VollyBit AML & KYC Policy

VollyBit maintains a comprehensive AML and KYC framework aligned with applicable laws, regulations, and international standards. The objectives of this policy are to deter, detect, and report potential money laundering and terrorist financing; protect user assets and data; and promote market integrity across our centralized exchange.

AML & KYC compliance is critical to:

• Protect users and the platform from fraud, identity theft, and abuse.
• Prevent misuse of digital assets for money laundering, terrorist financing, and sanctions evasion.
• Meet legal and regulatory obligations and uphold the safety of the financial ecosystem.

To establish identity, assess risk, and comply with regulations, VollyBit collects and verifies the following user information:

• Full name
• Date of birth
• Nationality
• Residential address
• Email address
• Mobile phone number

Required documentation includes:

• Proof of Identity (one of): Passport, National ID, or Driver’s License.
• Proof of Address (one of): Utility Bill, Bank Statement, or Government-issued document showing full name and address, typically issued within the last 3 months.
• Additional Verification: Selfie or liveness/video verification to match the submitted ID.

Risk-Based Approach (RBA): Users, products, geographies, or behaviors assessed as higher risk may undergo Enhanced Due Diligence (EDD), which can include:

• Additional identity documents or corroborating information.
• Source of funds and/or source of wealth declarations.
• Politically Exposed Person (PEP) and sanctions screening.
• More frequent reviews and ongoing monitoring of account activity.

VollyBit employs automated tools and trained compliance personnel to review documents for authenticity, validity, and consistency; detect tampering; and screen against sanctions, PEP, and adverse media lists.

Timelines: Most KYC reviews are completed within 24–72 hours after receiving clear and legible materials. Complex cases or requests for additional information may extend the timeframe. Users will be notified if further documentation is required or if an application is rejected.

Data Security: We apply strong security controls, including encryption in transit and at rest, strict access controls, environment segregation, and continuous monitoring. Personal data is retained only as necessary for legal, regulatory, and operational purposes and processed in accordance with applicable data protection requirements.

VollyBit monitors transactions and account behavior to identify patterns indicative of potential illicit activity. Monitoring blends automated rules, risk scoring, and machine learning alerts with expert manual reviews.

• Detection of structuring, rapid in-and-out movements, or mixing behavior.
• Heightened scrutiny for high-risk jurisdictions, assets, and sanctioned entities.
• Assessment of transaction purpose and economic rationale where appropriate.
• Periodic refresh and re-verification of KYC data based on risk.

Where activity is deemed suspicious, VollyBit may restrict transactions, request additional information, and report to competent authorities consistent with legal obligations.

The following uses of VollyBit are strictly prohibited:

• Money laundering, terrorist financing, or violations of international sanctions.
• Transactions involving sanctioned individuals, entities, or jurisdictions.
• Market manipulation (e.g., wash trading, spoofing, front‑running) or other abusive practices.
• Fraud, identity theft, or submission of falsified or altered documentation.
• Facilitation of illegal goods, services, or other high‑risk unlawful activities.

VollyBit may suspend or terminate accounts, freeze transactions, and file reports with authorities where necessary and legally required.

VollyBit’s program aligns with international best practices and applicable laws, including:

• Financial Action Task Force (FATF) Recommendations.
• Data protection requirements, including GDPR where applicable.
• Local AML/CFT, KYC, and licensing or registration obligations in operating jurisdictions.

We cooperate with duly authorized law enforcement and regulatory authorities when legally required, respecting due process and user privacy rights. Cross‑border data transfers, where necessary, are undertaken with appropriate safeguards.

Users must provide accurate, complete, and up‑to‑date information and documentation, and agree to:

• Promptly respond to compliance requests for additional information.
• Notify VollyBit of material changes to personal or business details.
• Use the platform in accordance with this policy and applicable law.

Failure to comply may result in delays, restrictions, or termination of platform access, consistent with legal obligations and our Terms of Service.

For questions about this AML & KYC Policy or to contact the compliance team, please email:

support@vollybit.com