Privacy Policy

At Kibo, we're committed to protecting your privacy and ensuring transparency in how we handle your data.

1. Introduction

Welcome to Kibo's Privacy Policy. This document outlines how we collect, use, and protect your personal information when you use our financial intelligence platform, available through our website and mobile application.

Kibo ("we", "us", "our") is committed to protecting your privacy. This Privacy Policy explains how we handle your personal data in compliance with the General Data Protection Regulation (GDPR) and other applicable data protection laws.

By using our services, you consent to the data practices described in this policy.

2. Information We Collect

We collect the following types of information:

Personal Information

  • Contact information (name, email address, phone number)
  • Account credentials (username, password)
  • Financial information (transaction history, account balances, financial goals)
  • Professional email address (when joining our waitlist)

Usage Information

  • App usage patterns and interactions
  • Device information (device type, operating system, unique device identifiers)
  • IP address and location data
  • Log information (time and duration of usage, features accessed)

3. How We Use Your Information

We use your information for the following purposes:

  • Core Service Functions: To provide our financial intelligence services, including predictive budgeting, wealth architecture, and fraud detection.
  • Personalization: To tailor our AI-powered financial insights and recommendations to your specific financial situation and goals.
  • Service Improvement: To analyze usage patterns and enhance our platform's functionality and user experience.
  • Communication: To send you important notifications regarding your account, security alerts, and updates about our services.
  • Marketing: With your consent, to inform you about new features, promotions, or related services that may interest you.
  • Security: To protect against fraud, unauthorized transactions, and ensure the security of your financial data.
  • Legal Compliance: To comply with applicable laws, regulations, and legal obligations.

4. Legal Basis for Processing

Under the GDPR, we process your personal data based on the following legal grounds:

  • Contract Performance: Processing necessary to provide our services as agreed in our Terms of Service.
  • Legitimate Interests: Processing that serves our legitimate business interests, such as fraud prevention, service improvement, and marketing (where these interests are not overridden by your data protection rights).
  • Consent: Processing based on your specific consent, such as for marketing communications or non-essential cookies.
  • Legal Obligations: Processing required to comply with laws and regulations applicable to financial services.

5. Data Sharing and Disclosures

We may share your information with:

  • Service Providers: Third-party vendors who help us provide our services, including cloud hosting, analytics, and customer support.
  • Financial Partners: When necessary to facilitate transactions or financial services you've requested.
  • Legal Authorities: When required by law, court order, or governmental regulation.
  • Business Transfers: In connection with a merger, acquisition, or sale of assets, with appropriate confidentiality agreements.

We require all third parties to respect the security of your personal data and to treat it in accordance with applicable laws.

6. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction.

Our security measures include:

  • Encryption of sensitive financial data
  • Regular security assessments and penetration testing
  • Access controls and authentication procedures
  • AI-powered fraud detection systems
  • Employee training on data protection and security

While we strive to use commercially acceptable means to protect your personal data, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security.

7. Data Retention

We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

The criteria used to determine our retention periods include:

  • The duration of your relationship with us as an active user
  • Legal obligations that require data retention
  • Statute of limitations for potential legal claims
  • Guidelines from regulatory authorities

When we no longer need your personal data, we will securely delete or anonymize it.

8. Your Data Protection Rights

Under the GDPR and applicable laws, you have the following rights:

  • Right to Access: Request copies of your personal data we process.
  • Right to Rectification: Request correction of inaccurate or incomplete information.
  • Right to Erasure: Request deletion of your personal data in certain circumstances.
  • Right to Restrict Processing: Request limitation of processing in certain scenarios.
  • Right to Data Portability: Request transfer of your data to you or a third party.
  • Right to Object: Object to processing based on legitimate interests or for direct marketing.
  • Right to Withdraw Consent: Withdraw consent where processing is based on consent.

To exercise any of these rights, please contact us at [email protected]. We will respond to your request within one month.

9. Cookies and Tracking Technologies

Our website and mobile app use cookies and similar tracking technologies to collect and track information and to enhance your experience. Types of cookies we use:

  • Essential Cookies: Required for basic functionality and security features.
  • Performance Cookies: Collect anonymous information about how visitors use our platform.
  • Functionality Cookies: Remember choices you make to improve your experience.
  • Targeting/Advertising Cookies: Record your visit, pages visited, and links followed (with consent).

You can manage your cookie preferences through your browser settings. However, disabling certain cookies may limit your ability to use some features of our platform.

10. International Data Transfers

Your personal data may be transferred to and processed in countries outside your country of residence where data protection laws may differ.

When transferring data outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, such as:

  • Standard Contractual Clauses approved by the European Commission
  • Binding Corporate Rules for transfers within a corporate group
  • Compliance with approved codes of conduct or certification mechanisms

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any material changes by posting the updated Privacy Policy on our website and, where appropriate, via email.

We encourage you to periodically review this page for the latest information on our privacy practices.

Back to Home