionally, we may receive personal data from third parties and publicly accessible sources, such as social media, search engines, company registers, banks, payment service providers, KYC service providers, advertising networks, analytics providers, and screening data vendors. Furthermore, while you use our services, technical data is automatically collected through technologies like cookies.
5.2. In the course of providing our services and fulfilling legal obligations, we engage in automated decision-making processes. These instances include:
5.2.1. Evaluating trading eligibility. Our system automatically assesses whether you can be permitted to trade based on the economic and appropriateness data provided in relevant questionnaires. Access to the services may be denied if insufficient experience and/or knowledge are identified.
5.2.2. Fraud detection. Our anti-fraud systems autonomously identify patterns indicative of potentially fraudulent activities related to your account. In such cases, we will notify you to mitigate potential fraud.
5.2.3. Risk profiling. Our systems autonomously determine the client's risk profile by evaluating various risk factors in line with applicable laws and internal procedures. The resulting risk score enables capital to establish the necessary customer due diligence procedures.
6. Sharing of your personal information
6.1. Nomo Trade Limited group companies.
Sharing with other companies within the Nomo Trade Limited group.
6.2. Third-party providers
Sharing with providers of apps, communication systems, and trading platforms.
6.3. Service providers and advisers
Sharing with contracted entities for services such as IT, analytics, marketing, financial, regulatory, and compliance.
6.4. Introducing brokers and affiliates
Sharing with partners having mutual relationships.
6.5. Payment service providers and banks
While facilitating transaction processing.
6.6. Auditors and contractors
Sharing for auditing, assistance, or advice on business purposes.
6.7. Legal and regulatory authorities
Sharing with courts, tribunals, government bodies, and law enforcement agencies as required by law or authorized by agreements.
6.8. Enforcement of terms and conditions
Sharing with any third party when necessary to enforce our terms and conditions of service.
6.9. Authorized entities
Sharing with any entity authorized by you.
6.1. Service providers and data sharing
Engaging service providers for various functions, ensuring adherence to privacy measures.
6.11. Third-party advertisers
Partnering with advertisers and ad networks to deliver targeted advertising.
6.12. Personally identifiable information
Using personally identifiable information to operate and enhance our services.
6.13. Aggregated non-personal information
Sharing aggregated, non-personal information with third parties for analysis.
6.14. Message administration
Retaining messages sent to us for inquiry administration and service improvement.
6.15. External links
External third-party websites linked from our sites are not covered by this privacy notice. Please check with each third party for details.
7. Sharing of your personal information
7.1. Security measures
We maintain personal information in secure computer storage facilities and paper-based files, ensuring protection against misuse, loss, unauthorized access, modification, or disclosure.
7.2. Data removal and destruction
When deemed unnecessary, we remove identifying details or securely destroy records.
7.3. Retention period
We typically retain your personal data for the duration necessary to fulfill the specific purpose for which it was collected. This includes meeting legal, accounting, reporting requirements, and addressing our legitimate interests. For instance, your personal data is generally stored for a period not less than 5 years after concluding the business relationship with nomo for proposes stipulated in applicable Anti Money Laundering, Terrorist Financing and Illegal Transfer of regulations. Additionally, certain personal data may be retained for a minimum of 6 years to comply with tax legislation for bookkeeping purposes.
In some instances, authorities may mandate longer data retention periods, especially during ongoing investigations. If you have not actively used our financial services for 5 to 6 years (depending on the data), we will eliminate any details that can identify you or we will securely destroy the records, unless we substantiate why we need the data for a longer period of time.
7.4. Prospective client data
Incomplete or rejected account opening applications are retained for 6 months, unless regulatory obligations dictate a longer duration.
7.5. Suppression list
For individuals opting out of marketing communications, details are retained on a suppression list.
7.6. International data transfers
Your data may be transferred and stored outside the European Economic Area (the EEA). We ensure its secure treatment and compliance with this privacy policy.
7.7. Compliance measures
When transferring data beyond the EEA, we may rely on standard contractual clauses, binding corporate rules, EU-US Privacy Shield, or equivalent arrangements, ensuring compliance.
7.8. Request for arrangement details
You can request details of these arrangements by contacting us through the provided contact details.
7.9. Internet transmission security
While we strive to protect data transmitted over the internet, we cannot guarantee complete security. Your transmission is at your own risk. Upon receipt, we implement strict procedures and security features to prevent unauthorized access.
8. Introduction
8.1. Commitment to security
We are dedicated to safeguarding personal data, implementing and maintaining suitable technical and organizational measures. These measures ensure the appropriate level of security to protect personal data from accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access during transmission, storage, or processing.
8.2. Safety measures
We apply the following safety measures as:
  • Evaluation of security measures' effectiveness before website launch and updates.
  • Establishment of rules for accessing and processing personal data, with comprehensive registration of all related actions in the website's information systems.
  • Establishment of rules for accessing and processing personal data, with comprehensive registration of all related actions in the website's information systems.
9. Your rights
Please be aware that these rights may not be applicable in all situations. Nevertheless, you are entitled to the following. 
9.1. Access request
Please be aware that these rights may not be applicable in all situations. Nevertheless, you are entitled to the following. 
9.2. Correction request
Request correction of the personal data held about you.
9.3. Erasure request
Request erasure of your personal data, with certain legal considerations.
9.4. Objection to processing
Object to the processing of your personal data based on legitimate interests.
9.5. Processing restriction request
Request restriction of processing in specific scenarios, such as data accuracy verification or legal claim establishment.
9.6. Data transfer request
Tienes derecho a solicitar que tus datos personales se te transfieran a ti o a un tercero en formato estructurado, de uso común y legible por parte de un sistema informático.
9.7. Submission of requests
Complete personal data requests via email to support@nomotrade.com using your registered email address.
9.8. Data transfer request
We aim to respond to requests within 7 business days, with potential delays for complex or multiple requests.
9.9. Data transfer request
We aim to respond to requests within 7 business days, with potential delays for complex or multiple requests.
10. Miscellaneous
10.1. Security systems breach notification
In the event of a security system breach, nomo will make efforts to electronically notify affected parties, with a potential notice posted on the website.
10.2. High-risk data breach notification
If a personal data breach poses a high risk to users' rights and freedoms, nomo will promptly inform affected individuals.
10.3. Business changes and data transfer
In cases of acquisition, merger, or control change, nomo reserves the right to transfer user information. Users will be notified before any transfer during a merger, acquisition, or sale of assets. In bankruptcy or similar circumstances, control over personal information may be limited.
11. Changes to privacy policy
11.1. This Privacy Policy may be updated periodically without prior notice. The latest version will be effective at and govern the processing of personal data.
12. Reach out to us
12.1. For any inquiries about this Privacy Policy, please contact us at support@nomotrade.com.