Privacy Policy – Trusted insurance solutions for individuals and institutions facing complex asset risks.

This Privacy Policy describes how Fide Insurance UAB (“Fide Insurance”, “we”, “us”, “our”) processes personal data when you use our Website, request an appointment, submit a fraud case, or engage with our insurance and risk-mitigation services.

1 Introduction

Fide Insurance UAB is committed to protecting your privacy and handling personal data in a lawful, fair, and transparent manner. This Privacy Policy explains:

what types of personal data we collect;
for which purposes and on which legal bases we use your data;
with whom we may share your data and why;
how long we keep data and how we protect it;
which rights you have under the General Data Protection Regulation (GDPR).

By visiting fideinsurance.com, contacting us, or providing personal data in connection with our services, you acknowledge that you have read and understood this Privacy Policy. If you do not agree, you should refrain from using the Website and from providing personal data, except where processing is required by law or by an existing contractual relationship.

This Privacy Policy complements our Terms & Conditions. In the event of inconsistencies, the document that better reflects mandatory legal requirements and your protection as a data subject will prevail.

2 Data Controller & Contact Details

The data controller responsible for processing your personal data is:

Fide Insurance UAB
Konstitucijos pr. 21C, Quadrum North Tower
Vilnius, LT-08130, Lithuania
Email: info@fideinsurance.com

For any questions, requests, or concerns relating to this Privacy Policy or to the way we handle personal data, you may contact us at the email address above and indicate “Data Protection Request” in the subject line.

3 Categories of Personal Data We Collect

The personal data we collect depends on how you interact with Fide Insurance (simple inquiry, appointment request, detailed fraud case, active policy, or partnership). We may process the following categories:

3.1 Data You Provide Directly

Identification data: name, surname, title, country of residence, nationality, date of birth (where necessary for KYC/AML or insurance risk assessment).
Contact details: email address, phone number, postal address, preferred language or contact channel.
Case and incident information: description of the fraud or incident, dates, amounts, platforms or intermediaries used, transaction details, wallet addresses, and supporting documentation demonstrating ownership of assets and lawful origin of funds.
Insurance and risk-related information: requested coverage type, insured amount, currency, investment or asset category, risk exposure and other underwriting-relevant information.
Appointment and communication preferences: preferred time zone and time window for calls, urgency level, and other scheduling details.

3.2 Data Obtained from Third Parties

Where permitted by law, we may obtain or verify data from:

banks, payment service providers, regulated exchanges or platforms involved in the transaction flow;
law firms, consultants, insurance intermediaries, and forensic or blockchain analytics companies assisting with your case;
public registers, sanctions and watch lists, adverse media databases, and corporate registries;
competent authorities, regulators, or courts.

3.3 Data Collected Automatically

When you visit or interact with the Website, we may automatically collect limited technical data such as:

IP address and approximate location;
device type, operating system, browser type and version;
date and time of access, pages visited, interaction with forms;
technical identifiers associated with cookies or similar technologies.

This information is primarily used to maintain security, monitor performance, detect unusual activity, and improve the user experience on the Website.

4 Purposes & Legal Bases of Processing

We process personal data only where one of the legal bases in Article 6 GDPR applies. Depending on the context, one or more of the following purposes and legal bases may be relevant:

4.1 Responding to Inquiries & Appointment Requests

Purpose:

to respond to questions submitted via contact forms, email, or phone;
to schedule calls, consultations, or case assessments.

Legal basis:

Article 6(1)(b) GDPR – steps taken at your request prior to entering into a contract;
Article 6(1)(f) GDPR – our legitimate interest in providing responsive client communication.

4.2 Eligibility Assessment, KYC/AML & Risk Evaluation

Purpose:

to verify identity and lawful origin of funds;
to assess whether a case is admissible and technically recoverable;
to comply with applicable AML/CTF and insurance regulations.

Legal basis:

Article 6(1)(c) GDPR – compliance with legal obligations;
Article 6(1)(f) GDPR – legitimate interest in preventing fraud, financial crime, and regulatory breaches.

4.3 Insurance Contracts & Related Services

Purpose:

to prepare, underwrite, and administer insurance and risk-mitigation contracts;
to manage claims, endorsements, renewals, and internal case files;
to coordinate with brokers or partners involved in your coverage.

Legal basis:

Article 6(1)(b) GDPR – performance of a contract and pre-contractual steps;
Article 6(1)(c) GDPR – legal obligations in the field of insurance and finance.

4.4 Fraud Investigation, Recovery Attempts & Legal Cooperation

Purpose:

to support investigative steps, forensic tracing, and coordination with external experts;
to co-operate with law-enforcement, regulators, or supervisory authorities;
to document the factual and transactional background of each case.

Legal basis:

Article 6(1)(c) GDPR – legal obligations;
Article 6(1)(f) GDPR – legitimate interest in detecting, investigating, and mitigating fraud and protecting the integrity of the financial system.

4.5 Website Operation, Security & Analytics

Purpose:

to ensure the security and proper functioning of the Website;
to detect misuse, cyber-attacks, or suspicious access patterns;
to analyse aggregated usage statistics and improve the Website.

Legal basis:

Article 6(1)(f) GDPR – legitimate interest in secure and efficient digital services;
for non-essential cookies or tracking, Article 6(1)(a) GDPR – your consent.

4.6 Compliance, Record-Keeping & Dispute Management

Purpose:

to comply with statutory retention duties and audit requirements;
to manage potential or ongoing disputes, claims, or regulatory investigations.

Legal basis:

Article 6(1)(c) GDPR – compliance with legal obligations;
Article 6(1)(f) GDPR – legitimate interest in defending legal claims and demonstrating compliance.

4.7 Limited Service Updates & Communication

We may, very selectively, send you important regulatory updates, service notifications, or information strictly related to your ongoing relationship with Fide Insurance.

Legal basis:

Article 6(1)(f) GDPR – legitimate interest in keeping clients informed; or
where required by law, Article 6(1)(a) GDPR – your consent, which you may withdraw at any time.

Fide Insurance does not sell, rent, or trade client data to third parties for marketing purposes.

5 Special Categories & Sensitive Data

We do not intentionally collect sensitive personal data as defined in Article 9 GDPR (such as health data, religious beliefs, or political opinions), unless this is strictly necessary and lawful in the context of a specific case.

However, we regularly process detailed financial and transactional data, including large payments, complex funding structures, and information about potential indicators of fraud. Such data are handled with enhanced confidentiality, limited access, and strict AML compliance.

Where a particular processing activity is not clearly covered by other legal bases, we may ask for your explicit consent in accordance with Article 9(2)(a) GDPR. You are free to refuse or withdraw consent, though this may affect our ability to assess or support your case.

6 Profiling & Automated Decisions

We may use certain analytical tools and risk indicators to assign a risk level or priority to cases, for example based on:

traceability of funds and technical feasibility of recovery;
jurisdictional and regulatory risk;
sanctions exposure or adverse media signals.

These tools help us allocate resources efficiently, but they do not replace human judgement. Decisions to accept, decline, or structure coverage for a case are ultimately taken by qualified professionals.

We do not rely solely on automated decision-making, including profiling, that produces legal or similarly significant effects within the meaning of Article 22 GDPR. If this changes in the future, we will update this Privacy Policy and implement the required safeguards.

7 Recipients of Personal Data

Depending on the nature of the case and our relationship with you, we may share personal data with the following categories of recipients, always on a strict need-to-know basis:

Internal teams at Fide Insurance (underwriting, risk, compliance, claims, legal, and support).
IT and infrastructure providers, including secure hosting, document management, and communication platforms engaged under data-processing agreements.
Financial and investigative partners, such as banks, payment institutions, regulated exchanges, and forensic / blockchain analytics firms involved in your case.
Legal and advisory partners, including external law firms, auditors, and professional advisors.
Insurance intermediaries or brokers that cooperate with us in connection with specific clients or policies.
Public authorities and regulators, including data protection authorities, financial supervisors, AML units, courts, and law-enforcement agencies, where required by law or reasonably necessary to protect your interests or ours.

We do not disclose personal data for publicity or testimonials without your explicit prior consent in writing.

8 International Data Transfers

As an EU-based company, we primarily process personal data within the European Economic Area (EEA). However, the international nature of online fraud cases and financial activity sometimes requires transfers of data to recipients outside the EEA.

When such transfers are necessary, we will:

prefer destinations covered by an adequacy decision of the European Commission; or
implement appropriate safeguards such as Standard Contractual Clauses (SCCs), combined with additional technical and organisational measures where appropriate.

In exceptional circumstances, we may rely on specific derogations under Article 49 GDPR, for example where a transfer is necessary for the establishment, exercise or defence of legal claims, or where you have explicitly consented after being informed of potential risks.

9 Data Retention

We retain personal data only for as long as necessary to achieve the purposes described in this Privacy Policy and to comply with legal, regulatory, and contractual requirements.

Basic inquiry and contact data are generally kept for up to 3 years from the last communication, unless needed longer in connection with a potential case.
Data relating to underwriting files, insurance contracts, and fraud investigations may be retained for up to 10 years or longer where required by law or justified by applicable limitation periods for legal claims.

Once retention is no longer necessary, personal data are securely deleted, anonymised, or irreversibly de-identified in accordance with our internal policies and applicable law.

10 Data Security

We implement appropriate technical and organisational measures to protect personal data against accidental or unlawful destruction, loss, alteration, unauthorised disclosure, or access, including:

encrypted connections and secure hosting environments;
role-based access controls, strong authentication, and logging;
regular backups and continuity arrangements;
confidentiality obligations and training for staff handling personal data;
data-processing agreements with third-party service providers.

Despite our efforts, no system can be guaranteed to be completely secure. In the event of a personal data breach likely to result in a high risk to your rights and freedoms, we will notify you and, where required, the competent supervisory authority in accordance with GDPR.

11 Your Rights under GDPR

Subject to conditions and limitations set out in applicable law, you may exercise the following rights in relation to your personal data:

Right of access – to obtain confirmation that we process your data and to receive a copy of the personal data we hold about you.
Right to rectification – to have inaccurate or incomplete personal data corrected.
Right to erasure – to request deletion of personal data where there is no longer a legal basis for processing.
Right to restriction of processing – to request that we limit processing under certain circumstances (e.g. while a dispute or accuracy check is ongoing).
Right to data portability – for data processed by automated means on the basis of consent or contract, to receive the data in a structured, commonly used, machine-readable format and to transmit it to another controller where technically feasible.
Right to object – to processing based on our legitimate interests, on grounds relating to your particular situation; and at any time to processing for direct marketing, if conducted.
Right to withdraw consent – where processing is based on consent, you may withdraw it at any time, without affecting the lawfulness of processing carried out before withdrawal.

To exercise these rights, you may contact us at info@fideinsurance.com. We may ask you for additional information to verify your identity before fulfilling certain requests. We aim to respond within one month, extendable as permitted by GDPR when requests are complex or numerous.

12 Cookies & Online Tracking

Our Website uses cookies and similar technologies to support security, functionality, and performance, and to understand how visitors interact with our pages.

12.1 Types of Cookies

Strictly necessary cookies – essential for core functionality such as page navigation and secure areas.
Analytics cookies – help us understand aggregated traffic and usage patterns, so we can improve the Website.
Functional cookies – may remember preferences such as language or region where applicable.
Security / anti-fraud cookies – help us detect suspicious or abnormal access behaviour.

Some cookies may be provided by trusted third-party services integrated into the Website (for example, security or analytics tools). You should also review the privacy and cookie policies of those third parties.

12.2 Managing Cookies

You can configure your browser to block or delete cookies. Please note that disabling certain cookies may impact the functionality or performance of the Website. Where required by law, non-essential cookies will only be used with your consent, which you can withdraw at any time.

13 Children’s Data

Our Website, services, and insurance products are intended for adults and legal entities engaged in financial and investment activities. We do not knowingly offer services directly to children, nor do we intentionally collect personal data from individuals under 18 years of age.

If you believe that a child has provided personal data to us without appropriate legal basis, please contact us so that we can evaluate the situation and, where appropriate, delete the data or take other protective measures.

14 Changes to this Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our services, internal processes, or applicable laws. The date shown in the “Last updated” line at the top of this page indicates when the Policy was last revised.

We encourage you to review this page periodically. Where changes are material or significantly affect your rights, we may additionally inform you through dedicated notices on the Website or by direct communication where appropriate.

15 Complaints & Supervisory Authority

If you have concerns about how Fide Insurance processes your personal data, we invite you to contact us first so that we can attempt to resolve the issue:

Email: info@fideinsurance.com
Subject line: Data Protection – Complaint

You also have the right to lodge a complaint with the competent data protection authority, in particular in the EU Member State of your habitual residence, place of work, or the place of the alleged infringement. For Fide Insurance UAB, the primary authority is the Lithuanian State Data Protection Inspectorate.

16 Contact

For any questions, requests, or concerns regarding this Privacy Policy or our data protection practices, you may contact:

Fide Insurance UAB
Konstitucijos pr. 21C, Quadrum North Tower
Vilnius, LT-08130, Lithuania
Email: info@fideinsurance.com