1. General conditions of use

Moneymax GmbH (“we”, “us”, or “our”) respects your privacy and is committed to protecting the personal data you provide when using our money transfer services. This Privacy Policy explains how we collect, use, store, and protect your personal data in compliance with Swiss Data Protection Law (FADP), the EU General Data Protection Regulation (GDPR), and the specific regulations for digital financial services, including our regulator and other applicable regulations governing money transfer companies.

2. Information We Collect

he term “personal data” refers to all information that relates to an identified or identifiable private individual. Data processing refers to all handling of personal data, regardless of the means and procedures used, in particular the acquisition, storage, retention, use, modification, publication, archiving, deletion or destruction of personal data.

We collect personal data through our online platform or mobile application to provide you with our money transfer services. This data is essential to facilitate transactions, ensure compliance with applicable regulations, and enhance your user experience. The types of data we collect include:

• Identification Data: Full name, date of birth, nationality, address, passport number, national ID, or any other government-issued identification numbers.
• Contact Information: Email address, phone number, billing address, and physical address.
• Financial Information: Bank account details, payment card information, source and destination of funds, transaction amounts, and transaction history.
• Online Activity Data: IP address, browser type, device information, and location data (if enabled).
• Security and Verification Data: Data collected for fraud detection, AML (Anti-Money Laundering), KYC (Know Your Customer) compliance, and identity verification.

By using our services, you consent to the collection and processing of this data, which is necessary to provide you with the requested services and to comply with financial regulations.

3. How We Use Your Data

We process your personal data for the following purposes:

• To provide money transfer services: We use your data to facilitate the sending and receiving of money, including processing payments and managing transfers.
• Compliance with legal and regulatory obligations: We are required to comply with regulations under our regulator, AML, KYC, and other financial service laws, which require us to verify your identity and report suspicious activities.
• Fraud prevention and security: We use your data to detect and prevent fraudulent activities and to secure transactions on our platform.
• Customer support: We use your contact information to resolve issues, answer queries, and support you in your use of our services.
• Marketing and promotions: We may send you marketing materials and promotional offers related to our services.
• Improving our services: We use your data to improve our platform and provide you with a better user experience by analyzing usage patterns, identifying issues, and enhancing functionality.

4. Legal Basis for Data Processing

We process your personal data under the following legal bases:

• Consent: For marketing purposes or when required by applicable laws, we process your data with your consent.
• Contractual necessity: To process and fulfill the money transfer transactions and services you request.
• Legal obligations: We are legally required to collect and process certain personal data to comply with regulations related to financial services, including AML, KYC, and tax reporting.
• Legitimate interest: We process data to prevent fraud, protect our services, improve user experience, and offer customer support.

5. Data Sharing and Third Parties

We do not sell or rent your personal data. However, we may share your data with the following third parties under strict contractual terms:

• Service providers: Third-party vendors, including payment processors, verification services, payout partners, fraud prevention services, and cloud hosting providers, that help us deliver and secure our services.
• Regulatory and law enforcement authorities: In compliance with applicable laws, for AML and KYC obligations, we may share data with financial authorities, regulatory bodies, and law enforcement agencies.
• Business partners: We may share limited data with trusted business partners for purposes related to our service offerings (only where permitted under Swiss law or other applicable laws).

We ensure that any third parties with whom we share your data maintain adequate data protection and privacy standards.

6. Data Security

We implement stringent technical, administrative, and physical safeguards to protect your personal data against unauthorized access, alteration, disclosure, or destruction. Our security measures include:

• Data encryption: Sensitive information is encrypted during transmission and storage to prevent unauthorized access.
• Secure authentication: We use strong authentication mechanisms to access accounts and perform transactions.
• Regular security audits: We conduct frequent security assessments to identify and address potential vulnerabilities.
• Access control: We limit access to personal data to only authorized personnel and ensure that they follow privacy and security protocols.

7. International Data Transfers

As a company that provides services online, we may transfer your personal data to countries outside of Switzerland or the European Economic Area (EEA), which may not have the same level of data protection as Switzerland or the EU. In these cases, we ensure that appropriate safeguards, such as Standard Contractual Clauses or other legally acceptable transfer mechanisms, are in place to protect your data.

8. Your Data Protection Rights

Under Swiss Data Protection Law (FADP) and the GDPR (where applicable), you have the following rights regarding your personal data:

• Right to Access: You can request a copy of the personal data we hold about you.
• Right to Rectification: You can correct or update inaccurate or incomplete data.
• Right to Erasure: You can request the deletion of your personal data when it is no longer necessary for the purposes for which it was collected, subject to legal obligations.
• Right to Restriction: You can request that we limit the processing of your data in certain circumstances.
• Right to Data Portability: You can request your data in a structured, commonly used, and machine-readable format for transfer to another service provider.
• Right to Object: You can object to the processing of your data for marketing purposes or based on legitimate interests.
• Right to Withdraw Consent: You can withdraw your consent for data processing at any time.

To exercise these rights, please contact us using the contact details provided below.

9. Data Retention

Your personal data will be stored for as long as is necessary to fulfil contractual, legal or regulatory obligations or to comply with internal requirements. The personal data will be stored for the duration of the business relationship or the duration of the contract and subsequently for 10 years in principle (depending on the applicable legal basis). Ongoing or anticipated legal or regulatory proceedings or other overriding interests may result in the retention of data beyond this time period. If there is no longer a reason for keeping them, they will be deleted or anonymized as far as technically possible.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, services, or legal requirements. Any updates will be posted on our website, and we will notify you of significant changes. Please review this Privacy Policy periodically to stay informed.

11. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or how we handle your personal data, please contact us at:

Moneymax GmbH

compliance@themoneymax.ch

12. Change to the Privacy Policy

We reserve the right to amend the Privacy Policy if necessary. The current version published on our website applies.

This Privacy Policy was last revised in November 2025.