1. Information We Collect and Why

Kaito collects only the data necessary to deliver and improve its payment services — including cross-border transfers in local currencies and digital assets (e.g., USDT on Tron, Solana, or Lightning Network).

This includes:

• Account information: name, email, phone number (for login and notifications);

• Verification data: identity documents (e.g., government ID, proof of address), when required for compliance;

• Transaction metadata: timestamps, amounts, network used — not full wallet addresses unless needed for support or regulatory reasons;

• Device and usage logs: IP address, device type, app interactions (for security and performance).

All data is used solely for:
🔹 Processing payments and meeting legal obligations (KYC/AML);
🔹 Providing customer support (including via WhatsApp Business or email);
🔹 Sending essential service communications (e.g., transaction confirmations, security alerts).

Kaito does not sell or rent personal information. Data is shared only with trusted third parties when strictly necessary — such as identity verification providers, card issuers, or payment processors — under strict confidentiality and security agreements.

2. How We Protect Your Data

Security is built into Kaito’s infrastructure:

• End-to-end encryption for sensitive data in transit and at rest;

• Multi-factor authentication and role-based access controls;

• Regular security audits and real-time anomaly monitoring;

• Secure backups and incident response protocols.

While blockchain transactions are public by design, Kaito does not link user identities to on-chain activity unless explicitly provided or legally required.

3. Cookies and Local Storage

Kaito uses cookies and similar technologies to:

• Keep sessions secure and authenticated;

• Understand how users interact with the platform (anonymized analytics);

• Enable features like region selection or language preferences.

Users can disable non-essential cookies via browser settings — though doing so may affect certain functionalities (e.g., login persistence, fraud detection).

4. Third-Party Links and Platforms

Kaito’s website, app, and official social channels (including WhatsApp, Instagram, and Facebook) may contain links to external services — such as blockchain explorers or merchant tools. Kaito is not responsible for the privacy practices of third-party sites. Users are encouraged to review external policies before sharing information.

⚠️ Important: Kaito will never ask for passwords, seed phrases, PINs, or full card details via WhatsApp, social media, or email.

5. Communications Policy

Kaito communicates through secure, consent-based channels:

• ✉️ Email (for account and transaction updates);

• 📱 WhatsApp Business (opt-in only, for support and notifications);

• 📲 In-app messages;

• 🌐 Official social media (public announcements only).

All messaging follows these principles:

• ✅ Explicit user consent is obtained and recorded before any outreach;

• ✅ Promotional content (e.g., new features, merchant offers) is sent only to users who have opted in;

• ✅ Users may withdraw consent anytime:

  • Email: click “Unsubscribe”;

  • WhatsApp: reply STOP;

  • Contact: privacy@kaito.io with subject “Opt-out request”.

Automated messages use pre-approved templates (e.g., payment success, support ticket updates); human replies are timely and platform-compliant.

Prohibited uses:
Kaito strictly forbids its channels from being used for fraud, scams, harassment, money laundering, or the transmission of sensitive data (e.g., private keys).

6. Your Rights

You may at any time:

• Access, correct, or update your personal information;

• Request deletion or restriction of processing (subject to legal retention requirements);

• Obtain a portable copy of your data (e.g., CSV or JSON format).

To exercise these rights, contact: privacy@kaito.io
Kaito will respond within 30 days.

7. Policy Updates

This policy may be updated to reflect service enhancements, regulatory developments, or security improvements. Revisions will be posted at kaito.io/privacy-policy, and users will be notified in advance when changes materially affect their rights.

8. Contact

For privacy inquiries, data requests, or concerns:
📧 privacy@kaito.io

A dedicated privacy team oversees compliance and user rights.