Privacy Policy (GDPR)

1. Data Controller

MBO Foundation DAC, registered in Ireland, is the data controller for personal data collected through our services.

2. Data We Collect

• Account information (email, name)
• API connection metadata (not credentials)
• Transaction history on our platform
• Usage analytics and logs

3. Legal Basis

We process data based on: contract performance, legitimate interests, and consent where required.

4. Your Rights (GDPR)

• Access your personal data
• Rectify inaccurate data
• Request erasure ("right to be forgotten")
• Data portability
• Object to processing
• Withdraw consent

5. Data Retention

We retain data for the duration of your account plus 7 years for legal compliance.

6. Contact

Data Protection Officer: privacy@mbottoken.eu