Last updated: July 30, 2025

This Privacy Policy describes the policies of Levl GmbH on the collection, use and disclosure of your information that we collect, use and disclose when you use our website.

1)     Who We Are

a) The controller of your personal data is Levl GmbH, c/o F Trust AG, Zug 6300, or email to customersupport@levl.ch. References in this privacy notice (the Notice) to "Levl", "we" or "us" are references to Levl GmbH.

2)     Personal Data We Process

a) Personal data we process about you includes:

i) your name and contact details (for example name, address, phone number or email address), information about the company you work for, your position or title and your relationship to a person, and other basic information;

ii) identification and background information provided by you or collected as part of our on-boarding process including carrying out Know-Your-Client (“KYC”) checks; 

iii) financial information, for example payment-related information such as bank account, credit card, wallet address as well as transactional details.;

iv) information provided to us by or on behalf of our customers or generated by us in the course of providing services to customers such as account activity information;

v) Information provided to us by or on behalf of third party vendors in the course of conducting risk assessments and compliance checks such as sanctions and anti-money laundering checks;

vi) information provided to us for the purposes of attending meetings, seminars and events;

vii) information in relation to materials and communications we send to you electronically, for example your use of marketing e-mails;

viii) any other information relating to you which you may provide to us.

b) We collect this information when you interact with us, for example when you communicate with our staff, sign up to receive information by e-mail, or participate at a meeting, seminar or other event. We also collect or generate personal data in the course of performing compliance checks, in the course of providing our services, and we may collect personal data from other sources for example to keep your information up to date using publicly available sources.

c) When you visit our websites, we collect certain information about your browser and the device. Examples of such information include your device type, browser type, internet protocol (IP) address, unique device identifiers, general location of your device, operating system, internet service provider, and other technical information about your device.  We also collect information about your interactions with our website. Examples of such information include pages visited, links clicked, access date and times, referring website, information that you type into our online forms, and identifiers associated with browser cookies, web beacons, and similar technologies we deploy on our website.For details about the types of tracking technologies we use, please see the “Use of our websites and e-mails” below.

3)     How we use your personal data

a) We use your personal data:

i) to communicate with you;

ii) to provide you with our products and services such as allowing you to send and receive global payments in fiat currencies or stablecoins;

iii) to verify your identity and carry out Know-Your Client (“KYC”) checks anti-money laundering sanctions and anti-terrosim laws and other compliance checks.

iv) to administer our relationship with you and with our customers;v)   to provide and improve our websites, including monitoring and evaluating its use (see "Use of our websites and e-mails" below for additional information);

vi) to promote our services, including by sending alerts, updates, event invitations etc.;

vii) to comply with our legal, regulatory and risk management obligations, including establishing, exercising or defending legal claims;

4) Use of Blockchain Technology

If you use services involving blockchain, please note that certain transactions may be recorded on public blockchains. These networks are decentralized and operate globally, meaning any information published to them may be accessible to anyone and may be immutable (i.e., it cannot be changed or deleted). While this information does not contain an individual’s name, the personal data included in blockchain records, certain metadata (such as wallet addresses or transaction hashes) could potentially be linked to individuals with additional information. We encourage individuals to use caution when interacting with blockchain-based services and to avoid including any personal data in public transaction messages or fields.

5)     Use of our websites and e-mails

a) We may use a third party to help us gather and analyze information about the areas visited on our website (such as the pages most read, time spent, search terms, and other engagement data) in order to evaluate and improve the user experience and our website. These third parties may use cookies and other tracking technologies. We work with third parties such as ad networks and other advertising companies that use their own tracking technologies (including cookies and pixel tags) on our website in order to provide you with tailored advertisements across the Internet. These companies may collect information about your activity on our website and third-party websites (such as web pages you visit and your interaction with our advertising and other communications) and use this information to analyze your behaviours to make predictions about your interests and preferences, develop personalized content and deliver ads that are more relevant to you on third party websites. This process is known as “behavioural advertising” or “interest-based advertising”. This information may also be used to evaluate the effectiveness of our online advertising campaigns.

b) Our website uses Google Analytics, a service provided by Google, Inc. that tracks and reports on the manner in which our websites are used. Google Analytics does this by placing small text files called "cookies" on your computer or other device. Cookies collect information about the number of visitors to the websites, the pages visited and the time spent on the websites. This information is aggregated and is de-identified.  For more information about Google Analytics or to prevent the storage and processing of this data (including your IP address) by Google, you can download and install the browser plug-in available at the following link: https://tools.google.com/dlpage/gaoptout?hl=en

c)You may refuse the use of cookies by selecting the appropriate settings on your browser. Note however that this may affect your experience of our websites.

d) To find out more about cookies, including how to manage, reject and delete cookies, visit www.allaboutcookies.org.

e) Our website may occasionally include links to websites, plug-ins, or applications operated by third parties. By clicking on these links or interacting with those features, you may allow third parties to collect or share information about you. We do not control these third-party websites or services and are not responsible for their privacy practices or how they handle your data. We recommend reviewing the privacy notice of any external site or service you visit before providing any personal information.

6)     On what basis we use your personal information

We process personal data on the following grounds: to perform a contract, such as engaging with an individual to provide legal or other services; for the establishment, exercise or defence of legal claims or proceedings; to comply with legal and regulatory obligations; and for legitimate interests. In Canada, we process your personal data based on your consent.  Please see "How we process your personal data" above for additional details.

7)     Who we share your personal data with

a) We will share your personal data with third parties including:

i) Our services providers such as IT service/cloud providers;

ii) Compliance vendors who support us during the onboarding process (KYC-process) as well as to conduct ongoing screening procedures of transactions for compliance reasons;

iii) Partner payment facilitators abroad who help us to terminate payments such any third parties involved in the payment or transfer, such as beneficiaries, correspondent banks and all parties and operators involved in the processing chain and systems, including in particular SIC (Swiss Interbank Clearing), Payments Canada’s Lynx system or SWIFT (Society for Worldwide Interbank Financial Telecommunication);

vi) Credit reference agencies and law enforcement to prevent, investigation and/or report fraud terrorism, security incidents or crime in accordance with applicable laws; and

vii) We may share or transfer your personal information in connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business to another company.

Affiliates. We may share information with our corporate affiliates (e.g., parent company, sister companies, subsidiaries, joint ventures, or other companies under common control).

b) For the purposes set out in this Policy and where necessary, we may share personal data with courts, regulatory authorities, government agencies and law enforcement agencies. We may be required to disclose your information to comply with legal or regulatory requirements. We will use reasonable endeavours to notify you before we do this, unless we are legally restricted from doing so.

8)     Countries we transfer your personal data to

Your personal data received by us is generally only stored in the territory of Switzerland.

We may transfer your personal data to recipients abroad, including in countries that do not provide the same level of protection as Swiss,EU law or Canadian privacy laws. In these circumstances, the governments, courts, law enforcement, or regulatory agencies of the country where the personal data is transferred may be able to obtain access to personal data through the laws of the foreign country.

Before we transfer your personal data we will implement appropriate measures to protect your personal data, for example by requiring the recipient to agree to data processing agreements (if you would like to receive a copy of these agreements, please contact us at the address indicated above. These agreements are usually based on the EU standard clauses, which you may review here). We may also transfer personal data with your explicit consent and in certain other situations as permitted by applicable law.

Data subjects may ask for further information on the safeguards that are in place to safeguard the transfer of personal data by contacting the data protection officer set out above.  

9)     How we retain your personal data

We retain your personal data for as long as it is necessary for the purposes for which the data is collected, and as long as we have a legitimate interest in keeping personal data, for example to enforce or defend claims or for archiving purposes and IT security. We also retain your personal data as long as it is subject to a legal retention obligation.

10)     How we protect your personal information

We use various technical and organisational measures to help protect your personal data from unauthorised access, use, disclosure, alteration or destruction.

11)  Your rights

a) You are entitled to ask for details of the information we hold about you and how we process it and to receive a copy of your personal data. You may also have your data rectified or deleted, restrict our processing of that information, and object to the processing of your personal data. You may also choose to withdraw your consent.

Please note that even after you have chosen to withdraw your consentwe may not be able to continue to provide your with a particular product or service. We will explain the impact to you at the time to help you with your decision.

You may also lodge a complaint in relation to our processing of your personal data with a local supervisory authority.

b) We must ensure that your personal information is accurate and up to date. Therefore, please advise us of any changes to your information by contacting us at the address indicated above.

c) To exercise your rights, please contact contact the data protection officer at the contact noted above.

12) Changes to our privacy policy

Any changes we may make to our privacy policy in the future will be posted on this page and, where appropriate, notified to data subjects by e-mail or other electronic means.