1. Introduction
Antistock ("Antistock," "we," "our," or "us") is committed to protecting the privacy and security of your information. This Privacy Policy describes how we collect, use, share, and protect information about you when you use our website, platform, services, and applications (collectively, the "Services"). Please read this Privacy Policy carefully to understand our practices regarding your information.
By accessing or using our Services, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy. If you do not agree with our practices, please do not access or use our Services. We encourage you to periodically review this page so that you are aware of any changes.
2. Applicability of this privacy policy
This Privacy Policy applies to all visitors to our website, users of our Services, and others who access or use our Services (collectively, "Users"). Antistock provides a software-as-a-service platform that helps businesses operating in high-risk industries manage risk, prevent fraud, and ensure compliance when processing payments through their own third-party payment processors. Our platform integrates with businesses' existing payment systems to monitor transactions, identify potential fraud, and facilitate regulatory compliance.
This Privacy Policy covers our treatment of personal information that we gather when you access or use our Services. This Privacy Policy does not apply to the practices of companies that we do not own or control, or to individuals that we do not employ or manage, including any third-party payment processors that our customers may use in connection with our Services.
3. Personal information Antistock processes
We collect several categories of personal information from and about Users of our Services. The types of information we collect depend on how you interact with our platform, the Services you use, and the choices you make. Below we describe the categories of personal information we process and the sources from which we obtain it.
3.1 Personal information provided directly to Antistock
We collect personal information that you provide to us when you:
This includes information provided when you register for an Antistock Account (business name, email address, phone number), complete your business profile (address, tax identification number, banking information), or add Authorized Users to your account (sub-account usernames, email addresses, access permissions). We also collect information when you communicate with us via email, chat, phone, or other means, submit information through website forms such as contact or demo requests, participate in surveys or promotional activities, upload documents for identity or business verification, or configure integration settings with your third-party payment processors.
3.2 Personal information generated and collected automatically by Antistock
We automatically collect certain personal information when you use our Services:
Usage information includes pages visited, features used, time spent on the platform, and other usage patterns. Log data includes your IP address, browser type and settings, date and time of use, and how you interacted with our Services. We also collect device information such as hardware model, operating system version, unique device identifiers, and mobile network information. Transaction monitoring data from your integrated payment processors is collected for risk analysis and fraud detection, including transaction amounts, timestamps, payment methods, and risk scores. We also use cookies, web beacons, and similar technologies to collect information about your browsing behavior, remember your preferences, and track usage.
3.3 Personal information collected by Antistock from other sources
We may obtain information about you from other sources, including:
We may receive information from business partners such as technology providers, identity verification services, and fraud prevention networks. We may also collect information from publicly available databases such as business registries and professional networking sites. With your authorization, we may receive information from third-party services you have integrated with our platform. Additionally, we may obtain information from risk intelligence networks related to fraud patterns, high-risk activity indicators, or regulatory compliance issues.
4. How we use personal information
We use the personal information we collect for various purposes, including to:
We use personal information to provide, maintain, and improve our Services, process transactions, and monitor for fraud and compliance risks. This includes verifying your identity and business, communicating service announcements, updates, security alerts, and support messages, and responding to your comments, questions, and requests.
We also use your information to monitor and analyze trends, usage, and activities to improve user experience, detect and prevent fraudulent transactions and unauthorized access, personalize the Services to match your preferences, and facilitate connections with third-party services you choose to integrate. Additionally, we use your information to comply with legal obligations, resolve disputes, enforce our agreements, develop new products and features, and send marketing communications (which you can opt out of as described in this policy).
5. Disclosure of personal information by Antistock
We may share your personal information with the following categories of recipients:
If you use our Services on behalf of a company, we may share your information with other authorized users from your organization. We engage third-party service providers for hosting, data analysis, payment processing, order fulfillment, customer service, and marketing assistance. We may share information with business partners who offer joint services, but only when you have explicitly requested such services.
We may disclose your information when required by law or in response to valid requests by public authorities, or where we believe disclosure is necessary to investigate potential violations of our policies, suspected fraud, or threats to safety. In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We may also share information with your consent or share aggregated or de-identified information that cannot reasonably identify you.
We do not sell your personal information to third parties.
6. Your rights and choices
We believe you should have meaningful control over how your personal information is collected and used. Depending on your location and applicable law, you may have certain rights regarding the personal information we hold about you. This section describes those rights and how to exercise them.
6.1 Access, correction, deletion, and objection to or restriction of processing
Depending on your location, you may have certain rights regarding your personal information, including:
The right to access personal information we hold about you.
The right to request correction of inaccurate personal information.
The right to request deletion of your personal information.
The right to object to or request restriction of processing of your personal information.
The right to data portability (receiving your data in a structured, commonly used format).
The right to withdraw consent where processing is based on consent.
To exercise these rights, please contact us using the information provided in the "Contact Us" section below. We will respond to your request in accordance with applicable laws. Please note that in some cases, we may not be able to fully comply with your request, such as if it would impact the privacy rights of others or if we are legally required to retain certain information.
6.2 Communication preferences
You can control how we communicate with you through the following methods:
You can opt out of promotional emails by following the unsubscribe instructions in those messages. Even after opting out, we may still send non-promotional communications related to your account or our ongoing business relationship. Push notifications can be disabled through your device settings, though this may impact your use of the Services. If you provide your mobile phone number, we may send text messages related to your account or transactions, and you can opt out by replying STOP to any message.
6.3 Tracking technology control
We use cookies and similar tracking technologies to enhance your experience on our Services. You have several options to control or limit how we and our partners use cookies:
Most web browsers allow you to control cookies through their settings preferences, though limiting cookies may impact your user experience and certain features may not function properly. Many third-party advertising networks also allow you to opt out of targeted advertising through the Digital Advertising Alliance's opt-out portal (<a href="http://optout.aboutads.info/" rel="nofollow noopener noreferrer" target="_blank">http://optout.aboutads.info/</a>) or the Network Advertising Initiative (<a href="http://optout.networkadvertising.org/" rel="nofollow noopener noreferrer" target="_blank">http://optout.networkadvertising.org/</a>). Some browsers include a "Do Not Track" feature, but our Services do not currently respond to those signals.
7. International data transfers
Antistock is based in the United States, and we process and store information on servers located in the United States. If you are located outside the United States, we may transfer, store, and process your personal information in countries other than your country of residence, including the United States, where data protection laws may differ from those of your country.
If we transfer personal information from the European Economic Area (EEA), United Kingdom, or Switzerland to countries that have not been deemed to provide an adequate level of protection, we use appropriate safeguards, such as Standard Contractual Clauses approved by the European Commission, to protect your personal information.
8. Lawful basis for processing personal information
If you are located in the EEA, United Kingdom, or other regions with applicable data protection laws, we collect and process your personal information based on one or more of the following legal grounds:
We process personal information when necessary to perform our obligations under a contract with you or to take pre-contractual steps at your request. We also process information for our legitimate interests, such as developing and improving our Services, protecting against fraud, and managing our business, while balancing those interests against your rights and freedoms. Processing may also occur to comply with legal obligations including anti-money laundering regulations, sanctions screening, or tax reporting requirements. Where we rely on your specific consent to process information for a particular purpose, you have the right to withdraw that consent at any time.
9. Security
We implement appropriate technical and organizational measures to protect the security, integrity, and confidentiality of your personal information. However, no security system is impenetrable, and we cannot guarantee the security of our systems or your information. If you have reason to believe that your interaction with us is no longer secure, please contact us immediately.
Our security measures include:
These measures include encryption of sensitive personal information both in transit and at rest, regular security assessments and penetration testing, access controls and authentication mechanisms, monitoring for suspicious activity, employee training on data security and privacy, vendor security assessment and management, and incident response planning.
10. Use by minors
Our Services are not directed to individuals under the age of 18, and we do not knowingly collect personal information from children. If we learn that we have collected personal information from a child under the age of 18, we will take steps to delete that information as quickly as possible. If you are a parent or guardian and believe that your child has provided us with personal information without your consent, please contact us using the details in the "Contact Us" section below so we can take appropriate action.
11. Retention
We retain your personal information for as long as necessary to fulfill the purposes for which we collected it, including for the purposes of satisfying any legal, accounting, or reporting requirements, to resolve disputes, and to enforce our agreements.
To determine the appropriate retention period for personal information, we consider the amount, nature, and sensitivity of the personal information, the potential risk of harm from unauthorized use or disclosure, the purposes for which we process the information and whether we can achieve those purposes through other means, and applicable legal requirements.
When personal information is no longer needed for its original purpose and there is no legal requirement to retain it, we will either securely delete or anonymize it. In some cases, we may retain aggregated or de-identified data for analytical purposes, provided it can no longer be associated with you.
12. Changes to this privacy policy
We may update this Privacy Policy from time to time to reflect changes to our practices or for other operational, legal, or regulatory reasons. If we make material changes, we will notify you by email or through a notice on our website prior to the changes becoming effective. We encourage you to periodically review this page for the latest information on our privacy practices.
Your continued use of the Services after any changes to this Privacy Policy become effective constitutes your acceptance of those changes. If you do not agree with any revised terms, you should discontinue use of the Services.
13. Contact us; data controller
If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us at:
Antistock
legal[at]antistock[dot]io
We aim to respond to all privacy-related inquiries within a reasonable timeframe and in accordance with applicable law. For users in the European Economic Area, United Kingdom, or Switzerland, Antistock, Inc. is the data controller responsible for your personal information. If you are not satisfied with our response, you may have the right to lodge a complaint with your local supervisory authority.
14. Additional information for California residents
If you are a California resident, the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA) provide you with specific rights regarding your personal information. This section supplements the information in the rest of this Privacy Policy and applies solely to individuals who reside in the State of California.
14.1 Your rights under California law
California residents have the right to:
Know what personal information we collect, use, disclose, and sell about you.
Delete personal information we have collected about you.
Opt-out of the sale of your personal information (note that we do not sell personal information).
Correct inaccurate personal information about you.
Limit the use and disclosure of sensitive personal information.
Non-discrimination for exercising your privacy rights.
14.2 How to exercise your California privacy rights
To exercise your rights under California law, please contact us using the information in the "Contact Us" section above. We will verify your identity before responding to your request. You may designate an authorized agent to make a request on your behalf by providing the agent with written permission and verifying your identity with us.
14.3 Categories of personal information collected
In the past 12 months, we have collected the following categories of personal information:
These categories include identifiers (such as name, email address, IP address), commercial information (such as transaction history), financial information (such as payment method details), professional or employment-related information, internet or other electronic network activity information, geolocation data, and inferences drawn from other personal information.
14.4 Sources of personal information
We collect the categories of personal information listed above from the following sources:
We collect personal information directly from you, automatically through your use of our Services, and from third-party sources as described in Section 3.C of this Privacy Policy.
14.5 Purposes for collecting personal information
We collect and use personal information for the business and commercial purposes described in Section 4 of this Privacy Policy. These purposes include operating and improving our platform, processing transactions, preventing fraud, communicating with you, and complying with our legal obligations.
14.6 Disclosures of personal information for business purposes
In the past 12 months, we have disclosed each of the above categories of personal information for business purposes to the categories of recipients listed in Section 5 of this Privacy Policy. These disclosures are made to support the operation of our Services, fulfill our contractual obligations, and comply with applicable legal requirements.
14.7 Sale or sharing of personal information
We do not sell your personal information as defined under California law. We may share your personal information with third parties for business purposes as described in this Privacy Policy, but we do not share personal information with third parties for cross-context behavioral advertising purposes.
14.8 Notice of financial incentive
We do not offer financial incentives or price or service differences in exchange for the retention or sale of personal information. If we introduce any such programs in the future, we will update this Privacy Policy and provide you with clear notice and the opportunity to opt in or opt out as required by applicable law.
