Privacy Policy

Last updated: July 1, 2025

1. Information We Collect

We collect information you provide directly when you create an account, complete KYC verification, communicate with other users, or contact our support team. This includes:

  • — Account information: display name, email address, phone number, and password.
  • — Identity verification documents: government-issued ID, selfie images, and proof of address.
  • — Profile information: avatar, biography, and trading preferences.
  • — Transaction data: trade history, payment methods, and dispute records.
  • — Communication data: messages sent through our platform and correspondence with support.

We also automatically collect certain information when you use the Platform, including your IP address, browser type, device information, operating system, pages viewed, and the dates and times of your visits.

2. How We Use Your Information

We use the information we collect for the following purposes:

  • — To operate, maintain, and improve the Platform and its features.
  • — To verify your identity and comply with KYC/AML regulatory requirements.
  • — To facilitate trades and process escrow settlements.
  • — To resolve disputes between trading parties.
  • — To communicate with you regarding your account, trades, and Platform updates.
  • — To detect, prevent, and investigate fraudulent or prohibited activity.
  • — To analyze usage patterns and improve our services.
  • — To comply with legal obligations and respond to lawful requests from authorities.

3. Data Sharing & Disclosure

We do not sell your personal information to third parties. We may share your information in the following circumstances:

  • — With other users as necessary to complete trades (e.g., display name, rating, and payment details).
  • — With service providers who help us operate the Platform (e.g., cloud hosting, identity verification, payment processing).
  • — When required by law, court order, or regulatory authority.
  • — To enforce our Terms of Service or protect the rights, property, or safety of Micati, our users, or others.
  • — In connection with a merger, acquisition, or sale of assets, with notice to users.

All service providers are contractually obligated to protect your data and may only use it for the specific services they provide to us.

4. Data Security

We implement industry-standard security measures to protect your personal information, including:

  • — Encryption in transit (TLS 1.3) and at rest (AES-256).
  • — Secure escrow wallet infrastructure with multi-signature controls.
  • — Regular security audits and penetration testing.
  • — Strict access controls for our internal team.
  • — Automated monitoring for suspicious activity.

While we take these precautions seriously, no method of electronic storage or transmission is 100% secure. We cannot guarantee absolute security of your data.

5. Data Retention

We retain your personal information for as long as your account is active or as needed to provide you with our services. After account closure, we retain certain information for legal and regulatory compliance purposes, including:

  • — KYC documents and verification records: retained for 5 years after account closure (as required by AML regulations).
  • — Transaction records: retained for 7 years for tax and audit purposes.
  • — Communications and dispute records: retained until the dispute is resolved plus 2 years.

After the applicable retention period, your data is securely deleted or anonymized.

6. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

  • — Right to access: request a copy of the personal data we hold about you.
  • — Right to rectification: request correction of inaccurate or incomplete data.
  • — Right to deletion: request deletion of your personal data (subject to legal retention requirements).
  • — Right to restrict processing: request that we limit how we use your data.
  • — Right to data portability: request your data in a structured, machine-readable format.
  • — Right to object: object to certain processing activities, including direct marketing.

To exercise any of these rights, please contact us at privacy@micati.com. We will respond to your request within 30 days.

7. Cookies & Tracking

We use cookies and similar tracking technologies to improve your experience on the Platform. These include:

  • — Essential cookies: required for the Platform to function (e.g., session management, authentication).
  • — Analytics cookies: help us understand how users interact with the Platform (e.g., page views, feature usage).
  • — Preference cookies: remember your settings and preferences.

You can control cookies through your browser settings. Disabling certain cookies may affect Platform functionality. We do not use third-party advertising cookies.

8. International Data Transfers

Your information may be transferred to and processed in countries other than your own. Our servers are located in Nigeria and Europe. When we transfer data across borders, we ensure appropriate safeguards are in place, including standard contractual clauses where applicable.

By using the Platform, you consent to the transfer of your information to countries that may have different data protection laws than your country of residence.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on the Platform and, where appropriate, by email. Your continued use of the Platform after changes take effect constitutes acceptance of the updated policy.

We encourage you to review this policy periodically for the latest information about our privacy practices.

10. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Email: privacy@micati.com

Support: support@micati.com

Company: DevBlock Technologies Ltd

Address: Lagos, Nigeria

This Privacy Policy was last updated on July 1, 2025.