Our Commitment to You
Tesla Initiate is fully committed to protecting your personal data and respecting your privacy. This Privacy Policy applies to all services offered through our platform, website, and applications.
We process all personal data in strict accordance with the General Data Protection Regulation (GDPR) 679/2016 (EU) and applicable national privacy legislation. We maintain robust administrative, technical, and physical safeguards to ensure the confidentiality, integrity, and availability of your information at all times.
Legal Grounds for Data Collection
We collect and process your personal data only where a lawful basis exists. Our processing activities are grounded in the following legal bases:
By creating an account, accessing our services, or completing a transaction, you acknowledge and consent to data collection as described in this policy. You may withdraw consent at any time — doing so may limit your access to certain features of the platform.
Data Reception Sources
We receive personal information through two primary channels:
- Voluntary Submissions — Information you actively provide during account registration, profile updates, support requests, or other direct communications with us.
- Automatic Collection — Data gathered automatically as you interact with our platform, including during transactions, navigation, and service usage, via cookies and similar technologies.
Types of Data We Collect
| Category | Data Points |
|---|---|
| Registration — Name, email, phone, occupation, country, age verification | Collected at account creation and profile setup |
| Communications — Messages, inquiries, support history | Voluntarily submitted via support or contact forms |
| Financial — Transaction records, payment details, deposit/withdrawal history | Collected during financial operations on the platform |
| Technical — IP address, MAC address, device location, geolocation data | Automatically collected during service usage |
Tracking Technologies
Our platform employs a range of tracking technologies to enhance your experience and improve service performance:
These technologies are used for session management, analytics, personalization, fraud prevention, and overall platform performance improvement. You may configure your browser to refuse cookies, though this may affect certain functionality.
Cookie Preferences: You can manage your cookie settings at any time through your browser or by contacting our DPO at support@onlintrade.com.
How We Use Your Data
Your personal data is used strictly for legitimate, defined purposes:
- Providing, operating, and improving our platform and services
- Sending relevant marketing communications (with your consent)
- Conducting analytics, user research, and platform optimization
- Preventing fraud, abuse, and unauthorized account access
- Enforcing our Terms of Service and other platform policies
- Meeting legal, regulatory, and compliance obligations
We do not sell your personal data to third parties. All data usage is governed by this policy and applicable privacy laws.
Data Sharing Partners
We may share your personal data with trusted parties in limited, well-defined circumstances:
| Recipient | Purpose |
|---|---|
| Group Companies — Internal entities and authorized employees | Service delivery and internal operations |
| Financial Providers — Payment processors and banking partners | Processing transactions and deposits/withdrawals |
| Business Partners — Storage, analytics, and infrastructure providers | Platform hosting, analytics, and optimization |
| Legal & Regulatory — Courts, regulators, law enforcement | Compliance with legal obligations |
| M&A Parties — Potential acquirers or merger counterparties | Business transactions and due diligence |
All third-party partners are contractually bound to handle your data with the same level of protection we provide, in accordance with GDPR requirements.
International Data Transfers
Your data may be transferred to, and processed in, countries outside the European Economic Area (EEA). Where such transfers occur, we ensure appropriate safeguards are in place:
- Transfers only to countries recognised by the EU Commission as providing adequate data protection
- Use of Standard Contractual Clauses (SCCs) approved by the European Commission
- Binding Corporate Rules where applicable within our group
- Derogations permitted under GDPR Article 49 where necessary
Data Protection Measures
We implement enterprise-grade security across all layers of our infrastructure to protect your personal data from unauthorized access, loss, or disclosure.
- Administrative Safeguards — Access controls, staff training, and internal data governance policies
- Technical Safeguards — End-to-end encryption, two-factor authentication, and intrusion detection
- Physical Safeguards — Secure data centres with restricted physical access controls
While we maintain robust security measures, you are responsible for maintaining the confidentiality of your account credentials. Do not share your password with anyone.
In the event of a data breach that poses a risk to your rights and freedoms, we will notify you and relevant supervisory authorities within 72 hours as required by GDPR Article 33.
Data Retention
We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, including for the purposes of satisfying legal, accounting, or reporting requirements.
Retention periods are determined by the nature of the data and its purpose. Financial transaction data may be retained for up to 7 years to comply with tax and anti-money-laundering regulations. Upon account closure, we will delete or anonymise your personal data, subject to mandatory retention obligations.
Your Rights
Under GDPR, you have the following rights regarding your personal data. To exercise any of these rights, contact our Data Protection Officer.
Right of Access
Request a copy of all personal data we hold about you at any time.
Right to Portability
Receive your data in a structured, machine-readable format.
Right to Rectification
Request correction of inaccurate or incomplete personal data.
Right to Erasure
Request deletion of your personal data ("right to be forgotten").
Right to Object
Object to processing of your data for direct marketing purposes.
Right to Restriction
Request that we restrict the processing of your personal data.
We will respond to all rights requests within 30 days. If your request is complex or numerous, we may extend this period by a further 2 months with notice.
Contact & Data Protection Officer
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact our General Data Protection Officer:
General Data Protection Officer
Tesla Initiate Platform
Email: support@onlintrade.com
Response time: Within 30 days of receipt
You also have the right to lodge a complaint with the relevant supervisory authority in your country of residence if you believe your data is being processed unlawfully.
Policy Updates
We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. We will notify you of any material changes through a prominent notice on our platform or via email.
Your continued use of our services after any modification to this policy will constitute your acknowledgement of the changes and agreement to abide by the updated terms. We encourage you to review this page periodically.
The date of the most recent revision is always displayed at the top of this page. Current version: January 1, 2024.