We apply advanced security and privacy measures to protect all client information in accordance with our Privacy Policy and relevant regulatory requirements (including FSC and GDPR-equivalent standards). Our data protection framework includes: • Encryption: All client data is encrypted both in transit (via SSL/TLS) and at rest. • Access control: Only authorized personnel with a legitimate business purpose can access client information. • Authentication: Two-factor authentication (2FA) and other verification layers protect access to your Personal Area. • Infrastructure security: All systems are hosted in secure, monitored data centers with redundant backups. • Monitoring and audits: Regular security assessments, penetration testing, and compliance reviews ensure continuous protection. We never share or sell your personal data to third parties, except when required by law or with your explicit consent.
In the unlikely event of a data breach or unauthorized access to client information, the company acts immediately in accordance with its Privacy Policy and internal Incident Response Procedure: 1. Immediate investigation: The affected systems are isolated, and a full forensic review is launched to identify the source and scope of the breach. 2. Mitigation: All necessary steps are taken to minimize potential damage and prevent further unauthorized access. 3. Notification: Clients and relevant regulatory authorities are informed within 72 hours, or as required by applicable law. 4. Client protection: Impacted clients receive guidance on protective actions (for example, updating passwords or reviewing recent account activity). 5. Security enhancement: Following the incident, system safeguards and security protocols are reviewed and strengthened. Your privacy and data security remain our highest priority at all times.
If you believe your personal data has been misused or improperly handled, please contact us immediately through one of the following channels: • Submit a report via the Support “Privacy and Data Protection” section in your Personal Area (Data Subject Request form). • Or email us directly at support@glexglobal.com with the subject line “Privacy Violation Report.” Our compliance team will review your request and respond within 30 calendar days (which may be extended up to 60 days if additional verification is required). We may ask you to provide identification details to confirm your ownership of the account before disclosing or modifying any data. If you are not satisfied with our response, you may also contact the Financial Services Commission (FSC) of Mauritius or your local data protection authority. For full details, please refer to our Privacy Policy.
Go to your Personal Area → Security Settings, choose your preferred method (SMS, email, or authenticator app), and confirm activation. You can disable 2FA at any time, but this is strongly discouraged for security reasons.
We do not share your personal data with third parties, except for authorized service providers (KYC, payment processing, auditing) or when required by law. All data handling is governed by our Privacy Policy.