Privacy Policy

Your privacy matters to us at Penthros

Last Updated: March 15, 2025 | Effective Date: March 15, 2025

1. Introduction and Scope

At Penthros, we understand that managing your investment reporting requires trust. This privacy policy explains how we collect, use, store, and protect your personal information when you use our investment reporting services.

This policy applies to all users of penthros.pro and our related services. We operate under Belgian privacy laws, including the General Data Protection Regulation (GDPR), ensuring your rights are protected throughout the European Union.

By using our services, you agree to the practices described in this policy. If you don't agree with these practices, please don't use our services.

2. Information We Collect

We collect different types of information to provide you with accurate investment reporting and improve our services:

Personal Information

Name, email address, phone number, and postal address when you create an account or contact us.

Financial Data

Investment account information, portfolio holdings, transaction history, and performance metrics you provide for reporting purposes.

Technical Information

IP address, browser type, device information, and usage patterns when you access our platform.

Communication Records

Records of your interactions with our support team, including emails, chat logs, and phone calls.

3. How We Use Your Information

Your information helps us deliver better investment reporting services. Here's how we use it:

  • Generate personalized investment reports and portfolio analysis
  • Provide customer support and respond to your inquiries
  • Process transactions and manage your account
  • Send important updates about your account or our services
  • Improve our platform based on usage patterns and feedback
  • Comply with legal and regulatory requirements in Belgium and the EU
  • Detect and prevent fraud or unauthorized access

We never sell your personal information to third parties. Any sharing occurs only as described in this policy or with your explicit consent.

4. Your Privacy Rights

Under Belgian law and GDPR, you have several important rights regarding your personal information:

Right to Access

Request a copy of all personal information we hold about you, including how it's being used.

Right to Rectification

Correct any inaccurate or incomplete personal information in your account.

Right to Erasure

Request deletion of your personal information when it's no longer needed for our services.

Right to Portability

Receive your personal information in a structured format to transfer to another service.

Right to Restrict Processing

Limit how we use your information in certain circumstances.

Right to Object

Object to processing of your information for marketing purposes or other legitimate interests.

To exercise any of these rights, contact us using the information provided at the end of this policy. We'll respond within one month of receiving your request.

5. Information Sharing and Disclosure

We share your information only in specific circumstances and always with appropriate safeguards:

  • Service Providers: Trusted third parties who help us operate our platform, such as cloud hosting providers and payment processors. These partners are contractually bound to protect your information.
  • Legal Requirements: When required by Belgian or EU law, court orders, or to protect our legal rights and those of our users.
  • Business Transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred to the new entity with the same privacy protections.
  • With Your Consent: Any other sharing occurs only with your explicit permission.

We never share your financial data for marketing purposes or sell your information to data brokers.

6. Data Security Measures

Protecting your financial information is our top priority. We implement multiple layers of security:

Encryption

All data transmissions use industry-standard SSL/TLS encryption, and sensitive data is encrypted at rest using AES-256 encryption.

Access Controls

Strict employee access controls ensure only authorized personnel can access your information on a need-to-know basis.

Regular Monitoring

Continuous system monitoring and security audits help us detect and respond to potential threats quickly.

Secure Infrastructure

Our servers are hosted in secure, certified data centers with physical security measures and redundant systems.

7. Data Retention Periods

We retain your information only as long as necessary to provide our services and comply with legal requirements:

Account Information

Retained while your account is active, plus 7 years after closure for regulatory compliance.

Financial Data

Kept for 7 years after the last transaction to meet Belgian financial record-keeping requirements.

Communication Records

Support communications retained for 3 years to improve service quality and resolve disputes.

Technical Logs

System logs and usage data retained for 12 months for security monitoring and system optimization.

8. International Data Transfers

Your data is primarily processed within the European Union. However, some of our trusted service providers may process data outside the EU. When this occurs:

  • We ensure adequate protection through Standard Contractual Clauses approved by the European Commission
  • We verify that recipients provide equivalent privacy protections
  • We limit transfers to what's necessary for providing our services
  • We maintain oversight of all international processing activities

You can request specific information about international transfers affecting your data by contacting us.

9. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience on our platform:

  • Essential Cookies: Required for basic platform functionality, such as keeping you logged in and maintaining security.
  • Performance Cookies: Help us understand how you use our platform so we can improve its performance and usability.
  • Preference Cookies: Remember your settings and preferences to personalize your experience.

You can control cookie preferences through your browser settings, though disabling certain cookies may affect platform functionality.

Important Notice About Data Processing

Some of our data processing activities are based on legitimate interests, such as fraud prevention and system security. You have the right to object to this processing. Contact us if you'd like to discuss your specific situation.

10. Children's Privacy

Our investment reporting services are designed for adults and businesses. We don't knowingly collect personal information from children under 16 years old. If you believe we've inadvertently collected such information, please contact us immediately so we can delete it.

11. Changes to This Privacy Policy

We may update this privacy policy from time to time to reflect changes in our practices, technology, or legal requirements. When we make significant changes:

  • We'll notify you by email at least 30 days before changes take effect
  • We'll post the updated policy on our website with the revision date
  • We'll provide a summary of major changes in plain language

Your continued use of our services after changes take effect means you accept the updated policy.

Privacy Questions or Concerns?

Email: [email protected] Phone: +32 87 270 814 Address: Mechelsesteenweg 167, 9200 Dendermonde, Belgium Response Time: We respond to privacy inquiries within 5 business days

12. Supervisory Authority

If you're not satisfied with how we handle your privacy concerns, you have the right to file a complaint with Belgium's Data Protection Authority (Gegevensbeschermingsautoriteit/Autorité de protection des données) or the supervisory authority in your EU country of residence.

However, we encourage you to contact us first so we can address your concerns directly and work toward a resolution.