Privacy Policy

Effective date: 15 April 2026

Data We Collect

Dobi Exchange collects the data required to operate a compliant crypto trading platform: your name, email address, government ID for KYC verification, wallet addresses, and transaction history.

We also collect device information, IP addresses, and session data for fraud prevention and security monitoring. This data is never sold to advertisers or data brokers.

How We Use Your Information

Your data is used to verify your identity, process trades and withdrawals, detect fraud, comply with AML/KYC regulations, and send you account security alerts. We do not use your trading data to build advertising profiles.

Cookies

Dobi Exchange uses session cookies for authentication and functional cookies to remember your display preferences. Analytics cookies are used in aggregate form only — no individual browsing profiles are created.

You can disable non-essential cookies through your browser settings at any time. Disabling session cookies will prevent you from staying logged into the platform.

Data Sharing with Third Parties

We share data with identity verification providers, payment processors, and regulatory authorities only where legally required or necessary to deliver the service. All third-party processors are bound by data protection agreements.

Security of Your Data

All personal data is encrypted at rest using AES-256 and in transit using TLS 1.3. Access to user data within Dobi Exchange is restricted to authorized personnel on a need-to-know basis.

Quarterly third-party security audits cover data storage and access controls. Audit summaries are published on the dobiexchange security transparency page.

Your Rights

You have the right to access, correct, or request deletion of your personal data at any time. Submit a data request to info@dobiexchange.com and expect a response info@dobiexchange.com within 10 business days.

Third-Party Links

The platform may contain links to external resources such as blockchain explorers or market data providers. Dobi Exchange is not responsible for the privacy practices of any third-party website.

Data Retention

Transaction records and KYC data are retained for a minimum of 5 years to comply with anti-money laundering regulations. Account data is deleted within 30 days of a confirmed account closure request, except where legal retention applies.

Changes to This Policy

When this Privacy Policy changes materially, Dobi Exchange will notify you by email at least 14 days before the new version takes effect. The effective date at the top of this page always reflects the current version.