Privacy Policy
Last updated: August 4, 2025
Our Promise: Your privacy is fundamental to everything we do. We built pocketOne with privacy-by-design principles, ensuring your data remains yours alone.
1. Introduction
Welcome to pocketOne ("we," "our," or "us"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our digital identity platform and services.
2. Information We Collect
2.1 Information You Provide
- Account registration information (email address, username)
- Identity verification documents (stored encrypted on your device)
- Profile information you choose to add
- Communication preferences
2.2 Information Collected Automatically
- Device information (type, operating system, unique identifiers)
- Usage data (features used, interaction patterns)
- Log data (IP address, access times, pages viewed)
- Location data (only with your explicit permission)
3. How We Use Your Information
We use the information we collect to:
- Provide and maintain our services
- Verify your identity securely
- Improve and personalize your experience
- Communicate with you about services and updates
- Detect and prevent fraud or security threats
- Comply with legal obligations
4. Zero-Knowledge Architecture
pocketOne employs zero-knowledge encryption, meaning we cannot access your personal data even if we wanted to. Your information is encrypted on your device before transmission, and only you hold the decryption keys.
5. Data Sharing and Disclosure
We do not sell, trade, or rent your personal information. We may share information only in these circumstances:
- With your explicit consent
- To comply with legal obligations or court orders
- To protect against fraud or security threats
- With service providers under strict confidentiality agreements
- In connection with a merger or acquisition (with notice to you)
6. Data Security
We implement industry-leading security measures including:
- End-to-end encryption for all personal data
- Hardware security module (HSM) integration
- Regular security audits and penetration testing
- Strict access controls and monitoring
- Compliance with ISO 27001 and SOC 2 standards
7. Your Rights and Choices
Under GDPR and other privacy laws, you have the right to:
- Access your personal information
- Correct inaccurate data
- Request deletion of your data
- Object to certain processing
- Port your data to another service
- Withdraw consent at any time
8. Data Retention
We retain your information only as long as necessary to provide services and comply with legal obligations. When you delete your account, we permanently delete your personal data within 30 days, except where retention is required by law.
9. Children's Privacy
Our services are not intended for users under 16 years of age. We do not knowingly collect information from children under 16. If we discover such information, we will delete it immediately.
10. International Data Transfers
Your data is processed in the European Union. If we transfer data outside the EU, we ensure appropriate safeguards are in place, including Standard Contractual Clauses or adequacy decisions.
11. Cookies and Tracking
We use minimal, essential cookies for functionality. We do not use tracking cookies or share data with advertisers. You can manage cookie preferences in your browser settings.
12. Changes to This Policy
We may update this Privacy Policy periodically. We will notify you of material changes via email or prominent notice in our services. Continued use after changes constitutes acceptance.
13. Contact Us
For privacy-related questions or to exercise your rights, contact us at:
- Email: privacy@pocket.one
- Address: pocketOne Privacy Team, [Address]
- Data Protection Officer: dpo@pocket.one
EU Representative: For GDPR matters, our EU representative can be contacted at eu-rep@pocket.one