Privacy Policy

About Etor FX

Etor Private Limited — 3rd Floor, Visakhapatnam Audi Building, Beside Swarna Bharathi Indoor Stadium, Resapuvanipalem, Visakhapatnam: 530013 Contact email:

We are committed to protect your privacy and maintaining the security of any personal information that we receive from you.

What is the purpose of this policy?

The purpose of this policy is to explain to you what personal information we collect and how we may use it.

We are the controller of any personal information that you provide to us, which means that we decide the purposes and means of the processing of that personal information.

How do we obtain and store your personal information?

We obtain your personal information through applications, emails, letters, telephone calls, text messages, cookies, and conversations when you register in our services and work with them (including the personal information gained when you use our learning tools, demo accounts, and trading simulators).

We may monitor or record phone calls with you and monitor (and maintain a record of) all emails and electronic communications we send or receive.

We follow strict security procedures in the storage and disclosure of the personal information that you have given to us to prevent unauthorised access.

What types of personal information do we collect and process?

We may process the following types of personal information:

  • Name

  • Contact details including email details and phone numbers

  • Age or date of birth

  • Gender

  • Occupation

  • Income

  • Trading knowledge and experience

  • Phone device type

  • Operating system

  • Device ID

  • Cookie ID

  • Google 360 ID

  • GUID

  • Passport number

  • Marital status

  • Usage data

  • User names and passwords

  • Information related to your trading account including your account history, activity, and orders

  • IP address

  • PAN Number

  • Aadhar Number

  • Transaction reporting reference

  • Power of attorney/agent details

  • Information about your use of our services, products, and facilities (including information gained when you use our learning tools, demo accounts, and trading simulators)

  • Bank account number

  • Sort code

How do we check your identity?

To comply with money laundering regulations, we need to confirm the name and address of our clients and certain third parties. We may ask you to provide physical forms of identity verification when you open your account. Alternatively, we may use a credit reference agency to verify your identity. Our search is not seen or used by lenders to assess your ability to obtain credit. Our search is conducted with the use of all necessary security measures in order to make sure that the personal information we get is strictly confidential, and unauthorised parties cannot access it.

How do we use your personal information?

As well as checking your identity, the personal information we hold may be used for:

  • Considering any of your applications

  • Carrying out risk assessments

  • Complying with our legal and regulatory obligations

  • Performing our obligations under any contract we have with you

  • Administering our relationship with you including resolving queries or issues

  • Establishing and managing your account

  • Reviewing your ongoing needs

  • Providing you with the information, products and services that you request from us

  • Checking your instructions to us

  • Investigating any complaint, you may make

  • Providing evidence in any dispute or anticipated dispute between you and us

  • Recovering amounts payable

  • Training our staff

  • Enhancing our customer service and products

  • Undertaking product development and analysis

  • Detecting or preventing fraud or other crimes

  • Analytics, inter alia, with the help of the following services of Google Inc. and Facebook Inc.

  • Contacting you—we may send you marketing material from time to time by post, email, telephone, SMS, mobile push notifications, web push notifications, messengers (Telegram, Facebook messenger, and other), or other electronic messaging services

What is the legal basis for our processing of personal information?

The legal basis for our processing of personal information will depend on why we process your personal information.

Where you wish to enter into or have signed a contract to receive services from us, we will process your personal information to enable us to enter into and perform our contract with you. If you do not provide the personal information requested, we may not be able to provide some or all of those services to you.

We may also need to process your personal information to comply with our legal and regulatory obligations including in relation to performing anti-money laundering, terrorism prevention, and sanctions screening checks, complaints, and investigations or litigation.

We also have a legitimate interest to process your personal information for:

  • Performing the services or supplying the products or information you have agreed to receive from us

  • Ongoing management of our relationship with you and to maintain contact with you

  • Our internal business purposes which may include business and disaster recovery, document retention/storage, IT service continuity (for example, back-ups and helpdesk assistance) to ensure the quality of the services we provide to you

  • Corporate transactions

  • Marketing analytics including marketing campaign optimisation and web analytics to enable us to develop and target the marketing of our products and services

  • Keeping our records updated and studying how customers use our products/services

  • Developing our products and services, growing our business, and informing our marketing strategy

  • Defining the types of customers for our products and services and keeping our website(s) and platform(s) updated and relevant

  • Portfolio analysis and experience studies to enable us to improve the products and services we offer to customers.

In any case, we will gladly help to clarify the specific legal basis that applies to the processing, and in particular whether the provision of Personal information is a statutory or contractual requirement, or a requirement necessary to enter into a contract.

What is the place of processing?

The data is processed at our operating offices and in any other places where the parties involved in the processing are located.

Depending on your location, data transfers may involve transferring your personal information to a country other than yours. To find out more about the place of processing of such transferred personal information, you can check the ‘Using Your Personal Information' section.

If any such transfer takes place, you can inquire with us via

Please note that we use Transport Layer Security (TLS) encryption (also known as HTTPS) for all transmitted data. All the data are sent over an encrypted TLS 1.2 connection.

How long will we keep it?

We hold personal information about you on electronic and/or paper files whilst you are a customer and for at least three years after you cease to be a customer. Please note that pursuant to the applicable anti-money laundering and terrorist financing legislation some of your personal information must be retained for a term of seven years. Such personal information includes:

  • Performing the services or supplying the products or information you have agreed to receive from us

  • Name, Family name, Patronymic name (if any)

  • Residential address

  • Age/date of birth

  • Passport/ Aadhar details

  • Photos of your identity documents

  • Information regarding deposits to and withdrawals from your account, the currency and the amounts of such deposits and withdrawals

  • Information regarding your trading activities

  • Mobile number

  • Email address

  • Communication history with the support (chats/emails/calls).

In addition, the above data shall be stored for our defence of legal claims during the limitation periods envisaged by the applicable legislation.

Please be informed that the above personal information will be encrypted and securely stored in our IT system, will not be used for any purposes other than for the purposes indicated above and will be erased from our system at the expiration of the seven-year period. Please be assured that access to the above personal information will be restricted during the whole period of storage.

How can you get more help?

If you want help with our Privacy Policy or have questions about it, please contact us via If you are unhappy about any aspect of the way we collect, share, or use your personal information, we would like you to tell us. You can contact us using the details above.

What are your privacy rights?

This section explains your rights in relation to your personal information in more detail.

To exercise any of the rights described below, please contact us via


When can you request access?

You have the right to:

  • Confirm that your personal information is being processed

  • Access your personal information

You can request copies of the paper and electric records about you that we hold, share, or use. To deal with your request, we can request proof of identity and enough personal information to enable us to locate the personal information you request.

When will access not be provided?

We can only provide you with your personal information, not personal information about another person. Also, where access would adversely affect another person’s rights, we are not required to provide this. Due to legal privilege, we may not be able to show you anything that we learned in connection with a claim or legal proceeding.

Please clearly set out in your access request the personal information that you are requesting. If this is not clear, we may come back to you to ask for further personal information by way of clarification.


How can you correct your personal information?

You have the right to obtain from us without undue delay the rectification of inaccurate personal information concerning you. If you tell us that the personal information, we hold on you is incorrect, we will review it and if we agree with you, we will correct our records. If we do not agree with you, we will let you know. If you wish, you can tell us in writing that you believe our records still to be incorrect and we will include your statement when we give your personal information to anyone outside of our company.

You may also have the right to have incomplete personal information completed, including by means of providing a supplementary statement. Whether or not this is appropriate in any particular case depending on the purposes for which your Personal information is being processed.

We need to notify any third parties with whom we have shared your personal information that you have made a rectification request. We will take reasonable steps to do this, but if it is not possible or may involve disproportionate effort, we may not be able to do this or ensure they rectify the personal information they hold.

What are the limitations on access to and correcting your personal information?

Generally, we will let you see the personal information that we hold about you, or take steps to correct any inaccurate personal information, if you ask us in writing.

Due to legal privilege, we may not be able to show you anything that we learned in connection with a claim or legal proceeding.


When can you request erasure?

You have a right to have your personal information erased, and to prevent processing, where:

  • the personal information is no longer necessary for the purpose it was originally collected/processed

  • you withdraw consent (where previously provided)

  • you object to the processing and our legitimate interests in being able to keep processing your Personal information do not take priority

  • we have been processing your personal information in breach of data protection laws

  • the personal information has to be erased in order to comply with a legal obligation.

When can we refuse erasure requests?

The right to erasure does not apply where we are required to retain it for legal or regulatory purposes or where your personal information is processed for certain specified reasons, including for the exercise or defence of legal claims.

More importantly, if we have to erase your data, we may not be able to provide you with part or all of our services.

Do we have to tell other recipients of your personal information about your erasure request?

Where we have provided the personal information, you want to be erased to third parties, we need to inform them about your erasure request, so they can erase the personal information in question. We will take reasonable steps to do this, but this may not always be possible or may involve a disproportionate effort.

It may also be that the recipient is not required/able to erase your personal information because one of the exemptions above applies.


When is restriction available?

You have the right to restrict the processing of your personal information:

  • Where you disagree with the accuracy of the personal information, we need to restrict the processing until we have verified the accuracy of the personal information

  • When processing is unlawful and you oppose erasure and request restriction instead

  • If we no longer need the personal information but you need this to establish, exercise, or defend a legal claim

  • Where you have objected to the processing in the circumstances detailed in paragraph (a) of ‘Objecting to Processing’, and we are considering whether those interests should take priority.

Do we have to tell other recipients of your personal information about the restriction?

Where we have disclosed your relevant personal information to third parties, we need to inform them about the restriction on the processing of your personal information, so that they do not continue to process this.

We will take reasonable steps to do this, but this may not always be possible or may involve a disproportionate effort.

We will also let you know if we decide to lift a restriction on processing.


When does the right to data portability apply?

The right to data portability only applies:

  • To the personal information you have provided to us (which means, not any other information)

  • Where the processing is based on your consent or for the performance of a contract

  • When processing is carried out by automated means.

When can we refuse requests for data portability?

We can refuse your data portability request if the processing does not satisfy the above criteria. Also, if the personal information concerns more than one individual, we may not be able to transfer this to you if doing so would prejudice that person’s rights.


You can object to processing in the following circumstances:

  • Legitimate interests

You have the right to object, on grounds relating to your particular situation, at any time to processing of personal information concerning you which is based on legitimate interests.

If we can show compelling legitimate grounds for processing your personal information that overrides your interests, rights, and freedoms, or we need your personal information to establish, exercise, or defend legal claims, we can continue to process it. Otherwise, we must stop using the relevant personal information.

  • Direct marketing

If you receive newsletters or other email messages from us, you can opt out at any time free of charge by contacting us via


This privacy statement has been prepared based on provisions of multiple legislations, including Regulation (EU) 2016/679 (General Data Protection Regulation).


Personal information (or Data)

Any information that directly, indirectly, or in connection with other information—including a personal identification number—allows for the identification or identifiability of a natural person.

Usage Data

Information collected automatically through our application and/or our website (or third-party services employed by us), which can include: the IP addresses or domain names of your computer, the URI addresses (Uniform Resource Identifier), the time of the request, the method utilised to submit the request to the server, the size of the file received in response, the numerical code indicating the status of the server's answer (successful outcome, error, and other), the country of origin, the features of the browser and the operating system utilised by you, the various time details per visit (for example, the time spent on each page within the Application and/or our website), and the details about the path followed within the Application and/or our website with special reference to the sequence of pages visited, and other parameters about the device operating system and/or your IT environment.