Kairos

Privacy Policy

Effective date: March 21, 2026

Who we are

Kairos Signal System ("KSS", "we", "us") is a real-time crypto signal dashboard. We do not execute trades, connect to exchanges, or manage money. This policy describes what personal data we collect, how we use it, and your rights.

Data we collect

  • Account data: Email address, hashed password (or Google OAuth token). Required to create and authenticate your account.
  • Payment data: Billing is handled entirely by Stripe. We store only your Stripe customer ID — never your card number, CVV, or bank details.
  • Usage data: Signal events, trade outcomes, and preference settings (position sizes, timeout toggle) associated with your account. Used to persist your session across devices.
  • Technical data: IP address (logged per request in our audit trail for security purposes), browser type inferred from request headers. We do not use tracking pixels or third-party analytics.

How we use your data

  • — Authenticate and maintain your session
  • — Process and manage your subscription via Stripe
  • — Persist your preferences and trade history across devices
  • — Detect abuse and investigate security incidents (audit log)
  • — Send transactional emails (account confirmation, password reset) via Supabase Auth

We do not sell your data. We do not use your data for advertising.

Data storage and processors

Your account and usage data is stored in a managed cloud database hosted in the United States. Payment processing is handled by Stripe (PCI-DSS Level 1 certified) — we never store your card details. The application is served via a cloud hosting provider with global edge delivery.

All data is encrypted in transit (TLS 1.2+) and at rest.

Cookies

We use a single HttpOnly, Secure, SameSite=Lax session cookie issued by Supabase Auth to maintain your login state. This cookie is strictly necessary for the service to function and does not require consent under GDPR Recital 47. We do not use advertising or analytics cookies.

Your rights

  • Access: Request a copy of the data we hold about you
  • Correction: Update your email or password via account settings
  • Deletion: Delete your account and all personal data instantly via Account Settings → Delete account. Stripe billing records are retained separately per financial compliance requirements.
  • Portability: Export your trade history via the Journal tab at any time
  • Objection: You may object to processing at any time by contacting us

To exercise any right, email privacy@kairos-signal.com. We will respond within 30 days.

Data retention

Account data is retained for as long as your account is active. If you delete your account via Account Settings, all personal data (account, signals, trades, preferences, activity logs) is purged immediately. Stripe retains billing and payment records per their own retention policy for financial compliance — this data is outside our control and is not subject to deletion requests.

Children

KSS is not directed at children under 18. We do not knowingly collect data from minors.

Changes

We may update this policy. Material changes will be communicated via email. Continued use after notice constitutes acceptance.

Contact

Questions or requests: privacy@kairos-signal.com