Privacy Policy

PRIVACY POLICY

Virtual Currency Kiosk & Teller Customers: Click here to view our Legacy User Agreement, Privacy Policy and Terms of Service.

Red Leaf Chicago, LLC d/b/a DigitalMint (“DigitalMint”, “we”, “us”, or “our”, referring collectively to Red Leaf Chicago, LLC and its subsidiaries and affiliates) is an incident response and digital asset services provider, specializing in incident response services, including but not limited to services relating to pre-and post-incident response readiness, threat actor communications, dark web monitoring, threat intelligence, blockchain forensics and tracking, the secure handling of ransomware incidents, and the facilitation of secure payments (collectively, the “Services”).

This Privacy Policy applies to the processing activities performed by DigitalMint to the personal data of its current, past and prospective clients, employees, and other stakeholders (“You” or “Your”). This Policy describes how and why we might access, collect, store, use, and/or share Your personal information, including when You:

• Use our Services
• Contact us via our website – digitalmint.io
• Communicate with us via email, text, phone, or other electronic methods
• Engage with us in other related ways, including participating in industry conferences, completing surveys or questionnaires, applying for employment, or participating in other business activities.

Please read this Privacy Policy carefully to understand how we process Your personal information. If You do not agree with our policies and practices, You may choose not to use our Services. However, certain data processing may be required by law or necessary for our Services even without Your consent, particularly for anti-money laundering (AML) and know-your-customer (KYC) compliance. By accessing or using services provided by DigitalMint, You agree to this Privacy Policy. This Privacy Policy may change from time to time (see “Changes to Our Privacy Policy” below). Your continued use of DigitalMint’s Services after we make changes to this Privacy Policy is deemed to be acceptance of those changes.

DEFINITIONS

The following terms are defined as follows:

• “Personal data” or “personal information” means any information that (a) can be used to identify the individual to whom such information relates, or (b) is or might be directly or indirectly linked to an individual or household.
• “Processing of personal data” means an operation or set of operations performed upon personal data. Examples of processing operations of personal data include, but are not limited to, the collection, storage, alteration, retrieval, consultation, disclosure, anonymization, pseudonymization, dissemination or otherwise making available, deletion or destruction of personal data.
• “AML” means Anti-Money Laundering
• “KYC” means Know Your Customer

WHAT IS PERSONAL DATA AT DIGITALMINT?

At DigitalMint, we believe strongly in fundamental privacy rights and that those fundamental rights should not differ depending on where You live in the world. That’s why we treat any data that relates to an identified or identifiable individual or that is linked or linkable to them by DigitalMint as “personal data,” no matter where the individual lives. This means that data that directly identifies You – such as Your name – is personal data, and also data that does not directly identify You, but that can reasonably be used to identify You, is personal data.

Aggregated data and properly de-identified data that cannot reasonably be used to identify an individual is considered non-personal data for the purposes of this Privacy Policy.

DigitalMint’s Privacy Policy does not apply to how third parties define personal data or how they use it. We encourage You to read their privacy policies and know Your privacy rights before interacting with them.

WHY DO WE NEED YOUR PERSONAL DATA?

We collect and process Your personal data only in accordance with applicable data protection and privacy laws, and only as necessary to provide our Services. We do not sell Your personal data or use it for targeted advertising purposes. Any data sharing for analytical or advertising purposes is first anonymized or de-identified in accordance with applicable law.

PERSONAL INFORMATION WE COLLECT

Information You provide to us. DigitalMint collects personal information that You voluntarily provide to us when You express an interest in our products and Services, when You use the Services, or otherwise when You contact us. The personal data DigitalMint collects, and how we use it, depends on the context of how You interact with DigitalMint.

You are not required to provide the personal data that we have requested. However, if You choose not to do so, in many cases we will not be able to provide You with our products or services or respond to requests You may have.

Third party sources. In certain cases, we combine personal information we receive from You with personal information we obtain from other sources. DigitalMint may receive personal data about You from other individuals, from businesses or third parties acting at Your direction, from third parties who work with us to provide our products and services and assist us in security and fraud prevention, and from other lawful sources.

• Individuals. DigitalMint may collect data about You from other individuals – for example, if that individual has referred You to DigitalMint, or shared content with You.
• At Your direction. You may direct other individuals or third parties to share data with DigitalMint.
• Third parties. We may validate the information You provide – for example, during the client intake process, with a third party for security, and for AML compliance and fraud-prevention purposes.
• Affiliates. Our affiliates include the group of companies related to us by common control or ownership. In accordance with applicable law, we may obtain information about You from our Affiliates as a normal part of conducting business, so that we may offer our Affiliates’ services to You.
• Public Databases, Credit Bureaus, and ID Verification Service Providers. We may obtain information about You from public databases and ID verification service providers for purposes of verifying Your identity and in order to conduct due diligence or fraud prevention checks in accordance with applicable law. ID verification service providers use a combination of government records and publicly available information about You to verify Your identity. Such information may include Your name, address, job role, public employment profile, credit history, status on any sanctions lists maintained by public authorities, and other relevant data. We obtain such information to comply with our legal obligations, such as AML laws. In some cases, we may process additional data about You to assess risk and ensure our Services are not used fraudulently or for other illicit activities. In such instances, processing is necessary for us to continue to perform our contractual obligations with You and others.
• Blockchain Data. We analyze public blockchain data to (i) verify compliance with our Terms of Service, (ii) detect and prevent illegal activities, (iii) meet our regulatory obligations, (iv) conduct transaction trend analysis for service improvement and research purposes, and (v) comply with law enforcement and regulatory requests as required by applicable law.

The categories of personal information we may collect, including types of personal information we have collected in the past twelve (12) months, are listed below:

These categories of data may be shared with third parties only as necessary for purposes including identity verification, fraud prevention, or to comply with applicable law. Any such sharing is subject to appropriate contractual safeguards, data protection requirements, and data minimization principles. We maintain oversight of third parties’ data handling practices through contractual provisions and regular assessments.

We may also collect other personal information outside of these categories through instances where You interact with us in person, online, or by phone or mail in the context of:

• Receiving assistance through our support channels;
• Participation in events, surveys or social media engagements; and
• Facilitation of the delivery of our Services and to respond to Your inquiries.

When necessary for improving our Services, we may process datasets for research and development purposes that may contain personal data, including biometric information such as images and voice data. Any such processing is conducted in strict compliance with applicable data protection laws and with appropriate safeguards in place, including data minimization and purpose limitation principles.

HOW WE USE PERSONAL INFORMATION

DigitalMint only processes Your personal data when we have a valid legal basis under applicable law, including: (i) Your express consent; (ii) compliance with legal obligations; (iii) performance of our contractual obligations; (iv) protection of vital interests; (v) our legitimate business interests, provided such interests do not override Your fundamental rights and freedoms; or (vi) as otherwise permitted by applicable law. We maintain documentation of these legal bases as required by law.

If You choose to limit the use of Your personal information, our Services may not be available to You.

To the extent permitted by applicable law, DigitalMint may use Your personal information for various legitimate purposes, including:

• With Your consent. Where required by applicable law, DigitalMint will obtain Your specific, informed, and explicit consent before collecting or processing certain categories of personal information, or particularly sensitive personal data. Such consent will be obtained through clear affirmative action and documented in accordance with applicable privacy laws. You have the right to withdraw your consent for that specific processing at any time. However, please note that if You withdraw your consent, we may no longer be able to provide You with our Services.
• Performance of a contract. DigitalMint collects personal data necessary to provide our Services and fulfill our contractual obligations to You, which may include personal data collected to improve our product and service offerings, enhance Your experience, for internal purposes such as auditing or data analysis, or for client support.
• Transaction processing. DigitalMint must collect data such as Your name, purchase, and payment information to process purchase transactions.
• To communicate with You. DigitalMint may use Your personal information to respond to Your inquiries, engage with You regarding Your transactions or account, promote our products and services, provide relevant updates, and request feedback. Additionally, we may occasionally send important notices, such as updates about Your account or changes to our terms and policies. Because this information is important to Your interaction with DigitalMint, You may not opt out of receiving these notices.
• To personalize the Services. If You choose to personalize Your services or communications where such options are available, DigitalMint will use information that we collect so that we can offer You those personalized services or communications.
• Legal obligations. We may process Your information where we believe it is necessary for compliance with our legal obligations, such as to cooperate with a law enforcement body or regulatory agency, exercise or defend our legal rights, to satisfy tax, regulatory or reporting obligations, or disclose Your information as evidence in litigation in which we are involved.
• Vital interests, security and fraud prevention. We may process Your information to protect individuals, employees, and DigitalMint and for loss prevention and to combat fraud, spam or other malware and security risks, including to protect Your vital interests or the vital interests of a third party, such as situations involving potential threats to the safety of any person.
• To enforce our Terms of Service. To enforce and apply our Terms of Service, Privacy Policy, and all other applicable policies or agreements.

If You are located in Canada:

We may process Your information if You have given us specific permission (i.e., express consent) to use Your personal information for a specific purpose, or in situations where Your permission can be inferred (i.e., implied consent). You have the right to withdraw Your consent for that specific processing at any time. However, please note that if You withdraw Your consent we may no longer be able to provide You with our Services.

In some exceptional cases, we may be legally permitted under applicable law to process Your information without Your consent, including, for example:

• If collection is clearly in the interests of an individual and consent cannot be obtained in a timely way
• For investigations and fraud detection and prevention
• For business transactions provided certain conditions are met
• If we have reasonable grounds to believe an individual has been, is, or may be victim of financial abuse
• If it is reasonable to expect collection and use with consent would compromise the availability or the accuracy of the information and the collection is reasonable for purposes related to investigating a breach of an agreement or a contravention of the laws of Canada or a province
• If disclosure is required to comply with a subpoena, warrant, court order, or rules of the court relating to the production of records
• If it was produced by an individual in the course of their employment, business, or profession and the collection is consistent with the purposes for which the information was produced
• If the collection is solely for journalistic, artistic, or literary purposes
• If the information is publicly available and is specified by the regulations

If You have questions about a legal basis described in this Privacy Policy, You can send an email to privacy@digitalmint.io.

SHARING OF PERSONAL INFORMATION

DigitalMint may share personal data with DigitalMint-affiliated companies, third-party service providers who act on our behalf and are bound by written confidentiality obligations and data processing agreements, or others as explicitly authorized by You in writing. Further, DigitalMint does not share personal data with third parties for the third parties’ marketing purposes.

DigitalMint may share Your data with the following groups:

• Within DigitalMint. DigitalMint may share Your personal information with our affiliates, subsidiaries, and employees.

• Service Providers. DigitalMint may engage third parties to act as our service providers and perform certain tasks on our behalf, such as processing or storing data, including personal data, in connection with Your use of our Services. DigitalMint service providers are contractually obligated to handle personal data consistent with this Privacy Policy, applicable data protection laws, and according to our written instructions, and must maintain appropriate technical and organizational security measures. They cannot use the personal data we share for their own purposes and must delete or return the personal data once they’ve fulfilled our request. Examples of the types of service providers we may share personal data with may include:

  • Network infrastructure
  • Cloud storage
  • Payment processing
  • Transaction monitoring
  • Information technology
  • Security
  • Document repository services
  • Internet (e.g., ISPs)
  • Data analytics
  • Identity verification
  • Fraud prevention
  • Sanctions screening

• Other third parties. At times, DigitalMint may contract with third parties to provide services or other offerings. Such third parties are contractually required to protect Your personal data through appropriate technical and organizational measures, maintain confidentiality, and process data only as explicitly authorized by DigitalMint and in compliance with all applicable data protection laws and regulations.

  • NOTE: If You establish an account indirectly on a third party website or via a third party application, any information that You enter on that website or application (and not directly on a DigitalMint website) will be shared with the owner of the third party website or application and Your information will be subject to their privacy policies. Information collected by third parties, which may include such things as contact details, financial information, or location data, is governed by their privacy practices and DigitalMint is not responsible for unauthorized third-party conduct. We encourage You to learn about the privacy practices of those third parties.
  • Financial institutions to process transactions You have authorized. If You send us funds from Your bank account, Your bank will provide us with identifying information in addition to information about Your account in order to complete the transaction.
  • Companies or other entities that we plan to merge with or be acquired by, or who purchase our assets pursuant to a court-approved sale, or where we are required to share Your information pursuant to insolvency law in any applicable jurisdiction. In such cases, You will receive prior notice of any change in applicable policies and the opportunity to opt-out of any materially different use of Your personal information by the successor entity, where permitted by law.
  • Our professional advisors who provide banking, legal, compliance, insurance, accounting, or other consulting services in order to complete third party financial, technical, compliance and legal audits of our operations or otherwise comply with our legal obligations.
  • Law enforcement, officials, or other third parties when we are compelled to do so by a subpoena, court order, or similar legal procedure, or when we believe in good faith that the disclosure of personal information is necessary to prevent physical harm or financial loss, to report suspected illegal activity, or to investigate violations of our policies.
  • Our Affiliates as a normal part of conducting business and offering Services to You.
  • As necessary in our judgment in order to protect the vital interests of any person.
  • At Your direction. DigitalMint may share personal data with others at Your direction or with Your consent. We may also disclose information about You where there is a lawful basis for doing so, including but not limited to: (i) enforcing our terms and conditions; (ii) protecting our legal rights, property, or safety; (iii) responding to legal process or government requests; or (iv) preventing fraud or other illegal activities.

WHAT ARE YOUR PRIVACY RIGHTS?

Depending on Your jurisdiction, including but not limited to Your state of residence in the United States (US), Your province in Canada, or other applicable jurisdictions, You have specific rights regarding Your personal information. These rights vary by jurisdiction and may include rights to access, correct, delete, port, or restrict processing of Your personal information. We have listed some of these rights below. If any of the rights listed are not provided under law for Your operating entity or jurisdiction, DigitalMint reserves absolute discretion in providing You similar benefits.

• Access. You may request that we provide You a copy of Your personal information held by us.
• Data portability. In certain circumstances, You may request Your personal information in a structured, commonly used and machine-readable format, or to have us transfer Your information directly to another business.
• Rectification of incomplete or inaccurate personal information. You may request that we correct or update Your personal information if it is inaccurate.
• Restriction of processing. In some jurisdictions, applicable law may give You the right to restrict or object to us processing or transferring Your personal information under certain circumstances. We may continue to process Your personal information if it is necessary for the defense of legal claims, or for any other exceptions permitted by applicable law.
• Automated individual decision-making, including profiling. DigitalMint relies on automated tools to help detect and mitigate fraud or legal risk. In some jurisdictions, You may have the right not to be subject to a decision based solely on automated processing of Your personal information, including profiling, which produces legal or similarly significant effects on You, save for the exceptions applicable under relevant data protection laws. Due to the nature of our Services and our legal obligations regarding fraud prevention and security, certain automated processing is essential to provide our Services. While You may have rights regarding automated processing, some level of automated processing is necessary to provide our core Services and comply with legal requirements. DigitalMint does not use algorithms or profiling to make any final decision that would significantly affect You without the appropriate human oversight and review, as required by applicable law.
• Marketing communications. You can opt-out of receiving marketing communications from DigitalMint. Direct marketing includes any communications to You that are only based on advertising or promoting our products and Services. We will only contact You by electronic means based on our legitimate interests, as permitted by applicable law, or with Your consent. If You do not want us to send You marketing communications, email privacy@digitalmint.io or call us at 1-855-274-2900.

We will consider and act upon any request in accordance with applicable data protection laws. There may be situations where we cannot grant Your request – for example, if You ask us to delete Your transaction data and DigitalMint is legally obligated to keep a record of that transaction to comply with the law. We may also decline to grant a request where doing so would undermine our legitimate use of data for compliance with applicable laws and regulations, including but not limited to Anti-Money Laundering (AML) requirements, Bank Secrecy Act obligations, anti-fraud measures and security purposes. Other reasons Your privacy request may be denied include, but are not limited to, if it would jeopardize the privacy of others, is frivolous or vexatious, would be extremely impractical, or would compromise our legitimate business interests or legal obligations.

Canada residents have the right to file a complaint with the Office of the Privacy Commissioner of Canada (OPC).

Withdrawing Your Consent: If we are relying on Your consent to process Your personal data, which may be express and/or implied consent depending on the applicable law, You have the right to withdraw Your consent at any time. You can withdraw Your consent at any time by contacting us by using the contact details provided in the section “How to Contact Us” below. However, please note that Your withdrawal will not affect the lawfulness of DigitalMint’s processing before its withdrawal nor, when applicable law allows, will it affect the processing of Your personal information conducted in reliance on lawful processing grounds other than consent. If You withdraw Your consent, we may no longer be able to provide You with our Services.

SPECIFIC PRIVACY RIGHTS FOR UNITED STATES RESIDENTS

You may have specific rights under certain US state data protection laws. If You are a resident of California, Colorado, Connecticut, Delaware, Florida, Indiana, Iowa, Kentucky, Minnesota, Montana, Nebraska, New Hampshire, New Jersey, Oregon, Tennessee, Texas, Utah, or Virginia, You may have the right to request access to and receive details about the personal information we maintain about You and how we have processed it, correct inaccuracies, get a copy of, or delete Your personal information. You may also have the right to withdraw Your consent to our processing of Your personal data. These rights are not absolute and may be limited or denied in certain circumstances as permitted by applicable law, including but not limited to situations involving fraud prevention, security requirements, legal obligations, or where the rights of others would be violated.

These rights include the:

• Right to know whether or not we are processing Your personal data
• Right to access Your personal data
• Right to correct inaccuracies in Your personal data
• Right to request the deletion of Your personal data, subject to applicable law
• Right to obtain a copy of the personal data You previously shared with us
• Right to non-discrimination for exercising Your rights
• Right to opt out of the processing of Your personal data if it is used for targeted advertising (or sharing as defined under California’s privacy law), the sale of personal data, or profiling in furtherance of decisions that produce legal or similarly significant effects (“profiling”)

Depending upon the state where You live, You may also have the following rights:

• Right to access the categories of personal data being processed (as permitted by applicable law, including Minnesota’s privacy law)
• Right to obtain a list of the categories of third parties to which we have disclosed personal data (as permitted by applicable law, including California’s and Delaware’s privacy law)
• Right to obtain a list of specific third parties to which we have disclosed personal data (as permitted by applicable law, including Minnesota’s and Oregon’s privacy law)
• Right to review, understand, question, and correct how personal data has been profiled (as permitted by applicable law, including Minnesota’s privacy law)
• Right to limit use and disclosure of sensitive personal data (as permitted by applicable law, including California’s privacy law)
• Right to opt out of the collection of sensitive data and personal data collected through the operation of a voice or facial recognition feature (as permitted by applicable law, including Florida’s privacy law)

CALIFORNIA RESIDENTS’ RIGHTS

Pursuant to the California Consumer Privacy Act of 2018, as amended by the California Privacy Rights Act of 2020 (collectively, the “CCPA”), California residents may have certain consumer rights in relation to their personal information, in addition to those referenced above, subject to limited exceptions. Please note that these rights are not absolute and in certain cases are subject to conditions or limitations as specified in the CCPA:

• For personal information collected by us during the 12 months preceding Your request that is not otherwise subject to an exception, California residents have the right to access and request the deletion of their personal information.

If You are a California resident and would like to make such a request, please submit Your request in writing to us at privacy@digitalmint.io or call us at 1-855-274-2900 following the guidelines in the “How to Exercise Your Rights” section. We will respond to verifiable consumer requests within forty-five (45) days, with a possible forty-five (45) day extension when reasonably necessary.

DigitalMint does not share personal data with third parties for the third parties’ direct marketing purposes.

INFORMATION SECURITY AND PROTECTION OF PERSONAL DATA

At DigitalMint, we are committed to protecting Your privacy and we know that data privacy depends on data security. We use administrative, technical, and physical safeguards to protect Your personal data, taking into account the nature of the personal data and the processing, the current state of technology, implementation costs, and the severity and likelihood of potential risks to rights and freedoms of individuals. To make sure Your personal data is secure, we communicate our privacy and security guidelines to DigitalMint employees and strictly enforce privacy safeguards within the company. We are constantly working to improve on these safeguards.

For additional information on our information security practices, please visit our Trust Center.

RETENTION OF YOUR PERSONAL DATA

DigitalMint will only retain Your personal data for as long as it is necessary to fulfill the purposes for which it was collected, including as described in this Privacy Policy, unless a longer retention period is required by law.

When assessing retention periods, we first carefully examine whether it is necessary to retain the personal data collected. This includes considerations such as when the information was collected or created, whether it is necessary in order to continue offering You our Services, whether we are required to hold the information to comply with our legal obligations, including AML/KYC compliance, other financial regulatory obligations, or information preservation requirements (such as tax, accounting, or reporting obligations or to resolve disputes). If retention is required, we work to retain the personal data for the shortest possible period permissible under law. We store Your personal information securely throughout the duration of Your relationship with DigitalMint.

When we have no ongoing legitimate business need to retain Your personal data, we will either delete or anonymize such information, or, if this is not possible (for example, because Your personal data has been stored in backup archives), then we will securely store Your personal data and isolate it from any further processing until deletion is possible.

CHILDREN’S PRIVACY

DigitalMint understands the importance of safeguarding the personal data of children, which we consider to be an individual under the age of 13 or the equivalent age as specified by law in Your jurisdiction. Our Services are not intended for children below the age of 18, and individuals under 18 are expressly prohibited from using our Services, and we do not knowingly collect or solicit data from children. If we learn that a child’s personal data was collected without appropriate authorization, it will be deleted as soon as reasonably practicable, subject to any legal retention requirements.

HOW TO EXERCISE YOUR RIGHTS

To exercise Your rights, please submit a request to us by calling us at 1-855-274-2900 or sending an email to privacy@digitalmint.io.

If You are contacting us to exercise Your rights with regard to Your personal data as detailed in this Privacy Policy, please adhere to the following guidelines:

• Specify which right You wish to exercise and the personal data to which Your request relates (if not to You);
• If you are acting on behalf of another individual, please clearly indicate this and your authority to act on such individual’s behalf (see “Authorized Agents” below for more information); and
• Provide us enough information to verify Your identity. Please see “Request verification” below.

DigitalMint will not discriminate against those who exercise their privacy rights under applicable laws. Specifically, if You exercise Your rights, we will not deny You services, charge You different prices for services or provide You a different level or quality of services.

AUTHORIZED AGENTS

Under certain data protection laws, You may be permitted to authorize a person (“Authorized Agent”) to make a request on Your behalf. To do so, You must: (i) give the Authorized Agent signed, written permission to submit the request; and (ii) verify Your own identity with us.

We may deny a request from an Authorized Agent that does not submit proof that they have been validly authorized to act on Your behalf in accordance with applicable laws, if we are unable to verify their identity, if we suspect fraudulent or malicious activity, or if the request is excessive or unfounded.

REQUEST VERIFICATION

We will verify Your identity before processing any request. While we strive to limit the personal information collected in connection with a request to exercise Your rights, certain requests may require us to obtain additional personal information from You to match the information we maintain about You in our systems. We will let You know via email if we need more information from You to authenticate Your request. Please reply to our requests promptly. Failure to provide requested verification information may result in Your request being denied.

In certain circumstances, we may decline a request to exercise the right to know, particularly where we are unable to verify Your identity.

RESPONDING TO YOUR REQUESTS

We aim to respond to Your verified requests within the timeframe required by applicable privacy legislation. This information will be provided without undue delay subject to a potential fee associated with gathering of the information (as permitted by law), unless such provision negatively impacts others’ rights or is prohibited by applicable law, regulation, or legal process.

If we determine that we cannot take the action that You requested, we will let You know. We will contact You at the email address You provided when submitting Your request(s) to inform You of our reasons for not taking action.

RIGHT TO APPEAL

Under certain data protection laws, if we decline to take action regarding Your data rights request, You may be entitled to appeal our decision in accordance with applicable laws and may do so by following the instructions provided in the correspondence we sent to You communicating our decision. To appeal our decision regarding a data rights request, please email privacy@digitalmint.io within sixty (60) days of our initial response. We will inform You in writing of any action taken or not taken in response to the appeal within sixty (60) days of receipt of Your written notice of appeal, including a written explanation of the reasons for the decision. If Your appeal is denied, You may have the right to submit a complaint to Your state attorney general or relevant data protection authority, subject to applicable laws and jurisdictional requirements.

JOB APPLICANTS

When You apply for a position at DigitalMint, the personal information submitted with Your application will be used to process Your application. Personal information may include:

• Contact details (name, address, email, phone number)
• Professional and educational background (résumé, CV, references)

These details may be provided through the Careers portion of our website, via email, third-party platform recruitment portals, or direct communications with our hiring team. By submitting this information, You confirm it is accurate and current. Providing incomplete or incorrect information may affect our ability to assess Your application or consider You for employment.

We use Your information to:

• Evaluate and process applications – Assess qualifications, verify details, and make hiring decisions.
• Communicate – Contact You about Your application, schedule interviews, and provide updates.
• Comply with legal requirements – Fulfill employment, immigration, and other obligations.
• Maintain records – Keep internal records for reporting, auditing, and analytics.
• Consider future opportunities – Invite You to apply for other positions, unless You opt out.

Our legal bases for processing Your data may include our legitimate interest in recruiting qualified personnel, Your consent (where required by law), and any applicable legal obligations (e.g., verifying work eligibility).

Retention of Applicant Information. We retain Your Personal Information for a minimum of 12 months and as long as needed for the purposes for which it was collected and other permitted purposes, including retention of Personal Information pursuant to any applicable contract, law, or regulation. As such, our retention periods vary based on business, legal, and regulatory needs.

Your Rights. You may request the removal of Your application data by contacting us, unless we are required or permitted by law to retain it. To exercise these rights or inquire further about our data practices, please refer to the contact information provided in the “How to Contact Us” section of this Privacy Policy.

INTERNATIONAL TRANSFERS OF PERSONAL DATA

DigitalMint is headquartered in the United States. To provide and operate our Services, it is necessary for us to process the personal information You provide in the United States. When we transfer personal information across borders, we implement appropriate safeguards and comply with applicable data protection laws, including but not limited to standard contractual clauses, internal policies and procedures, and other legally recognized transfer mechanisms as required by applicable law.

Please visit our Trust Center for information on our data security practices or contact us for further information about any such transfers or the specific safeguards applied.

COOKIES

DigitalMint’s website does not use cookies to collect or track personal information about visitors. View our Cookie Policy for more information about DigitalMint’s privacy-focused, no-cookie approach.

CHANGES TO OUR PRIVACY POLICY

We may update this Privacy Policy from time to time. The date this Privacy Policy was last revised is indicated by the “Last Updated” date at the top of this page. If we make material changes to this Privacy Policy, we will notify You by prominently posting a notice of such changes on our website and, where appropriate, sending You a direct notification. We encourage You to review this Privacy Policy frequently to be informed of how we are protecting Your data.

HOW TO CONTACT US

If You have questions or concerns regarding this Privacy Policy, if You have a complaint, or if You would like to submit a data subject access request, please contact our Privacy Team at 1-855-274-2900 or send an email to privacy@digitalmint.io.