Privacy Protection at FxPro for South African Traders
See what personal data FxPro collects in South Africa, how it is used and shared, your POPIA privacy rights, and how to manage cookies.
How FxPro Handles Privacy for South African Traders
FxPro processes personal data of South African clients to provide forex trading services and to meet regulatory duties. Data is collected when a client registers, trades, verifies identity, or contacts support. Typical data categories include identity details, contact information, financial and transactional records, technical data from devices, and support communications.
Processing generally relies on contractual necessity to run the trading account, legal obligations for checks such as anti-money laundering, and legitimate interests such as risk management and platform improvement. In situations where law requires consent, for example for marketing messages or non-essential cookies, data is used only after the client has opted in and consent can later be withdrawn.
Information is stored with technical and organisational safeguards and kept for as long as needed to operate the account and satisfy record-keeping duties. When retention periods end and there is no remaining legal ground, data is deleted or anonymised. Clients have rights to access, correct, and in some circumstances erase or restrict processing of their data. Complaints about handling of personal information in South Africa can be directed to the Information Regulator under the Protection of Personal Information Act.
What Personal Data Is Collected
FxPro collects different types of personal data depending on how the client uses the service:
- Identity data: full name, date of birth, nationality, and identification documents.
- Contact details: residential address, email, and phone number.
- Verification data: proof of address, copies of government-issued ID, and in some cases a photograph or video for biometric checks.
- Financial and trading data: deposit and withdrawal records, trade history, balances, and margin information.
- Technical data: IP address, device and browser type, login times, and navigation patterns on the platform.
- Support data: emails, chat transcripts, and, where law allows, call recordings.
Data may also be obtained from third parties such as credit reference agencies, payment processors involved in transactions, and public databases used for sanctions and politically exposed person screening.
Purposes and Legal Bases for Using Personal Data
Personal information is used for several defined purposes. The main one is service provision: opening and managing trading accounts, executing trades, handling deposits and withdrawals, and providing customer support. Without this data, FxPro would not be able to supply the contracted forex trading services.
Regulatory and legal compliance is another central purpose. Data is processed to conduct identity verification, ongoing due diligence, anti-money laundering checks, reporting to regulators, and maintaining records that may be requested by authorities.
Legitimate interests cover activities such as monitoring trading patterns to manage risk, detecting possible fraud, improving platform performance, and performing analytics on aggregated usage. Where processing relies on consent - for example certain marketing activities or non-essential cookies - clients can opt in or opt out, and consent can be withdrawn at any time without affecting past lawful processing.
Data is not sold to third parties and is not used for unrelated purposes outside the scope of trading services and legal obligations.
Data Sharing and Cross-Border Transfers
Personal data is shared with third parties only when this is necessary or legally required. Typical recipients include:
| Third party type | Purpose of access |
|---|---|
| Payment processors | Handling deposits, withdrawals, and transaction checks |
| Technology providers | Hosting infrastructure, maintaining servers, analytics tools |
| Regulatory and law bodies | Compliance reporting, investigations, legal orders |
| Professional advisers | Legal, auditing, or consultancy services |
If the business is merged, acquired, or sold, client data may be transferred to a new entity, with notice provided where applicable. Third parties are expected to process data according to the instructions given and to protect confidentiality.
Data is not transferred outside the original jurisdiction unless safeguards are in place, such as relevant contractual clauses, adequacy-type protections, or explicit client consent. Cross-border transfers are carried out only when the receiving party can provide a comparable level of data protection.
Data Retention and Security Practices
Personal information is kept for as long as the trading account remains active and for an additional period required for regulatory and legal purposes. Once those periods expire and no other lawful ground exists, data is removed or irreversibly anonymised.
Security measures include encryption of data in transit and at rest, access controls so only authorised staff can view information relevant to their role, and regular security assessments to detect vulnerabilities. Staff receive data protection training and are bound by confidentiality rules. There are incident response processes for investigating and handling suspected data breaches. If a breach creates a risk for clients, notice is provided in line with legal requirements.
Clients also influence the security of their data. Using strong, unique passwords, keeping login details private, enabling two-factor authentication where available, and being cautious about phishing attempts reduces the likelihood of unauthorised access.
Privacy Rights for South African Clients
Clients located in South Africa benefit from privacy rights under applicable data protection law, including the Protection of Personal Information Act. These rights generally cover:
- Access: requesting a copy of personal data held, in a commonly used format.
- Correction: asking for inaccurate or incomplete data to be rectified.
- Deletion: in certain circumstances, requesting removal of data, subject to legal retention duties.
- Restriction: limiting processing while accuracy or legal grounds are being assessed.
- Objection: contesting processing that relies on legitimate interests.
- Consent withdrawal: stopping processing that depends on consent, such as specific marketing uses.
Requests can be submitted through the contact channels provided in the account dashboard or on the FxPro website. Responses are given within periods set by applicable law, usually within about one month. If a request cannot be fully met due to legal or regulatory obligations, this is explained to the client.
If a South African client considers that personal data has not been handled lawfully, a complaint may be lodged with the Information Regulator, which supervises compliance with data protection rules.
Cookies and Tracking Technologies
FxPro uses cookies and similar tools on its platforms. These technologies support four main functions:
- Essential cookies: required for login, secure navigation, and core account features.
- Performance cookies: provide anonymous statistics about site usage and help identify technical issues.
- Functional cookies: remember choices such as language settings or chart layouts.
- Marketing cookies: with consent, track interaction with content and support delivery of relevant information about services.
Cookie preferences can usually be managed through browser settings or a cookie consent tool on the site. Blocking some categories, particularly essential cookies, may reduce or prevent normal platform operation. A separate cookies policy sets out the specific purposes of each category and how users can control them.
Changes to Privacy Practices and Contact
Privacy practices are reviewed periodically and may be adjusted to reflect changes in services, technology, or law. When modifications significantly affect how personal data is handled, clients are informed through email, in-platform notices, or a clear notice on the website. Continuing to use the platform after such updates may be treated as acceptance of the revised terms.
The latest privacy documentation is available via the website or the account area. For questions about data handling, privacy rights, or specific uses of personal information, clients can contact the data protection team through the channels listed on the FxPro site.