Nextoken Capital UAB ('we', 'us', 'our') is a company registered in Lithuania (registration in progress), registered in Lithuania. Our registered address is Vilnius, Lithuania. MiCA CASP authorization is in progress. We are the data controller for personal data processed through the Nextoken Capital platform.
We collect: (a) Identity data โ full name, date of birth, nationality, government ID documents; (b) Contact data โ email address, phone number, postal address; (c) Financial data โ investment history, transaction records, wallet addresses; (d) KYC/AML data โ identity verification results, source of funds information; (e) Technical data โ IP address, browser type, device information, cookies; (f) Usage data โ pages visited, features used, time spent on platform.
We process your data to: provide and manage your account; verify your identity under AML/KYC regulations; process investments and transactions; comply with legal and regulatory obligations including Lithuanian authorities reporting; detect and prevent fraud; improve our platform and services; and communicate with you about your account, investments, and platform updates.
We process your personal data on the following legal bases: (a) Contract performance โ to provide the services you have requested; (b) Legal obligation โ to comply with AML, KYC, MiCA, and other EU financial regulations; (c) Legitimate interests โ to improve our platform, prevent fraud, and maintain security; (d) Consent โ for marketing communications, which you may withdraw at any time.
We share your data with: KYC/identity verification providers (Sumsub); payment processors; our legal and compliance advisors; the Lithuanian authorities and other regulatory authorities when required by law; and cloud infrastructure providers. We do not sell your personal data to third parties. All data processors are bound by data processing agreements.
Some of our service providers are located outside the European Economic Area. Where we transfer data internationally, we ensure appropriate safeguards are in place, including Standard Contractual Clauses approved by the European Commission.
We retain your personal data for as long as your account is active and for a minimum of 5 years after account closure to comply with AML and financial regulatory obligations. KYC documents are retained for 5 years after the end of the business relationship as required by EU AML directives.
Under GDPR, you have the right to: access your personal data; correct inaccurate data; request deletion (subject to legal retention obligations); restrict processing; data portability; and object to processing based on legitimate interests. To exercise your rights, contact privacy@nextokencapital.com. You also have the right to lodge a complaint with the State Data Protection Inspectorate of Lithuania.
We use essential cookies to operate the platform, analytical cookies to understand usage, and preference cookies to remember your settings. You can control non-essential cookies through your browser settings. Our cookie policy is available in full on our website.
For privacy questions or to exercise your rights, contact our Data Protection Officer at privacy@nextokencapital.com or by post at: Nextoken Capital UAB, Gynฤjลณ g. 14, Vilnius 01109, Lithuania.