Privacy Policy
Last updated: October 2025
This Privacy Policy explains how Satoshi Connect SA (“Satoshi Connect”, “we”, “us”, “our”) collects, uses, stores, and protects personal data when you visit our website or use our services.
We handle personal data in accordance with the Swiss Federal Act on Data Protection (FADP) and other applicable Swiss laws and regulations.
We may update this Policy at any time to reflect changes in our services, business practices, or legal requirements. The date above shows the most recent version.
1. Controller
Satoshi Connect SA
CHE-213.053.544
Rue Saint-Honoré 2
2000 Neuchâtel, Switzerland
Email: privacy@satoshi-connect.ch
2. What Our Website Collects Today
Our website does not collect personal data and does not use cookies, analytics, or other tracking technologies.
If this changes, we will update this Policy to clearly describe any data collected, the purpose, and the options available to users.
3. Data We Process to Provide Our Services
When you use our regulated services, we may process personal data required by Swiss law and regulation. This can include:
- Identification data: name, date of birth, nationality;
- Contact details: address, email, phone number;
- Verification documents: ID copies, proof of address, beneficial ownership details, information for sanctions screening;
- Financial and transactional data: bank account information, payment records, transaction history;
- Communication data: emails, support interactions, onboarding correspondence.
4. Purposes and Legal Bases
We process personal data only when lawful and necessary.
| Purpose | Legal basis |
|---|---|
| Identity verification (KYC), anti-money-laundering (AML), and due diligence checks | Compliance with the Swiss Anti-Money Laundering Act (LBA/AMLA) and related obligations |
| Providing and operating our services | Performance of a contract |
| Client communications and support | Legitimate interest in operating and improving our services |
| Security, fraud prevention, and risk management | Legitimate interest and compliance duties |
| Legal, regulatory, audit, and record-keeping obligations | Compliance with legal obligations |
When we rely on legitimate interests, we ensure that our interests are balanced against your rights. If we request your consent for any optional purpose, you may decline or withdraw it at any time.
5. Storage Location and Retention
Location
We store and process personal data using infrastructure located exclusively in Switzerland.
We make a continuous effort to keep all systems, databases, backups, and core technical providers in Switzerland whenever possible.
If, in the future, certain processing activities require infrastructure or partners outside Switzerland, we will update this Policy to identify the relevant jurisdictions and the safeguards implemented to ensure an adequate level of protection.
Retention
We retain client and transaction data as required by Swiss law. Records kept under AML obligations are typically retained for ten years after the end of the business relationship or the completion of a transaction.
6. Disclosures and Transfers
We do not sell or rent personal data. We only disclose personal data when necessary for legal, regulatory, or operational reasons, including to:
- Identity verification providers: when required to meet KYC and AML obligations;
- Regulators, supervisory bodies, and law enforcement: when required by Swiss law;
- Professional service providers such as auditors, compliance partners, and legal advisers, all bound by Swiss confidentiality and data-protection duties.
We do not transfer personal data outside Switzerland unless strictly necessary.
If a transfer is ever required, we use legally valid safeguards and ensure that the destination provides a level of protection equivalent to Swiss law.
7. Security
We apply technical and organisational measures to protect personal data against unauthorised access, hacking or other cyberattacks, as well as loss, misuse, or alteration, in proportion to the risks involved.
8. Your Rights
Under the Swiss FADP, you have the right to:
- Request information about whether we process your personal data and obtain a copy;
- Request correction of inaccurate or incomplete data;
- Request deletion where permitted by law and not in conflict with legal retention obligations;
- Object to or request restriction of certain processing activities;
- Exercise data portability, where applicable;
- Lodge a complaint with the Federal Data Protection and Information Commissioner (FDPIC) if you believe your rights are being infringed.
Requests can be sent to privacy@satoshi-connect.ch.
We may ask for proof of identity to protect your data.
9. Data Breaches
If a data breach occurs that may result in a high risk to your rights, we will notify the FDPIC as soon as possible and inform affected individuals if necessary, in accordance with Swiss law.
10. Third-Party Websites
Our website may contain links to external websites. We are not responsible for their privacy practices. Please review the privacy policies of those third parties when visiting their websites.
12. Changes to This Policy
We may amend or update this Policy at any time to reflect changes in our services, technologies, or legal obligations.
The latest version will always be available at https://satoshi-connect.ch/legal/privacy-policy.
Continued use of our website or services after an update means you accept the revised Policy.