Quantum EX s.r.o. ("Company", "we", "us", or "our") is a limited liability company incorporated under the laws of the Czech Republic, with its registered office at Cimburkova 916/8, Žižkov, 130 00 Prague 3, Czech Republic, registered in the Commercial Register maintained by the Municipal Court in Prague, File No. C 408553. The Company was established on 13 August 2024 and is assigned Identification Number (IČO): 21920460.
We operate a digital asset platform providing cryptocurrency wallet, peer-to-peer (P2P) trading, and cryptocurrency exchange services (collectively, the "Platform") under our licensed business scope covering the provision of services related to virtual assets. We comply with applicable AML/CFT obligations under Act No. 253/2008 Coll. on Certain Measures Against the Legalisation of the Proceeds of Crime and Financing of Terrorism, as amended, as well as the EU Markets in Crypto-Assets Regulation (EU virtual asset services regulation), Regulation (EU) 2023/1114.
Please note: Fiat currency services (bank transfers, card payments, and fiat on/off ramp) are not currently available on our Platform. This Policy will be updated prior to the launch of any fiat-related services.
Quantum EX s.r.o. is the data controller within the meaning of Article 4(7) of Regulation (EU) 2016/679 (GDPR) for all personal data processed in connection with our services.
This Privacy Policy applies to all personal data we collect and process when you:
This Policy does not apply to third-party websites, wallets, blockchain networks, or services accessible via links from our Platform. We encourage you to review the privacy policies of any third-party services you use.
A non-custodial or custodial digital wallet allowing users to store, send, and receive supported cryptocurrencies and digital tokens.
An order-book or automated market maker (AMM) based service allowing users to swap and trade one cryptocurrency for another at prevailing market rates.
A marketplace facilitating direct trades between users of the Platform. We act as an intermediary platform providing escrow and dispute resolution mechanisms. Users set their own prices and trade directly with one another.
Not yet available: Fiat currency deposits, withdrawals, bank transfers, card payments, or any fiat on/off ramp services. This Policy will be revised before any such services are launched.
We process your personal data only where we have a valid legal basis under Article 6 GDPR:
| Purpose | Legal Basis |
|---|---|
| Account registration & wallet provisioning | Art. 6(1)(b) – Performance of a contract |
| Exchange order matching & execution | Art. 6(1)(b) – Performance of a contract |
| P2P trade facilitation & escrow | Art. 6(1)(b) – Performance of a contract |
| User identity verification | Art. 6(1)(c) – Legal obligation (Act No. 253/2008 Coll.; EU virtual asset services regulation) |
| Transaction monitoring & fraud prevention | Art. 6(1)(c) & (f) – Legal obligation & Legitimate interest |
| Dispute resolution (P2P) | Art. 6(1)(b) & (f) – Contract performance & Legitimate interest |
| Platform security & abuse prevention | Art. 6(1)(f) – Legitimate interest |
| Analytics & platform improvement | Art. 6(1)(f) – Legitimate interest |
| Marketing & personalisation (opt-in only) | Art. 6(1)(a) – Consent |
| Responding to regulatory or legal requests | Art. 6(1)(c) – Legal obligation |
Where we rely on legitimate interests, we have conducted a balancing test and concluded our interests do not override your fundamental rights and freedoms. You may request details by contacting exchange@qntmex.com.
We use your identity and contact data to create and manage your account, provision your cryptocurrency wallet, authenticate your identity on login, and enable you to send, receive, and store digital assets.
We use your account data and transaction data to match buy and sell orders, execute cryptocurrency swaps, maintain accurate trading records, and provide you with transaction confirmations and history.
We use your profile data, trade listings, and communication logs to facilitate direct trades between users, operate our escrow mechanism, resolve disputes, and maintain the integrity of our marketplace.
Czech Act No. 253/2008 Coll. and EU virtual asset services regulation require us to verify the identity of users, screen against sanctions and PEP lists, monitor transactions for suspicious activity, and report to the Czech Financial Analytical Office (FAÚ) where legally required. Compliance with the Crypto Travel Rule also requires us to collect and transmit originator and beneficiary information for qualifying transfers.
We analyse transaction patterns, login behaviour, and device data to detect and prevent fraudulent activity, unauthorised account access, wash trading, and other abusive conduct on our Platform.
In the event of a P2P trade dispute, we may access and review communications, transaction records, and trade data to investigate and resolve the matter fairly.
We may process your data to comply with court orders, regulatory inquiries, and obligations under applicable Czech and EU law, including reporting obligations to the Czech National Bank (ČNB) and FAÚ.
Only with your prior, freely given, and specific consent will we send you product updates, market news, or promotional offers. You may withdraw consent at any time by clicking "Unsubscribe" in any communication or contacting exchange@qntmex.com.
We use aggregated and pseudonymised usage data to understand how our Platform is used, identify technical issues, and improve our services. This processing is based on our legitimate interests and does not involve profiling that produces legal or significant effects on you.
We do not sell, rent, or trade your personal data to third parties. We may disclose your data only in the following circumstances:
Third-party providers used to conduct identity verification, liveness checks, sanctions screening, and PEP checks, operating under data processing agreements compliant with Art. 28 GDPR.
We use blockchain analytics tools to monitor on-chain activity associated with your wallet addresses for regulatory compliance purposes.
For qualifying crypto-asset transfers, we are required under Regulation (EU) 2023/1113 to share originator and beneficiary information with the receiving virtual asset services. This may involve disclosing your name, wallet address, and account identifier to a counterparty virtual asset services.
Hosting, cloud storage, cybersecurity, and infrastructure providers supporting the operation of our Platform, all bound by data processing agreements.
Professional advisors bound by statutory or contractual confidentiality obligations.
Where legally required, we will disclose data to the FAÚ, ČNB, Czech Police, courts, or other competent authorities. We will notify you of such disclosures where legally permitted to do so.
In the event of a merger, acquisition, restructuring, or sale of our business, your personal data may be transferred to a successor entity. We will notify you in advance and ensure appropriate protections remain in place.
Our primary operations and data storage are located within the European Economic Area (EEA). Where data is transferred to countries outside the EEA, we ensure adequate safeguards are in place, including:
You may request details of the safeguards applicable to any specific transfer by contacting exchange@qntmex.com.
| Data Category | Retention Period |
|---|---|
| Verification records (identity documents, screening results) | 10 years from end of business relationship (Act No. 253/2008 Coll.) |
| Wallet & transaction records | 10 years (AML Act); 5 years (Accounting Act No. 563/1991 Coll.) |
| P2P trade records (including communications) | 5 years from trade completion |
| Account & contractual data | Duration of relationship + 5 years |
| Dispute records | 5 years from resolution |
| Support communications | 3 years from resolution |
| Marketing data (consent-based) | Until consent is withdrawn |
| Technical & access logs | 12 months |
| Analytics data (pseudonymised) | 24 months |
| Cookie data (analytics) | 13 months |
Upon expiry of the applicable retention period, data is securely and irreversibly deleted or anonymised in accordance with our internal Data Lifecycle Policy.
Our website and Platform use cookies and similar tracking technologies. We categorise these as follows:
You can review and manage your cookie preferences at any time via our Cookie Preference Centre accessible in the footer of our website. We do not use cookies to build profiles for sale to third-party advertisers. Our cookie practices comply with Act No. 127/2005 Coll. on Electronic Communications and the GDPR.
As a data subject residing in the EU/EEA, you have the following rights under Chapter III of the GDPR:
To exercise any of these rights, please submit a written request to exchange@qntmex.com. We will respond within 30 calendar days.
We apply technical and organisational security measures in accordance with Art. 32 GDPR, including:
Notwithstanding the above, no system is entirely secure. You are responsible for maintaining the confidentiality of your account credentials and private keys.
Our Platform and services are not intended for, and may not be used by, individuals under the age of 18 years. We do not knowingly collect or process personal data from minors. If we discover that personal data from a person under the age of 18 has been collected, we will delete it promptly. If you have reason to believe a minor has submitted personal data to us, please contact exchange@qntmex.com immediately.
We may update this Privacy Policy periodically to reflect changes in our services, legal obligations, or data processing practices. When we make material changes, we will:
The "Last Revised" date at the top of this Policy indicates when it was most recently updated. Your continued use of our Platform after notification of changes constitutes your acknowledgement of the updated Policy.
Data Protection Officer (DPO)
Email: exchange@qntmex.com
Address: Cimburkova 916/8, Žižkov, 130 00 Prague 3, Czech Republic
Registered Company Details
Quantum EX s.r.o. · IČO: 21920460
File No. C 408553, Municipal Court in Prague
Cimburkova 916/8, Žižkov, 130 00 Prague 3, Czech Republic
Czech Supervisory Authority
Úřad pro ochranu osobních údajů (UOOU)
Pplk. Sochora 27, 170 00 Prague 7, Czech Republic
Website: www.uoou.cz · Tel: +420 234 665 111
You have the right to lodge a complaint with UOOU at any time if you believe your personal data has been processed in a manner that does not comply with the GDPR.
PLEASE READ THIS RISK DISCLOSURE CAREFULLY. BY ACCESSING AND USING OUR PLATFORM, YOU CONFIRM THAT YOU HAVE READ, UNDERSTOOD, AND ACCEPTED THE RISKS SET OUT BELOW. THIS DISCLOSURE DOES NOT CONSTITUTE FINANCIAL, INVESTMENT, OR LEGAL ADVICE.
Cryptocurrency markets are highly speculative and extremely volatile. The value of any digital asset can increase or decrease significantly — including a total loss of value — within minutes or hours. Past performance is not indicative of future results. You should never trade or hold more than you can afford to lose entirely.
Trading on our exchange or P2P marketplace involves the risk of financial loss. Order execution prices may differ from quoted prices due to market slippage, thin liquidity, or rapid price movements. In P2P transactions, you are trading directly with another user. While we provide escrow and dispute resolution, we cannot guarantee the conduct or reliability of your counterparty.
Where we provide custodial wallet services, we take reasonable steps to secure your assets. However, Quantum EX s.r.o. is not a bank and your digital assets are not covered by the Czech Deposit Insurance Scheme or any equivalent EU deposit guarantee scheme. For non-custodial wallets, loss of your private key or seed phrase results in permanent and irrecoverable loss of access to your assets.
All confirmed cryptocurrency transactions on a blockchain are irreversible. Erroneous transfers cannot be reversed or recalled. Always verify recipient wallet addresses carefully before confirming any transaction.
Blockchain networks may experience congestion, forks, protocol upgrades, or outages. Smart contracts underlying certain tokens may contain bugs or vulnerabilities. Our Platform itself may be subject to technical failures, downtime, or cyberattacks.
The cryptocurrency sector is a frequent target for phishing attacks, SIM-swapping, social engineering, and malware. Quantum EX s.r.o. will never ask for your password or seed phrase. You are solely responsible for securing your account and devices.
The legal and regulatory status of cryptocurrencies continues to evolve in the Czech Republic and across the EU. Evolving EU regulations governing virtual asset services may impose new obligations or restrictions on our services. We cannot guarantee that any specific cryptocurrency will remain available on our Platform.
Certain digital assets listed on our Platform may have low trading volumes. You may be unable to execute a trade at your desired price or at all. In thin markets, large orders may significantly move the market price against you.
Cryptocurrency protocols may undergo hard forks or soft forks. Quantum EX s.r.o. reserves the sole discretion to determine which forked networks or assets we support. We cannot guarantee that forked assets will be credited to your account.
Cryptocurrency transactions may give rise to taxable events under Czech Act No. 586/1992 Coll. on Income Taxes and applicable EU tax reporting frameworks. You are solely responsible for assessing and meeting all applicable tax obligations. We strongly recommend consulting a qualified tax advisor.
Nothing on our Platform, in our communications, or in this document constitutes investment advice, financial advice, trading advice, or any recommendation to buy, hold, or sell any digital asset. Quantum EX s.r.o. is not a licensed investment firm under Czech Act No. 256/2004 Coll. on Capital Market Undertakings. All decisions to trade or hold digital assets are made entirely at your own risk and on your own initiative.
IMPORTANT NOTICE: Cryptocurrencies are not legal tender in the Czech Republic or the European Union. They are not issued or guaranteed by any government, central bank, or regulatory authority. The cryptocurrency market operates 24 hours a day, 7 days a week, without circuit breakers or the investor protections present in traditional financial markets. You should only use our services if you fully understand the nature of digital assets and the extent of your exposure to risk.