Login
Start now
Start now
Start now
Login

Privacy Statement

Last updated on: May 6, 2026

Introduction

When you visit the weareblox.com website or use the BLOX application, personal data is collected, used, and stored in order to provide you with our services.

This Privacy Statement explains how BLOX B.V. and Stichting BLOX Custody (together: “BLOX”) protect and use your data. The Privacy Statement informs you about the type of data we process, why we use this data, what we do with it, and what your rights are.

This Privacy Statement applies to all personal data processed by BLOX.

Who is responsible for processing your personal data?

BLOX processes your data in accordance with this Privacy Statement and the requirements of the applicable privacy legislation, including the General Data Protection Regulation (“GDPR”) and additional national regulations.

What is personal data?

Personal data is any data that can identify you as an individual. This includes, for example, your name, phone number, address, tax identification number and/or email address, but data such as your IP address, bank account number, or transaction history may also qualify as personal data.

Why do we process your data?

Personal data may only be processed if there is a legal basis for doing so. The specific legal basis on which BLOX processes your data depends on the purpose for which the data is used.

BLOX has legal obligations to process certain personal data. These obligations arise, among other things, from the Anti-Money Laundering Directive and the national implementation of this directive in the Dutch Anti-Money Laundering and Anti-Terrorist Financing Act (“Wwft”), as well as the eighth Directive on Administrative Cooperation in the field of taxation (“DAC8”) and the national implementation of this directive in the Dutch International Assistance in the Levying of Taxes Act and the General Tax Act. In addition, as a licensed crypto-asset service provider within the meaning of the Markets in Crypto Assets Regulation (“MiCAR”), BLOX is required to retain certain data. We must process personal data in order to comply with these laws and regulations.

In addition, we must process certain personal data for the performance of the agreement you have entered into with us for the provision of products and services, and to prevent fraud, abuse, or criminal activity on our platform. We may use certain information about you (name, account number, age, nationality, IP address, etc.) to detect fraudulent activities. For example, we monitor transactions that deviate from normal transaction patterns or transactions that show characteristics of money laundering or terrorist financing.

Finally, we process personal data with your consent for marketing activities, for example to inform you via email or in-app notifications about new features, price changes, etc. If we process your personal data based on your consent, you may withdraw your consent at any time. This does not affect the lawfulness of the use of personal data collected before the withdrawal. If you withdraw your consent, we will delete the personal data we processed based on your consent.

How do we collect this data?

We only process your personal data if we have a legal basis for doing so. How we obtain this data depends on the type of data we process. Most of the data we collect is provided directly by you during the process of creating an account, upgrading an account, or carrying out transactions with BLOX.

Some data is collected and stored automatically, such as your IP address and certain information about the mobile device you use. In addition, we may generate personal data about you based on the information you provide to us, such as data relevant to risk classification from a Wwft perspective or information from third parties, such as (public) registers.

What categories of personal data do we process and for what purposes?

We process your personal data in order to provide you with the best possible service and to comply with our legal obligations. These include:

Identification data: we verify your identity when you register your account. This data may include your first name, last name, date and place of birth, residential address, country, email address, tax identification number, and identification documents.

Account data: we collect and use your personal data throughout the customer relationship. This data may include your employment status, information about your transaction profile, and any other information that may be relevant for the continued use of our services.

Financial data: we process your payment details and collect and retain information about your transactions within BLOX. The crypto you buy and sell must be reported annually to the Dutch Tax Authorities together with your identification data.

Data used to prevent fraud and promote application security: we process personal data to detect and prevent fraud and other criminal offenses. We do this to protect the security of our customers and BLOX. We may use scoring methods to assess and manage risks. In the event of alerts, we may ask you to provide additional evidence, including the source of funds or the source of your wealth.

Data we use to communicate with you: we use your personal data to communicate with you in various ways about our services (for example by phone, email, or chat). When you contact us, we may use the data stored in your account to answer your questions or complaints. Phone calls may be recorded.

Data used to improve our services: we may process your personal data to analyze performance and increase functionality, to measure customer satisfaction, to fix errors, and to continuously improve the usability and overall quality of BLOX.

Data for marketing activities: we use information about your behavior in the app to recommend features, products, and services that may interest you. We may do this through push notifications. We also use your data to identify your preferences and provide a personalized experience. For this purpose, we process your account data (email address, username, and notification settings), as well as certain non-identifiable basic data stored on your device (country, language, time zone, operating system, app version, and device ID). We will only use your data for this purpose with your consent.

Data used for purposes for which you have given us consent: we may also ask for your consent to process certain personal data for a specific purpose. In such cases, you will always be informed.

With whom do we share your data?

In certain cases, we share your personal data with third parties. This happens, for example, when we engage other companies and individuals to provide services to us or perform certain activities on our behalf. These third parties are carefully selected and, where necessary, we enter into agreements with them to ensure that they provide at least the same level of protection as described in this Privacy Statement. Below are some situations in which your data may be shared with a third party:

  • We use third parties for ICT services, such as hosting services, cloud service providers, or ICT development services.
  • We use third-party services to send automated newsletters and push notifications and to analyze customer engagement with our application.
  • Our Support department uses software to handle your questions quickly and efficiently.
  • We work with various payment service providers and banks to process and execute payments.
  • We use software for account registration and identity verification to verify the legitimacy of your account and identification documents.
  • We use automated customer screening and transaction monitoring to comply with our Wwft obligations.

In addition, we may provide certain information to third parties when legally required, to enforce our terms of use and other agreements, to protect our rights, property, or safety, and to protect our customers and others. This includes exchanging information with other companies and organizations for fraud protection and credit risk reduction purposes.

We may also share your personal information with government authorities. This may happen if such information is necessary for the performance of their duties, such as duties carried out by the Dutch Tax Authorities, the Fiscal Information and Investigation Service (FIOD), the police, or judicial authorities. Finally, certain supervisory authorities, such as the Dutch Authority for the Financial Markets and the Dutch Data Protection Authority, may have access to personal data in the context of an investigation.

Where and for how long do we store your personal data?

In principle, we store your data within the European Economic Area (“EEA”). However, some data may be stored outside the EEA, for example because one of our ICT service providers is located there. When this is the case, we ensure that this is done securely, in accordance with this Privacy Statement and as permitted under applicable data protection laws. In such cases, BLOX will take appropriate measures to ensure that your data is protected as effectively as possible. In doing so, we will take into account decisions and positions of the European Commission and/or use standard contractual clauses published by the European Commission.

We store as little data as possible and do not retain your personal data longer than legally permitted or longer than necessary for the purposes for which the data was collected. For example, data relating to financial administration and your transactions is retained for 7 years, data relating to the Wwft and DAC8 is retained for at least 5 years after the end of the business relationship we have with you, and data stored pursuant to MiCAR must be retained by BLOX for at least 5 years.

Personal data that we process solely based on your consent will be deleted after you withdraw your consent.

How secure is your data?

We take various technical and organizational measures to protect your personal data. We ensure that your data is stored securely in accordance with our internal policies, procedures, and guidelines. Wherever possible, we ensure that your data is encrypted and pseudonymized before we share it with third parties.

We also have internal specialists who work daily on the overall security of our systems, and we collaborate with external experts who monitor our security. Have you discovered vulnerabilities that we missed? You can report them through the Responsible Disclosure program.

Do we use cookies?

When you visit our website, we process information through cookies. Cookies are small information files in which your browser stores certain information. These files contain information about your activities on our site and may, for example, remember your preferences, manage your session, and help personalize your online experience.

We use three types of cookies: functional, analytical, and marketing cookies. Functional cookies ensure that the website functions properly, so disabling these cookies may result in reduced functionality. Analytical cookies help us track visitor statistics and provide insight into the functioning of our website. For this purpose, we use Google Analytics and Clarity.

Marketing cookies are used to provide targeted and/or personalized advertisements.

You can choose to accept, reject, or delete cookies through your internet browser settings. Please note that blocking certain types of cookies may affect your experience on our website and some functions may not work properly. You can object to the collection and processing of these Google Analytics cookies through the following link.

What are your rights?

Under the GDPR, you have, among other things, the right to:

  • Request access to the data we hold about you.
  • Correct and supplement outdated, inaccurate, or incomplete data.
  • Request the deletion of your personal data.
  • File a complaint with the Dutch Data Protection Authority.

Would you like to exercise these rights? Please send an email to: privacy@weareblox.com.

Updating the Privacy Statement

We may update this Privacy Statement from time to time. We recommend that you review this statement regularly to stay informed about any changes. We will announce substantial updates on our website.

How can you contact us?

The contact details for BLOX and Stichting BLOX Custody are:

Kerkenbos 1025

6546 BB Nijmegen

The Netherlands

privacy@weareblox.com

If you have questions about the processing of your personal data, you can contact us by email. You can also use the chat, phone, or contact form on our website. When you contact us, we store certain personal data in order to process your request, such as your phone number, email address, and name.

Buy
Earn
Prices
Coins