1. Introduction and Scope
This Privacy Policy ("Policy") describes how FxLvl ("we," "us," "our," or "Company") collects, uses, processes, stores, shares, and protects your personal information when you access or use our website (fxlvl.com), trading platform, evaluation programs, live trading services, mobile applications, and all associated services (collectively, the "Service"). This Policy applies to all users, visitors, traders, and anyone who interacts with our Service in any capacity. By accessing or using our Service, creating an account, or submitting any personal information to FxLvl, you acknowledge that you have read, understood, and agree to the data practices described in this Policy. If you do not agree with our privacy practices, you should immediately discontinue use of our Service and refrain from providing any personal information. This Policy should be read in conjunction with our Terms and Conditions, which govern your overall relationship with FxLvl.
2. Information We Collect
We collect various categories of information to provide, maintain, protect, and improve our Service. The information we collect includes:
2.1 Personal Identification Information: When you register for an account or participate in our evaluation programs, we collect: (a) Full legal name as it appears on government-issued identification; (b) Email address for account communication and verification; (c) Phone number for account security and support purposes; (d) Date of birth to verify age eligibility; (e) Residential address including street, city, state/province, postal code, and country; (f) Nationality and citizenship information; (g) Government-issued identification documents (passport, driver's license, national ID card) for Know Your Customer (KYC) verification; (h) Proof of address documentation (utility bills, bank statements) for Anti-Money Laundering (AML) compliance; (i) Selfie photographs or video verification for identity authentication; (j) Tax identification numbers or equivalent tax documentation as required by law.
2.2 Financial and Payment Information: To process transactions and facilitate payouts, we collect: (a) Payment method details including credit/debit card information (processed securely through third-party payment processors); (b) Cryptocurrency wallet addresses for digital currency transactions; (c) Bank account information including account numbers, routing numbers, SWIFT/BIC codes, and IBAN for wire transfers; (d) Payment processor account details (PayPal, Wise, Payoneer, etc.); (e) Billing addresses and invoice information; (f) Transaction history including purchase dates, amounts, payment methods used, and transaction IDs; (g) Refund and chargeback records. Note: We do not directly store complete credit card numbers or sensitive financial credentials on our servers. This information is securely processed and stored by PCI DSS-compliant third-party payment processors.
2.3 Trading and Performance Data: To evaluate your trading skills and monitor account performance, we collect: (a) Trading account credentials and login information for trading platforms (MetaTrader 4, MetaTrader 5, etc.); (b) Complete trading history including all opened and closed positions, order types, entry/exit prices, trade duration, and profit/loss; (c) Account balance, equity, margin levels, and drawdown calculations; (d) Risk management metrics including position sizing, leverage usage, and exposure levels; (e) Trading strategy indicators such as win rate, average profit/loss per trade, and consistency scores; (f) Trading session times, frequency, and duration; (g) Use of Expert Advisors (EAs), trading bots, or automated systems; (h) Compliance with trading rules and violation records; (i) Evaluation phase progress and milestone achievements; (j) Payout request history and withdrawal patterns.
2.4 Technical and Usage Information: When you access our Service, we automatically collect: (a) IP address and geolocation data (country, region, city) to detect suspicious activity and enforce geographic restrictions; (b) Device information including type (desktop, mobile, tablet), operating system, browser type and version, screen resolution, and device identifiers; (c) Website navigation patterns including pages visited, links clicked, time spent on each page, and referral sources; (d) Platform interaction data such as feature usage, button clicks, form submissions, and user preferences; (e) Login timestamps, session duration, and access frequency; (f) Cookies, web beacons, pixel tags, and similar tracking technologies (see Section 11 for detailed cookie information); (g) Error logs, crash reports, and debugging information to improve platform stability; (h) API usage statistics and third-party integration data.
2.5 Communications and Support Data: We retain records of your interactions with our team, including: (a) Customer support tickets, inquiries, and correspondence; (b) Live chat conversations and chatbot interactions; (c) Email communications, newsletters, and marketing messages; (d) Phone call recordings (where permitted by law and with prior notice); (e) Feedback, surveys, reviews, and testimonials you provide; (f) Social media interactions and public comments on our official channels; (g) User-generated content including forum posts, community discussions, and shared trading insights.
2.6 Information from Third-Party Sources: We may obtain additional information about you from trusted third parties to enhance our Service and verify your identity, including: (a) Identity verification services and KYC/AML compliance providers; (b) Credit bureaus and fraud detection agencies (where legally permitted); (c) Public databases, government registries, and sanctions screening lists; (d) Social media platforms if you choose to link your account or share information publicly; (e) Marketing partners and affiliate networks; (f) Analytics providers and data enrichment services; (g) Trading platform providers and broker partners. All third-party data is handled in accordance with applicable privacy laws and the respective third party's privacy policy.
3. How We Use Your Information
FxLvl processes your personal information for the following legitimate business purposes, based on legal grounds including your consent, contractual necessity, legal compliance, and legitimate business interests:
3.1 Account Management and Service Delivery: (a) Creating, maintaining, and managing your FxLvl account; (b) Processing your evaluation program purchases and granting access to trading environments; (c) Monitoring your trading performance against established rules and objectives; (d) Evaluating your qualification for live trading account access; (e) Managing account upgrades, scaling plans, and program transitions; (f) Providing access to educational resources, tools, and platform features; (g) Sending transactional notifications including account status updates, rule violations, and milestone achievements.
3.2 Payment Processing and Financial Operations: (a) Processing payments for evaluation programs, account fees, and additional services; (b) Facilitating payout requests and profit withdrawals for qualified traders; (c) Maintaining accurate financial records and transaction histories; (d) Detecting and preventing payment fraud, chargebacks, and unauthorized transactions; (e) Complying with financial regulations, tax reporting requirements, and audit obligations; (f) Resolving payment disputes and processing refunds where applicable.
3.3 Identity Verification and Compliance: (a) Verifying your identity to prevent fraud, money laundering, and unauthorized access; (b) Conducting KYC (Know Your Customer) and AML (Anti-Money Laundering) screening procedures; (c) Performing sanctions list checks and politically exposed persons (PEP) screening; (d) Ensuring compliance with applicable financial regulations, trading laws, and licensing requirements; (e) Responding to legal requests, court orders, subpoenas, and regulatory inquiries; (f) Preventing underage access and enforcing age restrictions; (g) Maintaining compliance with international data protection and privacy laws.
3.4 Platform Security and Fraud Prevention: (a) Detecting suspicious activity, unauthorized access attempts, and security threats; (b) Preventing account takeovers, credential stuffing, and brute force attacks; (c) Identifying and blocking prohibited trading strategies including latency arbitrage and system exploitation; (d) Monitoring for coordinated trading, account sharing, and rule violations; (e) Investigating user complaints, disputes, and potential terms of service violations; (f) Implementing risk management systems and automated monitoring tools; (g) Protecting against malware, phishing, denial-of-service attacks, and other cyber threats.
3.5 Service Improvement and Analytics: (a) Analyzing user behavior, preferences, and engagement patterns to enhance our platform; (b) Conducting A/B testing, feature experimentation, and user experience research; (c) Developing new products, services, evaluation programs, and trading tools; (d) Identifying technical issues, performance bottlenecks, and areas for optimization; (e) Generating anonymized and aggregated statistics for business intelligence purposes; (f) Measuring the effectiveness of our marketing campaigns and user acquisition channels.
3.6 Customer Support and Communication: (a) Responding to your inquiries, support requests, and technical issues; (b) Providing personalized assistance, troubleshooting guidance, and account recovery services; (c) Sending important service announcements, policy updates, and platform notifications; (d) Soliciting feedback through surveys, polls, and satisfaction assessments; (e) Resolving disputes, complaints, and conflicts between users or with third parties.
3.7 Marketing and Promotional Activities: (where you have provided consent or where permitted by law) (a) Sending newsletters, promotional offers, and educational content about our services; (b) Delivering personalized recommendations and targeted advertising based on your interests; (c) Conducting contests, giveaways, referral programs, and loyalty rewards; (d) Sharing success stories, testimonials, and performance highlights (with your explicit permission); (e) Engaging with you through social media, email campaigns, and retargeting advertisements; (f) Analyzing marketing effectiveness and return on investment for various channels.
4. Legal Basis for Processing (GDPR Compliance)
For users in the European Economic Area (EEA), United Kingdom, and other jurisdictions with similar data protection laws, we process your personal information based on the following legal grounds: (a) Consent: Where you have explicitly agreed to our processing of your data for specific purposes such as marketing communications, optional features, or non-essential cookies; (b) Contractual Necessity: Where processing is necessary to fulfill our contractual obligations to you, including account creation, service delivery, payment processing, and performance evaluation; (c) Legal Obligation: Where we are required to process your data to comply with applicable laws, regulations, court orders, or regulatory requests, including KYC/AML requirements, tax reporting, and anti-fraud measures; (d) Legitimate Interests: Where processing is necessary for our legitimate business interests or those of third parties, provided these interests are not overridden by your fundamental rights and freedoms. Legitimate interests include fraud prevention, platform security, service improvement, direct marketing to existing customers, and business analytics; (e) Vital Interests: In rare circumstances, where processing is necessary to protect your vital interests or those of another person, such as preventing harm or ensuring safety.
5. Payment Processing and Financial Data Security
FxLvl partners with industry-leading, PCI DSS Level 1 certified payment processors to handle all financial transactions securely. We currently integrate with payment providers including Stripe, PayPal, NowPayments, and other trusted financial institutions. Critical Security Notice: FxLvl does not directly collect, process, or store your complete credit card numbers, CVV codes, or sensitive payment credentials on our servers. When you enter payment information, it is transmitted directly to our payment processors using industry-standard SSL/TLS encryption and tokenization technology. We receive only limited information such as the last four digits of your card, card type, expiration date, and transaction authorization status. All payment data handling is governed by the respective payment processor's privacy policy and security standards. We retain transaction records including payment dates, amounts, payment methods used (without full card details), and transaction IDs for accounting, tax compliance, dispute resolution, and fraud prevention purposes. If you have questions about how your payment information is handled, please review the privacy policies of our payment partners or contact our support team.
6. Data Sharing and Third-Party Disclosure
FxLvl is committed to protecting your privacy and does not sell, rent, trade, or otherwise commercialize your personal information to third parties for their marketing purposes. However, we may share your information with the following categories of third parties under strict contractual safeguards and data protection agreements:
6.1 Service Providers and Business Partners: We engage trusted third-party vendors who assist us in operating our platform and delivering our services, including: (a) Payment processors and financial service providers (Stripe, PayPal, NowPayments, banking institutions); (b) Identity verification and KYC/AML compliance services; (c) Cloud hosting and infrastructure providers (AWS, Google Cloud, Azure); (d) Email delivery and communication platforms; (e) Customer relationship management (CRM) and support ticketing systems; (f) Trading platform providers and broker partnerships; (g) Analytics and business intelligence tools; (h) Marketing automation and advertising platforms; (i) Security and fraud detection services. All service providers are contractually required to maintain the confidentiality and security of your information and are prohibited from using it for any purpose other than providing services to FxLvl.
6.2 Legal and Regulatory Authorities: We may disclose your information when required or permitted by law, including: (a) Compliance with subpoenas, court orders, legal processes, or governmental requests; (b) Response to requests from law enforcement agencies, regulatory bodies, or tax authorities; (c) Enforcement of our Terms and Conditions, policies, or legal rights; (d) Investigation of suspected fraud, illegal activity, security threats, or violations of our terms; (e) Protection of the rights, property, safety, or security of FxLvl, our users, or the public; (f) Fulfillment of anti-money laundering (AML), counter-terrorist financing (CTF), and sanctions screening obligations.
6.3 Business Transfers and Corporate Transactions: In the event of a merger, acquisition, reorganization, asset sale, bankruptcy, or other business transaction involving FxLvl, your personal information may be transferred to the successor entity or acquiring party. In such cases, we will provide notice and ensure that the receiving party agrees to handle your data in accordance with this Privacy Policy or will obtain your consent where required by law.
6.4 Affiliates and Group Companies: We may share information with our parent companies, subsidiaries, affiliates, or other entities under common ownership or control for purposes consistent with this Privacy Policy, including shared services, consolidated reporting, and group-wide security measures.
6.5 Public Information and Consent-Based Sharing: With your explicit consent, we may publicly share: (a) Trading performance statistics, profit screenshots, and payout certificates as promotional testimonials; (b) Success stories, case studies, and trader spotlights; (c) Leaderboard rankings and competition results; (d) User-generated content including reviews, feedback, and social media posts. You can withdraw consent for such sharing by contacting our support team.
7. Data Retention and Deletion
FxLvl retains your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, comply with legal obligations, resolve disputes, enforce agreements, and maintain security. Specific retention periods include: (a) Account Information: Retained for the duration of your active account and for a reasonable period thereafter to facilitate account reactivation, address support inquiries, and comply with legal requirements; (b) Trading and Performance Data: Retained for as long as necessary to evaluate performance, process payouts, resolve disputes, and maintain accurate records for regulatory compliance; (c) KYC/AML Documentation: Retained for a minimum of five (5) to seven (7) years after account closure or final transaction, as required by anti-money laundering regulations and financial record-keeping laws; (d) Transaction and Financial Records: Retained for a minimum of seven (7) years to comply with tax laws, accounting standards, and audit requirements; (e) Communication Records: Retained for a reasonable period to address ongoing support matters, legal claims, and quality assurance purposes; (f) Security and Fraud Logs: Retained for as long as necessary to protect against security threats, investigate fraud, and defend legal claims; (g) Marketing Data: Retained until you withdraw consent or request deletion, after which we will cease marketing activities and remove non-essential data. When personal information is no longer needed, we securely delete or anonymize it using industry-standard data destruction methods including secure wiping, cryptographic erasure, and physical destruction of storage media. In some cases, we may retain anonymized, aggregated, or de-identified data for analytics and research purposes, which cannot be used to identify you personally.
8. Your Privacy Rights and Data Control
Depending on your jurisdiction, you may have the following rights regarding your personal information. To exercise any of these rights, please contact us at support@fxlvl.com with your request and proof of identity:
8.1 Right to Access: You have the right to request confirmation of whether we process your personal data and to obtain a copy of the information we hold about you, including details about how it is used and with whom it is shared.
8.2 Right to Rectification: You may request correction of inaccurate, incomplete, or outdated personal information. We will make reasonable efforts to update your information promptly upon verification.
8.3 Right to Erasure (Right to be Forgotten): You may request deletion of your personal data in certain circumstances, such as when it is no longer necessary for the purposes for which it was collected, you withdraw consent, or you object to processing. However, we may retain certain information where legally required for compliance, dispute resolution, fraud prevention, or legitimate business interests.
8.4 Right to Restriction of Processing: You may request that we limit the processing of your personal information in specific situations, such as when you contest the accuracy of data, object to processing, or during the resolution of a legal claim.
8.5 Right to Data Portability: Where technically feasible and legally applicable, you have the right to receive your personal data in a structured, commonly used, machine-readable format and to transmit it to another service provider.
8.6 Right to Object: You may object to processing of your personal data based on legitimate interests, including for direct marketing purposes. We will cease processing unless we demonstrate compelling legitimate grounds that override your interests or need to process data for legal claims.
8.7 Right to Withdraw Consent: Where processing is based on your consent, you have the right to withdraw that consent at any time. Withdrawal does not affect the lawfulness of processing prior to withdrawal.
8.8 Right to Lodge a Complaint: You have the right to file a complaint with your local data protection authority or supervisory body if you believe your privacy rights have been violated.
To protect your privacy and security, we may request identity verification before processing your request. We will respond to verified requests within the timeframes required by applicable law, typically within 30 days. Some requests may take longer to process, in which case we will inform you of the delay and expected timeframe.
9. GDPR Rights for European Users
If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, you have additional rights under the General Data Protection Regulation (GDPR) and equivalent UK data protection laws: (a) All rights outlined in Section 8 apply to you with enhanced protections; (b) You have the right to lodge complaints with your national Data Protection Authority (DPA) or the Information Commissioner's Office (ICO) in the UK; (c) We maintain a lawful basis for all processing activities as described in Section 4; (d) You can request detailed information about our data protection officer (if applicable), data processing agreements, and cross-border data transfer mechanisms; (e) Where we transfer your data outside the EEA or UK, we implement appropriate safeguards such as Standard Contractual Clauses (SCCs), adequacy decisions, or binding corporate rules to ensure equivalent protection. For GDPR-related inquiries, data subject requests, or to contact our privacy team, please email privacy@fxlvl.com.
10. California Privacy Rights (CCPA/CPRA)
If you are a California resident, you have specific rights under the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA): (a) Right to Know: You can request disclosure of the categories and specific pieces of personal information we have collected about you in the past 12 months, including sources, purposes, and third parties with whom we share data; (b) Right to Delete: You can request deletion of your personal information, subject to certain exceptions; (c) Right to Correct: You can request correction of inaccurate personal information; (d) Right to Opt-Out of Sale/Sharing: While we do not sell personal information in the traditional sense, we may share data with advertising partners. You can opt out of such sharing at any time; (e) Right to Limit Sensitive Personal Information: You can request limits on the use of sensitive personal information; (f) Right to Non-Discrimination: You have the right to exercise privacy rights without receiving discriminatory treatment, different pricing, or reduced service quality. To submit a CCPA/CPRA request, please contact us at support@fxlvl.com or use our designated online request form. We will verify your identity before processing requests and respond within 45 days, with a possible 45-day extension if necessary. You may designate an authorized agent to make requests on your behalf by providing written authorization and proof of identity.
11. Cookies and Tracking Technologies
FxLvl uses cookies, web beacons, pixel tags, local storage, and similar tracking technologies to enhance your experience, analyze usage patterns, and deliver personalized content. Types of Cookies We Use: (a) Essential/Strictly Necessary Cookies: Required for basic platform functionality, account authentication, security features, and session management. These cannot be disabled without affecting core services; (b) Performance and Analytics Cookies: Collect anonymized data about how you use our platform, including page views, navigation paths, error rates, and performance metrics. We use services like Google Analytics, Mixpanel, and similar tools; (c) Functional Cookies: Remember your preferences, settings, language choices, and customization options to provide a more personalized experience; (d) Marketing and Advertising Cookies: Track your browsing behavior across websites to deliver targeted advertisements, measure campaign effectiveness, and enable retargeting. We use platforms like Google Ads, Facebook Pixel, and affiliate tracking systems. Managing Cookie Preferences: You can control cookie settings through your browser preferences to block, delete, or receive notifications about cookies. Most browsers allow you to: (1) View and delete existing cookies; (2) Block all cookies or third-party cookies; (3) Enable "Do Not Track" signals. Please note that disabling certain cookies may limit platform functionality, prevent access to specific features, or result in a less personalized experience. For more information about managing cookies, visit your browser's help documentation or www.aboutcookies.org.
12. Do Not Track Signals and Behavioral Advertising
Some web browsers transmit "Do Not Track" (DNT) signals to websites. Currently, there is no universal standard for how websites should respond to DNT signals. At this time, our platform does not respond to DNT browser signals. However, we limit unnecessary data collection and provide multiple options to control your privacy preferences, including cookie management, opt-out mechanisms for marketing communications, and granular privacy settings within your account dashboard. To opt out of interest-based advertising from participating companies, you can visit: (a) Network Advertising Initiative (NAI) opt-out page: www.networkadvertising.org/choices; (b) Digital Advertising Alliance (DAA) opt-out page: www.aboutads.info/choices; (c) European Interactive Digital Advertising Alliance (EDAA): www.youronlinechoices.eu (for European users).
13. Third-Party Analytics and Advertising Partners
We utilize third-party analytics and advertising services to understand user behavior, measure performance, and optimize our marketing efforts. These partners may collect information through cookies and similar technologies, subject to their own privacy policies. Key partners include: (a) Google Analytics: Tracks website traffic, user demographics, and engagement metrics. Privacy Policy: policies.google.com/privacy; (b) Facebook Pixel: Measures ad campaign effectiveness and enables custom audience targeting. Privacy Policy: www.facebook.com/privacy/explanation; (c) Advertising Networks: We may work with various ad networks and affiliate platforms that collect browsing data to serve targeted advertisements. All third-party partners are selected based on their commitment to data protection and compliance with applicable privacy laws. We require partners to handle data responsibly and in accordance with our standards, but we are not responsible for their privacy practices. We encourage you to review the privacy policies of these third parties for detailed information about their data handling practices.
14. International Data Transfers
FxLvl operates globally and may transfer, store, and process your personal information in countries outside your country of residence, including countries that may not provide the same level of data protection as your jurisdiction. When we transfer data internationally, we implement appropriate safeguards to protect your information, including: (a) Standard Contractual Clauses (SCCs): EU-approved contractual terms that ensure adequate protection for data transferred from the EEA or UK to third countries; (b) Adequacy Decisions: Transfers to countries recognized by the European Commission or UK government as providing adequate data protection; (c) Binding Corporate Rules (BCRs): Internal policies approved by data protection authorities for transfers within multinational organizations; (d) Consent: In some cases, we may rely on your explicit consent for specific data transfers; (e) Necessity for Performance: Transfers required to fulfill our contractual obligations to you or to provide services you have requested. If you have questions about international data transfers or wish to obtain a copy of the safeguards we have implemented, please contact privacy@fxlvl.com.
15. Children's Privacy and Age Restrictions
FxLvl services are not intended for, and we do not knowingly collect personal information from, individuals under the age of 18 (or the age of majority in your jurisdiction, whichever is higher). Our Terms and Conditions explicitly require that all users be of legal age to enter into binding contracts. If we become aware that we have inadvertently collected personal information from a minor without proper parental consent, we will take immediate steps to delete such information from our systems. If you are a parent or legal guardian and believe your child has provided us with personal information without your consent, please contact us immediately at support@fxlvl.com with details, and we will promptly investigate and remove the information. We may request verification of your identity and relationship to the child before processing such requests to protect against fraudulent deletion attempts.
16. Email Marketing and Communication Preferences
If you have provided consent or where permitted by law (such as for existing customer communications), we may send you promotional emails, newsletters, educational content, trading tips, platform updates, special offers, and other marketing communications. Every marketing email contains an "Unsubscribe" link allowing you to opt out at any time. You can also manage your email preferences through your account settings dashboard or by contacting support@fxlvl.com. Please note that even if you opt out of marketing communications, we will continue to send essential transactional emails related to your account, such as: (a) Account registration confirmations and password reset notifications; (b) Evaluation program access and performance updates; (c) Payment confirmations and payout notifications; (d) Security alerts and account verification requests; (e) Important policy changes and legal notices; (f) Responses to your support inquiries. We honor opt-out requests promptly, typically within 48-72 hours, although you may receive emails that were already in process before your request was fully implemented.
17. Affiliate Disclosure and Referral Programs
FxLvl operates affiliate and referral programs that allow users and third-party partners to earn commissions by referring new customers to our platform. If you participate in our referral program or access our Service through an affiliate link, we may collect and share information related to your referral activities, including: (a) Referral codes, affiliate IDs, and tracking parameters; (b) Number of referred users and their activity status; (c) Commission earnings, payout requests, and payment information; (d) Click-through data and conversion metrics. Affiliates and referral partners are subject to separate agreements governing their relationship with FxLvl and must comply with applicable marketing laws, including proper disclosure of their affiliate relationship. Our website and communications may contain affiliate links to third-party services, tools, or products. When you click on these links and make a purchase, we may receive a commission at no additional cost to you. Such affiliate relationships do not influence our recommendations or reviews, which are based on genuine evaluation and user benefit.
18. External Links and Third-Party Websites
Our platform may contain links to external websites, third-party services, trading platforms, educational resources, broker websites, social media platforms, payment processors, and other sites not owned or controlled by FxLvl. This Privacy Policy applies only to information collected by FxLvl through our Service and does not govern the privacy practices of third-party websites. We are not responsible for the privacy policies, data practices, security measures, or content of external sites. We encourage you to review the privacy policies and terms of service of any third-party website before providing personal information or engaging with their services. Accessing third-party links is at your own risk, and we disclaim any liability for damages, losses, or privacy violations resulting from your interaction with external websites.
19. Data Security and Protection Measures
FxLvl implements comprehensive technical, administrative, and physical security measures designed to protect your personal information from unauthorized access, disclosure, alteration, destruction, loss, and misuse. Our security practices include: (a) Encryption: We use industry-standard SSL/TLS encryption to protect data transmitted between your device and our servers. Sensitive data at rest is encrypted using AES-256 or equivalent encryption standards; (b) Access Controls: Access to personal information is restricted to authorized personnel on a need-to-know basis, with role-based permissions, multi-factor authentication (MFA), and regular access reviews; (c) Network Security: Our infrastructure is protected by firewalls, intrusion detection systems (IDS), intrusion prevention systems (IPS), and distributed denial-of-service (DDoS) mitigation; (d) Secure Development: We follow secure coding practices, conduct regular code reviews, perform vulnerability assessments, and apply security patches promptly; (e) Employee Training: Our team receives regular privacy and security training to recognize threats, handle data responsibly, and respond to incidents appropriately; (f) Third-Party Audits: We engage independent security firms to conduct penetration testing, security audits, and compliance assessments; (g) Data Minimization: We collect only the information necessary for specified purposes and delete data when no longer needed. Despite our best efforts, no security system is completely impenetrable. We cannot guarantee absolute security of your information transmitted electronically or stored on our systems. You acknowledge and accept the inherent risks of transmitting data over the internet and agree to use our Service at your own risk. You are responsible for maintaining the confidentiality of your account credentials, using strong passwords, enabling two-factor authentication, and immediately notifying us of any unauthorized access or security concerns.
20. Data Breach Notification
In the unlikely event of a data breach involving your personal information, FxLvl will respond promptly and in accordance with applicable data breach notification laws. Our incident response process includes: (a) Detection and Assessment: Upon discovering a suspected breach, we immediately assess the scope, nature, and severity of the incident to determine whether personal information has been compromised; (b) Containment and Remediation: We take immediate steps to contain the breach, mitigate damage, secure affected systems, and prevent further unauthorized access; (c) Investigation: We conduct a thorough investigation to identify the cause, determine affected individuals, and assess potential harm; (d) User Notification: If the breach poses a risk to your rights and freedoms, we will notify affected individuals without undue delay, typically within 72 hours of discovery (or as required by applicable law). Notifications will include details about the nature of the breach, types of data affected, potential consequences, measures taken to address the breach, and recommended actions you should take to protect yourself; (e) Regulatory Reporting: We will notify relevant data protection authorities, supervisory bodies, and regulatory agencies as required by law; (f) Post-Incident Review: Following resolution, we conduct a comprehensive review to identify lessons learned, strengthen security measures, and prevent future incidents. You can help protect your account by immediately reporting any suspicious activity, unauthorized access, or security concerns to security@fxlvl.com.
21. Changes and Updates to This Privacy Policy
FxLvl reserves the right to modify, amend, or update this Privacy Policy at any time to reflect changes in our practices, legal requirements, technological developments, or business operations. When we make material changes that significantly affect how we collect, use, or share your personal information, we will provide prominent notice through one or more of the following methods: (a) Posting the updated Privacy Policy on our website with a revised "Last Updated" date; (b) Sending an email notification to the address associated with your account; (c) Displaying a notice or banner on our platform upon your next login; (d) Requiring acknowledgment or re-consent for significant changes affecting your rights. We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information. Your continued use of our Service after the effective date of any changes constitutes your acceptance of the updated Privacy Policy. If you do not agree with any modifications, you should discontinue use of our Service and may request deletion of your account and associated data. For questions about policy changes, please contact privacy@fxlvl.com.
22. Contact Information and Privacy Inquiries
If you have any questions, concerns, comments, or requests regarding this Privacy Policy or our data protection practices, please contact us at:
Email: support@fxlvl.com
We are committed to addressing your privacy concerns promptly and transparently. We will acknowledge receipt of your inquiry within 48 business hours and provide a substantive response within the timeframes required by applicable law. For formal data subject requests (access, deletion, correction, etc.), please include your full name, email address associated with your FxLvl account, detailed description of your request, and any supporting documentation to help us verify your identity and process your request efficiently.
Last Updated: December 8, 2025
Version: 1.0