Terms and conditions

Privacy Policy (Kairic, Inc.)

Effective date: [YYYY-MM-DD]Last updated: [YYYY-MM-DD]

Kairic, Inc. (“Kairic,” “we,” “our,” “us”) provides treasury and vault software, including Pika Vault (cross-chain RWA/stablecoin vault infrastructure) and YieldPilot (treasury automation on top of Pika Vault) (together, the “Services”). This Privacy Policy explains how we collect, use, disclose, and safeguard personal information when you visit kairic.com, use our apps, dashboards, APIs, or SDKs, or otherwise interact with us.

This policy is designed to meet common requirements under GDPR, CCPA/CPRA, UK GDPR, PIPEDA, and similar laws. Some rights may apply only to residents of certain jurisdictions.

  1. Information we collect

1.1 You provide

  • Account & profile: name, email, organization, role, password or SSO identifiers.

  • Business details: company name, billing contacts, legal docs for KYB/KYC (if applicable).

  • Support content: messages, attachments, feedback.

  • Settings & policies: treasury reserve targets, exit preferences, risk/compliance flags.

1.2 Collected automatically

  • Usage & device: IP address, browser/user-agent, referrer, pages viewed, clickstream, session duration, approximate location.

  • Telemetry: API calls, error logs, quotes and actions (e.g., “Fast” vs “Standard” exits), vault addresses used, chain identifiers, transaction hashes.

  • Cookies & similar: see §7 Cookies & tracking.

1.3 From third parties (integrations)

  • Payments/commerce: limited event data from providers you connect (e.g., Stripe, Shopify)—such as payment/refund events, non-sensitive metadata, and event IDs. We do not receive full card numbers or bank credentials from these providers.

  • Identity/compliance: if you opt into allowlisted flows, we may receive KYC/KYB status or verification tokens from compliance vendors.

  • Observability & analytics: performance metrics from infrastructure vendors.

Blockchain notice: On-chain activity (addresses, transactions, balances) is public and not controlled by Kairic. We may index public on-chain data to operate the Services.

  1. How we use information

  • Provide & maintain the Services (orchestrating deposits, quotes, exits, telemetry).

  • Configure policies (reserve %, exit preferences, compliance toggles).

  • Security & integrity (fraud detection, abuse prevention, incident response).

  • Analytics & product improvement (aggregated stats, reliability metrics).

  • Legal & compliance (audits, recordkeeping, sanctions screening for allowlisted SKUs).

  • Communications (operational notices, updates, support).

We may use de-identified/aggregated data for research, performance reporting, and public metrics (e.g., p95/p99 exit times).

  1. Legal bases (EEA/UK)

  • Contract: to provide the Services you request.

  • Legitimate interests: secure and improve our Services.

  • Consent: where required (e.g., certain cookies, marketing).

  • Legal obligation: recordkeeping, compliance, tax.

  1. Sharing & disclosures

We do not sell personal information. We share:

  • Service providers/processors: hosting (cloud/VPS), email, support, logging, analytics, monitoring, compliance/KYC (if applicable), payment/commerce connectors you authorize.

  • Partners you select: custodians, stablecoin issuers, compliance providers, or auditors when you ask us to connect.

  • Corporate transactions: merger, financing, acquisition, or asset sale.

  • Legal & safety: to comply with law or protect rights, security, and users.

  1. International transfers

We may transfer data to countries with different data protection laws. Where required, we use appropriate safeguards (e.g., SCCs).

  1. Data retention

We retain personal information only as long as necessary for the purposes in this policy, contractual obligations, and legal requirements. On request, we will delete or anonymize data unless retention is required by law or for legitimate business needs (e.g., security logs).

  1. Cookies & tracking

We use necessary cookies for authentication and security, and (optionally) analytics cookies for usage metrics. You can manage preferences via your browser or in-product settings where available. Blocking cookies may limit functionality.

  1. Your rights

Depending on your location, you may have rights to:

  • Access, correct, delete, or export personal information.

  • Object to or restrict certain processing.

  • Withdraw consent where processing is based on consent.

  • Appeal a decision or lodge a complaint with a supervisory authority.

Submit requests to privacy@kairic.com. We may need to verify your identity and organization authority.

  1. Security

We use administrative, technical, and organizational measures: encryption in transit, access controls, secret management, environment isolation, and monitoring. No system is 100% secure; please use strong passwords and enable organization security settings.

  1. Children

Our Services are not intended for children under 16 (or the equivalent minimum age in your jurisdiction). We do not knowingly collect data from children.

  1. Third-party services

Your use of third-party services (e.g., Stripe, Shopify, custodians, stablecoin issuers) is governed by their own terms and privacy policies.

  1. AI systems

YieldPilot may invoke agentic actions (e.g., forecasting, quote selection) using AI models and/or tool servers. We restrict inputs to operational data and follow vendor terms. We do not use AI to profile individuals for marketing.

  1. Changes to this policy

We will update this policy from time to time. Material changes will be posted on this page with a new “Effective date.” Continued use constitutes acceptance.

  1. Contact

Kairic, Inc.[Company Address]privacy@kairic.com