KUARIX is a trading name of The Currency Cloud Ltd. The Currency Cloud Ltd is authorised by the Financial Conduct Authority under the Electronic Money Regulations 2011 and the Payment Services Regulations for the issuing of electronic money and the provision of payment services with FCA register number 900199. The Currency Cloud Ltd is registered with the UK Data Protection Act Registration Number Z1550331.
We are required to handle information which we hold about you that is capable of identifying you (either alone or with any other information we may hold about you) in accordance with the Data Protection Act 1998 ("the Act"), which regulates the use of "personal data" in the United Kingdom. You have the right under the Act to ask us in writing for details concerning the "personal data" we hold about you, including a description of that data, the purposes for which it is being used and to whom that data has been or may be disclosed. We may charge you an administration fee for providing you with this information. You can find out more about the Act and your rights by visiting the website of the Information Commissioner at www.ico.gov.uk. The Information Commissioner's Office can also be contacted by telephone on 08456 306060.
We may share your information with other members of The Currency Cloud group of companies where we need to do so to provide you with any of the products or services you have requested. We may have to share your information with a government body or regulatory authority, with the police or other law enforcement agencies, or with other persons or bodies by order of a court or to meet a legal or regulatory requirement or for other lawful reasons, such as for taxation or audit purposes; or with credit control or debt collection agencies. We will not normally share your information with anyone else unless we need to do so to provide you with our products or services which you use or unless you have asked us to do so.
Responsible Disclosure Policy
We take the security of our customers' data very seriously, and strongly encourage anyone who thinks they have discovered a potential security vulnerability in our any of our services to disclose it to us responsibly.
We appreciate the assistance of security researchers and are happy to work with them to validate and respond to vulnerabilities that are reported to us in a responsible manner. However, we do not tolerate any of the following, which will be reported to the appropriate authorities and may incur legal action:
Any attempt to access or modify other people's data.
Any attempt to execute a denial of service attack.
Any attempt to interrupt or degrade the service we offer our customers.
Any testing against third-party websites, applications or services that integrate with our services.
Knowingly sending, uploading, transmitting, or linking to any malware, virus or similar harmful software.
Any testing that involves violation of any applicable law.
Reporting potential vulnerabilities
Please share the details of any suspected vulnerability with us by sending email to our security team at firstname.lastname@example.org. You should include as much information as possible in your report, including how we can reproduce the issue.
For all researchers following this Responsible Disclosure Policy, we commit to:
Acknowledge receipt of your email in a timely fashion.
Provide an estimated time-frame for addressing the vulnerability.
Notify you when the vulnerability is fixed.
We do not offer compensation to individuals or organisations for identifying potential or confirmed security vulnerabilities, and requests for monetary compensation will be treated as a breach of this Responsible Disclosure Policy.
Donation to charity
Although we do not offer monetary compensation, if we feel that the vulnerability is significant we will show our appreciation by making a donation on your behalf to your choice of these charities:
International Federation of Red Cross and Red Crescent Societies
Médecins sans Frontières (Doctors Without Borders)
World Wildlife Fund
Save the Children