# Privacy Policy **Scope** This Privacy Policy explains how BridgingFi collects, uses, and protects your personal data under the UK GDPR, EU GDPR, and Data Protection Act 2018. **Lawful Basis** We process your data based on: \- Performance of a contract; \- Compliance with legal obligations (e.g., AML laws); \- Legitimate interests in operating the platform. **Data Collected** \- Identity documents, contact details, wallet addresses, transaction metadata. **Purpose** \- KYC/AML verification; \- Transaction processing; \- Security monitoring; \- Regulatory compliance. **Data Subject Rights** You have the right to access, rectify, erase, restrict processing, object, and request portability of your data, and to lodge a complaint with a supervisory authority. **Cross-Border Transfers** Where personal data is transferred outside the UK/EU, we implement Standard Contractual Clauses or rely on adequacy decisions. **Retention** KYC data is retained for at least 5 years after account closure or as required by law. **Contact** For privacy matters, contact our Data Protection Officer at \[DPO email]. --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://bridgingfi.gitbook.io/docs/legal/privacy-policy.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.