Dire-money
Legal

Privacy Policy

Effective Date: January 1, 2026  |  Last Updated: January 1, 2026

This Privacy Policy describes how DIRE MONEY TRANSMITTER LLC ("Dire-money," "we," "us," or "our"), a Washington State-registered crypto exchange and software wallet provider, collects, uses, discloses, and protects personal information in connection with our platform and services. By using our services, you agree to the terms set forth below.

Scope and Who This Policy Applies To

This Privacy Policy applies to all individuals who visit our website, create an account, use our exchange platform, or interact with our software wallet — including individual retail users, business account holders, and prospective clients. It covers data collected through our website, mobile applications, customer support channels, and any related digital service operated by Dire-money.

This policy does not apply to third-party services, websites, or platforms that may be linked from our platform. We encourage you to review the privacy policies of any third-party service you access through our links.

Categories of Personal Data We Collect

We collect several categories of personal information, depending on your relationship with our platform:

  • Identity Data: Full legal name, date of birth, government-issued identification numbers (e.g., passport, driver's license), and photographs.
  • Contact Data: Email address, phone number, and physical mailing address.
  • Financial Data: Bank account details, payment card information (processed securely by third-party payment processors), and transaction history.
  • Verification Data: KYC documentation, selfies for biometric matching, and proof of address documents required under US federal law.
  • Technical Data: IP address, browser type, operating system, device identifiers, and cookie data.
  • Usage Data: Pages visited, session duration, trading activity logs, and feature usage patterns.
  • Communications Data: Records of your correspondence with our support team, including chat logs and call recordings (where disclosed).

How and Why We Use Your Information

We use your personal data for the following purposes:

  • To create and manage your account and verify your identity.
  • To process transactions, withdrawals, deposits, and fiat conversions.
  • To fulfill our legal obligations under the Bank Secrecy Act (BSA), FinCEN regulations, and Washington State law.
  • To detect, investigate, and prevent fraud, money laundering, and other financial crimes.
  • To communicate with you about your account, transactions, platform updates, and security alerts.
  • To improve our platform, troubleshoot technical issues, and analyze usage patterns.
  • To respond to your inquiries and provide customer support.
  • To enforce our Terms of Service and exercise or defend our legal rights.

We do not sell your personal data to third parties for marketing purposes. We do not use your information to target you with behavioral advertising unrelated to our own services.

Legal Basis Under US Law for Processing Your Data

As a US-based company operating under federal and Washington State law, our legal basis for processing personal data includes:

  • Contractual necessity: We must process your data to enter into and perform our contract with you (account opening, transaction execution).
  • Legal obligation: We are required by law to collect identity information under the BSA, FinCEN regulations, and the USA PATRIOT Act. These obligations cannot be waived.
  • Legitimate interest: We process certain technical and usage data to ensure platform security, prevent fraud, and improve our services.
  • Consent: Where we rely on your consent (e.g., optional analytics cookies), you may withdraw it at any time.

Identity Verification and Anti-Money Laundering Requirements

DIRE MONEY TRANSMITTER LLC is a registered Money Services Business (MSB) with the Financial Crimes Enforcement Network (FinCEN) and is subject to the Bank Secrecy Act and its implementing regulations. We are legally required to:

  • Verify the identity of all customers before allowing any transaction ("Know Your Customer" — KYC).
  • Screen customers against government sanctions lists (OFAC, SDN, and others).
  • Monitor transactions for suspicious activity and file Suspicious Activity Reports (SARs) with FinCEN when required.
  • Retain KYC and transaction records for a minimum of five (5) years as mandated by federal law.

These requirements are non-negotiable. We cannot open an account for any individual who does not complete our identity verification process. Attempts to circumvent our verification procedures may result in account termination and a regulatory report.

Disclosure of Your Data to Third Parties

We may share your personal information with the following categories of third parties, strictly as necessary:

  • Government agencies and regulators: Including FinCEN, the IRS, the Washington State DFI, and law enforcement, when required by law or court order.
  • Identity verification providers: Third-party KYC services that validate government IDs and perform biometric matching on our behalf.
  • Banking and payment partners: Financial institutions and payment processors that facilitate fiat on-ramp and off-ramp transactions.
  • Security and fraud prevention vendors: Services that help us monitor for fraudulent or suspicious activity.
  • IT and infrastructure providers: Hosting, data storage, and technical services operating under contractual confidentiality obligations.
  • Legal and professional advisors: Attorneys, auditors, and accountants under professional confidentiality obligations.

We do not share your data with advertisers, data brokers, or any third parties for commercial purposes unrelated to our platform.

How Long We Keep Your Data

We retain your personal information for as long as necessary to fulfill the purposes set out in this Privacy Policy and to comply with applicable legal obligations:

  • KYC and identity documents: Retained for a minimum of 5 years following account closure, as required by the BSA and FinCEN regulations.
  • Transaction records: Retained for 5 years from the date of the transaction.
  • Account information: Retained for the duration of your account and for at least 3 years following closure.
  • Support communications: Retained for 2 years or as required for dispute resolution.
  • Technical logs: Retained for 90 days for security monitoring purposes.

After the applicable retention period expires, we securely delete or anonymize your data.

Your Privacy Rights Under US Law

Depending on your state of residence, you may have the following rights regarding your personal information:

  • Right to Access: Request a copy of the personal information we hold about you.
  • Right to Correction: Request that we correct inaccurate or incomplete information.
  • Right to Deletion: Request deletion of your data, subject to our legal retention obligations (which may prevent full deletion).
  • Right to Portability: Receive a copy of your data in a structured, machine-readable format.
  • Right to Opt Out: Opt out of any sale of personal information (we do not sell personal data).

Please note that certain rights are limited by our legal obligations as a regulated financial services provider. We cannot delete data that we are legally required to retain. To submit a privacy request, contact us at info@dire-money.com.

Technical and Organizational Security Measures

We apply industry-standard technical and organizational safeguards to protect your personal data:

  • AES-256 encryption for data at rest and TLS 1.3 for data in transit.
  • Strict role-based access controls — only authorized staff can access sensitive data.
  • Multi-factor authentication required for all administrative systems.
  • Annual third-party security audits and regular vulnerability assessments.
  • Secure disposal of data at end of retention period.
  • Incident response procedures with mandatory regulatory notification timelines.

No method of electronic transmission or storage is completely secure. In the event of a security incident that poses a risk to your data, we will notify you and relevant authorities as required by applicable law.

Cookies and Tracking Technologies on Our Platform

We use cookies and similar technologies on our website. Essential cookies are required for the platform to function. Optional cookies (analytics, functional) are only placed with your consent, which you may grant or withdraw through our cookie preference tool or your browser settings.

For detailed information about our use of cookies, the types we deploy, and how to manage your preferences, please read our Cookie Policy.

Children's Privacy Protection

Dire-money's services are not intended for individuals under the age of 18. We do not knowingly collect personal information from minors. If you believe a minor has provided us with personal data, please contact us immediately at info@dire-money.com and we will take prompt action to delete that information and close any associated account.

Our identity verification procedures are designed to prevent account creation by individuals under 18. Any account found to belong to a minor will be immediately suspended and closed.

Links to Third-Party Services

Our platform may contain links to external websites, blockchain explorers, or third-party tools. We are not responsible for the privacy practices or content of those services. We encourage you to review the privacy policies of any external service before sharing your personal information with them.

Amendments to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or platform features. When we make material changes, we will:

  • Post the updated policy on this page with a new effective date.
  • Send a notification to your registered email address for significant changes.
  • Request renewed consent where required by applicable law.

Your continued use of our platform after the effective date of any changes constitutes your acceptance of the updated policy. If you disagree with material changes, you may close your account by contacting us.

How to Reach Our Privacy Team

If you have questions about this Privacy Policy, wish to exercise your privacy rights, or need to report a potential privacy concern, please contact us:

We aim to respond to all privacy inquiries within 10 business days. Complex requests involving large amounts of data or legal review may require up to 30 days.