1.Scope and Legal Basis
This Privacy Policy describes how Bullion Trading Center BTC S.A.E (the “Company”, “we”, “us”) collects, uses, and protects your personal data. We are the “Data Controller” under the Egyptian
Personal Data Protection Law (Law No. 151 of 2020).
–Legal Basis: We process your data based on your explicit consent and our legal obligations under Law No. 80 of 2002 (Anti-Money Laundering Law).

2.Data We Collect
To satisfy mandatory Know Your Customer (KYC) requirements, we collect:
Identity Data: Full name, date of birth, and nationality.

Sensitive Official ID: High-resolution scans of your Egyptian National ID or Passport with residency stamp.
Contact Data: Verified mobile number, email address, and residential address.
Financial Data: Details of bullion transactions, bank account numbers, and “Proof of Source of Funds” for high-value trades.

3.Purpose of Processing
Identity Verification: To ensure compliance with the Stamp and Weights Department and EMLCU regulations.
Transaction Integrity: To prevent Commercial Fraud and ensure secure delivery.
E-Invoicing: To issue tax-compliant invoices through the Egyptian Tax Authority (ETA) portal.

4.Mandatory Regulatory Disclosure (USD 15,000 Threshold)
In accordance with the Anti-Money Laundering Law and Law No. 18 of 2019:
You acknowledge and agree that your personal data and transaction history for any purchase exceeding USD 15,000 (or its equivalent in EGP) shall be shared with the Egyptian Money Laundering and Terrorism Financing Combatting Unit (EMLCU) and the Central Bank of Egypt (CBE).

Anti-Tipping Off: We are legally prohibited from informing you if your data is subject to a suspicious activity investigation.

5. Data Storage and Localization

Your personal data is stored on secure, encrypted servers. Pursuant to Law 151 of 2020, sensitive personal data of Egyptian citizens is primarily processed and stored within servers located in the Arab Republic of Egypt, unless an international transfer permit is obtained from the Personal Data Protection Center.

6. Data Retention Period
We are legally mandated to retain all KYC and transaction records for a period of five (5) years following the termination of the business relationship or the completion of the transaction, as required by the Egyptian AML Law.

7. Your Rights as a Data Subject
Under the Egyptian PDPL, you have the right to:
Access: Request a copy of your stored data.
Rectify: Update inaccurate or outdated information.
Object: Oppose processing for marketing purposes.
Erasure: Request deletion of data (only after the 5-year legal retention period has expired).

8.Contact Information
For any privacy inquiries or to exercise your rights, please contact our Data Protection Officer (DPO) at:
Email: info@kpm-int.com

Regulatory Body: You may also file complaints with the Egyptian Personal Data Protection Center