Privacy Policy

Account data (email, name, phone), KYC documents, device and session telemetry, financial activity, and support correspondence.

To operate the platform, verify identity under AML / KYC rules, protect accounts from fraud, produce audit trails for financial regulators, and improve the service.

Credentials and tokens are stored hashed. KYC documents are encrypted at rest. Access is scoped by least-privilege role.

KYC providers, payment partners, and law enforcement when legally compelled. We do not sell personal data.

Financial records are retained per applicable AML / tax law (typically 5–10 years). You can request deletion of non-regulated data at any time.

Access, rectification, restriction, portability, and erasure (subject to regulatory retention). Reach us via privacy@investbridge.example.