Privacy Policy for fxapi.com

This website collects certain types of personal information from its users.

You can print this policy at any time by using your browser’s print feature.


Data Controller and Owner

Everapi GmbH
Getreidegasse 22
A-2284 Untersiebenbrunn
Email: office@everapi.com


What Data We Collect

We may collect the following types of personal data, either directly or via third parties:

  • First name
  • Last name
  • Email address
  • API usage data
  • Currency conversion data
  • Transaction amounts
  • Exchange rate queries
  • Payment information

Each category of data collected is described in detail in the appropriate section of this privacy policy or where specifically explained before data is gathered.

Users may voluntarily provide this data, while usage data is typically collected automatically when interacting with the site.

Unless otherwise noted, all requested data is necessary for proper functionality. If users fail to provide such data, we may not be able to offer our services effectively.

Where optional data is indicated, users can choose not to provide it without affecting service quality.

If unsure about what information is required, users are encouraged to contact the Owner directly.

Cookies and similar tracking tools may be used to deliver services and fulfill purposes outlined in this policy.

Users are solely responsible for any third-party personal data shared through this Application.


How and Where Data Is Processed

Processing Methods

We implement suitable technical and organizational measures to prevent unauthorized access, alteration, disclosure, or destruction of personal data.

Data is processed using IT systems according to procedures closely aligned with stated purposes. Authorized personnel (such as staff in administration, marketing, legal, system operations) or third-party partners (e.g., hosting providers, IT firms) may access data when needed. These parties may be appointed as data processors, and an up-to-date list is available on request.

Processing Location

Data is managed at our operational facilities and in other places where involved entities are located. Data transfers may occur internationally based on user location. See the relevant section of this document for more.


Data Retention

Unless otherwise stated, data is retained only as long as required for the purpose it was collected. We may keep it longer if required by law or with user consent.


Why We Process Data

We collect personal data for the following reasons:

  • To deliver and maintain our foreign exchange rate services
  • To comply with legal obligations
  • To respond to legal or regulatory requests
  • To defend our rights and those of our users or third parties
  • To detect and prevent misuse or fraud
  • To improve our exchange rate accuracy and service quality

Examples of Processing

1. Contacting Users

When users fill out a contact form, we use the provided data to respond to inquiries.
Collected data: name, surname, email address

2. Hosting and Infrastructure

We use services that help us host and deliver this Application and its features.

Netlify (Netlify, Inc.)
This hosting service may collect email addresses during use.
Location: United States – Refer to their Privacy Policy for details.

3. Foreign Exchange Service

When users convert currencies through our service:

  • We process the currency conversion requests
  • We store conversion data temporarily for service improvement
  • We do not share transaction amounts or conversion data with third parties
  • We implement strict security measures to protect financial data

We may process personal data when:

  • Users have given explicit consent
  • Data is required for a contract or pre-contractual arrangements
  • Legal obligations demand it
  • It serves the public interest or official authority
  • We have legitimate business interests that don’t override user rights

For help determining the legal basis, please contact the Owner.


More on Data Retention

  • Data linked to contracts is kept until the agreement is fulfilled
  • Data processed under legitimate interest is stored as long as necessary
  • If consent was given, data is kept until consent is withdrawn
  • Legal obligations may require longer retention
  • Currency conversion data is retained only temporarily for service improvement

Once the retention period ends, data is deleted and access/portability rights no longer apply.


GDPR Rights for Users

Under the GDPR, users have the right to:

  • Withdraw previously given consent
  • Object to data processing for specific reasons
  • Request access to their data
  • Verify or correct their data
  • Restrict processing
  • Have data deleted
  • Receive data and transfer it to another provider
  • File complaints with a data protection authority

Users can also inquire about how data is protected when transferred abroad.

Objecting to Data Processing

If we process data under public interest or legitimate interest, users may object by explaining their specific situation.

Users may always object to direct marketing use without giving a reason. If objected, data will no longer be used for that purpose.


How to Use These Rights

To exercise these rights, users can contact the Owner using the contact details above. Requests are free and will be processed within a month.

If personal data has been shared with others, the Owner will attempt to notify them of any corrections or deletions, unless it’s impossible or overly difficult.


Additional Info

We may use personal data in legal proceedings or in preparation for legal action related to misuse of our Application or services.

Extra Information

Additional details about specific services or data handling may be provided on request.

System Logs and Maintenance

For maintenance and operational purposes, we or third parties may log interactions and collect information such as IP addresses.

Unlisted Information

Users can request further details about data practices by contacting the Owner.


Privacy Policy Updates

We may revise this privacy policy at any time. Users will be informed on this page or elsewhere in the Application. We may also notify users by email if possible.

Users should check this page regularly for updates. If consent is required for any changes, we will request it again as needed.


Unless otherwise mentioned, this privacy policy applies solely to this Application.


Definitions

  • Personal Data: Information identifying a natural person, directly or indirectly.
  • Usage Data: Automatically collected info like IP addresses, browser details, and time spent on pages.
  • User: The person using this site.
  • Data Subject: The individual to whom personal data refers.
  • Data Processor: Entity processing data on behalf of the Data Controller.
  • Data Controller: The party that determines how and why data is processed — in this case, the Owner.
  • Service: The services provided via this Application.
  • EU: References in this policy to the “EU” include both EU and EEA member states.