Menu
Last Updated: April 2026
BitTrust Inc. (“BitTrust”, “we”, “us”, or “our”) is a corporation incorporated and operating in Canada, with its registered address at 4141 Dixie Rd, Mississauga, Ontario, Canada, L4W 1V5.
BitTrust Inc. is a registered Money Services Business (“MSB”) with the Financial Transactions and Reports Analysis Centre of Canada (FINTRAC) under registration number M21441278.
BitTrust is committed to protecting the privacy, confidentiality, and security of personal information entrusted to us in the course of our business activities. This Privacy Policy describes how we collect, use, disclose, store, and safeguard personal information in connection with our services.
BitTrust Inc. is a Canadian-registered Money Services Business (“MSB”) engaged in virtual currency dealing and foreign exchange activities. As a reporting entity, BitTrust is subject to regulatory obligations under Canadian law, including requirements administered by the Financial Transactions and Reports Analysis Centre of Canada (FINTRAC). These obligations require the collection, verification, retention, and reporting of certain customer information.
BitTrust provides services exclusively in person at its retail locations in Ontario, including Toronto, Mississauga, Thornhill, and Hamilton. While our website supports customer interaction and provides information about our services, BitTrust does not operate an online trading platform and does not provide custodial wallet services.
By engaging with BitTrust or using our website, you acknowledge and consent to the collection, use, and disclosure of your personal information as described in this Privacy Policy, except where otherwise permitted or required by law.
This Privacy Policy applies to all personal information collected by BitTrust in connection with:
This Policy applies to both individual and business customers, including individuals acting on behalf of entities. It governs personal information collected directly from customers, as well as information obtained from third parties in accordance with applicable laws.
BitTrust collects personal information necessary to provide services, comply with legal and regulatory obligations, and manage risk. The type and scope of information collected depends on the nature of the transaction, customer profile, and applicable regulatory requirements.
We collect identifying information required to establish and verify customer identity. This includes full legal name, residential address, date of birth, telephone number, occupation, and information relating to the purpose and intended nature of the transaction or business relationship.
To comply with identity verification requirements, BitTrust collects and records information from government-issued identification documents. This may include document type, unique identification number, issuing jurisdiction, and expiration date. In certain cases, identity verification may involve photographic or biometric verification conducted through third-party providers.
Where services are provided to entities, BitTrust collects information necessary to verify the existence and ownership of the entity. This includes legal and operating names, business address, nature of business, and incorporation or registration details.
We also collect personal information relating to individuals associated with the entity, including directors, beneficial owners, officers, and authorized representatives. This may include names, addresses, dates of birth, occupations, and identification details.
BitTrust collects information relating to all transactions conducted through its services. This includes cryptocurrency wallet addresses, blockchain transaction identifiers (such as hashes), transaction amounts, timestamps, exchange rates, and related operational data. We may also collect information regarding the source of funds and the purpose of transactions.
As part of our anti-money laundering and counter-terrorist financing obligations, BitTrust collects and generates information related to compliance and risk management. This may include politically exposed person (PEP) determinations, sanctions screening results, adverse media findings, third-party involvement assessments, and internal risk ratings and monitoring data.
We may also collect information from publicly available sources and third-party providers to support these assessments.
When you interact with our website, certain technical information may be collected automatically. This includes IP address, browser type, device information, and usage patterns. We use cookies and similar technologies to collect and analyze this information and to support website functionality and marketing activities.
BitTrust collects personal information directly from customers during in-person interactions, including at the time of transaction and onboarding. Information may also be collected through our website, through communications such as email, and through forms or documents provided by customers.
In addition, we collect information from third-party service providers, including identity verification providers, blockchain analytics tools, and compliance screening services. Information may also be obtained from publicly available sources where permitted by law.
BitTrust collects and uses personal information for purposes that are necessary, reasonable, and consistent with applicable legal requirements. Personal information is collected and used with the individual’s knowledge and consent, except where otherwise permitted or required by law.
The primary purposes for which personal information is used include compliance with Canadian regulatory obligations, including customer identification, transaction monitoring, recordkeeping, and reporting to FINTRAC.
Personal information is also used to facilitate and process transactions, including verifying customer identity, confirming transaction details, and executing virtual currency and foreign exchange transactions.
In addition, BitTrust uses personal information to detect, prevent, and investigate fraud, money laundering, terrorist financing, sanctions evasion, and other illicit activities. This includes conducting risk assessments, screening against sanctions and PEP lists, and analyzing blockchain transactions and wallet activity.
Personal information may also be used to communicate with customers, including sending transactional communications such as confirmations, receipts, and updates. Where permitted, we may use personal information to send service-related or promotional communications.
BitTrust may disclose personal information to third parties where such disclosure is necessary for the purposes described in this Policy or required by law.
We disclose information to identity verification providers for the purpose of verifying customer identity. We also disclose information to third-party analytics, blockchain analysis, and compliance screening service providers for the purpose of conducting transaction monitoring and assessing risk.
As a regulated entity, BitTrust may disclose personal information to the Financial Transactions and Reports Analysis Centre of Canada (FINTRAC), as well as to law enforcement or other governmental authorities where required under applicable legislation.
We also use third-party service providers to support our operations, including cloud infrastructure providers, communication service providers, and customer relationship management platforms. These providers may process personal information on our behalf in accordance with contractual obligations and applicable privacy laws.
BitTrust uses secure and industry-standard technologies to store and protect personal information. Data is stored within secure cloud-based infrastructure using protected databases and storage systems.
We implement appropriate administrative, technical, and physical safeguards designed to protect personal information against unauthorized access, loss, misuse, or alteration. These safeguards include access controls, encryption, network security measures, and monitoring systems.
While we take reasonable steps to protect personal information, no method of transmission or storage is completely secure, and we cannot guarantee absolute security.
BitTrust retains personal information for as long as necessary to fulfill the purposes for which it was collected and to comply with legal and regulatory obligations.
As a reporting entity, BitTrust is required to retain certain records, including customer identification and transaction information, for a minimum period of five (5) years in accordance with applicable legislation and regulatory guidance.
In some cases, information may be retained for longer periods where required by law, where necessary for ongoing investigations, or where permitted for legitimate business purposes.
Personal information collected by BitTrust may be stored or processed in jurisdictions outside of Canada by service providers acting on our behalf.
Where personal information is transferred outside of Canada, it may be subject to the laws of the jurisdiction in which it is processed. BitTrust takes reasonable measures to ensure that appropriate safeguards are in place to protect personal information in such circumstances.
Individuals may request access to their personal information held by BitTrust and will be provided with such access in accordance with applicable law.
Individuals may request correction of inaccurate or incomplete personal information held by BitTrust.
Where permitted by law, individuals may withdraw consent to the collection, use, or disclosure of their personal information, subject to legal or contractual restrictions, including obligations related to regulatory compliance.
Due to legal and regulatory obligations, BitTrust does not delete personal information where retention is required by law.
BitTrust uses cookies and similar technologies to enhance user experience, analyze website traffic, and support website functionality and marketing activities. These technologies allow us to better understand how users interact with our website and to improve our services.
Users may manage cookie preferences through their browser settings. Disabling cookies may affect the functionality of certain parts of the website.
In the event of a security breach involving personal information that poses a real risk of significant harm, BitTrust will take appropriate steps in accordance with applicable laws. This may include notifying affected individuals and reporting the incident to relevant regulatory authorities.
BitTrust may update this Privacy Policy from time to time to reflect changes in legal requirements, business practices, or technology. Updated versions of the Policy will be posted on our website with a revised “Last Updated” date.
Continued use of our services following any changes constitutes acceptance of the updated Policy.
If you have any questions, concerns, or requests regarding this Privacy Policy or the handling of your personal information, you may contact:
Privacy Officer
BitTrust Inc.
Email: [email protected]
COMPANY INFO