Privacy Policy

1. Introduction

Locktek, Inc. ("Locktek," "we," "us," or "our") operates the Locktek Wallet-as-a-Service platform accessible at app.locktek.io, api.locktek.io, and related domains (the "Platform"). We are committed to protecting your privacy and ensuring the security of your personal data.

This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Platform and services. Please read this Privacy Policy carefully. By accessing or using our Platform, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy.

2. Data Controller Information

3. Information We Collect

3.1 Information You Provide Directly

Account Information:

• Full name and email address
• Company name and business information
• Phone number
• Country and timezone
• Billing and payment information
• API keys and authentication credentials

Wallet and Transaction Data:

• Wallet addresses and public keys
• Transaction histories and metadata
• Network preferences and configurations
• Smart contract interactions
• DeFi protocol engagements

Communication Data:

• Support tickets and inquiries
• Feedback and survey responses
• Marketing preferences

3.2 Information Collected Automatically

Technical Data:

• IP addresses and device identifiers
• Browser type, version, and settings
• Operating system information
• API request logs and response times
• SDK version and implementation details
• Error logs and debugging information

Usage Data:

• Features accessed and frequency of use
• API endpoints utilized
• Transaction volumes and patterns
• Performance metrics and analytics
• Session duration and interaction patterns

Network Data:

• Blockchain network interactions
• Gas usage and fee data
• Cross-chain transfer patterns
• DeFi protocol usage statistics

3.3 Information from Third Parties

• Identity verification services (KYC/AML compliance)
• Blockchain data providers (CoinGecko, CoinMarketCap, DeFiLlama)
• Payment processors
• Analytics providers
• Security and fraud prevention services

4. How We Use Your Information

4.1 Service Provision

• Create and manage your Locktek account
• Provide wallet infrastructure and API access
• Process transactions and execute smart contracts
• Enable DeFi integrations and yield optimization
• Provide gas sponsorship services
• Generate analytics and portfolio insights

4.2 Security and Compliance

• Implement Multi-Party Computation (MPC) security
• Detect and prevent fraud, abuse, and security incidents
• Comply with legal and regulatory requirements
• Conduct AML/KYC verification where required
• Maintain audit trails and compliance records

4.3 Improvement and Development

• Analyze Platform performance and usage patterns
• Develop new features and optimize existing ones
• Conduct A/B testing and user experience research
• Train AI models for transaction routing and optimization
• Improve API documentation and SDKs

4.4 Communication

• Send service updates and security alerts
• Provide technical support and customer service
• Send billing and account notifications
• Share product updates and new feature announcements
• Send marketing communications (with consent)

5. Legal Basis for Processing

We process your personal data based on the following legal grounds:

• Contract Performance: To provide our services and fulfill our contractual obligations
• Legal Obligations: To comply with applicable laws and regulations
• Legitimate Interests: To operate, improve, and secure our Platform
• Consent: For marketing communications and certain data processing activities
• Vital Interests: To protect vital interests in emergency situations

6. Data Sharing and Disclosure

6.1 Service Providers

We share data with trusted third-party service providers who assist us in:

• Cloud infrastructure and hosting (AWS, GCP, Azure)
• Payment processing
• Customer support and communication
• Analytics and monitoring
• Security and fraud prevention
• Identity verification

6.2 Blockchain Networks

Transaction data is inherently public on blockchain networks. We do not control the visibility of on-chain data.

6.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity.

6.4 Legal Requirements

We may disclose information when required by:

• Court orders or legal processes
• Government or regulatory authorities
• Law enforcement agencies
• To protect our rights, property, or safety

6.5 Consent-Based Sharing

With your explicit consent, we may share information with:

• Integration partners
• Third-party applications
• Marketing partners

7. Data Security

We implement industry-leading security measures including:

• Encryption: AES-256-GCM for data at rest, TLS 1.3 for data in transit
• Access Controls: Role-based access control (RBAC) and multi-factor authentication
• Infrastructure Security: HSM for key management, WAF protection, DDoS mitigation
• Monitoring: 24/7 security monitoring and intrusion detection
• Compliance: SOC 2 Type II, ISO 27001, GDPR, CCPA compliance
• Testing: Regular penetration testing and security audits
• MPC Technology: Advanced threshold cryptography for key protection

8. Data Retention

We retain personal data for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required by law.

17. Contact Us

For privacy-related questions or concerns: