This Privacy Policy explains how we collect, use, disclose, and protect personal data when you use TradeGrid (the “Platform”). It also explains your privacy rights under UK GDPR and the Data Protection Act 2018.

1) Scope & Key Points

We operate a skill-based 1v1 trading arena that uses live market data. On certain dashboards/leaderboards visible to other users, we display only: your first name, your last-name initial, and your username. We do not display your full surname or other personal data there.

2) Personal Data We Collect

We collect and process the following categories (as applicable):

2.1. Account & Profile

First name, last name (stored), username, email address, password.

Display profile for in-product visibility: first name + last-name initial + username.

2.2. Platform Use

Match participation and results (scores, timestamps), session and feature usage, device information (browser, OS, device type), IP address, approximate location (derived from IP), cookies/SDK events, crash/diagnostic logs.

2.3. Payments, Payouts & Compliance

Wallet address(es) for USDT (ERC-20) withdrawals; transaction metadata (tx hash, amount, timestamp).

Where required: KYC/AML data (e.g., identity documents, selfies, sanctions/PEP checks) via trusted providers.

2.4. Communications

Support tickets, emails, chat messages with our team; marketing preferences/consents.

2.5. From Third Parties

KYC/AML vendors, payment and fraud-prevention providers, analytics tools, and publicly available blockchain transaction records (for withdrawals).

3) Purposes & Legal Bases

3.1. Account setup & access

Creating and securing your account; login Contract (Art. 6(1)(b))

3.2. Delivering the service

Running matches, scoring, dashboards, leaderboards Contract; Legitimate interests (Art. 6(1)(f))

3.3. Limited identity display to other users

Showing first name + last-name initial + username on dashboards/leaderboards; Legitimate interests (transparency & fair competition, minimal display; your rights respected)

3.4. Customer support

Answering requests, troubleshooting Contract; Legitimate interests

3.5. Fraud & platform integrity

Anti-abuse, security monitoring, incident response Legitimate interests; Legal obligation

3.6. Analytics & product improvement

Metrics, performance, UX improvements; Legitimate interests (privacy-preserving methods used where feasible)

3.7. KYC/AML & compliance

Identity checks, sanctions screening, record-keeping; Legal obligation (MLR 2017, POCA 2002, SAMLA 2018)

3.8. Payments & withdrawals

Wallet processing, transaction confirmations Contract; Legitimate interests

3.9. Marketing (optional)

Emails, in-app notices Consent (where required) or Legitimate interests with opt-out

3.10. Balancing test

(leaderboard display): we show minimal identifiers only (first name + initial + username), avoid full surname, and provide user controls/assistance to modify display details (see §7). This supports fair play, trust, and community expectations while respecting privacy.

4) What Others Can See About You

Other users may see your first name + last-name initial + username on dashboards/leaderboards and in relevant match contexts. They cannot see your full surname or contact details there. Public blockchain: If you withdraw USDT (ERC-20), the transaction is public on Ethereum (wallet addresses and amounts are publicly visible by design of the network).

5) Cookies & Similar Technologies

We use cookies/SDKs for essential functionality, security, analytics, preferences, and (if applicable) marketing. See our separate Cookie Policy for types, lifetimes, and choices. Where required, we obtain consent via a cookie banner.

6) Sharing Your Data

We share personal data only as needed:

6.1. Service Providers (Processors): Hosting & cloud infrastructure, security & anti-abuse, analytics/monitoring, email delivery, customer support tools, KYC/AML vendors, and payment/crypto payout partners.They act under contract, follow our instructions, and implement security safeguards.

6.2. Other Users

Limited display (first name + last-name initial + username) on dashboards/leaderboards and match contexts.

6.3. Legal & Compliance

Courts, regulators, law enforcement, or counterparties where legally required or to protect rights, safety, and integrity.

6.4. Corporate Events

In a merger, acquisition, or reorganisation, your data may be transferred subject to this Policy continuity.

We do not sell personal data.

7) Your Choices & Profile Controls

Username: You can choose a non-identifying username and should avoid sensitive information in it.

Profile edits: username and email address by contacting help@tradegrid.trade

Marketing: You can opt out of marketing emails at any time (unsubscribe link or contacting us).

Cookies: Manage preferences via the cookie banner or your browser settings.

8) International Transfers

We may transfer data outside the UK/EEA (e.g., to the US) where some processors are located. When we do, we use lawful safeguards such as:

UK International Data Transfer Agreement (IDTA) or the UK Addendum to the EU Standard Contractual Clauses, and/or Adequacy regulations/decisions where applicable. You can contact us for a copy of applicable transfer safeguards (with redactions where necessary).

9) Retention

We keep personal data only as long as necessary for the purposes in §3 or to meet legal, accounting, or reporting requirements:

9.1. Account data

For the life of the account; then a reasonable period for queries/disputes.

9.2. KYC/AML records

Typically 5 years after the relationship ends (per UK MLR 2017).

9.3. Transactional/financial records

Typically 6 years (statutory limitation/tax).

9.4. Support tickets

Typically 2 years after closure.

9.5. Analytics logs

Retained and/or anonymised/aggregated as soon as reasonably possible.

We may retain limited data longer where legally required or to establish, exercise, or defend legal claims.

10) Security

We use technical and organisational measures to protect personal data, including encryption in transit, access controls, least-privilege, monitoring, secure development practices, and vendor due diligence. No system is 100% secure; please keep your credentials confidential and notify us of any suspected compromise.

11) Your Rights (UK GDPR)

You have rights, subject to conditions and exemptions: access (copy of your data), rectification (correct inaccuracies), erasure (“right to be forgotten”), restriction (limit processing), portability (receive data in a machine-readable format), objection (to processing based on legitimate interests or direct marketing)m, withdraw consent (where processing relies on consent)

How to exercise: contact help@tradegrid.trade. We may verify your identity before actioning a request. You also have the right to complain to the ICO (www.ico.org.uk) without prejudice to other remedies.

12) Automated Decisions

We do not make decisions solely by automated means that produce legal effects or similarly significant effects about you. We may use automated tools (e.g., anti-fraud/abuse detection) that can flag activity; a human review is available before any adverse action takes effect.

13) Children

The Platform is not intended for persons under 18. We do not knowingly collect personal data from children.

14) Changes to This Policy

We may update this Policy from time to time. Material changes will be notified in-app or by email and take effect upon posting (unless a later date is specified). Continued use of the Platform after the effective date constitutes acceptance.

Summary of Visibility on Dashboards/Leaderboards

Shown to other users: first name + last-name initial + username

Not shown: full surname, email, contact details, KYC data

Tip: choose a non-identifying username and avoid sensitive information.