Ensuring User Privacy and Security

Updated: 03.06.2025

Introduction

In this Document for reference unless the context otherwise requires:

"RVFINGROUP", "We", "Us", "Our", "Ours", "Related Companies", "Service Provider(s)" includes RVFINGROUP Pte Ltd, as well as duly contracted third-party providers such as Aerapass Pte Ltd, Aerapass sp. z o.o., and Quicko sp. z o.o., who may deliver technology or regulated services under separate terms of use.

Digital currencies include private digital assets (e.g., cryptocurrencies such as USDC), central bank digital currencies (CBDCs), and tokenized value instruments that may or may not be regulated as financial instruments depending on jurisdiction.

RVFINGROUP is committed to ensuring the privacy and security of our clients. Our mission is to utilize advanced cryptographic techniques to provide enhanced privacy while adhering to the core principles of transparency and security. Key initiatives include:

• Encryption and Tokenization. Encryption and tokenization are strong methods that convert sensitive data into unreadable codes that require special keys to decrypt. This helps data remain protected from unauthorized access, modification, or theft.

• Identity and Access Management. We employ a strict identity and access management process designed to ensure that only authorized users can access our systems and networks. This is aimed at preventing identity theft and fraud through the use of strong authentication methods, including biometrics and multi-factor authentication for user login.

• Secure Cloud Services. In line with industry best practices, we run our applications in the cloud, providing scalability, flexibility and cost-effectiveness. To address security concerns such as data leakage or unauthorized access, we implement robust security measures, including encryption, firewalls, anti-virus software and regular backups. We also select trusted cloud service providers that are compliant with relevant regulations and standards.

• Architecture and Code Review. Our applications, being dynamic and constantly evolving, can be prone to bugs, crashes or malicious code. Regular architecture and code reviews are designed to ensure that applications are designed and developed securely and efficiently. Our testing processes identify and address vulnerabilities or flaws in the code.

• Proactive Security Assessments. We conduct continuous security monitoring and audits to proactively detect and respond to potential threats or incidents. We maintain and update security policies, procedures and tools to keep pace with the evolving threat landscape and regulatory requirements.

• User-Centric Approach. We prioritize the privacy and security of individual users. Our platform empowers users by giving them greater control over their data and transactions, increasing confidence in their ability to complete transactions with increased transparency, user control, and reduced exposure to unauthorized access or third-party data profiling.

• Regulatory Compliance. We have a strong regulatory and compliance program designed to meet the new cryptocurrency regulations. This ensures that users can enjoy the benefits of digital currencies while remaining within legal boundaries.

Conclusion

Digital currencies have the potential to revolutionize finance by increasing accessibility, efficiency, and security. However, the innovative power of digital currencies must be reconciled with privacy concerns. We strive to provide enhanced privacy and security while maintaining transparency. As we navigate the ever-changing landscape of digital currencies, the collaborative efforts of industry stakeholders, governments and users will play a key role in realizing the benefits of digital currencies while protecting individual privacy in the digital age.

Together with this, RVFINGROUP RVFINGROUP, including its affiliated entities, employees, suppliers, agents, and duly contracted partners, shall not be liable for any delays, errors, interruptions, or failures in performance resulting from external technical causes, including but not limited to counterparty service providers, system outages, hacking, or force majeure events.

This includes direct or indirect damages, data loss, service degradation, malware, and risks associated with third-party infrastructure (such as card processors or virtual asset platforms) that are beyond RVFINGROUP’s direct operational control.