Our website is currently under maintenance for a better experience. Login and registration remain fully available.

Privacy Policy

Last updated: March 2026

TXBFI (“we,” “our,” or “us”) operates a crypto-to-fiat card platform built on the Avalanche blockchain. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website, mobile application, and card services (collectively, the “Services”). By accessing or using our Services, you agree to the terms of this Privacy Policy.

1. Information We Collect

We collect information necessary to provide our Services, comply with regulatory requirements, and improve your experience.

Personal Information. When you register for an account, we collect information required for Know Your Customer (KYC) and Anti-Money Laundering (AML) compliance. This includes your full legal name, date of birth, nationality, government-issued identification documents, residential address, email address, phone number, and a selfie or biometric verification data.

Financial Information. To facilitate card issuance and transactions, we collect your wallet addresses, transaction history (including deposits, card payments, and exchanges), card usage data, and information about your selected card tier.

Device and Usage Information. We automatically collect technical data when you access our Services, including your IP address, browser type and version, operating system, device identifiers, referring URLs, pages visited, time spent on pages, and general location data derived from your IP address.

Communication Data. If you contact our support team or participate in surveys, we retain the contents of those communications along with any metadata.

2. How We Use Your Information

We use the information we collect for the following purposes:

  • Service Provision. To create and manage your account, issue and manage your TXBFI card, process transactions, calculate and distribute cashback rewards, and provide exchange services.
  • Regulatory Compliance. To verify your identity through KYC procedures, monitor transactions for suspicious activity in accordance with AML regulations, and fulfill our obligations under applicable financial regulations.
  • Security. To detect, prevent, and respond to fraud, unauthorized access, and other security threats to our platform and users.
  • Communication. To send you transactional notifications, service updates, security alerts, and — where you have opted in — marketing communications about new features or promotions.
  • Improvement. To analyze usage patterns, troubleshoot technical issues, and improve the functionality and user experience of our Services.

3. Information Sharing

We do not sell, rent, or trade your personal information to third parties for marketing purposes. We may share your information only in the following circumstances:

  • Service Providers. We share data with trusted third-party providers who assist us in operating our Services, including card issuing partners, payment processors, KYC/AML verification providers, and cloud infrastructure services. These providers are contractually bound to use your data only for the purposes we specify.
  • Legal Requirements. We may disclose your information when required to do so by law, regulation, legal process, or governmental request, or when we believe disclosure is necessary to protect our rights, your safety, or the safety of others.
  • Business Transfers. In the event of a merger, acquisition, or sale of all or a portion of our assets, your information may be transferred as part of that transaction. We will notify you of any such change in ownership or control.
  • With Your Consent. We may share your information for other purposes when you have given us explicit consent to do so.

4. Data Security

We implement industry-standard security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These measures include:

  • End-to-end encryption (AES-256) for data at rest and TLS 1.3 for data in transit
  • Role-based access controls with multi-factor authentication for all internal systems
  • Regular security audits and penetration testing by independent third parties
  • Real-time monitoring and automated threat detection systems
  • Secure data centers with physical access controls and redundancy

While we strive to protect your information, no method of transmission over the Internet or electronic storage is completely secure. We cannot guarantee absolute security but are committed to maintaining the highest practical standards.

5. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

  • Access. You may request a copy of the personal information we hold about you.
  • Correction. You may request that we correct any inaccurate or incomplete personal data.
  • Deletion. You may request that we delete your personal data, subject to our legal and regulatory retention obligations. Note that certain data required for compliance purposes (such as KYC records) must be retained for the legally mandated period even after account closure.
  • Portability. You may request a machine-readable copy of the data you have provided to us.
  • Restriction. You may request that we restrict the processing of your personal data under certain circumstances.
  • Objection. You may object to our processing of your personal data for direct marketing purposes.

To exercise any of these rights, contact us at privacy@txbfi.com. We will respond to your request within 30 days.

6. Cookies

We use a minimal number of cookies that are strictly necessary for the functioning of our Services. These include:

  • Authentication cookies to keep you securely logged in during your session.
  • Security cookies to detect and prevent fraud and unauthorized access.
  • Preference cookies to remember your language and display settings.

We do not use advertising cookies, tracking pixels, or third-party analytics cookies. We do not participate in cross-site tracking or behavioral advertising.

7. Third-Party Services

Our Services integrate with certain third-party providers to deliver core functionality:

  • Card Issuing Partner. Our card issuance partner processes card applications and manages the card network integration. They operate under their own privacy policy and are subject to PCI DSS compliance.
  • KYC/AML Provider. Our identity verification partner processes your identification documents and biometric data for compliance purposes.
  • Blockchain Networks. Transactions on the Avalanche network and other supported blockchains are recorded on public ledgers. Wallet addresses and transaction amounts are publicly visible by design.

We encourage you to review the privacy policies of any third-party services you interact with through our platform.

8. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or for other operational reasons. When we make material changes, we will notify you by posting the updated policy on our website and updating the “Last updated” date at the top of this page. For significant changes, we will also send you a notification via email or through the TXBFI app. Your continued use of our Services after any changes constitutes your acceptance of the updated Privacy Policy.

9. Contact

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

TXBFI Privacy Team

Email: privacy@txbfi.com