KXCO ("we", "our", "us") is committed to protecting the privacy and confidentiality of all personal and institutional data processed through our platform, website, and services. This Privacy Policy explains what information we collect, how we use it, who we share it with, and the rights available to you under applicable law.
Institutional Access Only. KXCO services are available exclusively to verified institutional clients including government bodies, licensed financial institutions, and qualified corporates. This policy applies to all interactions with KXCO, including website visits, enquiry submissions, and active service engagements.
We process personal and institutional data for the following purposes, each with a corresponding lawful basis:
We do not sell personal data. We do not share personal data with third parties for marketing purposes. We may share data with:
KXCO operates globally with offices in London, New York, Sydney, Dubai, Singapore, and Ahmedabad. Personal data may be transferred to and processed in jurisdictions outside your country of residence. Where such transfers occur to countries without equivalent data protection standards, we implement appropriate safeguards including standard contractual clauses approved by relevant regulatory authorities.
We retain personal data for as long as necessary to fulfil the purposes for which it was collected, including satisfaction of legal, regulatory, accounting, and reporting obligations. Specifically:
Depending on your jurisdiction, you may have the following rights regarding your personal data:
To exercise any of these rights, contact us at the address in Section 9. We will respond within 30 days. We may require identity verification before processing any request.
Our website uses strictly necessary cookies required for basic functionality, and analytics cookies that help us understand how visitors interact with the site. We do not use advertising or tracking cookies. You may disable analytics cookies via your browser settings without affecting core website functionality.
We implement enterprise-grade technical and organisational security measures appropriate to the sensitivity of the data processed, including encrypted data transmission, access controls, regular security assessments, and staff training on data protection obligations.
For privacy-related enquiries, requests to exercise your rights, or to report a concern: help@kxco.io
If you are unsatisfied with our response, you have the right to lodge a complaint with the relevant data protection authority in your jurisdiction.
These Terms of Service ("Terms") govern access to and use of KXCO's platform, website, infrastructure services, and any related documentation (collectively, the "Services"). By accessing or using the Services, you confirm that you are an authorised representative of a qualified institutional entity and that you agree to be bound by these Terms.
Institutional Access Only. KXCO Services are not available to retail or consumer clients. Access is restricted to government bodies and sovereign entities, licensed financial institutions, and qualified corporate entities that meet KXCO's eligibility criteria. KXCO reserves the right to decline access at its absolute discretion.
Access to KXCO Services is subject to successful completion of KXCO's institutional onboarding process, including KYC verification, AML screening, and regulatory eligibility assessment. KXCO may suspend or terminate access at any time if a Client ceases to meet eligibility requirements or if KXCO has reasonable grounds to believe a Client has violated these Terms or applicable law.
KXCO provides purpose-built blockchain infrastructure. Each deployment is designed, planned, and built in consultation with the Client to meet their specific operational and regulatory requirements. KXCO does not provide off-the-shelf products. The specific scope, deliverables, timeline, and commercial terms of each engagement are set out in a separate written agreement between KXCO and the Client.
Clients and Authorised Users must not use the Services to:
All intellectual property rights in KXCO's infrastructure, platform, software, documentation, and methodologies remain the exclusive property of KXCO. Clients are granted a limited, non-exclusive, non-transferable licence to use the Services during the term of their engagement, solely for the purposes specified in the applicable engagement agreement. No rights are granted beyond what is explicitly stated.
Both parties agree to maintain the confidentiality of all Confidential Information received from the other party and to use it only for the purposes of the engagement. This obligation survives the termination of any engagement for a period of five years. All institutional discussions with KXCO are treated as confidential by default. A mutual NDA is available upon request prior to any substantive discussion.
KXCO's collection and processing of personal and institutional data in connection with the Services is governed by the KXCO Privacy Policy. By engaging KXCO Services, Clients confirm that they have authority to provide any data shared with KXCO and that such sharing is compliant with applicable data protection laws.
To the maximum extent permitted by applicable law, KXCO's total liability arising from or in connection with the Services shall not exceed the fees paid by the Client in the three months preceding the event giving rise to the claim. KXCO shall not be liable for any indirect, incidental, special, consequential, or punitive damages, or for loss of profits, revenue, data, or business opportunity.
Clients are solely responsible for ensuring their use of KXCO Services complies with all laws and regulations applicable to them in their jurisdiction(s) of operation. KXCO's embedded compliance architecture supports but does not replace the Client's own compliance obligations. KXCO does not provide legal or regulatory advice.
These Terms are governed by English law. Any dispute arising from or in connection with these Terms shall be subject to the exclusive jurisdiction of the courts of England and Wales, unless otherwise agreed in a separate engagement agreement. KXCO reserves the right to seek injunctive relief in any jurisdiction.
KXCO reserves the right to amend these Terms at any time. Material amendments will be communicated to active Clients with a minimum of 30 days' notice. Continued use of the Services following such notice constitutes acceptance of the amended Terms.
For contractual, legal, or compliance enquiries: help@kxco.io
KXCO is built on a foundational principle: compliance is not a feature added to infrastructure — it is the infrastructure. Every component of the KXCO platform, from the consensus mechanism to the transaction API, is designed to operate within and enforce applicable regulatory frameworks. This document outlines KXCO's compliance architecture, the regulatory frameworks we address, and the standards we hold ourselves and our clients to.
KXCO's KYC, AML, and transaction monitoring architecture is designed in accordance with the Financial Action Task Force (FATF) Recommendations, including the FATF guidance on Virtual Asset Service Providers (VASPs). All participants on the KXCO network are subject to identity verification prior to access. Transaction monitoring is continuous. Suspicious activity reporting is supported and automated where applicable.
For clients operating within the European Economic Area or transacting in instruments that fall within MiFID II scope, KXCO's reporting and record-keeping infrastructure supports the transaction reporting, best execution documentation, and audit trail requirements of MiFID II and its implementing regulations.
KXCO processes personal data in accordance with GDPR principles including lawfulness, fairness, transparency, purpose limitation, data minimisation, accuracy, storage limitation, and integrity and confidentiality. Data subject rights are respected and enforceable. Data processing agreements are in place with all relevant third-party processors.
KXCO's information security management approach is aligned with ISO/IEC 27001 standards, covering risk assessment, access control, cryptography, physical security, incident management, and business continuity.
For banking institution clients, KXCO's infrastructure supports capital adequacy reporting requirements and provides the real-time data visibility necessary for liquidity risk management under Basel III frameworks.
KXCO engages with clients across multiple regulatory jurisdictions. Each deployment is designed with the specific regulatory requirements of the client's operating jurisdictions in mind, including local AML laws, digital asset regulations, and financial services licensing requirements.
Every participant on the KXCO network — whether an institution, an authorised individual, or a machine agent — is subject to identity verification before access is granted. KXCO's KYC process includes:
Every transaction on the KXCO network is recorded in an immutable, timestamped, cryptographically signed on-chain ledger. This provides a complete, tamper-proof audit trail that is available to authorised parties in real time. Monitoring systems analyse transaction patterns for indicators of money laundering, fraud, sanctions evasion, and other financial crime. Anomalous patterns trigger automated alerts and, where required, reporting to relevant authorities.
KXCO employs enterprise-grade cryptographic standards for all data at rest and in transit. Access controls are enforced at the network, application, and data levels. The permissioned network architecture means no anonymous participant can interact with KXCO infrastructure. Smart contracts are subject to formal security audit before deployment. Incident response procedures are documented, tested, and subject to regular review.
Clients subject to regulatory audit have access to their complete transaction history, compliance records, and reporting data in formats compatible with standard regulatory examination processes. KXCO cooperates fully with regulatory examinations and law enforcement requests made through lawful channels.
KXCO's compliance architecture supports but does not replace each client's own compliance obligations. Clients remain solely responsible for ensuring their use of KXCO infrastructure complies with all applicable laws and regulations in their jurisdictions. KXCO does not provide legal or regulatory advice. Clients should seek independent legal counsel regarding their specific regulatory obligations.
For compliance-related enquiries, regulatory questions, or to discuss jurisdiction-specific requirements: help@kxco.io
All discussions with KXCO are treated as confidential by default. For engagements that require the exchange of sensitive institutional, technical, or commercial information prior to a formal engagement agreement, KXCO offers a mutual Non-Disclosure Agreement (NDA).
Standard NDA Timeline. KXCO can typically provide a draft mutual NDA within two business days of a request. Execution is subject to both parties' legal review. We recommend requesting an NDA at the point of initial contact if you anticipate sharing sensitive information in early-stage discussions.
To request a mutual NDA, please contact us via the enquiry form on our website or directly by email, indicating that you require an NDA prior to substantive discussion. Please include the full legal name of your entity and the jurisdiction of incorporation so we can prepare the appropriate document promptly.
Alternatively, if you have your institution's standard NDA that you would prefer to use as the basis for discussion, we are open to reviewing that document. Please send it to the address below along with your contact details.
Full case studies for KXCO deployments across government, banking, and corporate clients are available under executed NDA. These documents include detailed technical architecture, compliance frameworks, performance data, and client outcomes. Access is available to qualified institutions upon request.
Contact us to initiate the NDA process: help@kxco.io
Please include your full name, institutional email address, entity name, and jurisdiction. We will respond within one business day.