Privacy Policy

Our Privacy Policy contains provisions that we, as LSA Consulting Company, stipulate for the information and services we provide to our esteemed investors. We kindly ask you to take a short time and review this contract.

At LSA Consulting, our company's main priority is the privacy policy. As LSA Consulting, we promise to protect our investor's data and to keep their personal information confidential. In this Privacy Policy, it specifies; when you choose to be a member of the LSA Consulting family, in which conditions and how you should use your data. We would also like to state that we are working with you to help you protect your data.

We want to point out that our policy may change for some reason. We ask you to review our privacy policy from time to time and check if changes are made. The personal data we receive from you is included in our privacy policy, which we recently updated. We would also like to point out that if we change our privacy policy, we will announce this update to you. We want to underline that this possible change information will only advertise to users who are a valuable part of our company. If you are an employee, third party or service provider serving in the LSA Consulting family, your data will be used by our other policies at the current location by communicating with your business policy and your contractual company. In our privacy policy as mentioned above, the sources of "our's," "to us," "we" or " LSA Consulting," unless otherwise disclosed. Unless the opposite of "you," "your," "yours," "yourself" references disclosed in this privacy policy, everything resulting from the content requirement is a reference on behalf of potential investors. To communicate with our company, we request you to use any of the communication resources we have specified or by logging into our website. You should be agreed that you know how we process any personal data you share with us before you become an investor. We kindly ask you to read, understand the terms of this policy, and then contact us. With this policy, you will be agreed to how we obtain store, process, share and manage your personal data/rights during our business connection and after the termination of the investor relationship, including an update after you create your account at LSA Consulting.

ABOUT US

We should state that our privacy mentioned above policy applies to the processing activities of data control entities within the LSA Consulting group of companies.

COLLECTION AND STORAGE OF PERSONAL INFORMATION

The personal information requested by our investors and potential investors serving within our company is as follows:

• Name, surname and contact information
• Date of birth and gender information
• Data on income and wealth status, including details on assets and liabilities, account balances, transaction postings, tax, and financial statements.
• Job and employment details
• Location information
• Data and experience in trading, risk tolerance, and risk profile
• Data on I.P. address, device details, and business experience
• Bank account, e-wallet, and credit card data
• Details of visits to the LSA Consulting site or LSA Consulting application, traffic information, location information, weblogs, and other contact information

COOKIES

We use cookies to store and obtain data about your use of the LSA Consulting site. We want to define that cookies are small text files stored by the browser on the hard disk of your device. Cookies send back data that needs to be reloaded to our web server when you log into the LSA Consulting site. These cookies allow us to adjust your settings and upload your personal preferences to improve your experience. You can get more information about cookies by reading the "Cookies Policy" available on our website. In addition to these, we keep records of the movements of your trade behavior, and also these are including:

• Products that you trade with LSA Consulting Company
• Previous time data on your investments and investments include the amount you invested
• If the investor who makes the choices made on behalf of the selected products and services signs a new account to open or a new account, the investor must be able to understand the law in advance. Anti-money laundering laws require us to view and store the details (photographs and non-photographic documents) of the specified materials to present the standards set within the rules, as mentioned earlier. Identity documents required by money laundering laws or other legislation for the services we offer include the following:
1. Passport
2. Driver's license
3. National identity document (if available)
4. Electricity bills
5. Trust certificate (if available)
6. A credit check on the individual
• If you are a corporate investor, we need to collect additional information such as company addresses, shareholders, directors, officers, including additional personal information about shareholders and directors. We have the right to request additional data required to complete legal and regulatory requirements. For the mentioned data; We have our websites with different possibilities by using our account opening applications, demo registration forms, webinar registration forms, website cookies, and tracking technologies included in our website. We have the right to access the data we have mentioned here to our investors. Third-party marketing lists you purchase from third parties, public sources, social media platforms, brokers and affiliates, bankers and credit card processors, subscription-based intelligence databases, and other third parties. We may request other personal data from time to time at our discretion. (for example, through market research, surveys or special offers). If you do not want to fulfil what we deem necessary to respond to your request for a selected product or service, you may not receive the product or service you want. In addition to the services we offer to the user and our relationship with the user, we can store all communications made during the services we provide to the user electronically, by phone, or in any other way. These records will only be available in our company and provide evidence of communication between the company and the investor. Such telephone conversations can record without a warning tone, direct or indirect warning. In addition to this, you can visit a place you want from our offices or facilities and meet the CCTV system that can record your picture.

How and With Whom Do We Share Your Data?

If necessary situations are determined, we can only share information of users with the following institutions:

• Companies that are included in the LSA Consulting group and meet other opportunities in this direction
• Applications of LSA Consulting Company used by third parties, third-party application providers where communication systems and trading platforms used
• Administrative, I.T., analytics and online marketing optimization, financial regulatory, compliance, insurance, research or service providers, and specialist consultants who work under contract to provide other services
• Brokers with whom we have mutual relations and persons who provide promotional services to their associated organizations
• Institutions providing payment services and banks which performing transactions
• Auditors, consultants or contractors who audit any of our business purposes also Agreements with the courts, courts and competent courts, which are determined by the law and with the authorities making the relevant regulations, or with government agencies and law enforcement agencies that make other legal regulations when required by law
• A third party to whom such assessments made to make or enforce the Terms of Service or other said agreements
• Anyone authorized by the investor. We will endeavor only to share the minimum amount of personal information required for these third parties to fulfil their contractual obligations.' LSA Consulting ' do not allow to share or use investor's personal information shared with third-party service providers for any purpose other than providing services to LSA Consulting. There may be links to third-party websites outside of our websites or apps. We want to point out that third-party websites are not including in our privacy policy and that our privacy terms and rules do not cover these sites to follow.

CONSENT OF THE INVESTOR

We may process your personal information with the reasons and purposes determined by our company, or in the name of legal action. The legally defined situations are as follows:

• Fulfilling contractual responsibilities towards the investor
• To comply with legal and regulatory conditions
• Protecting our legitimate interests

The investor's consent must take for the use of the personal information of our investors in violation of one of these three rules. The investor should give this permission with free will.

MANAGEMENT OF PERSONAL DATA

As LSA Consulting, we are committed to protecting personal information. We will implement technical and organizational measures to ensure a compliant level of security to protect the personal information provided to us from illegal destruction, loss, alteration, unauthorized disclosure, or access for any reason. We want to state that we have appointed a Data Protection Officer to ensure that the management of personal data is following this privacy policy and related legislation. Except for the LSA Consulting Company, we undertake that those who agree to respect the privacy of these data will respect their right to privacy and comply with all relevant data protection laws and these privacy statements.

The data protection measures we apply are as follows:

• Our employees dealing with personal information are trained according to security measures that require them to use two-factor authentication with a password when accessing investor information and our system. In these security measures, Chinese walls are in place, and our employees can only access the personal data necessary for their role.
• Data encryption technologies are using during data transfer in internet transactions.
• There are firewalls against unauthorized persons and viruses entering our system, Client access codes are used that are transferred between networks using intrusion detection systems and virus scanning tools.
• When sending electronic data for outsourcing purposes, private, secure networks or encryption used, also a clean desk policy applying in all facilities that are institutionally kept by us and all related institutions and provide secure storage for physical records.
• Physical and electronic devices such as access cards, cameras, and guardian programs are used to protect against unauthorized access.

Storage Period of Personal Information

We keep personal data in a combination of secure computer storage facilities and paper-based files and other records. When we believe that personal data is no longer required, we will remove details that identify the investor or securely destroy records. Besides, it may be necessary to keep records for a considerable period. For example, we are dependent on investment services and money laundering laws that require us to keep copies and evidence of actions taken from our company regarding identity verification, sources of revenue, tracking transactions, telephone, and chat. By handling e-mail communications, orders, and trade history, complaints, and records, we can demonstrate that we have followed our regulatory code of conduct throughout the business relationship. These records must be retained for five years after our business relationship with you ends, or longer if requested by our regulators. When you opt-out of receiving marketing communications, we know you do not want to receive those communications, so we will keep your information on our print list. The data we collect from you may transfer and stored outside the European Economic Area (EEA). It may also process by staff working outside of the EEA who work for us or one of our suppliers or affiliates. We will take all reasonable and necessary steps to ensure that your data is treated securely and by this Privacy Policy. When we transfer your data to other third parties outside of the EEA, we may rely on applicable standard contractual provisions, binding company rules, EU-US Privacy Shield, or other equal regulations in some cases. If you would like a copy of such arrangements, please contact us using the contact details.

Investor's Rights

Although not valid in all circumstances, the rights of investors are as follows:

• Request access to personal data (commonly known as "data subject access request")
• To request the correction of the personal data you have provided to us
• To request the deletion of personal data, we may not always comply with the request of the investor for specific legal reasons that will notify him/her. In case the investor feels uncomfortable with the processing of his / her data on the grounds which we are dependent or thinks that it will affect him/her, he/she can notify us within the scope of his / her fundamental rights and freedoms. The investor also has the right to object to where we process his / her data for direct marketing purposes. In some cases, we may show that we have legal grounds for processing information that invalidate their rights and freedoms. In the scenarios below, Investors may request us to suspend the processing of their data.
• To request limitations on the processing of their data.
• When an investor asks us to determine the accuracy of the data
• Where the use of information is unlawful but does not want us to delete it
• Unless it is needed to constitute, exercise, or defend legal claims or we are required to keep this information, the investor can tell where we should keep the data
• When the investor objects to our use of their data. However, we need to verify if it invalidates legal reasons to use it.
• To request the transfer of personal data to him/her or a third party. We will present their data to the investor or a third party of their choice in a structured, commonly used, and machine-readable format.
• The investor should note that this right only applies to automated information (e.g., not for hard copies) that we have consented to use for him/ her or where we use the information to enter into a contract with him/ her. The investor should know that this right is valid under the following conditions: Information that he/she consents to use only for himself/herself or automated information (for example, not for hard copies) we use to contract with him/her

If you do not want your personal information to be processed, you can request us to withdraw your consent.

Investor complaints and requests

We try to respond to all requests within 1 (one) month. If the investor's claim is complicated or extra, our response time may take longer than 1 (one) month. In this case, we inform our investor within 1 (one) month from the receipt of the request and keep the situation updated. We may charge a reasonable fee when a claim is unfounded, excessive or repetitive, or when we receive an offer to provide more copies of the same data. In this case, we will submit a request for a fee before processing the investor's demand; if he/she approves, the transaction will proceed. Alternatively, we may refuse to comply with the investor's request in these cases. If the investor is not satisfied with our response to his/her complaint; if he/she is the investor of LSA Consulting Limited, he/she has the right to file a complaint with the Information Commissioner's Office (ICO). If he/she is an investor in any of the remaining LSA Consulting assets, alternatively, he/she has the right to complain to the data protection authority of his country of residence.