Privacy & Policy


Scope: This Policy explains how we collect, use, disclose, and protect personal data when you use our websites, apps, and services related to options trading on FX and crypto (the “Services”).

1) Who we are (Controller)

Q2Option Ltd. is the data controller for personal data processed via the Services.
Registered address: {{address}}
Contact (privacy): {{privacy@q2option.com}}
EU representative (if applicable): {{name, address}}
DPO (if appointed): {{dpo@q2option.com}}

2) What data we collect

  • Account & Identity: name, email, password (hashed), phone, country.

  • KYC/AML (for live trading): date of birth, address, ID documents, selfies, sanctions/PEP screening results.

  • Financial & Transactions: deposits/withdrawals, payment/billing info (processed via PSPs), trade history, balances.

  • Usage & Device: IP, device/browser info, log files, cookies, session IDs, crash/diagnostic data.

  • Support & Comms: chat, tickets, emails, call recordings (if any).

  • Marketing Preferences: opt-ins, unsubscribe status.

  • Referral/Affiliate: referral IDs, partner codes.

  • Public/Community (optional): forum posts, reviews, survey responses.

3) Why we use your data (Purposes & Legal Bases)

  • Provide the Services (create account, run platform, execute orders, statements) — Contract.

  • KYC/AML & sanctions screeningLegal obligation; Public interest (where applicable).

  • Payments & fraud preventionContract; Legitimate interests; Legal obligation.

  • Security & integrity (monitoring, incident response, rate-limiting) — Legitimate interests.

  • Analytics & product improvementConsent (cookies/SDKs where required); Legitimate interests.

  • Marketing & newslettersConsent (you can withdraw anytime).

  • Compliance & recordkeepingLegal obligation.

  • Support & communicationsLegitimate interests / Contract.

4) Cookies & similar technologies

We use cookies and similar tech for essential functions, analytics, preferences, and (if you consent) marketing.

  • Essential: login, security, load balancing.

  • Preferences: remember settings (e.g., language, theme).

  • Analytics: usage, performance (e.g., page views, feature adoption).

  • Marketing (optional): attribution, conversion, retargeting.
    Manage via our Cookie Banner and Cookie Settings page. For details, see our {{/legal/cookie-policy}}.

5) Disclosures & international transfers

We may share data with:

  • Service providers / processors: hosting, cloud, analytics, payment/KYC vendors, communications.

  • Affiliates & partners: strictly as needed (e.g., referral tracking).

  • Regulators / law enforcement: where legally required.

  • Business transfers: merger, acquisition, or asset sale (with notice).
    Where data is transferred outside the EEA/UK, we use adequacy decisions or Standard Contractual Clauses and implement appropriate safeguards.

6) Data retention

We keep data only as long as necessary for the purposes above:

  • Account & trading records: typically 7–10 years (regulatory/financial).

  • KYC documents: per legal retention requirements.

  • Support tickets: 2–3 years after closure.

  • Marketing data: until you withdraw consent or after a defined inactivity period.
    We delete or anonymize when retention ends.

7) Your rights (EEA/UK & similar regimes)

You have the right to access, rectify, erase, restrict, object, port your data, and withdraw consent at any time (for consent-based processing).
To exercise these rights, contact {{privacy@q2option.com}}.
You may also lodge a complaint with your local Supervisory Authority.

8) Children

The Services are not intended for individuals under 18. We do not knowingly collect data from minors.

9) Security

We use administrative, technical, and organizational measures: encryption in transit and at rest, access controls, audit logs, least-privilege, and vendor due diligence. No method is 100% secure; please safeguard your credentials and enable available security features (e.g., 2FA).

10) Automated decision-making / profiling

For compliance and risk management, we may perform automated checks (e.g., sanctions/PEP screening, fraud scoring). These can affect your ability to use certain features. You can request human review where required by law.

11) Third-party links & integrations

Our Services may link to third-party sites or integrate third-party tools (payments, KYC, analytics). Their privacy practices are governed by their own policies.

12) Communications & marketing

  • Service emails (transactional, security, legal) are mandatory.

  • Marketing emails are opt-in; you can unsubscribe via link in each email or {{privacy@q2option.com}}.

13) Do Not Track & signals

Our Services do not respond to Do Not Track signals. Use our Cookie Settings to manage tracking choices.

14) Changes to this Policy

We may update this Policy from time to time. We will post the new version with a revised “Last updated” date at {{/legal/privacy}}. Material changes may be notified by email or in-app.