top of page

0000100

0010

00100

001001

00100

0000100

Privacy Policy

XP Venture Labs’ privacy policy is based on user data respect and transparency principle.

Privacy Policy

9. Risk Management and Compliance

 

We are required by law to collect, verify, and retain certain information to comply with anti-money laundering (AML), counter-terrorist financing (CTF), and sanctions screening obligations under Canadian law.

These obligations include:

  • Verifying your identity and maintaining accurate records.

  • Monitoring transactions for suspicious or unusual activity.

  • Screening against public sanctions lists, Politically Exposed Person (PEP) lists, and other relevant databases.

  • Reporting specific transactions or activities to the Financial Transactions and Reports Analysis Centre of Canada (FINTRAC) and other competent authorities when legally required.

We perform these activities to meet our legal obligations and to protect our platform and users from financial crime and misuse. These processes may involve automated decision-making and risk scoring based on predefined compliance criteria.

1. Information We Collect

 

We may collect the following types of information:

 

  • Personal Identification Information: Name, email address, phone number, and other contact details.

  • Professional Information: Job title, company name, and industry.

  • Technical Information: IP address, browser type, operating system, and browsing behavior on our website.

  • Project-Related Information: Details provided by clients for project execution, which may include sensitive business information.

  • Compliance and Risk Management Information: Information required to comply with anti-money laundering (AML), anti-terrorist financing (ATF), and financial crime regulations. This may include identification documents (e.g., government-issued ID, proof of address), date of birth, nationality, occupation, transaction history, source of funds, and beneficial ownership information.

  • Transaction and Monitoring Data: Details about financial transactions, frequency, amounts, payment methods, and related metadata, collected to detect suspicious or unusual activity in accordance with our regulatory obligations.

Effective Date: 01/01/2022

 

XP Venture Labs ("we," "us," or "our") is committed to safeguarding the privacy of our clients, partners, and website visitors. This Privacy Policy outlines how we collect, use, disclose, and protect your personal information in compliance with applicable data protection laws.

2. How We Collect Information

 

We collect information through:

 

  • Direct Interactions: When you contact us via email, phone, or through our website forms.

  • Automated Technologies: Cookies and similar tracking technologies that collect technical information as you navigate our website.

  • Third Parties: Publicly available sources or third-party partners, where permitted by law.

  • Regulatory and Screening Databases: We may collect or verify information from government databases, public registries, and third-party screening providers (e.g., sanctions lists, Politically Exposed Persons (PEP) databases, and adverse media sources) as part of our compliance with applicable financial regulations.

  • Ongoing Monitoring: We may analyze transaction patterns and account activity over time to identify and manage potential financial crime risks.

3. Use of Information

 

We use the collected information to:

 

  • Provide and manage our services.

  • Communicate with you regarding inquiries, projects, and updates.

  • Improve our website, services, and user experience.

  • Comply with legal obligations and protect our legal rights.

  • To comply with our legal and regulatory obligations under applicable anti-money laundering (AML), counter-terrorist financing (CTF), and sanctions laws, including those administered by FINTRAC (Financial Transactions and Reports Analysis Centre of Canada).

  • To identify and verify our clients’ identities and assess the risk of money laundering, terrorist financing, or fraud.

  • To conduct ongoing monitoring of transactions to detect suspicious or unusual activity.

  • To report certain transactions or activities to FINTRAC or other regulatory authorities, where required by law.

4. Disclosure of Information

 

We do not sell or rent your personal information. We may share information with:

 

  • Service Providers: Trusted third parties who assist us in operating our business and providing services, bound by confidentiality agreements.

  • Legal Authorities: When required by law or to protect our rights and safety.

  • Regulatory Authorities: Such as FINTRAC, law enforcement, or other competent authorities, when required by applicable financial crime, anti-terrorist financing, or sanctions regulations.

  • Screening and Verification Partners: Third-party compliance service providers who assist in identity verification, sanctions screening, and risk assessment, subject to strict confidentiality and data protection obligations.

5. Data Security

We take the protection of your personal and financial information seriously and maintain a comprehensive information security program designed to safeguard it.

Technical Safeguards:

  • We use encryption in transit (TLS 1.2 or higher) and at rest for sensitive data, including identity documents and transaction information.

  • Access to systems is restricted through role-based access controls and multifactor authentication.

  • Regular security testing, vulnerability assessments, and system monitoring are conducted to detect and prevent unauthorized access or misuse.

Organizational Safeguards:

  • Only authorized personnel with a legitimate business need can access personal information, and they are bound by confidentiality and data protection obligations.

  • All employees handling customer or compliance data receive ongoing training on privacy, data security, and anti-money laundering (AML) requirements.

  • We maintain incident response and breach notification procedures to ensure timely mitigation and regulatory reporting if required.

Compliance-Specific Protections:

  • Information used for AML/CTF and risk management (such as ID verification, sanctions screening, or transaction monitoring) is stored in secure environments and subject to enhanced audit logging and retention controls.

  • We perform periodic reviews of our compliance systems and data flows to ensure alignment with FINTRAC, PIPEDA, and other applicable regulatory standards.

Third-party providers:

  • Our service providers are required to implement equivalent security measures and process data only under our instructions and in accordance with applicable laws.

While we take all reasonable measures to protect your data, no method of transmission or storage is completely secure. We cannot guarantee absolute security but are committed to maintaining and improving our safeguards continuously.

6. Data Retention

 

We retain personal information only as long as necessary to fulfill the purposes outlined in this policy or as required by law. Information collected for AML/CTF compliance, transaction monitoring, and identity verification will be retained for at least five (5) years from the date of the last transaction or business relationship termination, as required by FINTRAC regulations, unless a longer period is mandated by law.

7. Your Rights

 

Depending on your jurisdiction, you may have rights to:

 

  • Access the personal information we hold about you.

  • Request correction of inaccurate information.

  • Request deletion of your personal information.

  • Object to or restrict certain processing activities.

  • If you are subject to automated risk assessments or monitoring, you may request information about the logic involved, its significance, and potential consequences. You may also request a manual review of certain automated decisions, where permitted by law.

 

To exercise these rights, please contact us at info@xpventurelabs.com.

8. Cookies and Tracking Technologies

 

Our website uses cookies to enhance user experience and analyze website performance. You can manage your cookie preferences through your browser settings.

10. Changes to This Privacy Policy

 

We may update this Privacy Policy periodically. We will notify you of significant changes by posting the new policy on our website with the effective date.

11. Contact Us

 

If you have questions or concerns about this Privacy Policy, please contact us at info@xpventurelabs.com.

This Privacy Policy was last updated on 09/19/2025.

orange-paint-stroke-with-transparent-background-abstract-texture-for-design-projects-png.w

Connect With Us

By sending this form I confirm that I have read and accept the Privacy Policy

Request Sent!

bottom of page