Privacy Policy

Last Updated: January, 2026

1. Introduction

At Hyphe Markets GmbH, we are committed to protecting your privacy and ensuring the security of your personal information. This comprehensive privacy policy explains how we collect, use, store, and protect your personal data when you use our financial services, visit our website, or interact with us in any capacity.

This policy covers all aspects of our data handling practices, including financial data protection, compliance with German and European data protection laws (GDPR), and adherence to international financial standards. By using our services or providing us with your personal information, you agree to the terms outlined in this privacy policy.

Important Note: We never sell your personal data to third parties. Your financial privacy is paramount to our business relationship.

2. Information We Collect

2.1 Information You Provide

  • Personal identification information: Full name, date of birth, identification numbers, nationality
  • Contact information: Email address, phone numbers, residential and business addresses
  • Financial information: Bank account details, income statements, tax information, employment details
  • Account credentials: Usernames, encrypted passwords, security settings
  • Transaction history: Service applications, payment records, agreements, portfolios
  • Communication records: Customer service interactions, feedback, survey responses
  • Marketing preferences: Communication preferences, newsletter subscriptions

2.2 Automatically Collected Information

  • Device information: IP address, browser type, operating system, device identifiers
  • Usage data: Pages visited, time spent, click patterns, search queries
  • Location data: Approximate geographic location based on IP address
  • Cookie data: Session identifiers, user preferences, analytics data
  • Transaction metadata: Time stamps, transaction amounts, payment methods

2.3 Information from Third Parties

  • Credit bureaus: Credit scores, credit reports, payment history
  • Financial institutions: Bank statements, account verification
  • Payment processors: Payment confirmation, fraud detection alerts
  • Government agencies: Tax information, regulatory reporting
  • Business partners: Referral information, joint account details

3. How We Use Your Information

3.1 Financial Services Provision

  • Account management: Opening, maintaining, and closing customer accounts
  • Service processing: Evaluating applications, determining eligibility
  • Risk assessment: Analyzing financial stability, fraud prevention
  • Payment processing: Executing transactions, maintaining records
  • Customer support: Providing assistance, resolving disputes

3.2 Legal and Regulatory Compliance

  • KYC compliance: Verifying customer identity as required by law
  • AML monitoring: Screening for suspicious activities
  • Tax reporting: Fulfilling tax obligations
  • Regulatory reporting: Submitting required reports to authorities
  • Legal requests: Responding to court orders and lawful government requests

3.3 Communication and Customer Service

  • Transaction notifications: Sending account alerts, payment confirmations
  • Policy updates: Informing about changes in terms and policies
  • Security alerts: Notifying about suspicious activity
  • Customer surveys: Gathering feedback to improve service quality

3.4 Marketing and Business Development (With Consent)

  • Product recommendations: Suggesting relevant financial products
  • Promotional communications: Sending newsletters, market insights
  • Market research: Analyzing trends to develop new services
  • Performance analytics: Measuring campaign effectiveness

4. Information Sharing and Disclosure

4.1 Financial Service Providers

  • Banking partners: Secure transmission of account and transaction data
  • Credit reporting agencies: Sharing credit-related information
  • Payment processors: Encrypted payment information
  • Insurance providers: Relevant data for insurance products
  • Investment managers: Portfolio data for advisory services

4.2 Legal and Regulatory Requirements

  • Court orders: Complying with judicial requests
  • Regulatory authorities: Reporting to BaFin, ECB, and other supervisory bodies
  • Tax authorities: Providing required information for tax compliance
  • Law enforcement: Cooperating with legitimate investigations
  • Anti-money laundering: Reporting suspicious transactions

4.3 Business Transfers and Mergers

In the event of a merger, acquisition, or sale of assets, your personal information may be transferred to the new entity. We will provide notice before your personal information becomes subject to a different privacy policy, and you will have the opportunity to opt-out or request data deletion where legally permissible.

4.4 With Your Explicit Consent

We may share your information with third parties when you have given us explicit consent to do so, such as when you request specific services that require data sharing with our partners.

5. Data Security and Protection Measures

5.1 Technical Security Measures

  • Advanced encryption: AES-256 encryption for data at rest, TLS 1.3 for data in transit
  • Multi-factor authentication: Required for administrative access and customer accounts
  • Network security: Enterprise-grade firewalls, intrusion detection systems
  • Access controls: Role-based permissions, regular access reviews
  • Data backup: Encrypted, geographically distributed backups
  • Security monitoring: 24/7 monitoring, automated threat detection

5.2 Organizational Security Measures

  • Employee training: Mandatory security awareness training
  • Background checks: Comprehensive screening for employees
  • Confidentiality agreements: Legal obligations for all staff
  • Security policies: Comprehensive information security management system
  • Regular audits: Internal and external security assessments
  • Incident response: Detailed procedures for security breach response

5.3 Your Security Responsibilities

  • Strong passwords: Use unique, complex passwords
  • Device security: Keep devices updated and use security software
  • Secure connections: Only access your account from trusted networks
  • Logout practices: Always log out completely on shared devices
  • Phishing awareness: Be cautious of suspicious communications
  • Immediate reporting: Contact us if you suspect unauthorized access

5.4 Data Breach Notification

In the unlikely event of a data breach that may affect your personal information, we will notify you and relevant supervisory authorities within 72 hours of becoming aware of the breach, as required by GDPR. We will provide clear information about what happened and what steps we are taking.

6. Cookies and Tracking Technologies

Cookie TypePurposeDuration
Essential CookiesBasic website functionality, security, login authenticationSession
Functional CookiesUser preferences, language settings, personalizationUp to 1 year
Analytics CookiesWebsite usage analysis, performance monitoringUp to 2 years
Marketing CookiesPersonalized advertising, campaign measurementUp to 1 year

Additional Tracking Technologies:

  • Google Analytics: Traffic analysis, user behavior insights
  • Web beacons: Email engagement measurement
  • Local storage: Browser-based data storage
  • Session replay tools: Understanding user interactions

Cookie Management:
You can control cookies through your browser settings. Most browsers allow you to refuse cookies, delete existing cookies, or set preferences for specific websites. Please note that disabling certain cookies may affect website functionality.

7. Your Rights (GDPR/CCPA Compliance)

7.1 Right of Access

You have the right to request a copy of all personal data we hold about you.

7.2 Right to Rectification

If you believe any of your personal data is inaccurate or incomplete, you have the right to request correction.

7.3 Right to Erasure (Right to be Forgotten)

You may request the deletion of your personal data, subject to legal and regulatory limitations.

7.4 Right to Restrict Processing

You can request that we limit how we use your personal data while we investigate a complaint.

7.5 Right to Data Portability

You have the right to receive your personal data in a structured, machine-readable format.

7.6 Right to Object

You can object to our processing of your personal data for marketing purposes at any time.

7.7 Right Against Automated Decision-Making

You have the right not to be subject to decisions based solely on automated processing.

How to Exercise Your Rights:
To exercise any of these rights, please contact us using the information provided in the Contact section. We will respond within 30 days and may require identity verification.

8. Children’s Privacy

Our financial services are not intended for individuals under the age of 18. We do not knowingly collect personal information from children under 18. If you are a parent or guardian and believe that your child has provided us with personal information, please contact us immediately.

If we become aware that we have collected personal information from a child under 18 without parental consent, we will take steps to delete that information as quickly as possible.

9. International Data Transfers

9.1 Protection Measures

  • Adequacy decisions: Transfer to countries with adequate protection levels
  • Standard Contractual Clauses (SCCs): Binding agreements ensuring protection standards
  • Data processing agreements: Contractual obligations for third-party processors
  • Regular compliance audits: Monitoring international partners

9.2 Transfer Destinations

  • European Union: Primary data storage and processing within EU/EEA
  • United States: Cloud storage services with appropriate safeguards
  • Other jurisdictions: Only when necessary with proper protection measures

10. Data Retention Periods

Information TypeRetention PeriodReason
Account Information10 years after account closureLegal requirements, audit purposes
Transaction Records10 years from transaction dateFinancial reporting, tax compliance
Credit Reports7 years from assessment dateRisk management, regulatory compliance
Marketing Consent3 years after withdrawalConsent record keeping
Website LogsUp to 2 yearsSecurity monitoring, fraud detection
Customer Support Records5 years from last contactService quality, dispute resolution

Safe Data Disposal:

  • Electronic deletion: Secure overwriting making data unrecoverable
  • Physical destruction: Industrial shredding of documents
  • Backup purging: Systematic removal from backup systems
  • Disposal documentation: Records of data destruction

11. Third-Party Links and Services

Our website and services may contain links to external websites or services operated by third parties. We are not responsible for the privacy practices or content of these external sites. We encourage you to review the privacy policies of any third-party websites before providing them with your personal information.

When you click on third-party links or use integrated services, you are leaving our platform and are subject to the terms and privacy policies of those third-party providers.

12. Policy Changes and Updates

12.1 Change Notification Process

  • Website notification: Prominent notice on our homepage
  • Email notification: Direct communication to registered users
  • Account dashboard alert: In-app notification upon login
  • Explicit consent: Required for material changes affecting data processing

12.2 Staying Informed

The most current version of this privacy policy is always available on our website. We recommend checking the ‘Last Updated’ date periodically. Your continued use of our services after changes become effective constitutes acceptance of the updated policy.

13. Contact Information

Get in Touch
For any privacy-related questions, concerns, or requests, please don’t hesitate to contact us. We’re committed to addressing your privacy concerns promptly and transparently.

Hyphe Markets GmbH
Adelgundenstraße 2, 80538 München, Deutschland
Phone: +49 03841 711111
Email: info@hyphemarkets.it.com
Business Hours:
Monday – Friday: 9:00 AM – 6:00 PM
Saturday – Sunday: Closed

Response Commitment: We will respond to all privacy inquiries within 3 business days.

13.1 Filing Complaints

If you are not satisfied with how we handle your privacy concerns, you have the right to file a complaint with the relevant supervisory authority:

  • Germany: Federal Commissioner for Data Protection and Freedom of Information (BfDI)
  • Address: Graurheindorfer Str. 153, 53117 Bonn
  • Phone: +49 (0)228 997799-0
  • Email: poststelle@bfdi.bund.de

14. Withdrawal of Consent

14.1 Marketing Consent Withdrawal

  • Unsubscribe links: Click the unsubscribe link in any marketing email
  • Account settings: Manage preferences through your online account
  • Customer service: Contact us to opt out of marketing communications
  • Written request: Send a signed letter to our business address

14.2 Account Deletion Process

  1. Submit deletion request through customer service
  2. Identity verification to ensure account security
  3. Settlement of outstanding obligations
  4. Data retention notification for legal compliance
  5. Confirmation of account closure and data processing cessation

15. Conclusion

At Hyphe Markets GmbH, protecting your privacy is not just a legal obligation—it’s fundamental to our commitment to providing trustworthy financial services. We understand that your financial data is among your most sensitive personal information, and we treat it with the highest level of care and security.

This privacy policy reflects our dedication to transparency, compliance with German and European data protection laws, and respect for your rights as our valued customer. We continuously review and update our privacy practices to ensure they meet evolving regulatory requirements and industry best practices.

If you have any questions about this privacy policy or our data practices, we encourage you to contact us. Building and maintaining your trust through responsible data stewardship remains our top priority.

Thank you for choosing Hyphe Markets GmbH as your financial partner. Your privacy matters to us.

Scroll to Top