BLOCKRIVER AG RECEIVES SRO MEMBERSHIP: VIEW INFO
Navigation
contact us
arrow up right
Solutions
caret downcaret down
OTC Trading
White Label
API Connectivity
Company
caret downcaret down
About
Reports
White-Papers
Blog
Contact
Information
caret downcaret down
Regulatory Information
Privacy Policy
Terms of Service
Launch Desk
arrow up right
Data
view ALL reports
arrow up right
Review this week's industry settlement conditions.
20 FEB 2026
SC-W07-2026

Weekly Settlement
Conditions Report

Reporting Week Summary
Settlement Friction: 
STABLE
Cost & Spreads:
MODERATELY ELEVATED
Rail Reliability:
STABLE
Risk & Compliancel:
STABLE
arrow right
READ REPORT
bLOG
View all articles
arrow up right
Read ongoing analysis and commentary.
OCC Stablecoin Framework Gives Banks a Compliance Roadmap: Innovation Teams Can Stop Waiting
USDC Hits $75 Billion: Logistics CFOs Face a Settlement Infrastructure Question
BNP Paribas Tokenises a Regulated Fund on Public Ethereum: What This Signals for VASPs Still Building Private Rails
Whtie Papers
view all PAPERS
arrow up right
Explore in-depth research and position papers.

The Death of Omnibus Risk in OTC Markets

Omnibus risk structures were effective in an environment of limited scale and homogeneous counterparties. As institutional OTC markets have expanded, those same structures have become sources of hidden concentration and balance-sheet fragility.

Segregation represents a structural response to this shift. By localising exposure and enforcing attribution, it transforms systemic risk into manageable, unit-level risk. The decline of omnibus risk is therefore not a regulatory artefact, but a consequence of how institutional markets now operate.

The implication is clear: resilience in modern OTC markets depends less on monitoring pooled exposure and more on designing systems where exposure cannot silently aggregate in the first place.

arrow right
READ PAPER
Legal
Privacy Policy
caret next previous
Disclaimer & Important Information
caret next previous
Regulatory Information
caret next previous
Risk Warning
caret next previous
Cookie Policy
caret next previous
Terms of Service & Use
caret next previous
POLICY UPDATED:
January 21, 2026

Privacy Policy

PRIVACY POLICY

Version of January 2025

Introduction

This Privacy Policy describes how BlockRiver AG with its registered office at Asetstrasse 37, 6438 Ibach, Schwyz, Switzerland, company registration number CHE-320.754.925, with share capital of CHF 100,000 ("BlockRiver", "we", "our" etc.) collects and uses your personal data and cookies in connection with your use of the Website and the Services. This Privacy Policy is also applicable to collection and use of personal data by an individual acting on behalf of a corporate entity, e.g. as its employee or on behalf of individuals, e.g. as proxies.

This Privacy Policy is also applicable to processing of personal data of persons interacting with BlockRiver's social media profiles.

This Privacy Policy consists of two parts:

  • Privacy Notice – which describes how we collect and use your personal data;
  • Cookie Notice – which describes how cookies and similar technologies are used.

We provide the Website and the Services subject to the Terms. Please read the Terms before accessing or using the Services or the Website.

Definitions

All terms not defined in this Privacy Policy shall have the meaning as defined in the Terms or in the applicable data protection law. The following terms used in this Privacy Policy shall have the meaning set forth below:

  • AML Act – Swiss Federal Act on Combating Money Laundering and Terrorist Financing (AMLA) and associated ordinances.
  • AML Policy – BlockRiver's internal Anti-Money Laundering and Counter-Terrorist Financing policy and procedures.
  • Applicable Data Protection Law – any applicable laws, statutes, regulations, orders, regulatory requirements, bylaws, and other similar legal instruments in force from time to time relating to data protection, data security, privacy and/or the collection, use, disclosure and/or processing of personal data, including but not limited to the Swiss FADP, the GDPR (where applicable), and any other relevant Swiss or foreign data protection laws.
  • controller, processor, processing – and other terms relating to personal data not defined here have the meaning as defined in the Swiss FADP and, where applicable, Article 4 of the GDPR.
  • EEA – European Economic Area.
  • FADP – Swiss Federal Act on Data Protection (Bundesgesetz über den Datenschutz).
  • GDPR – General Data Protection Regulation 2016/679 of 27 April 2016 (applicable to processing of personal data of individuals in the EEA).
  • Gateway Program – BlockRiver's program providing white label solutions, API connectivity, and liquidity provider participation as described in the Terms.
  • ICT Systems – information and communication technology systems used by BlockRiver to provide the Services.
  • Onboarding Process – the customer identification, verification, and due diligence process conducted in accordance with the AML Policy.
  • personal data – information about identified or identifiable natural person as defined in Article 4(1) of the Swiss FADP and, where applicable, Article 4(1) of the GDPR.
  • BlockRiver ("we", "our" etc.) – BlockRiver AG with its registered office at Asetstrasse 37, 6438 Ibach, Schwyz, Switzerland, company registration number CHE-320.754.925, with share capital of CHF 100,000.
  • Privacy Policy – this Privacy Policy.
  • Services – the Services as defined in the Terms, including OTC settlement services, the Gateway Program, API connectivity, and related services.
  • Terms – Terms and Conditions available at https://blockriver.com/terms.
  • User ("you", "your" etc.) – individual using the Website and/or the Services (on his/her own behalf or on behalf of a corporate entity).
  • VQF – VQF-SRO, the Self-Regulatory Organisation to which BlockRiver is affiliated for AML/CFT supervision.
  • Website – the website available at https://blockriver.com and any related subdomains.

Changes

The current version of the Privacy Policy has been adopted and is effective as of January 2025.

We may change the Privacy Policy from time to time. For example, we may do this when it is necessary due to changes in the Terms, changes in legal requirements or changes in the way we use your personal information. We may also amend the Privacy Policy to make it clearer, more accessible, and/or easier for you to understand.

You should check the Privacy Policy before using the Website and/or the Services. If we change the Privacy Policy, we will give you access to previous versions of the Privacy Policy and notify you of material changes where required by law.

1. PRIVACY NOTICE

1.1. Controller and Contact Details

We, BlockRiver AG, are the controller of your personal data to the extent this Privacy Policy applies. You can contact us by email at: privacy@blockriver.com or legal@blockriver.com, or in writing to our registered address: Asetstrasse 37, 6438 Ibach, Schwyz, Switzerland.

1.2. Children

The Website and Services are restricted to persons who are at least 18 years of age. We do not knowingly collect personal data from people who are less than 18 years of age in connection with the Website or the Services. If you – the User – are below 18 years old, you may not use the Website or the Services or interact with them.

1.3. Sources of Personal Data

We collect your personal data from the following sources:

1.3.1. You

We collect your personal data from you in connection with your use of the Website or the Services. For example, we collect data when you provide us with your email address, complete application forms, or communicate with us.

1.3.2. Automatic Data Collection

We collect your personal data from your devices or software in connection with your use of the Website or the Services. For example, we may collect information about your device, its operating system or other software, hardware details, web browser settings, about your interaction with our Website and Services (e.g. logs) and so on.

1.3.3. Third Parties

We collect your personal data from third parties in connection with your use of the Website or the Services. For example, when you interact with our profile on social media platforms such as LinkedIn. We also collect information from our service providers in connection with tools such as Google Analytics and our KYC service provider Sumsub. Please consult our Cookie Notice for more information.

1.3.4. Public Sources

We collect your personal data from public sources in connection with the AML Policy. For example, we may collect information from public registers, sanction lists or lists of persons entrusted with prominent public functions (so-called "politically exposed persons" or PEPs).

1.3.5. Corporate Entities/Individuals Which You Represent

If you use the Website or Services on behalf of other entities/individuals as an authorized user, such other entities may provide us with your personal data in connection with using the Website or Services by such entities.

1.4. Categories of Personal Data

We use your personal data only when it is lawful under the Applicable Data Protection Law and only to the extent it is necessary to achieve our purposes (please consult Section 1.5). We collect and use the following types of your personal data in connection with your use of the Website and the Services.

1.4.1. Basic Data

The basic data of authorized users includes data collected and used in connection with the fact that you act as an authorized user, as well as other basic data, including your contact details. For example, this may include your name, surname, contact number or email address. This may also include workplace-related data such as legal name of your employer, country of incorporation and/or operation of the company, position or title, as well as purpose for which you interact with us and other voluntarily provided data.

1.4.2. AML/CFT Data

The AML/CFT data includes personal data processed by us in connection with the Onboarding Process and ongoing customer due diligence requirements under the AML Act and VQF regulations. For example, this may include information whether you have passed the Onboarding Process, information whether you are on sanction lists, our risk assessments and decisions as regards you in the context of the Onboarding Process and ongoing monitoring, and so on. This also includes personal data obtained by our KYC service provider Sumsub or by us from relevant publicly accessible sources, such as public registers, sanction lists or lists of politically exposed persons.

Depending on a particular processing operation we may also use the following categories of data:

  • General data – such as full name, sex, personal identification code or number, date of birth, legal capacity, citizenship, nationality;
  • ID document data – such as document type, issuing country, number, expiry date, security features;
  • Contact data – such as email address, physical address (e.g. street, city, country, postcode), telephone number;
  • Facial image data – such as photos or videos of your face for identity verification purposes;
  • Financial data – such as source of funds, source of wealth, beneficial ownership information, transaction patterns;
  • Risk assessment data – such as PEP status, sanction screening results, adverse media screening results, risk ratings.

Please consult the AML Policy for more detailed description of personal data we use for AML/CFT purposes.

1.4.3. Customer Support Data

The customer support data includes data collected and used in connection with customer support provided by us to you or at your request, e.g. when you act on behalf of third parties. For example, this may include your communication with us via email or telephone as regards your rights, including records of telephone conversations (where you have consented to recording), your participation in our surveys or questionnaires or your other requests, questions, and queries, including those submitted on behalf of other entities.

1.4.4. Social Media Data

The social media data includes data collected and used in connection with your interactions or visits with our profiles or accounts on such platforms, including LinkedIn. For example, this includes your profile information when you send us a direct message on LinkedIn and the contents of such message.

Please note that such platforms are independent data controllers. Your use of such platforms is subject to the privacy policies and terms and conditions of their providers. We encourage you to consult such documents before using such services. We are not responsible for the privacy policies and practices of such third parties.

1.4.5. Technical Data

The technical data includes data collected and used in connection with the ICT Systems. For example, this includes your IP address or other online identifiers, information about your operating system or other software used by your device, hardware details, browser type and version, time zone setting, browser plug-in types and versions, statistics derived from this data and so on. Most of this information is anonymous data. However, in some cases it may be used to identify you, for example in combination with other data. In such cases we treat it as personal data.

1.4.6. Transaction Data

Transaction data includes information about transactions you execute or request through our Services, including transaction amounts, asset types, counterparties (where applicable), transaction timestamps, settlement details, and related transaction metadata.

1.4.7. Voice Recording

We may (if you agree to the recordings) record conversations between you and us for the purpose of quality assurance, training, and compliance. We will separately inform you whenever we record such conversations.

1.5. Purposes and Legal Grounds of Processing

We collect and process your personal data in connection with your use of the Website and the Services, irrespective of whether you use the Website/Services on your own behalf or on behalf of third parties. As a rule, we process your personal data to the extent necessary to provide the Services, ensure smooth operation of the Website, comply with legal obligations, and for other legitimate purposes. You can find the description of such purposes and legal grounds for processing in greater detail below.

1.5.1. AML/CFT Compliance

We use your personal data for purposes set out in the AML Policy, including in connection with the Onboarding Process, ongoing customer due diligence, transaction monitoring, and suspicious activity reporting. The legal grounds for processing your personal data are, depending on a particular processing operation:

  • Necessity of processing for compliance with legal obligations under the AML Act and VQF regulations (Article 6(1)(c) GDPR where applicable; Article 31(1) Swiss FADP);
  • Necessity of processing for the performance of a task carried out in the public interest (Article 6(1)(e) GDPR where applicable);
  • Necessity of processing for either taking steps at your request prior to entering into a contract and/or performance of a contract with you (Article 6(1)(b) GDPR where applicable; Article 31(1) Swiss FADP);
  • Your explicit consent as regards processing special categories of personal data, such as biometric data (Article 6(1)(a) and Article 9(2)(a) GDPR where applicable; Article 31(1) Swiss FADP).

1.5.2. Analytics
We use your personal data for analytical and statistical purposes to improve our services. The legal ground for such processing is our legitimate interest (Article 6(1)(f) GDPR where applicable; Article 31(1) Swiss FADP), which consists of conducting analyses of your activity, as well as of your preferences to improve functionalities and services provided by us. Where required by law, we will only conduct analytical activities with your consent. Where we use cookies for analytical purposes, Section 1.5.6 below applies.
1.5.3. Business Operations

We use your personal data for the technical and administrative purposes in connection with the maintenance and development of our business. For example, this includes internal assessments, audits, quality assurance, products and services development or improvement, risk management, and so on. The legal ground for processing your personal data is our legitimate interest (Article 6(1)(f) GDPR where applicable; Article 31(1) Swiss FADP), which consists of maintaining and developing our business operations and improving our products and services.

1.5.4. Compliance

We use your personal data to ensure compliance with applicable law, including Swiss financial services law, tax law, accounting law, and consumer protection law. We also process your personal data to comply with the Swiss FADP and GDPR (where applicable), for example when you submit your request as regards your privacy rights and for accountability purposes. The legal ground for processing is the necessity of processing for compliance with legal obligations to which we are subject (Article 6(1)(c) GDPR where applicable; Article 31(1) Swiss FADP).

1.5.5. Contract Performance

We use your personal data to perform contracts we have executed with you, including contracts subject to the Terms under which we provide the Services (including OTC settlement services, Gateway Program participation, API access, and related services). The legal ground for such processing is the necessity of processing for either taking steps at your request prior to entering into a contract and/or performance of a contract with you (Article 6(1)(b) GDPR where applicable; Article 31(1) Swiss FADP). Please consult the Terms for more detailed description of the Services.

We also use your personal data when you act as representatives of corporate entities/individuals (e.g. authorized users) to perform contracts we have concluded with such corporate entities/individuals. The legal ground for processing your personal data is our legitimate interest (Article 6(1)(f) GDPR where applicable; Article 31(1) Swiss FADP), which consists of performance of contracts with our clients.

1.5.6. Cookies

We use your personal data in connection with the use of cookies or similar technologies for purposes described in Section 1.5. For example, we may use cookies for analytical and statistical purposes (Section 1.5.2). The legal grounds for processing your personal data are (depending on the type of cookies) your consent (Article 6(1)(a) GDPR where applicable; Article 31(1) Swiss FADP) or necessity of processing for performance of a contract with you (Article 6(1)(b) GDPR where applicable; Article 31(1) Swiss FADP). Please consult the Cookie Notice to learn more about cookies and similar technologies.

1.5.7. Legal Rights

We may use your personal data, if necessary, to establish and assert claims or to defend against claims. The legal ground for such processing is our legitimate interest (Article 6(1)(f) GDPR where applicable; Article 31(1) Swiss FADP), which consists of the protection of our legal rights.

1.5.8. Marketing

We use your personal data for communication and marketing purposes. For example, to inform you about our activity and promote our services and Gateway Program. We also process your personal data to communicate with you, to promote our brand and for direct marketing purposes, for example to collect your feedback on our products or services. The legal ground of the processing is our legitimate interest (Article 6(1)(f) GDPR where applicable; Article 31(1) Swiss FADP), which consists of improving our services, communication with the Users, promotion, and marketing. Where required by law, we will conduct direct marketing activities only with your consent.

1.5.9. Security

We use your personal data to ensure the security of the Website and our ICT Systems and to manage them. For example, we record some of your personal data in system logs (special computer programs used for storing a chronological record containing information about events and actions related to the ICT Systems used for rendering Services by us). The legal ground of the processing is our legitimate interest (Article 6(1)(f) GDPR where applicable; Article 31(1) Swiss FADP), which consists of our need to ensure security and safety of our ICT Systems used in connection with the Website and the Services.

1.6. Data Storage

We store your personal data only as long as necessary for the purposes we collected it. This means that the duration of storage depends on the purpose of processing. For example, we store your personal data for the period when we provide the Services to you in accordance with the agreement we have entered with you subject to the Terms. We store personal data processed based on legitimate interest(s), our or those of a third party, until you lodge an effective objection to such processing. Similarly, when we process your personal data based on your consent, we store it until you withdraw your consent.

For AML/CFT purposes, we are required to retain your personal data and records of transactions for a minimum of 10 years from the end of the business relationship or from the date of the transaction, in accordance with Swiss AML Act requirements and VQF regulations.

After the end of the period of data storage, we permanently delete or anonymize your personal data.

The duration of storage or use of your data may be extended in certain situations. For example, we may store your personal data after you terminate the agreement with us when required by law. We may also continue to store and use the same dataset if we use it for a different purpose and on a different legal ground, if admissible by law. For example, if you terminate the agreement with us, we may continue to use personal data provided by you in connection with your use of the Services when necessary to establish and assert possible claims or to defend against claims (if we have a legitimate interest to do so).

1.7. Data Recipients

As a rule, we do not share your personal data unless it is necessary. For example, we may share your personal data in connection with the provision of the Services under the Terms. We may disclose your personal data to the following categories of recipients:

  • External software developers and IT service providers (including Digital Ocean for hosting services);
  • KYC and AML service providers (including Sumsub);
  • Marketing and advertising services providers;
  • Analytical tools providers (including Google Analytics);
  • Data storage providers;
  • Professional advisors, such as lawyers, accountants, and tax advisors;
  • Authorities where required or necessary under the law, including VQF, FINMA, Swiss Federal Department of Finance, tax authorities, and law enforcement;
  • Banking and financial institution partners (names disclosed only to clients as necessary);
  • Insurance companies;
  • Other Gateway Program participants where necessary for service provision.

We require our service providers to keep your data secure and confidential under the terms that ensure level of protection essentially equivalent to that described in this Privacy Policy.

Please note that some of them act on our behalf as our processors and some act as independent controllers of your personal data. If they are controllers of your data, relevant privacy policies and terms and conditions of such controllers may apply. We encourage you to consult such documents before using such services. We are not responsible for the privacy policies and practices of third parties.

1.8. Data Transfers

The level of protection for personal data outside Switzerland and the European Economic Area (EEA) may differ from that provided by Swiss and EU law. For this reason, we transfer your personal data outside Switzerland and the EEA only when necessary and with an adequate level of protection.

We secure the adequate level of protection primarily by cooperating with processors of personal data in countries for which there has been a relevant adequacy decision by the Swiss Federal Council or European Commission finding an adequate level of protection for personal data. Alternatively, we may use the standard contractual clauses issued by the Swiss Federal Data Protection and Information Commissioner (FDPIC) or the European Commission, or other appropriate safeguards.

For example, our hosting provider Digital Ocean may process data in various jurisdictions, and our KYC provider Sumsub may process data globally. In all cases, we ensure appropriate safeguards are in place.

If you want to learn more about these safeguards, obtain a copy of them or learn where they have been made available, contact us (please consult Section 1.1 above).

1.9. Requirement to Provide Personal Data

In some cases, provision of your personal data is mandatory by law or necessary to carry out your request or to perform a contract we have with you. When collecting data we often separately indicate such situations. If you don't provide us with your personal data in such situations, we may not be able to carry out your request, perform a contract with you (or enter into it) or comply with the law. In some cases, this may mean that we will terminate the contract or stop our engagement with you.

For example: a) If you do not provide us with data necessary to complete AML/CFT procedures as required by the AML Act and VQF regulations, we may not be able to enter into a contract with you or provide Services; b) If you do not provide your personal data necessary for the complaint procedure, we may not be able to handle your complaint; c) If you do not provide data necessary for Gateway Program application, we may not be able to process your application.

In other cases, provision of your personal data is voluntary. If you don't provide us with your personal data in such situations, we may not be able to carry out your request or achieve our goal. For example, if you do not share your contact details with us, we may not be able to contact you.

1.10. Your Rights

To exercise your right(s) contact us at privacy@blockriver.com or legal@blockriver.com (please consult Section 1.1).

1.10.1. Rights Under Swiss Law

If you are in Switzerland, you have the following rights under the Swiss FADP:

Right to Information: You can request information about the processing of your personal data, including the purposes of processing, categories of data, recipients, and retention periods.

Right to Access: You can request a copy of your personal data that we process.

Right to Rectification: You can request that we correct your personal data that is inaccurate or complete data that is incomplete.

Right to Erasure: You can request that we erase your personal data under certain conditions. However, this is not an absolute right and does not apply in certain conditions, for example when use of your data is necessary for compliance with legal obligations (such as the 10-year AML retention requirement) or for the establishment, exercise, or defence of legal claims.

Right to Restriction: You can request that we restrict processing of your personal data under certain conditions.

Right to Data Portability: You can request that some of your personal data is provided to you, or to another controller, in a commonly used and machine-readable format, where technically feasible.

Right to Object: You can object to processing of your personal data based on our legitimate interests. If you raise an objection, we will stop using your personal data unless we demonstrate compelling legitimate grounds for the processing which override your interests.

Right to Withdraw Consent: Where processing is based on your consent, you can withdraw your consent at any time. Withdrawal does not affect the lawfulness of processing before withdrawal.

Right to Lodge a Complaint: You can lodge a complaint with the Swiss Federal Data Protection and Information Commissioner (FDPIC) at: www.edoeb.admin.ch

1.10.2. Rights Under EU Law (GDPR)

If you are in the EEA, you have the following rights under the GDPR:

Right to Access (Article 15): You can request information about the processing of your personal data and a copy of your personal data.

Right to Rectification (Article 16): You can request that we rectify inaccurate personal data and complete incomplete data.

Right to Erasure (Article 17): You can request erasure of your personal data under certain conditions, subject to legal retention requirements.

Right to Restriction (Article 18): You can request restriction of processing under certain conditions.

Right to Data Portability (Article 20): You can request that your personal data is provided in a structured, commonly used and machine-readable format.

Right to Object (Article 21): You can object to processing based on legitimate interests or for direct marketing purposes.

Right to Withdraw Consent: You can withdraw consent at any time where processing is based on consent.

Right to Lodge a Complaint: You can lodge a complaint with your local supervisory authority or with the Swiss FDPIC.
1.11. Automated Decision-Making

We do not make any decisions based solely on automated processing, including profiling, which produce legal effects concerning you or similarly significantly affect you. All significant decisions, including AML/CFT risk assessments and onboarding decisions, involve human review and judgment.

2. COOKIE NOTICE

2.1. Introduction

This Cookie Notice describes how BlockRiver AG with its registered office at Asetstrasse 37, 6438 Ibach, Schwyz, Switzerland, company registration number CHE-320.754.925, with share capital of CHF 100,000 ("BlockRiver" or "we", "our" etc.) stores or accesses information on your terminal device in connection with your use of the Website or the Services.

2.2. What Are Cookies?

Cookies are small text files installed on your device that collect information which, generally, facilitates use of the Website and the Services. For example, cookies may remember your language preferences or other settings of your Internet browser. In most cases information used in connection with cookies is personal data. In such cases, the Privacy Notice applies to such personal data.

We mainly use our own cookies. We also use third-party cookies, i.e. cookies from a domain other than the domain of the visited website, primarily for analytical activities. We may also use other technologies similar to cookies, for example HTML5 local storage, Local Shared Objects or tracking pixels. Where we refer to cookies in this Cookie Notice, we also mean such technologies.

2.3. What Cookies Are Used?

The cookies are used only when it is admissible by law. The following types of cookies are used in connection with your use of the Website and the Services.

2.3.1. Necessary Cookies

The necessary cookies are a type of cookies that are required by the Website and the Services to function properly. For example, these types of cookies are installed to recall your login sessions, security settings, and privacy preferences. They are set by us. They are mandatory because they are necessary for the provision of the Website and the Services.

2.3.2. Functional Cookies (Optional)

The functional cookies are a type of cookies that are used to improve the functionality of the Website. For example, such cookies may be installed to remember your language preferences or interface settings. They may be set by us or by third-party providers engaged by us. They are optional, so we use them only with your consent.

2.3.3. Analytical Cookies (Optional)

The analytical cookies are a type of cookies that enable collecting information such as number of visits and traffic on the Website for statistical purposes. For example, these types of cookies may be installed to analyse how you navigate the Website to improve the performance of the Website. They may be set by us or by third-party providers engaged by us (such as Google Analytics). They are optional, so we use them only with your consent.

2.4. Description of Cookies

Each cookie has a specific provider responsible for it (e.g. BlockRiver or a third party), a specific purpose of use, and a maximum functioning period. If the provider of a cookie is a third party, that third party has access to such cookies. The duration of cookie operation depends on their type and purpose. In general, there are two types of cookies: session cookies and persistent cookies. Session cookies expire at the end of a given session, while persistent cookies are stored on the device for a longer period and do not expire after the end of a session.

The maximum period after which our cookies expire is 12 months, except where longer retention is necessary for security or fraud prevention purposes.

The following cookies are used in connection with your use of the Website or the Services:

Necessary Cookies

The session_id cookie is provided by BlockRiver and maintains the user session; it lasts for the duration of the session only. The security_token cookie is also provided by BlockRiver, serves security and authentication purposes, and likewise expires at the end of the session. The cookie_consent cookie, also by BlockRiver, stores your cookie consent preferences and is retained for up to 12 months.

Functional Cookies

The language_pref cookie is provided by BlockRiver and remembers your language preference for up to 12 months. The ui_settings cookie, also by BlockRiver, stores your user interface preferences and is retained for up to 12 months.

Analytical Cookies

Three cookies are used for analytical purposes, all provided by Google. The _ga cookie is used by Google Analytics to distinguish users and is retained for up to 2 years. The _gid cookie also distinguishes users via Google Analytics but expires after 24 hours. The _gat cookie is used by Google Analytics to throttle request rates and expires after 1 minute.

2.5. Access of Third Parties to Cookies

We do not allow third parties to access cookies for which we are responsible unless it is necessary. For example, we may allow such access when it is necessary to perform third-party analytics services. In addition, some of our service providers' solutions involve storing or accessing information on your end device, including the use of cookies.

Below we describe in greater detail tools of our partners used for analytical purposes:

2.5.1. Google Analytics

Google Analytics is a tool to analyse the use of the Website and to produce statistics and reports on its operation. The solution provider is Google Ireland Limited, Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland. More information about Google Analytics can be found at: https://analytics.google.com/analytics/web/. You can find more information about the processing of your personal data by Google Ireland Limited at: https://policies.google.com/privacy.

We have configured Google Analytics to anonymize IP addresses and have disabled data sharing with Google for advertising purposes.

2.6. Your Cookie Choices

There are several ways in which you can manage cookies.

2.6.1. Your Consent

Optional cookies, for example analytical cookies, are used only with your consent. You can withdraw your consent at any time. You can do this through your cookie settings (Section 2.6.2) or through your browser settings (Section 2.6.3).

2.6.2. Cookie Settings

You can manage your cookie settings using our cookie management interface. You can access the cookie management interface from the Website footer by clicking the "Cookie Settings" link. You can also access the cookie management interface through the cookie banner that appears during your first visit to the Website.

2.6.3. Web Browser

You can also manage cookies through your web browser. For example, you can delete all or some cookies from your device or block them.

Please note that deleting or blocking cookies may cause the Website or the Services to not function properly or to stop functioning altogether.

To manage cookies through your web browser, refer to the instructions provided by your browser provider. For example, instructions for relevant web browsers can be found on the websites of their operators:

  • Microsoft (Edge): https://support.microsoft.com/microsoft-edge
  • Google (Chrome): https://support.google.com/chrome
  • Apple (Safari): https://support.apple.com/safari
  • Mozilla (Firefox): https://support.mozilla.org/firefox
  • Opera: https://help.opera.com

2.6.4. Your Rights Related to Personal Data

You have rights related to your personal data as set forth in the Privacy Notice (Section 1.10).

Last Updated: January 2025

Contact for Privacy Matters:

  • Email: privacy@blockriver.com or legal@blockriver.com
  • Address: Asetstrasse 37, 6438 Ibach, Schwyz, Switzerland

Supervisory Authority:

  • Swiss Federal Data Protection and Information Commissioner (FDPIC)
  • Website: www.edoeb.admin.ch
  • For EEA residents: Your local data protection authority

Solutions
OTC TradingWhite LabelAPI Connectivity
Launch Desk
arrow up right
Company
About usReportsWhite-PapersBlogContactApply for Gateway
Information
Privacy Policy
Disclaimer & Important Information
Regulatory Information
Risk Warning
Cookie Policy
Terms of Service & Use
Contact
contact@blockriver.com
Asetstrasse 37
6438 Ibach
© Copyright BlockRiver AG
BlockRiver AG is a Swiss-based financial intermediary, considered as a VASP (Virtual Asset Service Provider) and is a member of the self-regulatory organisation VQF (Financial Services Standards Association). VQF is a self-regulatory organisation recognised by FINMA (Swiss Financial Markets Supervisory Authority).
Cookie Preferences
Important Legal Information. BlockRiver AG is a Swiss company and VQF member for anti-money laundering supervision. BlockRiver AG is not a bank, is not supervised by FINMA as a bank or securities dealer, and does not hold MiCA or FCA authorisation.

Professional Clients Only. Services exclusively for corporate entities and institutional investors. Not available to retail clients, individuals, US persons, or sanctioned jurisdictions.

No Solicitation. This website does not constitute marketing or solicitation. Services provided solely at client's exclusive initiative.

Risk Warning. Crypto-asset trading involves substantial risk and may result in total loss of capital. Crypto-assets are not covered by deposit insurance or investor compensation schemes.

No Investment Advice. Information provided for informational purposes only. Does not constitute investment, legal, tax, or financial advice.

No Warranty. All information provided "as is" without warranty. BlockRiver AG disclaims all liability for website use. Past performance is not indicative of future results.

© 2025 BlockRiver AG. All rights reserved. | Swiss law applies.