Privacy Policy

Last updated: June 1, 2025

This Privacy Policy explains how Kabibot('Kabibot', 'we', 'our', or 'us') collects, uses, discloses, and protects information in connection with our websites, products, and services. By using our services, you agree to this Privacy Policy.

1. Who we are

Kabibot is an AI-powered, non-custodial cryptocurrency trading automation platform. We do not take custody of your funds. You connect your own exchange accounts using your credentials or API keys directly with the exchanges, subject to their terms.

2. Scope

This policy applies to the websites under https://kabibot.com, web/mobile applications, API services, and related services that link to it. It does not apply to third-party exchanges or services you connect to; their policies govern their handling of data.

3. Information we collect

  • Account data: email, name/alias, authentication status, language, preferences.
  • Contact data: newsletter subscription, support messages.
  • Usage data: app interactions, device/browser data, approximate location (from IP), performance metrics.
  • Cookies & similar: session cookies, analytics, preference storage, anti-abuse.
  • Exchange connection metadata: exchange name, connection status, non-secret configuration. We do not store your private keys; API secrets are handled according to your chosen connection method.
  • Log data: timestamps, IP, user agent, error diagnostics.

4. How we use information

  • Provide, operate, and improve the platform and features.
  • Authenticate users, secure accounts, prevent fraud and abuse.
  • Personalize content (language, preferences) and measure performance.
  • Communicate service updates, security notices, and marketing (with your consent where required).
  • Comply with legal obligations and enforce terms.

5. Legal bases for processing (EEA/UK)

  • Contract: to provide requested services.
  • Legitimate interests: to secure, improve, and grow our services.
  • Consent: for non-essential cookies/marketing where required.
  • Legal obligation: to comply with applicable laws.

6. Cookies and similar technologies

We use cookies and similar technologies for authentication, preferences, analytics, and security. You can control cookies via your browser settings. Blocking some types may impact functionality. Where required by law, we will request consent for non-essential cookies.

7. Analytics, advertising, and third parties

We may use analytics (e.g., Google Analytics) and service providers to help us understand usage and improve the platform. We do not sell personal information. Some third parties may set their own cookies or collect data under their own policies. Links to exchanges or third-party tools are governed by their respective terms.

For Google products, see Google Privacy Policyand your ad settings.

8. Data sharing

  • With service providers under contract (hosting, analytics, support) bound by confidentiality.
  • For legal, safety, and security reasons, including to protect rights, property, or comply with lawful requests.
  • Business transfers such as mergers, acquisitions, or asset sales, subject to this Policy.
  • With your consent or at your direction.

9. International data transfers

We operate globally. Where applicable, we use appropriate safeguards for transfers (e.g., Standard Contractual Clauses) and implement technical and organizational measures to protect data.

10. Data retention

We retain information for as long as necessary to provide services, comply with legal obligations, resolve disputes, and enforce agreements. Retention periods vary by data type and context.

11. Security

We employ administrative, technical, and physical safeguards appropriate to the nature of the information. No system is 100% secure. You are responsible for maintaining the confidentiality of your credentials and implementing security best practices for your exchange accounts.

12. Your rights

Depending on your location, you may have rights to access, correct, delete, restrict or object to processing, and data portability. You can also withdraw consent where processing is based on consent.

To exercise rights, contact us at privacy@kabibot.com.We may need to verify your identity and comply within applicable timeframes.

13. Children

Our services are not directed to individuals under the age required by applicable law. We do not knowingly collect personal information from children. If you believe a child has provided personal data, contact us to delete it.

14. Regional disclosures

  • EEA/UK: You may lodge a complaint with your supervisory authority. We rely on SCCs where relevant.
  • California: We do not sell personal information as defined by the CCPA/CPRA. You may exercise your disclosure and deletion rights by contacting us.
  • Other regions: We honor local requirements where applicable and will update this policy as regulations evolve.

15. Data controller and contact

Data controller: Kabibot. Contact: contact@kabibot.com.

16. Changes to this policy

We may update this policy from time to time. We will post the updated version with the 'Last updated' date. If changes are material, we will provide additional notice as required.

17. How to contact us

If you have questions, requests, or complaints about this policy or our practices, emailcontact@kabibot.com.