Privacy Policy

1. Data Controller

Earnnect acts as the data controller for personal information collected through the platform. If you have any questions about how we handle your data, please contact our Data Protection team at [email protected].

2. Data We Collect

We collect only the minimum personal data necessary to provide and improve our platform services. This includes:

• Account Data: Email address, username, and password (stored as a cryptographic hash) provided during registration
• Identity Verification Data: Where required for regulatory compliance, government-issued ID documents and facial verification data
• Usage Data: Log files, IP addresses, browser type, device type, pages visited, and timestamps of platform interactions
• Communication Data: Messages you send to our support team or via platform communication features
• Technical Data: Device identifiers, session tokens, and other data generated automatically by platform use

We do not collect sensitive personal data (such as health information, political opinions, or biometric data beyond identity verification) unless explicitly required and consented to.

3. How We Use Your Data

We use your personal data for the following purposes:

• Providing, maintaining, and improving the Earnnect platform and its features
• Managing your account, processing registrations, and authenticating your identity
• Complying with legal and regulatory obligations, including anti-money laundering (AML) and know-your-customer (KYC) requirements
• Communicating with you about platform updates, security notices, and support requests
• Detecting, investigating, and preventing fraudulent activity, security breaches, and other harmful behaviour
• Analysing platform usage patterns to improve user experience and platform performance

We process your data on one or more of the following legal bases: fulfilment of our contractual obligations to you, compliance with legal obligations, legitimate interests pursued by us, or your explicit consent.

4. Data Sharing and Disclosure

We do not sell, rent, or trade your personal data to third parties for commercial purposes. We may share your data only in the following circumstances:

• Service Providers: Trusted third-party vendors who assist in platform operations (e.g., cloud hosting, identity verification), subject to strict data processing agreements
• Legal Compliance: When required to do so by applicable law, court order, or regulatory authority
• Business Transfers: In the event of a merger, acquisition, or sale of assets, with appropriate notice to affected users
• Safety: Where necessary to protect the rights, property, or safety of Earnnect, our users, or the public

5. Data Retention

We retain your personal data for as long as your account remains active or as necessary to fulfil the purposes outlined in this policy. Account data is retained for a minimum of five (5) years following account closure to comply with applicable regulatory obligations.

When data is no longer required, it is securely deleted or anonymised in accordance with our data retention schedule.

6. Data Security

We implement comprehensive technical and organisational security measures to protect your personal data, including:

• AES-256 encryption for data stored at rest
• TLS 1.3 protocol for data transmitted in transit
• Multi-factor authentication options for account access
• Regular security audits and penetration testing
• Role-based access controls limiting internal data access to authorised personnel only
• 24/7 automated anomaly detection and incident response procedures

While we take all reasonable precautions, no digital system can be guaranteed 100% secure. We will promptly notify affected users of any data breach that poses a significant risk to their rights and freedoms, as required by law.

7. Your Data Rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

• Right of Access: Request a copy of the personal data we hold about you
• Right to Rectification: Request correction of inaccurate or incomplete data
• Right to Erasure: Request deletion of your data, subject to legal retention requirements
• Right to Restriction: Request that we limit how we process your data
• Right to Portability: Receive your data in a structured, machine-readable format
• Right to Object: Object to processing based on legitimate interests
• Right to Withdraw Consent: Withdraw consent at any time where processing is consent-based

To exercise any of these rights, contact us at [email protected]. We will respond within 30 days of receiving your verified request.

8. Cookies and Tracking

We use cookies and similar tracking technologies to enhance your platform experience and gather analytics. For full details, please refer to our Cookies Policy.

9. International Data Transfers

Your data may be processed in countries outside your country of residence. Where data is transferred internationally, we ensure appropriate safeguards are in place, such as standard contractual clauses approved by relevant data protection authorities or adequacy decisions.

10. Minors

The Earnnect platform is not intended for individuals under the age of 18. We do not knowingly collect personal data from minors. If we become aware that a minor has registered on the platform, we will promptly delete their account and associated data.

11. Changes to This Policy

We may update this Privacy Policy periodically to reflect changes in our practices or applicable law. We will notify registered users of material changes via email or a prominent notice on the platform at least 14 days before the changes take effect.

12. Contact and Complaints

For any privacy-related questions or concerns, please contact our Data Protection team:

If you believe your data protection rights have been violated, you have the right to lodge a complaint with your local data protection supervisory authority.