Privacy Policy

This Privacy Policy explains how Federated Capital LLC (in formation) (“we”, “us”, “our”) collects, uses, stores, and shares personal data when you access or use our investment platform, website, dashboards, and related services (the “Services”).

1. Who we are

Controller: Federated Capital LLC (in formation), Dubai, United Arab Emirates.

Contact: contact@federated-capital.com

2. In cooperation with

Real Estate Consulting provided in cooperation with:

IM Group FZE LLC
Business Centre, Sharjah Publishing City Free Zone, Sharjah, United Arab Emirates
SPC License no. 4413047.01
Tax Registration Number: 104594654600001
VAT: 104594654600003

Depending on the specific service flow, IM Group FZE LLC may act as a service partner (e.g., operational support, compliance support, or service delivery assistance). Where required by applicable law, we will clarify roles (controller/processor) for specific processing activities.

3. Applicable data protection framework

Federated Capital LLC (in formation) is based in Dubai, United Arab Emirates. We aim to comply with applicable UAE data protection requirements and any other local rules that may apply depending on where our entity is registered/licensed and where our users are located.

If Federated Capital LLC (in formation) is established in a UAE financial free zone (e.g., DIFC), additional data protection rules may apply.

4. What personal data we collect

Depending on how you use the Services, we may collect:

• Account data: name, email address, phone number, login credentials (hashed), account preferences.
• Identity / verification data (if required): documents and information you provide for KYC/AML checks (e.g., ID, proof of address), verification status, and related audit logs.
• Investment & transaction data: deposits, withdrawals, investment allocations, share ownership/transactions, invoices/receipts, payment references.
• Support communications: messages you send us, attachments, and support tickets.
• Device & usage data: IP address, device identifiers, browser type, pages viewed, events (e.g., clicks), timestamps, diagnostic logs.
• Cookies & similar technologies: session cookies, security cookies, and (if enabled) analytics cookies.

5. How we use your data

We use personal data to:

• Provide and operate the Services (accounts, dashboards, features, transactions).
• Verify identity and manage compliance processes (e.g., KYC/AML where applicable).
• Process deposits, withdrawals, and maintain accurate records.
• Prevent fraud, abuse, and unauthorized access; secure our systems.
• Communicate with you about your account, service updates, and support requests.
• Improve performance, reliability, and user experience (analytics/diagnostics).
• Comply with legal obligations and enforce our terms.

6. Legal basis / justification for processing

Where required, we process personal data under a lawful basis such as providing the Services (necessary processing), compliance obligations (e.g., regulatory requirements), legitimate interests (security, fraud prevention, service improvement), and consent (e.g., optional cookies/marketing, where used).

7. How we share your data

We may share personal data only when needed to run the Services, including with:

• Service providers (hosting, monitoring, email delivery, storage, customer support tools).
• Payment/financial partners involved in deposits/withdrawals and transaction processing.
• Verification/compliance providers (if we use external KYC/AML vendors).
• Authorities where we are legally required to do so.
• Professional advisors (legal, audit, risk) under confidentiality duties.

We do not sell your personal data.

8. International transfers

Our providers and infrastructure may be located in different countries. When personal data is transferred internationally, we take steps designed to ensure appropriate safeguards (such as contractual protections and security measures) consistent with applicable law.

9. Data retention

We keep personal data only as long as necessary for the purposes described above, including to meet legal, accounting, compliance, and dispute-resolution requirements. Retention periods may differ depending on the type of data (e.g., transaction records vs. analytics logs).

10. Security

We use technical and organizational measures designed to protect personal data (e.g., access controls, monitoring, and least-privilege policies). No method of transmission or storage is 100% secure, but we work to protect your data against unauthorized access, loss, misuse, or alteration.

11. Cookies

We use cookies and similar technologies to:

• keep you signed in (session cookies),
• protect the Services (security cookies),
• remember settings, and
• if enabled, measure usage and performance (analytics).

You can control cookies in your browser settings. If we offer an in-app cookie preference tool, you can also manage optional cookies there.

12. Your rights

Depending on applicable law, you may have rights such as:

• access to your personal data,
• correction of inaccurate data,
• deletion (where appropriate),
• restriction/objection (in certain cases),
• withdrawal of consent (where processing is based on consent).

To exercise rights, contact us via the platform’s contact option or the contact details on our website. We may ask you to verify your identity before fulfilling a request.

13. Children

The Services are not intended for children. If you believe a child has provided personal data to us, please contact us and we will take appropriate steps.

14. Third-party links

Our Services may link to third-party websites or services. Their privacy practices are governed by their own policies. We are not responsible for third-party content or privacy practices.

15. Changes to this policy

We may update this Privacy Policy from time to time. We will post the updated version on this page and update the “Last updated” date above.