Data Protection
& Privacy Policy

1. Information We Collect

To provide our investment services and maintain compliance with financial regulations, we collect specific categories of data:

A. Identity Data

Information provided directly by you during onboarding or inquiry, including full legal name, government-issued identification (for KYC compliance), date of birth, and contact details.

B. Financial Data

Bank account details, accreditation status, income verification documents, and transaction history related to your investments with GrowShare Capital.

C. Technical Data

Internet Protocol (IP) address, browser type and version, time zone setting, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access this website.

2. How We Use Your Information

We utilize your data solely for legitimate business purposes and legal compliance:

• Service Execution: To process investment transactions, manage your portfolio, and provide customer support.
• Regulatory Compliance: To comply with SEC regulations, Anti-Money Laundering (AML) laws, and Know Your Customer (KYC) requirements.
• Communication: To send you administrative information, market updates, and opportunities relevant to your investment profile.
• Security: To detect, prevent, and address technical issues or fraudulent activities.

3. Information Sharing & Disclosure

We maintain a strict policy regarding your data. We do not sell, trade, or rent your personal identification information to others. Disclosure occurs only under these specific circumstances:

• Trusted Service Providers: We engage third-party companies (e.g., custodian banks, payment processors like Stripe, legal counsel) who are contractually obligated to keep your information confidential and secure.
• Legal Obligations: We may disclose your information if compelled by law, court order, or governmental regulation.
• Business Transfers: In the event of a merger, acquisition, or sale of assets, client data may be transferred as a business asset, subject to confidentiality agreements.

4. Data Security

We employ bank-grade security measures to protect your personal information from unauthorized access, alteration, disclosure, or destruction. This includes:

• Encryption of data in transit (SSL/TLS) and at rest.
• Multi-factor authentication (MFA) for administrative access.
• Regular security audits and vulnerability assessments.

While we strive for absolute security, no method of transmission over the Internet is 100% infallible. We utilize industry best practices to minimize risk.

5. Your Rights & Choices

Depending on your jurisdiction, you have the right to:

• Access: Request a copy of the personal data we hold about you.
• Correction: Request correction of inaccurate or incomplete data.
• Deletion: Request deletion of your personal data, subject to our legal retention requirements (e.g., financial record-keeping laws).
• Opt-Out: Unsubscribe from marketing communications at any time via the link in our emails.

6. Contact Us

If you have questions regarding this Privacy Policy or wish to exercise your data rights, please contact our Compliance Officer.