Privacy Policy

Last updated: 15th January 2026

Introduction

nexusrise AG ("we", "our", or "us") is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you visit our website nexusrise.pro, use our Islamic banking services, or interact with us in any way. We are the data controller for the purposes of the General Data Protection Regulation (GDPR) and German Federal Data Protection Act (BDSG).

Data We Collect

We collect various types of personal data to provide you with our Islamic banking services and improve your experience. The data collection includes information you provide directly to us and information we collect automatically through your use of our services.

Information You Provide

  • Personal identification information (name, address, date of birth, nationality)
  • Contact information (email address, telephone number, postal address)
  • Financial information (bank account details, income, financial statements)
  • Business information (company details, business registration numbers, VAT numbers)
  • Documentation for identity verification and compliance purposes
  • Communication records (emails, phone calls, meeting notes)

Information We Collect Automatically

  • Website usage data (pages visited, time spent, browser type)
  • Device information (IP address, device type, operating system)
  • Cookies and similar tracking technologies
  • Transaction data and account activity

How We Use Your Information

We use of your data is essential for providing our Islamic banking services and ensuring compliance with legal and regulatory requirements. We process your personal information for the following purposes:

  • Providing and managing Islamic banking services and products
  • Processing transactions and maintaining account records
  • Verifying your identity and conducting due diligence checks
  • Complying with anti-money laundering (AML) and know-your-customer (KYC) requirements
  • Communicating with you about your accounts and services
  • Providing customer support and responding to enquiries
  • Improving our services and developing new products
  • Marketing our services (with your consent where required)
  • Preventing fraud and ensuring security
  • Meeting legal and regulatory obligations

Cookies and Tracking Technologies

We may use cookies and tracking technologies for analytics, advertising, and remarketing purposes, including Google Ads. These technologies help us measure campaign effectiveness, deliver relevant advertisements, and improve our services. You can manage your cookie preferences at any time through our cookie consent banner.

For detailed information about our cookie usage, please refer to our Cookie Policy.

Legal Basis for Processing

Under GDPR, we process your personal data based on the following legal grounds:

  • Contract: Processing necessary for the performance of our banking services
  • Legal obligation: Compliance with banking regulations, AML, and KYC requirements
  • Legitimate interests: Fraud prevention, security, and service improvement
  • Consent: Marketing communications and non-essential cookies

Data Sharing and Disclosure

We may share your personal information with the following categories of recipients:

  • Regulatory authorities and government agencies as required by law
  • Service providers and business partners who assist in delivering our services
  • Professional advisors (lawyers, accountants, auditors)
  • Credit reference agencies and fraud prevention agencies
  • Other financial institutions for transaction processing
  • Third parties in connection with legal proceedings or investigations

International Data Transfers

Your personal data may be transferred to and processed in countries outside the European Economic Area (EEA). When we transfer data internationally, we ensure appropriate safeguards are in place, including adequacy decisions by the European Commission, standard contractual clauses, or other approved transfer mechanisms under GDPR.

Data Retention

We retain your personal data for as long as necessary to fulfil the purposes outlined in this Privacy Policy and comply with our legal obligations. Generally, we retain customer data for a minimum of 10 years after the end of the business relationship as required by German banking regulations. Marketing data is retained until you withdraw consent or for a maximum of 3 years, whichever is earlier.

Your Rights

Under GDPR and German data protection law, your rights include the following protections regarding your personal data:

  • Right of access: Request copies of your personal data
  • Right to rectification: Correct inaccurate or incomplete data
  • Right to erasure: Request deletion of your data in certain circumstances
  • Right to restrict processing: Limit how we use your data
  • Right to data portability: Receive your data in a structured format
  • Right to object: Object to processing based on legitimate interests
  • Right to withdraw consent: Withdraw consent for marketing and cookies
  • Right to lodge a complaint: Contact the relevant data protection authority

Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. Our security measures include encryption, access controls, regular security assessments, and staff training. However, no method of transmission over the internet or electronic storage is completely secure, and we cannot guarantee absolute security.

Children's Privacy

Our services are not intended for individuals under the age of 18. We do not knowingly collect personal information from children under 18. If we become aware that we have collected personal data from a child under 18, we will take steps to delete such information promptly.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable laws. We will notify you of any material changes by posting the updated policy on our website and updating the "Last updated" date. Your continued use of our services after any changes constitutes acceptance of the updated Privacy Policy.

Contact Us

If you have any questions about this Privacy Policy, wish to exercise your rights, or need to contact us regarding data protection matters, please reach out using the following contact information:

Data Protection Officer

nexusrise AG

Waldstraße 92

20993 Hamburg, Germany

Email: privacy@nexusrise.pro

Phone: +49 401243515

You also have the right to lodge a complaint with the German Federal Commissioner for Data Protection and Freedom of Information (BfDI) or your local data protection authority if you believe we have not handled your personal data in accordance with applicable law.