Let me ad my two satoshi here.
What i gathered by reading all this is clear:
User opened account to trade crypto and nothing else. By TOS he is not required to disclose his details unless he wish to withdraw FIAT-usd/eur or what ever they allowing.
OP is not owner of account in that exchange but it is owner of the funds deposited to this account.
What i cannot understand is , why exchange owners pushing so hard to do KYC to make sure account is really OPs not hacker's.
If therock wish to go full kyc mod i suggest inform before deposit reach account. Otherwise its just simply scam which targeting people who wish to stay anonymous.
I can see pattern here where exchanges trying scam users out of their funds using KYC/AML which only should be applied in terms of fiat.
The hacker card is only a safety procedure to protect customer funds. Of course, if the account has been hacked, the hacker would have all the information posted on this forum.
Still some other facts:
1) Customer accepted all our new TOS and policies.
2) Customer has FIAT funds on the account.
3) We must follow EU laws and our legal team agreed with our procedures
4) We are in EU and not off shore. If the customer does not any longer agree with our terms, it is possible to report it to the authorities
In conclusion, we are not asking for his DNA
we do need:
1) A valid ID
2) A selfie with the ID
3) A recent POA
We do this with thousands of customers and, since 2014 (when we started to collect documents) we never had one single security issue or leak of information.
Is the above strange for a regulated entity? It is standard......
I think its strange to ask for this even knowing your TOS didnt have that part included. So in other words: " you just make that shit up about hacker to keep his funds".
Holding/Trading FIAT is not the same as witdrawing FIAT. So again i think you just going way over the line with this KYC stuff
If THEROCK wish to make sure account is in control same person why not ask OP to deposit any crypto using same wallets as previosuly or sign message using private keys?
At the end of the day funds must be returned to who even is the owner of them.
I think wider exposure - reddit/ twitter / other forums will make people aware of this kind of practices. Might be wise for therock to recosnider stance. Or maybe funds already are gone for boong boonga parties and this type of stuff?
Thanks for making people aware OP.
Do not let it go, pussh them and make people aware everywhere.
Eventually this type of scammers will be exposed and with a bit of help from community they will be out of business.