Legal Document

Privacy Policy

Effective Date: January 1, 2026

Last Updated: March 19, 2026

GDPR Compliant
SOC 2 Type II
PII Protected
Global Standards
Introduction

NGDB.AI LLC ("we," "our," or "us") is committed to protecting your privacy and personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our trade finance platform, APIs, and related services (collectively, the "Services").

We are committed to compliance with all applicable data protection laws, including the General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), and other regional privacy regulations.

Information We Collect

Personal Information

  • Identity information (name, email, phone number, job title)
  • Professional information (company name, business address, industry)
  • Authentication credentials and account security information
  • Financial information required for trade finance operations

Business Information

  • Company registration details and business documentation
  • Transaction history and trade finance data
  • KYC (Know Your Customer) and compliance verification data
  • API usage data and integration information

Technical Information

  • Device and browser information (IP address, user agent, device type)
  • Usage analytics and performance data
  • Session information and application logs
  • Security monitoring and fraud prevention data
How We Use Your Information

Service Provision

We use your information to provide, maintain, and improve our trade finance services, including processing transactions, managing your account, and delivering personalized experiences.

Compliance and Legal Obligations

We process your information to comply with legal requirements, including anti-money laundering (AML), know your customer (KYC) regulations, sanctions screening, and other financial regulations.

Security and Fraud Prevention

We use your information to protect our services and users from fraud, unauthorized access, and other security threats through monitoring, analysis, and investigation of suspicious activities.

Communication and Support

We may use your contact information to send service-related communications, respond to inquiries, provide customer support, and share important updates about our services.

Your Rights Under GDPR

If you are located in the European Union, you have the following rights regarding your personal data:

Right of Access: Request access to your personal data
Right to Rectification: Correct inaccurate personal data
Right to Erasure: Request deletion of personal data
Right to Portability: Receive your data in a structured format
Right to Restrict: Limit processing of your personal data
Right to Object: Object to processing for direct marketing
Right to Withdraw: Withdraw consent at any time
Right to Complain: Lodge complaints with supervisory authorities
Data Security and Protection

We implement industry-leading security measures to protect your information, including:

SOC 2 Type II compliance
PCI DSS Level 1 certification
End-to-end encryption (TLS 1.3)
Multi-factor authentication
Regular security audits and penetration testing
Role-based access controls
Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, comply with legal obligations, resolve disputes, and enforce our agreements.

Account Information: Retained for the duration of your account plus 7 years for compliance
Transaction Records: Retained for 10 years as required by financial regulations
Technical Logs: Retained for 12 months for security and system optimization
Marketing Data: Retained until you withdraw consent or 3 years of inactivity
International Data Transfers

As a global trade finance platform, we may transfer your personal information to countries outside your residence. We ensure appropriate safeguards are in place, including:

  • Standard Contractual Clauses (SCCs) approved by the European Commission
  • Adequacy decisions for transfers to jurisdictions with adequate protection
  • Binding Corporate Rules and other approved transfer mechanisms
Contact Us

If you have any questions about this Privacy Policy or wish to exercise your rights, please contact us:

Privacy Officer: privacy@ngdb.ai
Data Protection Officer: dpo@ngdb.ai
Phone: +1-206-847-4125

Mailing Address:
NGDB.AI LLC
Attn: Privacy Officer
Seattle, WA
United States

Updates to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of any material changes by posting the updated Privacy Policy on our website and updating the "Last Updated" date. Your continued use of our Services after such updates constitutes acceptance of the revised Privacy Policy.