PRIVACY POLICY

The data controller is Seven Platform Solutions LLC, a Wyoming company, operator of 007i under the Seven Labs trade name.

Privacy contact: ops@007i.xyz

We may collect identification and contact data, account, membership, payment and billing data, KYC/KYB data, residence, beneficial ownership, sanctions, PEP, adverse media, declared financial profile ranges, investment experience, technical data, security logs, communications and acceptance records, to the extent necessary to operate the Club, the platform and related processes.

We process personal data to manage applications, onboarding, memberships, payments, support, KYC/AML, security, fraud prevention, operational communications, traceability, document acceptances, legal compliance and, where the member approves it in a specific transaction flow, to validate, document, administer and report their participation in an SPV, feeder or other private vehicle.

Where GDPR applies, we process data on the basis of contract performance or pre-contractual steps, legal obligations, legitimate interests of the Operator, Club security and integrity, and consent or specific authorization where required for a specific processing activity.

We do not sell members’ personal data and do not share it for behavioral advertising, third-party marketing or database commercialization.

We may share personal data only where necessary to operate the Club, provide support, perform KYC/KYB/AML checks, process payments, maintain platform security, manage documentation, comply with legal obligations, defend rights or work with professional providers subject to confidentiality obligations.

Authorized Club operational personnel on a need-to-know basis.

KYC/KYB/AML, identity, sanctions, PEP, adverse media, e-signature, hosting, security, email, support, payment, communications and technology providers.

Banks, payment providers, lawyers, administrators, accountants, tax advisors, auditors, registered agents, corporate service providers and other professionals where necessary for Club operations, legal obligations, structures, reporting or defense of rights.

Authorities, courts, regulators or competent bodies where required by law, valid request or protection of rights, safety and integrity.

Before personal data or KYC documentation is shared with an SPV, feeder, investment vehicle, vehicle administrator or providers specific to a concrete investment, the member must authorize such sharing within the relevant investment flow where it is necessary to validate, document, execute, administer or report their participation. If the member does not grant such authorization where necessary, participation in that structure may not be completed.

The platform and certain technology providers may be located in, or host data in, the United States or other countries outside the European Economic Area. Where European data protection law applies, we implement appropriate legal and contractual safeguards, which may include adequacy decisions, Standard Contractual Clauses, data processing agreements, technical and organizational security measures, access controls, traceability and other reasonable safeguards.

We take the security, confidentiality and integrity of member information seriously. The platform relies on professional technology providers with advanced security standards and compliance frameworks such as SOC 2 Type II, GDPR verification and HIPAA compliance, where applicable to the provider or service used.

We apply technical and organizational measures designed to protect personal data, including encryption in transit and at rest, access controls, permission segregation, reinforced authentication, access traceability, download logs, security monitoring and review of critical providers. Download or export of sensitive KYC documentation may require reinforced authentication, including 2FA, specific permissions and activity logging.

We retain data only as long as necessary for the purposes described, including membership administration, KYC/AML, compliance, support, defense against claims, accounting/tax obligations, reporting and vehicle processes. When no longer needed, data is deleted or anonymized in a reasonable and secure manner unless legal retention is required.

Depending on your jurisdiction, and in particular in the EEA, you may request access, rectification, erasure, restriction, objection, portability and withdrawal of consent where applicable. You can exercise these rights by emailing ops@007i.xyz.

We may update this Policy from time to time. The current version will be posted on the website with its last updated date.