At Aphelion AI LLC we understand that the privacy of your data is as important as the security of your capital. This Policy describes what information we collect, why we need it, how we protect it, and the rights you have over it.
Our commitment. We do not sell personal data to third parties. All information is used exclusively to operate the Platform and to fulfill our obligations to you.
Information We Collect
We collect only the data necessary to operate the Platform securely:
Account Data
First name, last name, email, encrypted password, country of residence.
Financial Data
TRC-20 wallet, deposit history, withdrawals, active cycles, and returns.
Technical Data
IP address, device, browser, and session logs for fraud detection.
Communications
Emails sent, support inquiries, and interactions with the support chat.
How We Use Your Information
- Operate the Platform and process deposits, cycles, and withdrawals.
- Verify identity and prevent fraud or money laundering.
- Send confirmations, operational alerts, and account updates.
- Comply with legal obligations and requirements from competent authorities.
- Improve user experience and the technical security of the system.
Legal Basis for Processing
Processing of your data is based on:
- Contractual performance: data necessary to deliver the service.
- Consent: optional data for product communications.
- Legal obligation: data required by anti-money-laundering laws or applicable regulations.
- Legitimate interest: technical data necessary for the security of the Platform.
Sharing with Third Parties
We do not sell or rent your personal data. We only share it with:
- Infrastructure providers (Supabase, Resend, Netlify) under strict confidentiality agreements.
- Competent authorities when there is a valid legal requirement.
- External auditors retained to verify operational performance, without access to personally identifiable data.
Data Security
We implement technical and organizational measures to protect your data:
- TLS 1.3 encryption on all communications.
- AES-256 encryption at rest in storage.
- Row-Level Security (RLS) in the database: each user can only access their own information.
- Strong authentication with JWT tokens and email confirmation.
- Continuous monitoring against unauthorized access.
Retention and Deletion
We retain your data for the time necessary to fulfill the purposes described in this Policy. After your account is closed, data may be kept for up to 5 years due to legal requirements (anti-money-laundering, tax). After that period, data is irreversibly deleted or anonymized.
Your Rights
At any time you can:
- Access a copy of the data we hold about you.
- Rectify inaccurate or outdated data.
- Request deletion of your account and associated data.
- Object to processing for marketing purposes.
- Port your data to another provider in a structured format.
To exercise any of these rights, write to us at privacy@aphelionai.com. We will respond within a maximum of 30 days.
Cookies and Similar Technologies
We use cookies strictly necessary to keep your session active and operate the site. We do not use advertising tracking cookies and do not share browsing information with external advertising networks. You can configure your browser to block cookies, although that may limit how the Platform works.
International Transfers
Some of our technology providers operate servers outside your country of residence. These transfers are made under standard contractual clauses that guarantee the same level of protection required by our jurisdiction.
Changes to This Policy
We may update this Policy to reflect legal, operational, or technological changes. Any material modification will be communicated by email at least 30 days before it takes effect. The current version will always be available on this page.
Contact. For any question about privacy or data protection, write to us at privacy@aphelionai.com. You can also contact our Data Protection Officer at the same address.