Privacy policy

1. Scope of application

The user acknowledges that his IP or Internet Protocol address, which is the digital address of the user’s device (pc, mobile phone, …) connected to the internet, is collected when logging into the Birdee website, and that Birdee is allowed to respond to requests for information from the public authorities in case of unauthorized use, abuse, fraudulent use or breach of the provisions of the General Conditions of Use. The information related to the IP addresses will be kept temporarily and will not be used in other situations than the ones mentioned above.

In accordance with the European General Data Protection Regulation (GDPR), this Privacy Policy governs processing of personal data (i.e. data by which an individual may be directly or indirectly identified) by Birdee a société anonyme incorporated under the laws of the Grand Duchy of Luxembourg, having its registered office located at 59, Boulevard Royal, L-2449 Luxembourg, registered with the Luxembourg trade and companies register under number B213539, and authorised by the Luxembourg supervisory authority of the financial sector (the Commission de surveillance du secteur financier, the CSSF) as a discretionary portfolio manager under article 24-3 of the Luxembourg act of 5 April1993 on the financial sector, as amended with respect to a User of the Application Site.

This Privacy Policy should be read in conjunction with the Management Agreement and the Terms of Use. In case of discrepancies between the Privacy Policy and the Management Agreement, the Privacy Policy shall prevail.

The User acknowledges having read and understood the Privacy Policy on the Application Site which is available via following URL co and/or the application for mobile devices named Birdee which can be downloaded on App Store or Google Play.

In case the User disagrees with the Privacy Policy, (s)he shall not consult and/or use the Application Site.

 

2. Purposes for which personal data is processed

Birdee may process (which includes, storage, amendment, communication, use, etc.) personal data collected from the User and its beneficial owner(s) (such as name, address, profession, date of birth, nationality, etc.) to fulfil its contractual obligations towards the User (including the access to the Application Site and the discretionary portfolio management services under the Management Agreement), for accounting purposes and remuneration payments, marketing activities, litigation purposes, to create statistics and improve products and services, to perform creditworthiness and solvency checks, for fraud prevention and detection purposes, to perform internal investigations, to ensure compliance with applicable laws (including but not limited to AML and KYC obligations) and the prudent and sound management of the risks of Birdee and to comply with statutory and regulatory obligations imposed on Birdee.

Where the data is processed for the purposes of marketing activities, litigation, to create statistics and improve products and services, to perform creditworthiness and solvency checks, for fraud prevention and detection purposes, to perform internal investigations in order to ensure compliance with applicable laws and the prudent and sound management of the risks of Birdee, the processing is based on a legitimate interest of Birdee.

 

3. Communication of User data to third parties

To the extent permitted by the User or required or authorised by applicable law and regulations, the User’s data may be communicated to third parties (such as other entities belonging to the same group of companies as Birdee, service providers or business partners to the extent necessary for the purposes referred to above) as well as to local supervisory or enforcement authorities in compliance with applicable laws. The service providers are obliged to process these data in a confidential way and to use them only for the purpose for which they were requested. These data recipients may be located outside of the European Economic Area, in countries which may not provide for a similar level of protection for personal data as is available within the EEA. Birdee will implement appropriate organisational and technical safeguards to protect the personal data for which it acts as data controller at all times.

The User is reminded that (s)he authorises (and procures such authorization from its beneficial owner(s)) Birdee to transfer such data to third-party including the custodian bank, and service providers for KYC checks in order for Birdee to be able to perform its obligation under the Management Agreement.

It shall be noted that when downloading the app, the relevant application store will not act as a service provider (so-called processor) to Birdee, but will act as independent data controller. The User shall thus carefully read the privacy policy of such application store, which will govern the collection by the application store of User data. Birdee shall not be responsible for the processing of personal data by the application store.

 

4. User rights

In accordance with the legislation concerning the protection of personal data, the user and his beneficial owner have the right to access and correct their data. As such, they may access their personal data at reasonable intervals free of charge, and the User and its beneficial owner(s) may modify or request correction of his/her personal data, free of charge if necessary. These rights may be executed directly on the Application Site or by contacting Birdee via the Application Site.

The User and its beneficial owner(s) also have the right of suppression and opposition, and may object to the processing of data for marketing purposes at any time by contacting Birdee. They may do so by written request sent by postal mail or by e-mail to the following address: compliance@birdee.co.

As these rights may only be exercised by the person concerned by these data, he might be asked to provide us with a copy of his ID-card, in accordance with the provisions in force.

The refusal to communicate personal data to Birdee and the interdiction to transfer these data to an electronic storage medium could prevent the entering into relationship or the maintaining of existing relationships. The User confirms that it has informed the beneficial owners about the potential processing of their personal data by Birdee, as well as the existence of the beneficial owner’s rights to access and rectify their personal data in accordance with this clause 4.

In case the user feels that his rights have been violated, he is also entitled to call upon a supervisory authority.

 

5. Data retention

The data will be kept for the duration necessary for the achievement of the purposes referred above and in any case no longer than permitted by applicable law.

In case the client has signed a wealth management service agreement, Birdee will keep the client’s personal data for at least the duration of the contract. At the end of the contract, the personal data will be stored for record-keeping and evidence purposes for as long as legally required. The personal data will be archived on a reliable and sustainable storage medium in order to provide a true and long lasting copy, in accordance with the legislation in force.

 

6. Cookies

Birdee may place cookies on the User’s computing devices which a User uses to access the Application Site for the following purposes:

Should the user not wish to have cookies placed on his computing devices, he should adjust the browser settings accordingly. Most browsers will provide information on how to prevent the browser from accepting new cookies, how to be notified when a new cookie is placed and how to disable cookies altogether. Additionally, similar data used by browser add-ons, such as Flash cookies may be disabled or deleted, by changing the add-on’s settings or visiting the website of its manufacturer.

 

7. IP address

The user acknowledges that his IP or Internet Protocol address, which is the digital address of the user’s device (pc, mobile phone, …) connected to the internet, is collected when logging into the Birdee website, and that Birdee is allowed to respond to requests for information from the public authorities in case of unauthorized use, abuse, fraudulent use or breach of the provisions of the General Conditions of Use. The information related to the IP addresses will be kept temporarily and will not be used in other situations than the ones mentioned above.

 

8. Amendment of the Privacy Policy

Birdee reserves the right to amend the Privacy Policy at any time by notifying the User. The amendments are deemed to be known by the User (which the User expressly acknowledges and accepts by accepting these terms of Use) if the User has not addressed a written objection to Birdee within thirty (30) calendar days of dispatch of the notification by Birdee regarding the amendments. If the User objects to the amendments, the User is entitled to terminate the Management Agreement with Birdee within the thirty (30) calendar days’ time frame above. In case the User objects to the amendments, either party may terminate the Privacy Policy and the Management Agreement in accordance with clause 18(3) of the Management Agreement.