Introduction
Blackalgo is committed to protecting your privacy and handling your personal information in a transparent and secure manner. This Privacy Policy describes how Blackalgo ("we", "us", or "our") collects, uses, stores, and discloses your personal data when you use our website and services, as well as your rights with respect to that data. We process personal data in accordance with applicable data protection laws, including the laws of the United Arab Emirates.
By using Blackalgo’s services or interacting with our website, you consent to the practices described in this Privacy Policy. If you do not agree with this policy, please do not use our services or provide us with your personal information.
Information We Collect
We may collect various types of information from you, either directly (when you provide it to us) or indirectly (automatically through technology), including:
- Personal Identifiers: Information such as your name, email address, phone number, mailing address, or other contact details that you provide when registering for an account or contacting us.
- Account Information: If you create an account, we collect your login credentials (username and password). We may also assign or collect an internal user ID or similar identifier associated with your account.
- Financial and Payment Information: For processing payments, we collect billing details such as your invoicing address and payment method details. Payments are handled through Blackalgo LTD (UAE) and its payment partners (e.g., DeusXPay for crypto transactions). We generally do not store sensitive payment information like full credit card numbers on our servers; however, our payment processors might retain this information on our behalf.
- Trading Account Information: If you choose to connect third-party trading accounts to Blackalgo (for example, by providing API keys or account IDs to link your brokerage/exchange account with our platform), we will collect and store the information necessary to enable that connection. This may include API keys, account identifiers, and associated permissions. Note: We treat API keys and similar credentials with high sensitivity and use them solely to provide our services (i.e., to transmit trade instructions to your account). Such credentials are encrypted in storage and are never shared with unauthorized parties.
- Usage Data: Information about how you use our website and services. This can include log data such as your IP address, browser type, device type, operating system, referral URLs, pages viewed, dates/times of access, and other standard web analytics data. We may also collect information about actions you take within the platform (e.g., strategy selections, settings changes, and other user interactions) to help us understand usage patterns and improve our service.
- Cookies and Similar Technologies: We use cookies, web beacons, and similar tracking technologies to collect information about your interactions with our site (see "Cookies and Tracking" below for details). This may include data on your preferences and browsing habits on our site, which helps us personalize your experience and analyze traffic.
- Communications: Copies of communications you send to us (such as customer support requests, emails, or messages) and any responses we provide. This can include contact details and the content of the correspondence, which we retain to address your inquiries and improve our services/support processes.
- Compliance Information: As a company operating under UAE law and VARA regulations, we might be required to collect certain information for legal compliance, such as Know-Your-Customer (KYC) or anti-money laundering (AML) purposes. If ever required, this could include identification documents (e.g. passport, ID card), proof of address, date of birth, or information about your trading experience. We will only request such information when it is legally mandated or necessary for the provision of our services and compliance with our regulatory obligations.
We will only collect personal data that is necessary for the purposes stated in this Privacy Policy. You have the choice not to provide certain personal information, but doing so may limit or prevent your ability to use some of our services (for example, we cannot open an account for you without a valid email address, and we cannot process payments without payment information).
How We Use Your Information
Blackalgo uses the collected information for the following purposes:
- To Provide and Maintain Services: We use your information to operate our platform and deliver the algorithmic trading services you request. For example, we use your account and trading account information to send trade signals to your broker via API, to maintain your user profile and settings, and to ensure the service works correctly for your setup.
- To Process Payments: We use your financial and contact information to process subscription fees or other payments through Blackalgo LTD (UAE) and its payment providers (such as DeusXPay for crypto payments). This includes charging your payment method, issuing invoices or receipts, and keeping records of transactions.
- To Communicate with You: We may use your contact information (email, phone) to send you important notices or updates regarding your account and the services. This can include confirmations of account actions, notices of strategy changes, alerts about signal transmissions or system status, and updates to our terms or policies. We also use your information to respond to you when you contact us with a question or request.
- To Provide Customer Support: Information you provide and data about your usage may be used to troubleshoot and resolve issues you encounter. For example, we may use your logs and account data to replicate a problem, fix bugs, or answer your questions about how to use the service.
- To Improve and Develop Our Services: We analyze usage data and feedback to understand how our services are used and to make improvements. For instance, usage patterns might inform us which features are popular or if certain strategies are underperforming, leading us to refine our algorithms. We might also use aggregate and anonymized data to train our AI models or develop new product features. Your personal data may also help us personalize your experience, such as suggesting relevant content or strategies (without ever guaranteeing performance).
- To Enforce Terms and Protect Our Platform: We may use personal data to monitor for and prevent fraudulent, unauthorized, or illegal activities on our platform. For example, we might detect multiple logins from different IPs that could indicate account sharing, or use identity information to ensure users are not from restricted jurisdictions. We also use information to enforce our Terms of Use (such as investigating violations) and to protect the rights, property, or safety of Blackalgo, our users, or the public.
- For Legal Compliance: We process your data as required by applicable laws and regulations. For example, financial records are kept to comply with accounting and tax laws. If VARA or another regulator requires us to report certain information (for instance, aggregate trading volumes or suspicious activities), we will use your data to fulfill those obligations. We also may use and retain personal data to comply with court orders, legal investigations, or to exercise or defend legal claims.
- For Marketing and Updates (with Consent): With your consent, we may use your email or contact info to send newsletters, updates about new features, or promotions. For example, we might announce a new trading strategy or a partnership that could interest you. You can opt out of marketing communications at any time, and we will honor such opt-out requests. We will not spam you or share your contact details with third parties for their own marketing without your explicit consent.
We will only use your personal data for the purposes for which we collected it, unless we reasonably consider that we need to use it for a related purpose that is compatible with the original purpose. If we need to use your personal data for an unrelated purpose, we will notify you and explain the legal basis for that use. We do not engage in selling personal information to third parties.
Cookies and Tracking Technologies
Blackalgo’s website uses cookies and similar tracking technologies to enhance user experience, analyze website performance, and for security purposes.
- What are Cookies? Cookies are small text files that are stored on your device (computer or mobile) when you visit a website. They allow the website to remember your actions and preferences over a period of time, so you don’t have to re-enter them whenever you come back to the site or browse from one page to another.
- Types of Cookies We Use:
- Strictly Necessary Cookies: These cookies are essential for the operation of our website and services. They enable core functionality such as user authentication, session management, and other features necessary for you to move around the site and use its features. Without these, services you have asked for (like logging into your account) cannot be provided.
- Performance and Analytics Cookies: These cookies collect information about how visitors use our website, allowing us to improve the way our site works. They help us understand which pages are the most and least popular, see how visitors move around the site, and gather demographic information. We may use third-party analytics tools (e.g., Google Analytics) that set their own cookies to perform these services. The information collected is usually aggregated and anonymous.
- Functional Cookies: These cookies allow our website to remember choices you make (such as your language preference or region) and provide enhanced features to improve your experience. For example, a functional cookie might remember your preferences so you don’t have to re-select settings each time you log in.
- Security Cookies: We may use cookies or similar technologies to help identify and prevent security risks. For example, these cookies might help authenticate users, prevent fraudulent use of login credentials, or protect user data from unauthorized parties.
- Web Beacons and Pixels: In addition to cookies, we may use small graphic images (also known as "pixel tags" or "clear GIFs") in our emails or on our site. These are used in conjunction with cookies and allow us to understand, for example, whether an email was opened or whether a link was clicked, so we can gauge the effectiveness of our communications and improve future outreach.
- Managing Cookies: You have the right to accept or reject cookies. Most web browsers automatically accept cookies, but you can usually modify your browser settings to decline cookies if you prefer. You may also clear or delete existing cookies through your browser settings. Please note that disabling certain cookies (especially Strictly Necessary Cookies) might impact your ability to use our services. For instance, if you disable cookies, you might have to log in manually every time and some site features might not function as intended.
- Do Not Track: Some browsers offer a "Do Not Track" (DNT) feature that lets you signal to websites that you do not want to have your online activities tracked. Our website currently does not respond to DNT signals. However, as described in this policy, we only use your data as necessary for the purposes given, and you can always adjust cookie settings as noted above.
By using our site and services, you consent to our use of cookies and similar technologies as described in this section. Where required by law, we will provide a cookie consent banner or tool to manage your preferences when you first visit our site.
How We Share Your Information
Blackalgo values your privacy. We do not sell your personal data to third parties. However, we may share your information in the following situations, solely to the extent necessary for the purposes described above:
- Within the Blackalgo Group: Your information may be shared between our affiliated entities (Blackalgo LTD, Blackalgo VA Proprietary Trading LLC, and related companies like Blackalgo LLC (USA)) on a need-to-know basis. For example, your account and subscription details may be accessible to Blackalgo LTD for billing purposes, while technical data might be shared with our development or IT teams that could be located in another entity. All Blackalgo entities are bound to protect your information in accordance with this Privacy Policy.
- Service Providers and Partners: We employ third-party companies and individuals to facilitate our services or to perform functions on our behalf. This includes, for example: cloud hosting providers (for data storage and servers), email service providers (to send communications), payment processors like DeusXPay (to handle payments in fiat or crypto), and technology partners such as trade-mirroring services or analytics providers. These parties have access to personal data only to the extent needed to perform specific tasks on our behalf and are obligated not to disclose or use it for any other purpose. We require our service providers to implement appropriate security measures to safeguard your data and to process it only according to our instructions.
- Legal and Regulatory Compliance: We may disclose your information to government authorities, regulatory bodies, or law enforcement if required to do so by law or pursuant to a valid legal request (such as a subpoena, court order, or regulatory demand). In particular, as a company operating under VARA's jurisdiction for virtual asset activities, we may be obliged to share certain information with VARA or other UAE authorities upon request. We will also disclose data if necessary to enforce our Terms of Use or other agreements, or to protect the rights, property, or safety of Blackalgo, our customers, or others (for example, sharing information with other companies or organizations for fraud protection and credit risk reduction).
- Business Transactions: If Blackalgo is involved in a merger, acquisition, financing due diligence, reorganization, bankruptcy, receivership, sale of company assets, or transition of service to another provider, your information may be transferred as part of such a transaction. We would seek to ensure the new owner or successor entity honors the commitments we’ve made in this Privacy Policy with respect to your personal data. We will notify you (for example, via email or a notice on our website) of any such change in ownership or control of your personal information, if and as required by applicable law.
- Protection of Rights and Safety: We may share personal information when we believe that such disclosure is necessary to protect the rights, property, or personal safety of Blackalgo, our users, employees, or the public. This could include exchanging information with other companies and organizations for the purposes of fraud detection, cybercrime prevention, or investigation of suspected illegal activities. For instance, if someone is suspected of fraudulently using credit cards on our platform, we might share information with law enforcement agencies.
In all cases, we strive to share the minimum information necessary and to ensure that any third parties with whom we share personal data are committed to respecting your privacy and maintaining appropriate confidentiality and security measures.
International Data Transfers
Blackalgo is based in the United Arab Emirates, but we may process and store your data on servers located in various countries. It’s important to note that data protection laws vary by country, and some may not provide the same level of protection as your home jurisdiction.
- Within Blackalgo and Our Providers: If you are using our services from outside the UAE, your information will likely be transferred to and stored in the UAE. Additionally, our service providers (cloud hosting, email, support, etc.) might use servers located in the European Union, the United States, or other countries. We will ensure that such transfers are lawful and that your data remains protected. If you are in the European Economic Area (EEA) or United Kingdom, for example, we may rely on mechanisms such as Standard Contractual Clauses or an adequacy decision for any data transfer out of the EEA/UK.
- Your Acknowledgment: By using our services or providing us with your information, you acknowledge that your information may be transferred to and processed in countries other than your own. In all cases, Blackalgo will handle your personal information in accordance with this Privacy Policy. We will also endeavor to take appropriate safeguards to protect the privacy and integrity of such personal data during the transfer and at the foreign destination.
If you would like more information about how we transfer and safeguard personal data, you can contact us using the information provided in the "Contact Us" section of this Privacy Policy.
Data Security
Blackalgo takes the security of your personal data very seriously. We implement a variety of technical and organizational measures to protect your information from unauthorized access, use, alteration, or destruction. These measures include:
- Encryption: All network communication with the Blackalgo website is encrypted using TLS/SSL protocols. Sensitive information (like passwords and API keys) is stored in encrypted form in our databases and systems.
- Access Control: Access to personal data is restricted to authorized personnel who require the information to perform their job duties. We employ access controls to limit the data each employee or contractor can view based on their role. Administrative access to systems holding personal data is logged and audited.
- Security Testing and Maintenance: We regularly update our software and systems to address security vulnerabilities. We perform periodic security audits and penetration testing (often via third-party specialists) to identify and fix potential weaknesses in our infrastructure.
- Network Security: Our servers are protected by firewalls and monitored for unusual activities. We utilize intrusion detection and prevention systems to guard against external threats.
- Backup and Recovery: We maintain secure backups of critical data to prevent data loss, and have disaster recovery plans in place. These backups are protected and stored separately to avoid unauthorized access.
Despite our efforts, no method of transmission over the internet or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal information, we cannot guarantee absolute security. You should also play a role in protecting your information: choose a strong, unique password for your Blackalgo account, do not share your account credentials with others, and notify us immediately if you suspect any unauthorized access to your account or personal data.
In the unfortunate event of a data breach that poses a risk to your rights and freedoms, we will notify you and the relevant authorities as required by law.
Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including for the purpose of satisfying any legal, accounting, or reporting requirements.
- If you have an account with Blackalgo, we will retain your personal information for as long as your account is active or as needed to provide you with our services.
- If you choose to close your account or if your account is terminated by us (in accordance with our Terms of Use), we will either delete or anonymize your personal data within a reasonable period after the closure. However, we may retain certain information for longer if we have a legitimate business need or legal obligation to do so. For example:
- Financial Records: We may retain invoicing, payment, and transaction records for accounting or tax purposes (often for a minimum of 5 years, or as required by UAE law).
- Compliance and Legal: We may retain identification or compliance-related information as necessary to comply with AML/KYC obligations or other legal requirements. If we have barred you from using our service (for example, due to fraud or policy violations), we may keep certain information to prevent you from opening a new account.
- Dispute Resolution: If you have a dispute with us or have interacted with our customer support, we may retain relevant information (such as support tickets, correspondence, or logs) until the issue is resolved and for a period thereafter as required or permitted by law (for instance, to defend against potential legal claims).
- Aggregated or anonymized data that does not identify you may be retained indefinitely for analytics and service improvement purposes, since it no longer constitutes personal data.
When we have no ongoing legitimate need to process your personal data, we will ensure it is either securely deleted or stored in a way that it can no longer be associated with you (anonymized), unless we are required by law to keep it longer.
Your Rights and Choices
Depending on your jurisdiction, you may have certain rights regarding your personal data. Blackalgo strives to extend the spirit of these rights to all users, even if not required by local law, as part of our commitment to transparency and control. These rights may include:
- Access: You have the right to request confirmation as to whether or not we are processing personal data about you, and if so, to request a copy of the personal data we hold about you. This allows you to receive a copy of the data we have and to check that we are processing it lawfully.
- Correction (Rectification): You have the right to request that we correct any inaccuracies in your personal data. We encourage you to keep your account information up-to-date, and you can usually do this through your account settings. If any personal data is incomplete or inaccurate, please let us know, and we will correct it.
- Deletion (Erasure): You can request that we delete your personal data. This right is not absolute – for example, we may need to retain certain information for legal compliance or legitimate business purposes (as noted in the Data Retention section). However, we will evaluate and honor your request to the extent we can. If you request deletion of your data, this may require closing your account with us.
- Objection to Processing: You have the right to object to our processing of your personal data in certain circumstances. For instance, if we are processing your data based on our legitimate interests (or those of a third party), and you feel our interests are overridden by your privacy rights, you may object. You also have the right to object if we process your information for direct marketing purposes.
- Restriction of Processing: You can ask us to suspend the processing of certain personal data about you, for example if you want us to establish its accuracy or the reason for processing it, or if you have objected to our use of it but we need to verify whether we have overriding legitimate grounds.
- Data Portability: If applicable, you have the right to request that some of your personal data be provided to you, or to another data controller, in a commonly used, machine-readable format. This typically applies to data processed by automated means that you initially provided to us (for example, the data you entered when signing up).
- Withdraw Consent: If you have given us consent to process your personal data for a specific purpose (for example, for marketing emails), you have the right to withdraw that consent at any time. This will not affect the lawfulness of any processing based on consent before its withdrawal. If you withdraw consent, we will stop the processing that was based on your consent. For example, if you unsubscribe from marketing emails, we will stop sending them.
To exercise any of these rights, please contact us using the contact information provided in the "Contact Us" section below. We may need to verify your identity before fulfilling certain requests (to ensure that it’s you making the request and not an unauthorized person). Verification may include providing information that matches what we have on file or other proof of identity.
We will respond to your request within a reasonable timeframe and in accordance with applicable law. Please note that these rights are not absolute – they do not always apply, and exemptions may be in place. If we refuse a request, we will explain our reasons, subject to any legal or regulatory constraints.
There is no fee for exercising your rights unless the requests are manifestly unfounded or excessive (for example, repetitive requests), in which case we may charge a reasonable fee or refuse to act on the request.
Children’s Privacy
Blackalgo’s services are not intended for individuals under the age of 18. We do not knowingly collect personal information from children under 18 years of age. Our website and services are designed for adult use (or the use of minors under the supervision of adults where such use is legally permitted with parental consent, although our Terms of Use require users to be of majority age).
If you are under 18, you should not create an account or provide personal information to us. If we become aware that we have inadvertently collected personal data from a person under 18, we will take steps to delete such information from our records as soon as possible.
Parents or guardians who believe that Blackalgo might have collected information about a child under 18 should contact us immediately so that we can investigate and remove any relevant data.
Updates to this Privacy Policy
We may update or revise this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. When we do, we will update the "Last Updated" date at the top of this Privacy Policy. If changes are significant, we may also provide a more prominent notice (such as on our website homepage or via email notification).
We encourage you to review this Privacy Policy periodically to stay informed about how Blackalgo is protecting your information. Your continued use of our website or services after any changes to this Privacy Policy constitutes acceptance of those changes, to the extent permitted by law.
If we make material changes that retroactively affect how we handle previously collected personal data, we will seek your consent or provide an opportunity to opt-out, as required by applicable laws.
Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or the way we handle your personal data, please contact us:
- Email: [email protected]
We will do our best to respond to your inquiry or request in a timely and professional manner. If you are not satisfied with our response, and you are entitled to do so under your local law, you may have the right to lodge a complaint with your country’s data protection authority or similar regulatory body.
Governing Law: This Privacy Policy, and any dispute arising from it, shall be governed by the laws of the United Arab Emirates. By using our services, you agree that any legal matters or proceedings concerning this Privacy Policy will be handled in accordance with UAE law.
Black Algo VA Proprietary Trading LLC is a UAE-based affiliate of BlackAlgo LTD, with both entities under common ownership. While operating independently within their respective jurisdictions, the entities share strategic alignment in advancing compliant virtual asset initiatives across global markets.