Privacy Policy

KO.IO ("we," "our," or "us") respects your privacy and is committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit and use our institutional investment tracking platform at ko.io ("the Service").

This policy applies to all users of our Service, regardless of location, and covers both our website and any associated mobile applications or services.

2.1 Personal Information You Provide

We may collect personal information that you voluntarily provide when you:

• Create an account or register for our services
• Subscribe to our premium features or newsletters
• Contact us through our support channels
• Participate in surveys, promotions, or feedback requests

This information may include:

• Name and contact information (email address, phone number)
• Professional information (company, job title, investment focus)
• Payment information (processed securely through third-party providers)
• Communication preferences and account settings

2.2 Information Automatically Collected

When you use our Service, we automatically collect certain information:

• Device information (IP address, browser type, operating system)
• Usage data (pages visited, time spent, search queries, clicks)
• Location data (general geographic location based on IP address)
• Technical data (device identifiers, cookies, log files)

2.3 Third-Party Data

We may receive information about you from third-party sources, including analytics providers, advertising networks, and data brokers, to enhance our understanding of user preferences and improve our services.

We use the collected information for the following purposes:

3.1 Service Provision and Enhancement

• Provide access to our institutional investment tracking platform
• Personalize your experience and customize content
• Process transactions and manage subscriptions
• Analyze usage patterns to improve our algorithms and features

3.2 Communication and Support

• Respond to your inquiries and provide customer support
• Send service-related notifications and updates
• Deliver newsletters and marketing communications (with consent)
• Notify you of important changes to our Service or policies

3.3 Legal and Security Purposes

• Comply with applicable laws and regulatory requirements
• Protect against fraud, security threats, and unauthorized access
• Enforce our Terms of Service and other agreements
• Respond to legal requests and court orders

For users in the European Economic Area, our legal basis for processing personal information includes:

• Contract Performance: Processing necessary to provide our services
• Legitimate Interests: Improving our platform, security, and analytics
• Legal Compliance: Meeting regulatory and legal obligations
• Consent: Marketing communications and optional features (where applicable)

We do not sell your personal information. We may share your information in the following circumstances:

5.1 Service Providers

We share information with trusted third-party service providers who assist us in operating our platform, including cloud hosting, payment processing, analytics, and customer support services.

5.2 Legal Requirements

We may disclose information when required by law, court order, or government request, or when necessary to protect our rights, property, or safety.

5.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, user information may be transferred as part of the business transaction.

5.4 Aggregated Data

We may share aggregated, anonymized data that cannot identify individual users for research, analytics, or business purposes.

We implement comprehensive security measures to protect your information:

• Encryption of data in transit and at rest using industry-standard protocols
• Regular security assessments and penetration testing
• Access controls and authentication requirements for our staff
• Secure hosting infrastructure with reputable cloud providers
• Incident response procedures for potential security breaches

However, no internet transmission or electronic storage is completely secure. While we strive to protect your information, we cannot guarantee absolute security.

We retain your personal information only as long as necessary to fulfill the purposes outlined in this Privacy Policy:

• Account information: Retained while your account is active and for a reasonable period after closure
• Transaction records: Retained for accounting and legal compliance purposes (typically 7 years)
• Usage data: Retained for analytical purposes (typically 2-3 years)
• Marketing communications: Until you unsubscribe or withdraw consent

When information is no longer needed, we securely delete or anonymize it according to our data retention policies.

Depending on your location, you may have the following rights regarding your personal information:

• Access: Request a copy of the personal information we hold about you
• Rectification: Request correction of inaccurate or incomplete information
• Erasure: Request deletion of your personal information (subject to legal obligations)
• Portability: Request transfer of your data to another service provider
• Restriction: Request limitation of processing under certain circumstances
• Objection: Object to processing based on legitimate interests
• Withdraw Consent: Withdraw previously given consent for processing

To exercise these rights, please contact us at hi@ko.io. We will respond to your request within the timeframes required by applicable law.

We use cookies and similar technologies to enhance your experience and analyze usage. Types of cookies we use include:

• Essential Cookies: Required for basic site functionality
• Performance Cookies: Help us analyze site usage and performance
• Functional Cookies: Remember your preferences and settings
• Marketing Cookies: Used for targeted advertising (with consent)

You can control cookie preferences through your browser settings, though disabling certain cookies may affect site functionality.

As we operate from Sweden and use global service providers, your information may be transferred to and processed in countries outside your residence. We ensure appropriate safeguards are in place for international transfers, including:

• Standard Contractual Clauses approved by the European Commission
• Adequacy decisions recognizing equivalent data protection levels
• Certification schemes and codes of conduct

Our Service is not intended for individuals under the age of 18. We do not knowingly collect personal information from children under 18. If we become aware that we have collected such information, we will take steps to delete it promptly.

We may update this Privacy Policy periodically to reflect changes in our practices or applicable laws. We will notify you of material changes by:

• Posting the updated policy on our website with a new effective date
• Sending email notifications to registered users
• Displaying prominent notices on our Service

Your continued use of our Service after such modifications constitutes acceptance of the updated Privacy Policy.

If you have questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us:

Email: hi@ko.io
Subject Line: Privacy Policy Inquiry
Address: Stockholm, Sweden

For users in the European Union, you also have the right to lodge a complaint with your local data protection authority if you believe we have not addressed your privacy concerns adequately.