Privacy Policy

Krydon Global (“we”, “us”, or “our”) is committed to protecting the privacy and security of personal information we collect in the course of our business operations. This Privacy Policy describes how we collect, use, disclose, and safeguard information about individuals who interact with our website, platform, and services (collectively, the “Services”).

By accessing or using our Services, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with its terms, please discontinue use of the Services.

We may collect the following categories of personal information:

• —Identity information — full legal name, date of birth, government-issued identification numbers, and nationality.
• —Contact information — email address, telephone number, postal address, and jurisdiction of residence.
• —Financial and compliance information — source of funds, account details, investment experience, and documentation required for KYC/AML verification.
• —Usage data — IP address, browser type, pages visited, time spent on the website, referring URLs, and other technical identifiers.
• —Communications — records of correspondence with us, including emails, inquiry form submissions, and any other communications.
• —Device information — device type, operating system, and unique device identifiers.

We collect information directly from you when you submit inquiries, create accounts, or engage with our Services. We may also collect information automatically through cookies and similar technologies, and from third-party sources including identity verification providers and publicly available regulatory databases.

We use personal information for the following purposes:

• —To provide, operate, and maintain our Services.
• —To comply with applicable legal and regulatory obligations, including anti-money laundering (AML), know-your-customer (KYC), and sanctions screening requirements.
• —To verify identities and conduct due diligence in accordance with applicable financial regulations.
• —To communicate with you regarding your inquiries, account status, or material changes to our Services or this Policy.
• —To monitor and analyse usage patterns for the purpose of improving platform security and user experience.
• —To detect, investigate, and prevent fraudulent transactions, unauthorised access, and other prohibited activities.
• —To enforce our Terms of Use and other applicable agreements.
• —To protect the rights, safety, and property of Krydon Global, our clients, and third parties.

Where applicable under the General Data Protection Regulation (GDPR) or UK GDPR, we process personal information on the following legal bases:

• —Contractual necessity — processing required to perform our contractual obligations to you.
• —Legal obligation — processing required to comply with applicable laws, regulations, and regulatory obligations.
• —Legitimate interests — processing for purposes of fraud prevention, platform security, and improving our Services, provided such interests are not overridden by your rights.
• —Consent — where you have expressly consented to a specific processing activity, which you may withdraw at any time.

We do not sell, rent, or trade personal information to third parties for marketing purposes. We may share information with the following categories of recipients:

• —Regulatory and law enforcement authorities — where required by applicable law, court order, or regulatory directive.
• —Identity and compliance service providers — third-party vendors engaged for KYC verification, AML screening, and sanctions checking.
• —Technology and infrastructure providers — cloud hosting, cybersecurity, and IT service providers operating under strict confidentiality obligations.
• —Professional advisers — legal counsel, auditors, and consultants bound by professional confidentiality obligations.
• —Business successors — in connection with a merger, acquisition, or sale of all or part of our business assets, subject to equivalent privacy protections.

All third-party service providers are required to implement appropriate security measures and are prohibited from using your information for any purpose other than providing the contracted service.

Our website uses cookies and similar tracking technologies to enhance functionality and analyse usage. Cookies are small text files stored on your device. We use:

• —Strictly necessary cookies — required for basic website functionality and cannot be disabled.
• —Analytics cookies — used to understand how visitors interact with our website, to improve content and performance.
• —Preference cookies — used to remember your settings and preferences across sessions.

You may configure your browser to refuse or delete cookies. Note that disabling certain cookies may impair the functionality of our website.

We retain personal information for as long as necessary to fulfil the purposes for which it was collected, including compliance with legal, regulatory, accounting, and reporting obligations. Retention periods are determined based on:

• —The nature of the information and the purposes for which it was collected.
• —Applicable statutory and regulatory retention requirements, which may require records to be retained for periods of five to ten years or longer.
• —Limitation periods applicable to potential legal claims.

Upon expiry of the applicable retention period, personal information is securely deleted or anonymised.

We implement technical and organisational measures designed to protect personal information against unauthorised access, accidental loss, destruction, or disclosure. These measures include:

• —Multi-layer encryption for data in transit and at rest.
• —Access controls and role-based permissions limiting data access to authorised personnel.
• —Regular security assessments, penetration testing, and vulnerability management.
• —Incident response and breach notification procedures aligned with applicable regulatory requirements.

While we employ industry-standard safeguards, no method of electronic transmission or storage is completely secure. We cannot guarantee absolute security of information transmitted to or stored on our systems.

Krydon Global is headquartered in Miami, Florida, United States. Your personal information may be transferred to, processed in, or stored in jurisdictions other than your country of residence, including the United States. Where such transfers occur, we implement appropriate safeguards — such as standard contractual clauses or equivalent mechanisms — to ensure that your information receives a level of protection consistent with applicable data protection laws.

Depending on your jurisdiction, you may have the following rights regarding your personal information:

• —Access — the right to request a copy of the personal information we hold about you.
• —Rectification — the right to request correction of inaccurate or incomplete information.
• —Erasure — the right to request deletion of your personal information, subject to applicable legal and regulatory retention obligations.
• —Restriction — the right to request that we restrict processing of your information in certain circumstances.
• —Portability — the right to receive your personal information in a structured, machine-readable format.
• —Objection — the right to object to processing based on legitimate interests.
• —Withdrawal of consent — where processing is based on consent, the right to withdraw consent at any time without affecting the lawfulness of prior processing.

To exercise any of these rights, please contact us at info@krydonglobal.com. We will respond to verified requests within thirty (30) days, or such shorter period as required by applicable law.

Our website may contain links to third-party websites or services. We are not responsible for the privacy practices or content of such third parties. We encourage you to review the privacy policies of any third-party sites you visit.

Our Services are not directed to individuals under the age of 18. We do not knowingly collect personal information from minors. If we become aware that we have inadvertently collected information from a person under 18, we will take prompt steps to delete such information.

We reserve the right to update this Privacy Policy at any time. Material changes will be notified by posting the revised Policy on this page with an updated effective date. We encourage you to review this Policy periodically. Your continued use of the Services following the posting of changes constitutes your acceptance of the revised Policy.

For questions, concerns, or requests relating to this Privacy Policy or our data practices, please contact: