Compliance

Compliance Framework

PortfolioX Network is committed to operating in compliance with all applicable laws, regulations, and industry standards across the jurisdictions we serve. Our compliance program is designed to protect our users while maintaining the highest standards of operational integrity.

Regulatory Status

Compliance Certifications

Data Protection Regulations

General Data Protection Regulation (GDPR)

PortfolioX Network complies fully with the GDPR for users and visitors in the European Union and European Economic Area. Our compliance includes:

• Transparent privacy notices and consent mechanisms
• Users' rights to access, correct, and delete their data
• Data portability rights
• Right to object and withdraw consent
• Data Processing Agreements with vendors
• Data Protection Impact Assessments
• Appointed Data Protection Officer
• Prompt breach notification (within 72 hours to authorities)

California Consumer Privacy Act (CCPA)

PortfolioX Network complies with CCPA and California's Consumer Privacy Rights Act (CPRA). California residents have rights including:

• Right to know what personal information is collected
• Right to delete personal information
• Right to correct inaccurate personal information
• Right to limit use and disclosure
• Right to opt-out of sale or sharing of personal information
• Right to non-discrimination for exercising privacy rights

We do not sell or share personal information. To exercise your rights, contact [email protected].

Personal Information Protection and Electronic Documents Act (PIPEDA)

For Canadian users, PortfolioX Network complies with PIPEDA's 10 privacy principles:

• Accountability for personal information
• Identifying purposes before collection
• Informed consent for collection and use
• Limiting collection to necessary purposes
• Limiting use, disclosure, and retention
• Accuracy and completeness of personal information
• Safeguarding personal information
• Transparency about practices and policies
• User access to personal information
• Challenging accuracy and completeness

Financial Regulations

Anti-Money Laundering (AML) Compliance

While PortfolioX Network does not directly handle funds, we implement AML best practices:

• User identity verification procedures
• Suspicious activity monitoring and reporting
• Know Your Customer (KYC) requirements
• Compliance with OFAC sanctions lists
• Transaction monitoring systems

Market Integrity and Conduct

• Prohibition of market manipulation and insider trading discussions
• Community Guidelines enforcement
• Monitoring for pump-and-dump schemes
• Coordination with regulatory authorities when necessary

Accessibility Compliance

Web Content Accessibility Guidelines (WCAG)

PortfolioX Network is committed to providing accessible content in compliance with WCAG 2.1 Level AA standards:

• Keyboard navigation support
• Screen reader compatibility
• Color contrast ratios meeting standards
• Alternative text for images
• Accessible forms and interactive elements
• Captions and transcripts for multimedia

For more information, see our Accessibility Statement.

Consumer Protection

User Rights and Protections

• Transparent terms and conditions
• Fair dispute resolution mechanisms
• Clear communication of service limitations
• No predatory practices or hidden fees
• Anti-fraud measures and security

Financial Fraud and Deception Prevention

• Monitoring for fraudulent account activity
• Verification of user-generated content accuracy claims
• Removal of misleading investment promotions
• Cooperation with law enforcement on fraud cases

Records and Documentation

PortfolioX Network maintains comprehensive records including:

• User account information and verification records
• Transaction and activity logs
• Policy and procedure documentation
• Compliance training records
• Incident and breach reports
• Audit trails for regulatory review

Third-Party Compliance

All third-party vendors and service providers are required to:

• Maintain equivalent security and compliance standards
• Execute Data Processing Agreements
• Undergo regular security assessments
• Comply with applicable regulations
• Maintain audit trails and documentation

Compliance Team and Governance

• Dedicated Compliance Officer
• Legal and Regulatory Affairs team
• Privacy Officer
• Data Protection Officer
• Board-level oversight of compliance matters
• Regular compliance training for all employees

Annual Compliance Review

PortfolioX Network conducts annual comprehensive compliance reviews including:

• Internal compliance audits
• Third-party compliance assessments
• Security and penetration testing
• Policy and procedure updates
• Regulatory landscape monitoring

Regulatory Reporting

We comply with all regulatory reporting requirements, including:

• Data breach notifications (when applicable)
• Suspicious activity reporting
• Tax reporting (Form 1099 for applicable users)
• Regular compliance certifications

Jurisdiction-Specific Compliance

United States

Compliance with federal and state regulations including:

• Securities Exchange Commission (SEC) rules where applicable
• Financial Industry Regulatory Authority (FINRA) guidance
• State consumer protection laws
• Federal Trade Commission (FTC) regulations
• Bank Secrecy Act and AML/KYC requirements

International Users

We maintain compliance with applicable regulations in other countries where our users are located, including equivalent data protection and consumer protection laws.

Monitoring and Enforcement

• Continuous compliance monitoring systems
• Regular policy enforcement audits
• User violation investigation and resolution
• Incident response procedures
• Corrective action implementation

Updates and Changes

As regulations evolve, PortfolioX Network will update our compliance practices accordingly. We will notify users of material changes affecting their rights or obligations.

Contact Compliance Team

For compliance inquiries, regulatory requests, or questions about our compliance program:

• Email: [email protected]
• Response time: Within 5 business days