BitLease Technologies Ltd. A subsidiary of 49G Holding Incorporated in Abu Dhabi Global Market (ADGM), Registered Address: Unit PC-1, Level 7, Al Maryah Tower, Abu Dhabi Global Market Square, Abu Dhabi, Al Maryah Island, United Arab Emirates
ADGM Registration No.: 34619
Document: Privacy Notice — How BitLease collects, uses, shares, and protects your personal data.
Classification: BitLease · OWN token & OWN Access Plan
Version: 1.0
Effective Date: 10 July 2026
This Privacy Notice explains how BitLease collects, uses, shares, and protects personal data in connection with the OWN token, the OWN Access Plan, and related services on the BitLease platform. It should be read together with the OWN Token Terms & Conditions and the platform's main privacy policy, of which it forms part.
The data controller responsible for personal data under this Notice is BitLease MENA Ltd, a company incorporated in the Abu Dhabi Global Market (ADGM), United Arab Emirates (Registration No) (under registration). (the “Controller,” “we,” or “us”). Where a service is provided by another BitLease entity or a service provider, the responsible controller or processor is identified in the applicable terms.
This Notice applies to personal data we process when you enroll in or use the OWN Access Plan, acquire, hold, or use OWN, undergo identity and compliance checks, contact support, or otherwise interact with OWN-related services. It does not cover third-party services or websites that have their own privacy notices.
Depending on how you use the services, we may collect:
Identity and verification data — name, date of birth, nationality, government identifiers, photographs or video for identity verification, and proof-of-address documents.
Contact data — email address, phone number, and postal address.
Financial and transaction data — plan agreements, installment records, plan balance, payment-method details, wallet addresses, and on-chain and off-chain transaction records.
Compliance data — sanctions, politically-exposed-person (PEP), and adverse-media screening results; source-of-funds or source-of-wealth information; and risk scoring.
Technical and usage data — device, browser, IP address, log, cookie, and usage data.
Communications — records of your contact with support and other correspondence.
Some data is collected from you directly; some is generated by your use of the services; and some is obtained from third parties such as identity-verification, screening, and blockchain-analytics providers and public sources.
We use personal data to:
The legal bases above are indicative; the applicable bases in your jurisdiction are to be confirmed by legal counsel.
We may share personal data with:
We do not sell personal data. Note that blockchain transactions are, by their nature, recorded on a public ledger and are outside our control.
Personal data may be transferred to, and processed in, jurisdictions other than your own, including where BitLease group entities and service providers are located. Where such transfers occur, we rely on appropriate safeguards — such as recognized adequacy findings or standard contractual clauses — as required by applicable law. Transfers from the Abu Dhabi Global Market (ADGM) rely on the adequacy determinations and appropriate safeguards recognized under the ADGM Data Protection Regulations 2021, including standard contractual clauses approved by the ADGM Office of Data Protection or equivalent mechanisms, where a destination jurisdiction is not otherwise recognized as adequate. Mechanisms for other jurisdictions in the BitLease group are to be confirmed by legal counsel.
We retain personal data for as long as necessary for the purposes in this Notice and to meet legal, regulatory, tax, and record-keeping obligations; in particular, identity and compliance records are typically retained for a period set by AML and financial-record-keeping law after the end of the relationship. Identity, verification, and compliance records are retained for five (5) years from the end of the business relationship, in line with the UAE Federal Anti-Money Laundering and Combating the Financing of Terrorism Law (Federal Decree-Law No. 20 of 2018, as amended) and the ADGM AML and Sanctions Rules and Guidance. Other categories of personal data are retained only for as long as necessary for the purposes described in this Notice. Exact periods for non-ADGM entities are to be confirmed by legal counsel. When no longer required, data is deleted or anonymized.
Subject to applicable law, you may have the right to access your personal data; to correct inaccurate data; to request erasure; to restrict or object to certain processing; to data portability; and to withdraw consent where processing is based on consent. Some rights are limited where we must retain data to meet legal obligations for example, compliance records we are required to keep.
To exercise any right, contact us using the details in Section 11. You also have the right to complain to your local data-protection authority.
Compliance and fraud-prevention processes may involve automated screening and risk scoring. Where an automated decision produces a legal or similarly significant effect, you may have the right to request human review, subject to applicable law and to the limits necessary to protect against financial crime.
We apply technical and organizational measures designed to protect personal data against loss, misuse, and unauthorized access, including access controls, encryption in transit, and audit logging. No system is completely secure, and we cannot guarantee absolute security.
For questions about this Notice or to exercise your rights, contact us at privacy@bitlease.com or BitLease MENA Ltd. You also have the right to complain to the competent data-protection authority in your jurisdiction.
We may update this Notice from time to time. Material changes take effect prospectively, with notice by an appropriate means. The version applicable to you is the current version published on the platform, with the effective date shown below.
Version 1.0 · Effective date: 10 July 2026.