Privacy Policy for Gold Custody Services

Data Protection & Compliance

Terms & Conditions of Gold Custody Services

1. Introduction

This Privacy Policy explains how Golden Ark Reserve, operated under Golden Ark General Trading FZC (Oman), collects, processes, and protects personal data of clients and counterparties. The Policy applies to all custody operations, including onboarding, transactions, reporting, and client communications, in compliance with international data protection laws.

2. Data Collection

We may collect the following categories of personal data:

  • Identification data (name, date of birth, nationality, passport or ID details).
  • Contact details (address, email, phone number).
  • Corporate data (company registration, license numbers, beneficial ownership).
  • Financial information (bank account details, payment history).
  • Transaction records (custody agreements, settlements, barlists, reports).
  • Technical information (cookies, log files, IP addresses when using our website/portal).

3. Use of Data

Personal data is used strictly for:

  • Client onboarding and KYC/AML verification.
  • Execution of custody agreements and settlement operations.
  • Compliance with financial regulations and reporting requirements.
  • Communication of updates, statements, and audit confirmations.
  • Security monitoring and fraud prevention.

Data is processed under:

  • Oman Personal Data Protection Law (Royal Decree No. 6/2022).
  • UAE Federal Decree-Law No. 45/2021 on Personal Data Protection.
  • U.S. Federal Trade Commission (FTC) principles and CCPA (California Consumer Privacy Act).
  • Hong Kong Personal Data (Privacy) Ordinance (Cap. 486).

5. Data Sharing and Third Parties

Personal data may be shared only with:

  • Banks and settlement institutions (SWIFT, SEPA, approved digital asset platforms).
  • Independent auditors and inspectors (SGS, Alex Stewart, compliance firms).
  • Vault operators and insurers (Brinks Dubai, Guardforce Hong Kong, global insurance carriers).
  • Regulators and authorities when legally required.

We do not sell or commercialize personal data.

6. Data Retention

  • Personal data is retained only as long as necessary for regulatory compliance and contractual obligations.
  • Retention periods are aligned with Omani, UAE, U.S., and Hong Kong regulations.
  • Data may be anonymized or securely deleted once no longer required.

7. Data Security

We apply:

  • Encryption of client data in transit and at rest.
  • Multi-layered access controls and secure authentication.
  • Regular IT security audits and penetration testing.
  • Independent monitoring of compliance with global data security standards.

8. Client Rights

Clients have the right to:

  • Access their personal data.
  • Request correction or update of inaccurate data.
  • Request deletion, subject to legal/regulatory retention obligations.
  • Object to processing in specific cases.
  • File complaints with relevant data protection authorities.

9. International Data Transfers

Data may be transferred across jurisdictions (Oman, UAE, U.S., Hong Kong) under strict safeguards. All transfers comply with local and international requirements, ensuring equivalent protection in each jurisdiction.

10. Contact Information

For any inquiries or requests regarding this Privacy Policy, please contact our Data Protection Officer:

Email: compliance@goldenarkreserve.com
Phone:+968 9222 6118
Address: Golden Ark General Trading FZC, Sultanate of Oman.