Incepto
Legal centerPrivacy Policy
Login Registration

Data protection

Privacy Policy

This Privacy Policy explains how INCEPTO collects, uses, discloses, stores, secures, and retains personal information in connection with account registration, KYC, project applications, allocations, payment workflows, wallets, support, notifications, and platform operations.

Scope

This Privacy Policy applies to personal information processed through the INCEPTO website, registration forms, login, account dashboard, profile page, KYC upload flow, project applications, wallet tools, payment order tools, support tickets, notifications, admin console, cookie banner, and related communications. INCEPTO is operated by Dotstart Technologies Ltd, registration number 2043351, registered address: Road Town, Tortola, VG 1110, British Virgin Islands (BVI). References to INCEPTO, we, us, or our mean the platform operator and authorized service providers acting on our behalf.

BVI Data Protection Framework

Because the operator is incorporated in the British Virgin Islands, the platform is designed to take account of the BVI Data Protection Act, 2021 where applicable, including principles relating to lawful processing, purpose limitation, data security, retention, data subject rights, and cross-border transfers. Additional privacy laws may also apply depending on a user jurisdiction, service provider location, or project operator.

Information You Provide

We may collect name, full legal name, email, password hash, phone number, Telegram or contact details where enabled, country or region, residential address, street, building, apartment, city, postal code, date of birth, citizenship, residence country, tax country, identity document type, document number, document issue date, source of funds, employment status, income range, investor type, experience level, primary interest, investment objective, risk tolerance, project application amounts, payment network choices, wallet addresses, support messages, attachments, and other information you choose to submit.

Identity and Compliance Information

For KYC, AML, sanctions, fraud-prevention, suitability, and eligibility purposes, we may collect identity documents, proof-of-address documents, document metadata, selfies or liveness data if enabled through a vendor, beneficial ownership information for entities, source-of-funds evidence, source-of-wealth information, transaction history, blockchain wallet information, sanctions screening results, PEP indicators, adverse media indicators, and compliance decision records.

Wallet and Blockchain Information

We may process wallet addresses, connected wallet metadata, selected networks, transaction hashes, payment order details, smart contract addresses, token delivery hashes, blockchain confirmation status, network mismatch information, payment review notes, and public blockchain data associated with your activity. Public blockchain information may be immutable, visible to third parties, and outside our ability to erase or change.

Automatically Collected Information

We may collect IP address, device identifiers, browser type, operating system, time zone, language, referring pages, session identifiers, cookie and local storage values, CSRF/security tokens, login timestamps, failed login attempts, admin activity logs, support activity logs, page interactions, error logs, and other technical information needed for security, fraud prevention, diagnostics, analytics, and platform reliability.

Information from Third Parties

We may receive information from KYC vendors, sanctions screening providers, fraud-prevention services, wallet infrastructure providers, blockchain analytics providers, payment infrastructure, project operators, launch partners, email providers, hosting providers, analytics providers, support tools, public sources, and authorities where relevant to platform operation, eligibility review, compliance, or dispute handling.

How We Use Information

We use information to create accounts, authenticate users, maintain sessions, process registration requests, review eligibility, conduct KYC and AML checks, manage project applications, issue payment orders, verify payment hashes, deliver token delivery records, process platform wallet requests, provide support, send notifications, maintain audit logs, prevent fraud, enforce terms, comply with legal obligations, improve platform reliability, and protect users and the platform.

Legal Bases Where Applicable

Depending on applicable privacy law, processing may be based on contract necessity, legitimate interests, consent, legal obligations, public interest in preventing financial crime, protection of legal claims, compliance with sanctions and AML obligations, and your request to access reviewed digital asset opportunity workflows. Where consent is required, you may withdraw it, but withdrawal may affect access to features.

Sharing with Project Operators

Where you apply for or participate in a project, we may share relevant profile, eligibility, KYC, wallet, application, allocation, payment, and support information with the project operator, issuer, launch partner, or administrator to facilitate review, allocation, compliance, distribution, dispute handling, or reporting. Project operators may act as independent controllers under their own policies.

Service Providers

We may share information with hosting, storage, security, email, analytics, KYC, AML, sanctions, blockchain analytics, wallet connectivity, payment infrastructure, customer support, backup, audit, legal, tax, and professional service providers. These providers may process information only as permitted by contract, law, or their own independent controller obligations where applicable.

Legal, Regulatory, and Safety Disclosures

We may disclose information to courts, regulators, law enforcement, sanctions authorities, compliance partners, tax authorities, project operators, or other parties where we believe disclosure is required or permitted by law, necessary to enforce our terms, necessary to protect rights and safety, necessary to investigate fraud or suspicious activity, or necessary to respond to legal process.

International Transfers

Your information may be processed in countries other than your residence, including outside the British Virgin Islands. Data protection laws may differ from those in your jurisdiction. Where required, we use appropriate contractual, technical, organizational, consent-based, adequacy-based, or other lawful transfer safeguards, but you acknowledge that global digital asset operations, wallet infrastructure, KYC review, hosting, support, blockchain analytics, and project participation may require cross-border processing.

Retention

We retain personal information for as long as needed to operate accounts, process applications, maintain payment and token delivery records, handle support, prevent fraud, evidence compliance, resolve disputes, satisfy legal and tax obligations, enforce terms, and maintain audit trails. KYC, AML, sanctions, application, payment, and blockchain-related records may be retained after account closure where legally required or operationally necessary.

Security

We use administrative, technical, and organizational safeguards such as access controls, password hashing, session protections, CSRF controls, file access restrictions, logs, backups, encryption where appropriate, and admin review procedures. No system can be guaranteed fully secure. You are responsible for securing your email, device, browser, wallet, password, seed phrase, and private keys.

Your Choices and Rights

Depending on your jurisdiction, you may request access, correction, deletion, restriction, portability, objection, withdrawal of consent, or information about processing. We may need to verify your identity before responding. We may decline or limit requests where necessary for legal retention, AML, sanctions, fraud prevention, security, dispute resolution, audit, public blockchain immutability, or legitimate operational reasons.

Privacy Contact

Privacy, data protection, and compliance requests may be submitted through platform support or sent to support@incepto.pro. We may require identity verification before responding to privacy requests.

Marketing and Service Communications

We may send operational communications, account notices, security alerts, project status notifications, payment order updates, support replies, legal updates, and policy notices. Marketing communications, if enabled, may be subject to consent or opt-out requirements. Transactional and security communications may continue even if you opt out of marketing.

Children

The platform is not intended for minors. You must be at least 18 years old or older where local law requires. We do not knowingly collect information from minors for platform participation.

Changes to This Policy

We may update this Privacy Policy from time to time. The updated version will be posted on the platform and may be communicated electronically where appropriate. Continued use after an update means the revised policy applies to subsequent processing.

Effective date: May 27, 2026. For questions about this policy, contact INCEPTO support through the platform support channel.