Last updated: Apr 20, 2026
for OasisShield Ltd (Reg. No. 01010504, Office A, RAK DAO Business Centre, RAK BANK ROC Office, Ground Floor, Al Rifaa, Sheikh Mohammed Bin Zayed Road, Ras Al Khaimah, United Arab Emirates) Website and Telegram Mini App
This Privacy Policy ("Policy") describes the rules and procedures of OasisShield Ltd ("Company", "we", "us", "our") regarding the collection, use, processing, and disclosure of user information when Users access the website and/or services. It applies to all personal data ("Data") that the Company may collect from data subjects as the owner of the main website AML Verifier at https://aml-verifier.com/, the affiliate program website at https://affiliate.aml-verifier.com, the web application at https://app.aml-verifier.com, as well as through third-party service providers.
Please note that Users participating in the affiliate program (https://affiliate.aml-verifier.com) may be subject to separate data processing terms, available at https://aml-verifier.com/en/privacy-affiliate.
The Company ensures the protection of processed personal data from unauthorised access and disclosure, misuse or loss in accordance with the requirements of applicable law.
The Company reserves the right to amend the Privacy Policy with prior notice to Users at least 7 (seven) calendar days before the amendments take effect. The notice will be sent via the User’s personal account on the website. The User is obliged to familiarize themselves with the changes independently. If the User disagrees with the new terms, they have the right to terminate the use of services before the effective date of the changes.
For the purposes of this Policy, the following terms are used:
Account — a unique user account created to access the paid features of the Service.
AML Verifier — the commercial name of the Service provided, which includes verification of cryptocurrency transactions and wallets for AML risks.
Website — a combination of software, technical, and informational resources available on the Internet and operated by the Company, including the following web resources:
as well as other subdomains or web pages operated by the Company in the course of providing services. All of the above resources provide the User with access to the Service, including interface, content, functional modules, payment forms, and other information made available by the Company for the purpose of delivering services.
Usage data — data collected automatically, both when using the Service and from its infrastructure (e.g., page visit duration).
Wallet — a cryptocurrency wallet subject to analysis within the Service.
Company (hereinafter also referred to as ‘Company’, ‘we’, ‘us’, “our” or ‘AML Verifier’) — OasisShield Ltd (Reg. No. 01010504, Office A, RAK DAO Business Centre, RAK BANK ROC Office, Ground Floor, Al Rifaa, Sheikh Mohammed Bin Zayed Road, Ras Al Khaimah, United Arab Emirates), a legal entity providing the AML Verifier Service.
Personal Data — any information relating to an identified or identifiable natural person, such as your name, ID number, online identifiers, contact, financial, biometric, technical, behavioural or marketing data, as detailed in this Policy.
User — any natural or legal person using the AML Verifier Service under the terms of the Terms of Service.
Service Provider — a natural or legal person processing data on behalf of the Company. This may be a third-party organisation or individual hired by the Company to assist in providing the Service, providing services on behalf of the Company, providing related services, or assisting in analysing the use of the Service.
Service — a set of software and technological solutions provided by the Company through its website and Telegram Mini App under the AML Verifier brand.
Country — United Arab Emirates.
2.1. The purpose of this Policy is to ensure that the Company complies with the requirements of the Country's legislation on the confidentiality of personal data, as well as the requirements of the European Union's General Data Protection Regulation (GDPR) and other applicable laws when processing personal data. The Company is guided by the following principles:
3.1. When using the Service or the Website, the Company may request certain personal information from the User, which may be used to communicate with the User or to identify them.
3.2. The Company may collect, process, store and transfer various categories of personal data about the User, including, but not limited to:
| Category of personal data | Purposes of processing | Legal basis |
|---|---|---|
| Contact details (e.g. email, User’s Telegram ID) | Account registration Customer communication and support Marketing and promotional offers (if consent is given) Transaction notifications | Necessity for performance of a contract Consent Legitimate interest |
| Profile data (e.g., username, password, preferences) | Personalisation of user experience Provision of targeted services Account management Marketing activities (e.g., promotional offers) | Necessity to perform a contract Legitimate interest Consent |
| Usage data (e.g., pages visited, interaction data) | Analysis of user behaviour Improvement of service and user experience Ensuring security Analytics and performance tracking Management and protection of the Company and the Website | Consent Legitimate interest Legal obligation |
5.1. The Company collects personal data from data subjects in the following ways:
5.1.1. Users may provide the Company with their contact data by filling out electronic forms or communicating with us by email or other means. This includes personal data that the User provides when they:
5.1.2. The Company may receive Personal Data from third parties and from public sources, including:
5.1.3. The Company may automatically collect data about the User's behaviour when interacting with the Service using cookies, server logs and similar technologies. The term ‘cookies’ in this Policy refers not only to HTTP cookies, but also to any other technologies for storing and reading information on the User's device, including localStorage, sessionStorage, IndexedDB, tracking pixels, and other similar tools. The Company may also receive usage data from other websites that use its cookies. The Company may also receive usage data from other websites that use its cookies.
5.1.4. The data is used to identify the User, analyse actions, analyse and optimise the services provided, track User activity and collect certain information. Depending on the User's preferences, the Company may place cookies on their device when they visit the Service. Among the technologies used are web beacons, tags, and scripts. The technologies used by the Company may include:
The Company uses both session and persistent (necessary, functional, and other) cookies for the following purposes: a) to provide access to the Service and its features, authentication, and fraud protection; b) determining the User's consent to the use of cookies; c) saving user settings (e.g., language or login details).
The User can manage cookies in their browser settings, where they can disable them or receive notifications about attempts to install cookies. Disabling certain cookies may limit the functionality of the Service.
6.1. The Company may process Personal Data for the following purposes:
6.1.1. To provide and support services: analysis of user behaviour, including tracking the use of the Service in order to improve the offer, enhance the functionality of the Website and the user experience.
6.1.2. To manage the User's account: user registration in the Service. The Personal Data provided by the User may give access to various features of the Service available to registered Users.
6.1.3. To perform a contract: development, execution and performance of a contract for the sale of goods, services or other agreements concluded with the Company through the Service.
6.1.4. To communicate with the User: by email or other means of electronic communication (e.g., push notifications via the app) to provide information about updates, products, services, including security notifications, if necessary or appropriate.
6.1.5. To provide news, promotional offers and general information about goods, services and events, unless the User has opted out of receiving such information.
6.1.6. To process user requests: processing and managing enquiries, requests and feedback.
6.1.7. To ensure security and prevent fraud: protection against unauthorised activities, security breaches and fraud.
6.1.8. For business operations: processing data in the event of a merger, sale of assets, restructuring, reorganisation, liquidation or other transfer of assets, in which the User's Personal Data may be transferred.
6.1.9. For other purposes: data analysis, identifying trends, evaluating the effectiveness of marketing campaigns, improving the Service, products and interaction with the User.
7.1. The Company processes Personal Data on one or more of the following legal grounds:
8.1. User rights:
8.1.1. To obtain information about the Personal Data stored by the Company, as well as information about the grounds for its processing;
8.1.2. To request the correction of inaccurate, outdated or incomplete Personal Data;
8.1.3. To request the deletion of their Personal Data if it is no longer required for processing purposes or has been collected unlawfully;
8.1.4. To request the suspension of processing when disputing the accuracy of the data, unlawful processing or pending a response to an objection;
8.1.5. Withdraw consent to processing at any time, without prejudice to the lawfulness of processing based on consent prior to its withdrawal;
8.1.6. Lodge a complaint with the supervisory authority for personal data protection in the Country or in another jurisdiction in the event of a violation of their rights.
To exercise the above rights, the User may contact the Company at the following email address: [email protected]
8.2. User obligations:
8.2.1. Provide accurate and up-to-date personal data when using the Service;
8.2.2. Notify the Company in a timely manner of any changes to personal data if this affects the purposes of processing;
8.2.3. Comply with the provisions of this Policy and the Terms of Service;
8.2.4. Not abuse their rights by creating an unreasonable or excessive load on the Company's infrastructure (for example, submitting repeated requests without justification);
8.2.5. Take reasonable measures to ensure the security of their own accounts and devices through which they access the Service.
8.3. Obligations of the Company:
8.3.1. Process Personal Data lawfully, fairly and transparently, in accordance with the provisions of this Policy and applicable law
8.3.2. Inform the User about changes in the terms of data processing and in the event of incidents affecting their rights;
8.3.3. Take technical and organisational security measures sufficient to protect data from loss, unauthorised access, alteration or destruction;
8.3.4. Restrict access to Personal Data exclusively to those employees and contractors who need such access to perform their job duties;
8.3.5. Respond in a timely manner to requests from data subjects, including confirmation, correction, deletion and export of personal data;
8.3.6. Keep records of incidents related to leaks or processing violations and, if necessary, notify the authorised authorities and the User;
8.3.7. Not transfer Personal Data to third parties, except as expressly provided for in this Policy or by law;
8.3.8. Cooperate with supervisory authorities, including providing evidence of compliance with the provisions of this Policy and legislation.
8.4. Rights of the Company:
8.4.1. Process the User's personal data to the extent necessary to provide the Service, perform the contract and comply with legal requirements;
8.4.2. Transfer personal data across borders if necessary to perform the contract with the User or in the context of using third-party service providers, provided that an adequate level of protection is ensured;
8.4.3. Refuse or suspend the provision of services if the User refuses to provide data required for processing or withdraws consent, without which the provision of services is impossible;
8.4.4. Request additional information from the User if this is necessary to fulfil obligations or at the request of regulators;
8.4.5. Store personal data for the periods specified in this Policy, even after the termination of services, if this is necessary to comply with legitimate interests or legal obligations;
8.4.6. Appeal against unreasonable or excessive requests from the User related to the exercise of rights, if such requests go beyond what is reasonable or violate the rights and freedoms of others.
8.5. If the User is located in the European Union, in accordance with the General Data Protection Regulation (GDPR), they are granted the following rights with regard to the processing of personal data:
8.5.1. Right of Access: The User has the right to obtain confirmation from the Company as to whether their personal data is being processed, as well as to request access to such data and information about its processing.
8.5.2. Right to Rectification: The User has the right to request the correction of inaccurate or incomplete personal data.
8.5.3. Right to Erasure: The User has the right to request the deletion of their personal data in cases provided for by law, for example, if the data is no longer required for the purposes for which it was collected, or the User has withdrawn their consent to its processing.
8.5.4. Right to Restriction of Processing: The User may request a temporary restriction on the processing of personal data if, for example, they dispute its accuracy or object to its processing.
8.5.5. Right to Data Portability: The User has the right to receive personal data provided to the Company in a structured, commonly used and machine-readable format, as well as to transfer this data to another operator if the processing is based on consent or a contract.
8.5.6. Right to Object: The User may object at any time to the processing of personal data carried out on the basis of the Company's legitimate interests, including profiling, if applicable.
8.5.7. Right to Lodge a Complaint: The User has the right to lodge a complaint with the relevant data protection authority in their jurisdiction if they believe that the processing of their personal data violates the provisions of the GDPR.
9.1. The Company stores Personal Data for the period necessary to achieve the purposes set out in this Policy, as well as for the period necessary to comply with the legal requirements of the Country or to comply with other legal obligations of the Company.
9.2. To determine the appropriate retention period for Personal Data, the Company considers the amount, nature and sensitivity of the data, the potential risk of harm from unauthorised use or disclosure, the purposes for which the data is processed and whether those purposes can be achieved through other means, as well as applicable legal, regulatory, tax, accounting or other requirements.
9.3. The Company is obliged to store Users' Personal Data (including contact and transaction data) for five (5) years after the termination of the relationship with the customer.
9.4. The Company may also store usage data for analytical purposes. This data is typically retained for a shorter period of time, as determined by the purposes of use, except where such data is used to enhance security, improve the functionality of the Service, or as required by law.
10.1. The Company may transfer Personal Data:
10.1.1. To Affiliates: Affiliates include the parent company and any subsidiaries, joint ventures, or other companies controlled by or under common control with the Company.
10.1.2. Service providers: in order to provide services, certain data may be processed by the Company's partners, who act as separate operators or processors and process data in accordance with their privacy policies.
10.1.3. Analytical services: the Company uses Google Analytics and similar tools to collect data on User behaviour in order to improve the Service.
10.1.4. Service providers: third parties providing services on behalf of the Company (technical support, IT, security, legal services, data storage).
10.1.5. Authorities: in cases provided for by law, at the request of official authorities.
10.1.6. Other third parties: only with the prior, express consent of the User.
10.2. In any case, the Company may disclose Personal Data if it believes in good faith that it is necessary to:
10.3. The Company guarantees that all third parties undertake to comply with confidentiality and data protection legislation requirements.
11.1. Personal data may be processed at the Company's offices and in any other locations where the parties involved in the processing are located, including in another jurisdiction.
11.2. If Personal Data is transferred outside the Country or another jurisdiction where data protection laws may differ from those of the Country, the Company undertakes to ensure appropriate measures, such as standard contractual clauses or other measures provided for by data protection legislation, to guarantee adequate data protection.
12.1. The Company guarantees that it will take all appropriate security measures to prevent accidental loss, misuse, unauthorised access, alteration or disclosure of Users' Personal Data.
12.2. The Company provides access to Personal Data only to those employees, agents, contractors and other third parties who have a business need to access it. These persons process Personal Data in accordance with the terms of this Policy and the requirements of the Country's legislation.
13.1. The User has the right to refuse to provide Personal Data or consent to its processing.
In the event of such a refusal, the Company, if it is required to collect data by law or in accordance with the Terms of Service, has the right to refuse to provide services to the User due to the impossibility of providing them.
14.1. The Service may contain links to other websites that are not owned or controlled by the Company.
14.1. If the User follows a link to a third-party resource, the User will be redirected to a third-party website. The Company is not responsible for the content, terms and conditions, and privacy policies of any third-party websites or services.
15.1. For questions regarding this Policy or requests regarding Personal Data, you can contact the Company at the following email address: [email protected]