Privacy Policy

This application is operated by:

• Legal Name: BAYSART Məhdud Məsuliyyətli Cəmiyyəti (BAYSART MMC)
• Commercial Name: Baysart Gold
• VOEN: 1703115231
• Registered Address: AZ1021 Bakı şəhəri, Səbail rayonu, Badamdar ŞTQ, Badamdar şossesi, ev 107, mənzil 10

Baysart Gold is a mobile application owned and operated by BAYSART MMC.

Baysart Gold ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application for purchasing, storing, and managing physical precious metals (gold and silver).

We use collected information to:

• Provide and maintain our precious metals purchase and custody services
• Process transactions and manage your Profile
• Comply with KYC/AML regulations and legal requirements
• Prevent fraud and enhance security
• Send important service notifications and Profile updates
• Improve app performance and user experience
• Respond to customer support requests
• Maintain accurate ownership records and custody documentation
• Process physical delivery requests

We process your personal data based on:

• Consent: You have given explicit consent for specific processing activities
• Contract: Processing is necessary to fulfill our service agreement with you
• Legal Obligation: We must comply with KYC/AML laws and financial regulations
• Legitimate Interest: Fraud prevention, security, service improvement, and maintaining accurate ownership records

We may share your information with:

• Service Providers: Payment processors, KYC verification services, cloud hosting, vault operators
• Legal Authorities: When required by law or to prevent illegal activity
• Business Transfers: In case of merger, acquisition, or asset sale
• Custody Partners: Vault facilities storing your precious metals (limited to necessary operational data)

We do NOT sell your personal information to third parties for marketing purposes.

We implement industry-standard security measures:

• End-to-end encryption for sensitive data transmission
• Secure socket layer (SSL/TLS) technology
• Two-factor authentication for Profile access
• Regular security audits and penetration testing
• Access controls and employee training
• Secure data centers with redundancy and backup systems
• Encrypted storage of personal and financial information

However, no method of transmission over the internet is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

We retain your personal data for as long as necessary to:

• Provide our services and maintain your Profile
• Comply with legal obligations (typically 5-7 years for financial records)
• Maintain ownership documentation and transaction history
• Resolve disputes and enforce agreements
• Meet regulatory requirements for precious metals dealers
• Users may request an export statement of their allocated holdings and transaction histories upon request.

After the retention period, we securely delete or anonymize your data unless legally required to maintain it longer.

You have the right to:

• Access: Request a copy of your personal data
• Rectification: Correct inaccurate information
• Erasure: Request deletion ("right to be forgotten") subject to legal retention requirements
• Restriction: Limit how we process your data
• Portability: Receive your data in a structured, machine-readable format
• Object: Opt out of certain processing activities
• Withdraw Consent: Revoke consent at any time (without affecting prior processing)

To exercise these rights, contact us at privacy@baysart.com. We will respond within 30 days.

We use cookies and similar technologies for:

• Authentication and session management
• Analytics and performance monitoring
• Personalization of user experience
• Security and fraud prevention

You can manage cookie preferences in your device settings, though this may affect app functionality.

Baysart Gold is not intended for users under 18 years of age. We do not knowingly collect data from minors. If you believe we have inadvertently collected such information, please contact us immediately at privacy@baysart.com, and we will delete it promptly.

Your information may be transferred to and processed in countries other than Azerbaijan. When we transfer data internationally, we ensure appropriate safeguards are in place, such as:

• Standard Contractual Clauses (SCCs) approved by the European Commission
• Adequacy decisions by relevant data protection authorities
• Binding Corporate Rules for intra-group transfers
• Your explicit consent where required

To provide identity verification (KYC), fraud prevention, and compliance services, Baysart Gold may work with trusted third-party providers (such as DIDIT).

As a result, certain personal data may be processed or stored in jurisdictions outside the Republic of Azerbaijan or the user's country of residence.

In such cases, Baysart Gold ensures that appropriate safeguards are in place, including contractual confidentiality obligations, security measures, and data protection standards consistent with applicable law.

We only transfer the minimum necessary data required to perform verification and compliance checks.

We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements. Material changes will be communicated via email or in-app notification at least 14 days before taking effect. Continued use of the App after changes indicates acceptance of the updated policy.

For privacy-related questions or to exercise your rights:

• Email: privacy@baysart.com
• In-app support: Profile → Contact Support
• Data Protection Officer: dpo@baysart.com
• WhatsApp: +994 51 532 41 24