As per GDPR regulation, we are eligible to disclose the personal information only in certain cases and in amount limited to the final goal of such a disclosure. As per our Privacy Policy rules, we might disclose information only for subcontractors that serve us in order to deliver our Services to you; please note, that all these subcontractors are members of our business enterprise. In addition, please note, that currently, we do not serve fiat payments, hence no disclosure to the banks or other relevant financial institutions might take place.
The policy doesn't only pertains to your "subcontractors" who are members of your business enterprise. and I doubt cloudflare which has access to your site's data is a part of that.
We understand your opinion. But we must say that we really care about the privacy and anonymity of our users. We do not have a registration procedure, we do not ask or collect personal user data - names, dates of birth, email, address of residence, passport data (id). We think that's why we can call us anonymous.
I'd call it pseudonymous, even if you don't collect KYC details, you collect (and the third parties too like their hosting provider) other sets of data too like transaction details, browser, ip address, email address etc.. if you combine those you can make up a user profile and when it gets passed around, gets combined with other sets of data, it becomes easier to relate it to a real person.
but then again, in your terms, it states you may collect/use data which has the user's real name, address etc...
Type of information:
Any data we may request to identify for AML/KYC purposes. ID, Passport, VAT, or trading experience
Purpose:
The inquiry data may be processed for the purposes of fulfilment of our KYC and AML obligations. The proper performance of our payment obligation to you
@op, the policy is designed in a way that it's perfectly fine when you actually do it(X), and that also states a possibility. so you advertising this as an anonymous exchange doesn't look credible rn, even pseudonymous won't apply at this point. Not to mention that authorities could always take in charge. The no kyc, no limits doesn't seem sustainable imo.