> For the complete documentation index, see [llms.txt](https://docs.onesafe.io/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://docs.onesafe.io/legal/onesafe-privacy-policy.md). # OneSafe Privacy Policy ### ⬅️[ Back to all legal agreements](https://docs.onesafe.io/) ## OneSafe Privacy Policy **Last Updated: June 15, 2026** This Privacy Policy explains how Thresholdz Inc. ("OneSafe," "we," "our," or "us") collects, uses, discloses, and protects information relating to users of our services. This Policy applies to visitors and users of our website (onesafe.io) and our related tools, integrations, APIs, and features (collectively, the "Services"). Please read this Privacy Policy carefully. By using, accessing, or downloading any part of the Services, you consent to the practices described herein. If you do not agree with this Privacy Policy, please refrain from using the Services. ### 1. Scope and Updates to This Policy This Privacy Policy covers how we handle personal information in connection with the Services, including both fiat and crypto-related functionalities. It is the single, comprehensive statement of OneSafe's privacy practices, including how we collect, use, share, and protect your information and the choices available to you. We may update this Privacy Policy from time to time. If changes are material, we will notify you using reasonable means (e.g., via email or in-app notice) and update the "Last Updated" date. If you continue to use the Services after any changes, you are agreeing to the updated terms. ### 2. Information We Collect #### A. Information You Provide to Us We may collect information directly from you, including: * **Personal and contact details:** name, email, phone number, mailing address. * **Organizational and identity data:** business name, incorporation status, tax ID, KYC/KYB documentation, and beneficial-owner information. * **Account credentials:** username or login handles for authenticated access. * **Wallet and financial information:** public wallet addresses, fiat account details, transaction history, and billing information. * **Communications:** any messages you send us, including customer support, feedback, and general inquiries. * **Third-party connections:** when you connect a third-party service or external wallet to OneSafe, we may receive related account and transaction data. * **Authentication data:** login events and related metadata from our authentication provider (Clerk). #### B. Information Collected Automatically We may automatically collect technical and behavioral data about your use of the Services, including: * IP address and device identifiers. * Approximate geolocation (via IP). * Browser type and operating system. * Access timestamps and session duration. * Clickstream data, user flows, and feature usage. * Log and error information, analytics cookies, and performance metrics. We use tools such as cookies, pixel tags, and similar technologies to gather this data. You can manage your cookie settings via your browser. ### 3. How We Use Your Information We use the information we collect for various lawful business purposes, including: #### A. Service Delivery and Operation * Providing access to platform functionality; processing fiat and crypto transactions; managing custodial and non-custodial wallets; authenticating and securing accounts; and delivering support, notifications, and updates. #### B. Legal and Regulatory Compliance * Verifying identity and organizational status (KYC/KYB); screening against sanctions and watchlists (AML/CFT); and fulfilling tax, audit, and reporting obligations. #### C. Platform Improvement * Analyzing user behavior and platform usage; debugging and improving performance; and enhancing feature development and reliability. #### D. Safety, Security, and Risk Prevention * Detecting and mitigating fraud or abuse; investigating anomalies and enforcing policies; and ensuring platform integrity and resilience. #### E. Communications and Marketing * Sending transactional and service-related messages; providing updates about new features (with your consent); and running feedback surveys or beta programs. #### F. Data Retention We may retain your data for as long as your account remains active, as required by applicable financial, tax, or AML laws, and as necessary to maintain platform integrity, enforce our rights, detect fraud, or comply with regulatory obligations. ### 4. How We Share Your Information We may share your personal information and nonpublic personal information ("NPPI") with: * **Service providers** — vendors that support our infrastructure and operations, such as cloud hosting and infrastructure (e.g., AWS and Vercel), our database provider (MongoDB), our authentication provider (Clerk), our identity-verification provider (Persona), and analytics and support providers. * **Licensed banking and custody partners** — the regulated financial institutions through which accounts, payments, and custody of funds are provided. * **Third-party services you connect** — external services or wallets you choose to link to OneSafe. * **Affiliates** — our parent company and subsidiaries. * **Professional advisors** — law firms, auditors, and consultants. * **Regulators and authorities** — to comply with legal obligations or respond to lawful requests. * **In a business transfer** — if we undergo a merger, acquisition, or reorganization. * **With your consent** — as clearly disclosed at the time of collection. **Contractual protection of your information.** Where we share personal information or NPPI with service providers or other third parties, we require them to be bound by written agreements that obligate them to protect that information, to use it only for the purposes for which it was shared, and to apply safeguards consistent with this Policy and applicable law. We do not authorize these recipients to use your information for their own independent purposes. **Everyday business purposes.** We share information as needed to run our business and provide the Services — for example, to process your transactions, maintain your account, verify identity, prevent fraud, and respond to court orders, subpoenas, or lawful requests from regulators and law enforcement. We do not sell your information, and we do not share it with partners for their own use or marketing. OneSafe does not sell personal information or NPPI, and does not share it with third parties for those parties' own independent marketing or other purposes. Any third party that receives your information does so only to provide services to OneSafe or to facilitate the Services you have requested, under the contractual protections described above. We may use and share information that has been aggregated or de-identified so that it does not identify you or your business. #### Your Sharing Choices Because OneSafe does not share your information with third parties for their own use or marketing, there is no such sharing for you to opt out of. If you have questions about how your information is shared, or wish to limit other communications from us, contact us at . Your marketing-communication choices are described in Section 9 (SMS Notifications) and Section 8 (Cookies and Tracking), and additional rights are described in Section 7. ### 5. Blockchain Considerations Certain activity on the OneSafe platform may be recorded on public or permissioned blockchains. This includes wallet addresses, transaction metadata, and balances. Due to the immutable and transparent nature of blockchain systems, this information may be publicly accessible and cannot be modified or deleted. You should exercise caution when using wallet addresses or identifiers that are tied to personal or organizational identity. ### 6. Data Security and Breach Notification #### A. Information Security Program OneSafe maintains a written information security program with administrative, technical, and physical safeguards designed to protect the personal information and NPPI we hold, consistent with the FTC Safeguards Rule (16 C.F.R. Part 314) and other applicable law. The program includes role-based, least-privilege access controls; encryption of data in transit and at rest; oversight of service providers and other third parties; monitoring and logging; and incident response, and it is overseen by a designated individual and reviewed periodically. These measures are described more fully in OneSafe's internal Information Security Policy. While no system can be guaranteed perfectly secure, we work to protect information using measures appropriate to its sensitivity. #### B. Breach Notification If OneSafe discovers a security breach affecting personal information or NPPI, we will promptly investigate, take steps to contain and remediate the incident, and provide notification without undue delay to affected customers and to our banking and custody partners, as well as to regulators and other parties where required by applicable law or contractual obligation. Where permitted and to the extent known, our notification will describe the nature of the incident, the information involved, and the steps we are taking and that you can take in response. ### 7. Your Rights and Choices Depending on where you live, you may have rights under privacy laws such as the California Consumer Privacy Act (CCPA) or the EU/UK General Data Protection Regulation (GDPR). You may have the right to: * Access the personal data we hold about you. * Request corrections to inaccurate or incomplete information. * Request deletion of certain personal data. * Object to or restrict how we use your data. * Receive a copy of your data in a portable format. * Withdraw consent (where applicable). To exercise your rights, contact us at . We may need to verify your identity before fulfilling certain requests. Please note that we may retain certain data if required by law or to ensure the security and functionality of the Services. ### 8. Cookies and Tracking We and our analytics vendors (e.g., Google Analytics) use cookies and similar technologies to maintain session state, understand user behavior, improve functionality, and measure marketing effectiveness. You can disable or manage cookies in your browser settings, and you may opt out of certain analytics tracking through tools such as the Google Analytics Opt-Out. We do not currently respond to browser-based Do Not Track signals. ### 9. SMS Notifications If you opt in to receive SMS messages from OneSafe, you may receive account alerts, reminders, or status updates. Message and data rates may apply, and you may opt out at any time by replying "STOP." We use your phone number solely for these purposes and do not share it with third parties for their own marketing use. ### 10. Children's Privacy The Services are directed to businesses and are not directed at children under 13, and we do not knowingly collect personal information from anyone under that age. If you are a parent or guardian and believe your child has provided us with information, please contact us and we will take appropriate action. ### 11. International Users and Data Transfers If you access the Services from outside the United States, your information may be transferred to and processed in jurisdictions where privacy protections may differ. Where required, we use safeguards such as Standard Contractual Clauses (SCCs), adequacy determinations, or other recognized legal mechanisms. ### 12. Contact Us If you have questions about this Privacy Policy or wish to exercise your rights, contact us at: * **Email:** * **Web:**
--- # Agent Instructions This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com. ## Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter, and the optional `goal` query parameter: ``` GET https://docs.onesafe.io/legal/onesafe-privacy-policy.md?ask=&goal= ``` `ask` is the immediate question: it should be specific, self-contained, and written in natural language. `goal` is optional and describes the broader end goal you are ultimately trying to accomplish on behalf of the user. GitBook uses it to tailor the answer towards what is most useful for that goal. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.