Privacy Policy

1.1 RAYS CAPITAL PTE.LTD ("We", "our", and "us"), safeguarding your privacy is of paramount importance. This Privacy Policy outlines our practices for collecting, using, disclosing, transferring, and storing your personal information. We encourage you to carefully review this policy to understand how we handle your data. Should you have any inquiries, please do not hesitate to contact us.

1.2 This Privacy Policy details your rights regarding the collection, use, storage, sharing, and protection of your personal information.

1.3 We and its affiliates (as applicable) will be the controller of your personal data. We retain personal data for periods consistent with legal requirements and business necessities. Specific retention periods may vary depending on the nature of the data and the purpose of processing. For inquiries regarding this policy or our data protection practices, please contact our Help Center at support@rayscapital.co.

1.4 By voluntarily providing your personal data to sign up for, access, or use any products, services, content, features, technologies, or functions offered by us, you accept this Privacy Policy and consent to the collection, use, and disclosure of your personal data. We reserve the right to amend this Privacy Policy at any time and for any reason we deem appropriate. Any such amendment shall become effective upon notice to you by email, website posting, app notification, telephone (including SMS), or other means of communication.

You are advised to review this Privacy Policy, available on our website, periodically for any updates or changes that may affect you. Unless you object to the amendments by notifying us in writing of your intention to terminate your membership or agreement within five (5) days from the date of notice of the amendment, your continued use of RAYS CAPITAL CARD and related services shall be deemed as your acceptance of the amendments.

2.1 When you use RAYS CAPITAL CARD or our related services, we collect information sent to our operating systems by your computer, mobile phone, or other access device. The information sent to us may include:

• Data on the pages you access.
• Your computer's IP address.
• Device identifiers.
• The type of operating system you are using.
• Your location and mobile network information.
• Standard web log data and other related information.

2.2 In addition, we may collect the following types of information:

• Contact information: Your name, address, mobile number, email, and other similar information.
• Detailed personal information: Your date of birth, national ID number, or other identification details.

2.3 To enhance our services and ensure compliance with legal obligations, we may obtain information about you from reputable third-party sources.

2.4 You may choose to grant us access to personal information held by third-party social media platforms (e.g., Facebook and Twitter). The specific information we receive depends on the platform and your privacy settings.

2.5 To protect you and our services from fraud and misuse, we may collect information about your interactions with us, including evaluating your computer, mobile phone, or other access devices to identify any malicious software or suspicious activity.

2.6 We may also collect additional information from you through interactions with our customer support team, responses to surveys, or engagement with other websites and services we offer.

3.1 When you access RAYS CAPITAL CARD or related services, we (including companies we work with) may place small data files on your computer or other devices. These data files may include cookies, pixel tags, cache, "Flash cookies," or other local storage (collectively "Cookies"). We will use these technologies for:

• User Recognition – To identify you when you access our services.
• Service Customization – To tailor our services, content, and advertisements to your preferences.
• Performance Measurement – To evaluate the success of our marketing and promotional campaigns.
• Security Enhancement – To help prevent unauthorized access to your account.
• Fraud Prevention – To detect and prevent fraudulent activities.
• Trust and Safety – To maintain a secure and reliable platform for all users.

4.1 "Personal information" refers to any data that can be associated with an identified or identifiable individual person. We do not consider personal information to include anonymized data.

4.2 Your personal information is stored and processed on our servers in various regions. We implement the following security measures to protect your data:

• Network Security – Firewalls and intrusion detection systems to protect against unauthorized access.
• Data Encryption – Encryption of data both in transit and at rest.
• Physical Security – Controlled physical access to our data centers.
• Strict Access Controls – Limiting access to personal information to authorized personnel only.

5.1 We collect and process your personal information primarily to provide you with a secure, efficient, and personalized experience when using RAYS CAPITAL CARD. Your information may be used for the following purposes:

• Service Provision and Support – To deliver RAYS CAPITAL CARD services and provide customer support.
• Transaction Processing – To process your transactions and send you notifications regarding your activity.
• Dispute Resolution and Account Management – To resolve disputes, collect fees, and troubleshoot technical issues.
• Fraud Prevention and Security – To prevent illegal activities and enforce our Terms and Conditions.
• Service Improvement and Personalization – To enhance RAYS CAPITAL CARD services, including content and functionality.
• Marketing and Communications – To deliver promotional offers and service updates, where permitted by law.
• Communication – To contact you via telephone, voice call, SMS, or email.
• Verification and Accuracy – To verify data with third-party sources for compliance or service provision.

6.1 Data Sharing for Marketing: We will not sell or rent your personal information to third parties for their direct marketing purposes without your explicit consent. We may, however, aggregate and analyze your data, along with information from other sources, to enhance and personalize RAYS CAPITAL CARD and related services, content, and advertising.

6.2 Direct Marketing Communications: We may contact you via telephone or SMS to the mobile phone number you have provided, for marketing or promotional purposes, where you have provided consent.

6.3 Marketing Preferences: If you do not wish to receive marketing communications or participate in ad-customization programs, you may opt out of such communications at any time by contacting us at support@rayscapital.co.

7.1 To facilitate your payments and other transactions, we may share necessary personal information with the individuals or entities involved in those transactions. This may include your contact details, registration date, and transaction history. Additionally, when you utilize third-party services to access and use RAYS CAPITAL CARD and related services, information may be shared with those third parties. Unless you have agreed to it, these third parties shall not be allowed to use this information for any purpose other than to enable RAYS CAPITAL CARD and related services.

7.2 If you purchase goods or services and use RAYS CAPITAL CARD for payment, we may provide the merchant with your shipping and billing addresses to complete the transaction. Merchants are contractually restricted from using this information for direct marketing purposes unless you have provided explicit consent. In the event of a failed or invalidated payment, we may also provide the merchant with details of the unsuccessful transaction to assist in resolving the issue.

8.1 Categories of Third-Party Recipients: We may share your personal information with the following categories of third parties:

• Subsidiaries and Affiliates – To provide joint content, products, and services (such as registration, transactions, and customer support), to detect and prevent potentially illegal activities and policy violations, and to inform decisions about our products, services, and communications. Our subsidiaries and affiliates will only use your information for marketing purposes if you have expressly requested their services.
• Service Providers – To engage contracted service providers who assist with our business operations, including fraud prevention, billing, marketing, and technology services. These service providers are contractually obligated to use your information solely for the purposes of providing services to us and not for their own benefit.
• Financial Institutions – To partner with financial institutions to jointly create and offer products. These financial institutions may only use your information for marketing RAYS CAPITAL CARD-related products with your explicit consent.
• Credit Bureaus and Collection Agencies – To report account information to credit bureaus and collection agencies, as permitted by law.
• Merger or Acquisition Partners – In the event of a merger or acquisition, we will require the resulting entity to adhere to this Privacy Policy with respect to your personal information. You will be notified in advance if your personal information is to be used in a manner inconsistent with this policy.
• Legal and Regulatory Compliance – To comply with subpoenas, court orders, or other legal processes or requirements applicable to us or our affiliates; to comply with applicable laws and regulations; or when we believe, in our sole discretion, that disclosure is necessary to prevent physical harm or financial loss, to report suspected illegal activity, or to investigate violations of our Terms and Conditions.
• Consent-Based Sharing – To share your information with other third parties with your explicit consent or at your direction.

8.2 We will not sell or rent any of your personal information to third parties for their marketing purposes and will only share your personal information with third parties as described in this Privacy Policy.

9.1 Access and Modification: You have the right to access and modify your personal information at any time. You can do so by logging into your account and reviewing your account settings and profile, or by contacting our Help Center.

9.2 Account Closure and Data Retention: You can also close your account by contacting Customer Service. Upon closure, your account will be marked as "Closed" in our database. However, we may retain personal information from your account as required by applicable laws and regulations, or to collect outstanding fees, resolve disputes, troubleshoot technical issues, assist with investigations, prevent fraud, enforce our Terms and Conditions, or take other actions as permitted or required by law.

9.3 EU Data Subject Rights (If Applicable): If you are a data subject within the European Union, you have the following rights:

• Right of Access – To request access to your personal information and information about how we use and process it.
• Right to Rectification – To request the correction of inaccurate personal information. We may verify the accuracy of the information before making corrections.
• Right to Erasure (Right to be Forgotten) – To request the erasure, blocking, or restriction of your personal information in certain circumstances, or to object to specific uses of your personal information.
• Right to Data Portability – To request that we transfer your personal information to a third party in certain situations.
• Right to Information on Safeguards – To request a copy of, or reference to, the safeguards under which your personal information is transferred outside the EU.
• Right to Withdraw Consent – To withdraw your consent to our use of your information at any time when we rely on your consent as the legal basis for processing. This will not affect the lawfulness of processing based on consent before its withdrawal.
• Right to Object:
  • To object to the processing of your information when it is based on public interest or our legitimate interests.
  • To object to the processing of your information for direct marketing purposes. You may opt-out of such communications at any time by contacting us at support@rayscapital.co.

10.1 Your Role in Protecting Your Account: You are responsible for maintaining the confidentiality of your account credentials, including your password. Failure to do so may expose you to risks of fraud and unauthorized access. We will not be liable for losses resulting from:

• Input errors or misuse of RAYS CAPITAL CARD services.
• Negligent handling or sharing of your password.
• Leaving your device unattended during an active session.
• Failure to promptly report any known or suspected unauthorized access to your account.

10.2 We strongly recommend that you observe the following best privacy and security practices at all times:

• Inform us immediately if your account information or password becomes invalid or compromised.
• Ensure your password is not visible to others when logging in.
• Maintain the confidentiality of your password at all times.
• Do not share your account credentials with anyone.
• Avoid using easily guessable passwords based on personal information (e.g., phone number, birth date).
• Memorize your password and do not store it in written or digital form.
• Change your password regularly.
• Use complex passwords, avoiding repetitive characters or recently used passwords.
• Change your password immediately if you suspect it has been compromised.
• Use unique passwords for different online accounts.
• Disable browser options that store or retain login credentials.

10.3 Take the necessary precautions to protect your personal computer against viruses and other malicious programs. These programs can capture your password keystrokes and other personal information, then send them to another person without your consent.

Recommended security measures include:

• Installing an effective personal firewall, anti-virus, anti-spyware, and anti-Trojan-horse software and ensuring that these are updated regularly.
• Do not download any software from websites of doubtful origin.
• Do not open emails or attachments from unknown sources. If in doubt, delete such emails without opening them.

10.4 Inform us immediately of suspected invasion of your privacy or of unauthorized transactions.

10.5 If you suspect that your privacy has been compromised or that your account(s) has/have been accessed by unauthorized persons, please take the following actions immediately:

• Change your password immediately.
• Contact Customer Service to report the incident.
• Review your transaction records to check for any unauthorized transactions.
• Report any unauthorized or unusual transactions to us immediately.

Additionally, you should regularly check your transaction records and report any discrepancies without delay. At a minimum, we recommend reviewing your transaction records at least once at the beginning of each month to ensure accuracy and detect any irregularities.