Oionx Pay Privacy Policy

Effective Date: 22 May 2025

Oionx Pay Ltd ("Oionx Pay", "we", "our" or "us") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, store and protect information that can identify you directly or indirectly ("Personal Data") when you visit https://www.oionxpay.com (the "Site"), use any of our payment‑related products, services, mobile or web applications (collectively, the "Services"), communicate with us, or otherwise engage with Oionx Pay.

This Policy is drafted to meet the requirements of the UK General Data Protection Regulation (UK GDPR), the EU GDPR (Regulation (EU) 2016/679) and other applicable privacy laws. Where there is a conflict, the higher protective standard applies.

1. Who We Are

Oionx Pay Ltd is a company registered in England and Wales under company number 15617450 with its registered office at Canterbury Court, 1‑3 Brixton Road, London, SW9 6DE.

Oionx Pay Spółka z Ograniczoną Odpowiedzialnością (NIP: 7252350105, KRS: 0001141605) is registered in the Polish Register of Virtual Currency Activities under number RDWW‑1723 and operates under the supervision of the Director of the Tax Administration Chamber in Katowice, in compliance with Poland’s Anti‑Money Laundering and Countering the Financing of Terrorism Act.

Oionx Pay USA, Inc. is a U.S.‑based entity registered as a Money Services Business (MSB) with the U.S. Department of the Treasury under MSB number 31000299726109, operating in accordance with applicable federal and state financial regulations.

Oionx Pay is powered by Bridge, a licensed MSB holding Money Transmitter Licenses (MTLs) in 48 U.S. states, to facilitate regulated money movement and ensure end‑to‑end compliance for U.S.‑based operations.

As the data controller, we determine the purposes and means of processing your Personal Data.

Data Protection Officer (DPO) – You can reach our DPO at [email protected] or by post to the address above, marked "FAO Data Protection Officer".

2. Scope of This Policy

• This Policy applies to visitors to our Site, end‑users of our merchant checkout, account holders, business partners, suppliers, job applicants and anyone who otherwise interacts with us. • It does not cover processing performed by merchants who use Oionx Pay to accept payments – those merchants are independent controllers. Refer to their privacy notices for details.

3. Definitions

Personal Data – Any information relating to an identified or identifiable natural person.

Processing – Any operation performed on Personal Data, e.g. collection, storage, use, disclosure, erasure.

Special Category Data – Personal Data revealing racial or ethnic origin, political opinions, religious beliefs, trade‑union membership; genetic or biometric data; health data; or data concerning a person’s sex life or sexual orientation.

Legal Basis – The lawful grounds under Article 6 or Article 9 GDPR permitting the processing.

EEA – European Economic Area.

4. What Personal Data We Collect