Privacy Policy for Duti

Privacy Policy

Effective Date: 02-07-2025
Last Updated: 02-07-2025

Welcome to Duti, a platform owned and operated by Jhadruk Inc ("Company," "we," "us," or "our"). At Duti, we are committed to protecting your privacy. This Privacy Policy explains how we collect, use, safeguard, and share your information when you access our website (https://myduti.com) and related services.


1. Scope
-------------
This Privacy Policy applies to:
• Our website (https://myduti.com)
• Email communications referencing this Privacy Policy
• Third-party services we use (for analytics, payment processing, compliance, etc.)
• Any current or future mobile applications or services offered by Duti

By using our services, you agree to the terms outlined in this Privacy Policy.


2. Information We Collect
-------------------------
a) Personal Information
We collect personal information necessary to provide and improve our services. This may include:
• Identity Information: Name, date of birth, and government-issued identification (e.g., passport, 
  Social Security number, driver's license) when required for participation in an online ROSCA. 
  (Note: Such information is collected only when required by law or compliance needs.)
• Contact Information: Email address and other contact details.
• Security Credentials: Username, password, and security questions.
• Financial Information: Payment information.
• Technical Information: IP address, device information (browser type, operating system), and 
  location data where applicable.

b) Non-Personal Information
We also collect non-personal information, including:
• Cookies and tracking data for site analytics and fraud prevention.
• Aggregated and de-identified data for research and business insights.

c) Collection from Third Parties
We may obtain information from:
• Financial service providers (for payment processing)
• AML/KYC verification providers (for identity verification)
• Public databases and consumer reporting agencies


3. How We Use Your Information
------------------------------
We process your information for several purposes, including:

a) Service Provision and Improvement
• Managing user accounts and facilitating transactions.
• Verifying identities and conducting AML/KYC compliance checks.
• Enhancing user experience with personalized interactions.

b) Security and Fraud Prevention
• Detecting and preventing unauthorized access, identity theft, and fraudulent transactions.
• Maintaining security logs and ensuring system integrity.

c) Business Analytics and Marketing
• Analyzing usage patterns to improve our platform.
• Assessing marketing effectiveness and engagement.
• Sending promotional emails, newsletters, and updates (with an option to opt out).

d) Legal and Regulatory Compliance
• Fulfilling our obligations under applicable laws and regulations.
• Responding to lawful requests from government agencies and law enforcement.

4. Legal Basis for Processing
For applicable U.S. privacy laws (including rights provided under the California Consumer Privacy Act for California residents), our legal bases for processing your personal data include:

Consent: When you have provided explicit consent.
Contractual Necessity: To fulfill our contractual obligations to you.
Legal Obligation: To comply with legal or regulatory requirements.
Legitimate Interests: For our business interests, provided they do not override your rights and freedoms.

5. Data Retention
We retain your personal data for as long as necessary to fulfill the purposes for which it was collected and to comply with our legal obligations. In particular, for AML (Anti-Money Laundering) and related compliance requirements, we retain your data for 5 years from the date of collection.

6. Security of Your Data
We implement industry-standard technical and organizational measures to safeguard your personal data against unauthorized access, disclosure, alteration, or destruction. While we strive to protect your information, please note that no method of transmission over the Internet or electronic storage is completely secure.

7. Your Rights
Depending on your location and applicable laws, you may have rights regarding your personal data, including:

Access: Request copies of your personal data.
Correction: Request correction of any inaccurate or incomplete data.
Deletion: Request deletion of your personal data (subject to legal obligations such as the 5-year retention period for AML compliance).
Data Portability: Request transfer of your data to another service provider.
Objection: Object to processing based on legitimate interests or direct marketing.
For California Residents:
Under the California Consumer Privacy Act (CCPA), if you are a California resident, you have additional rights, including:

Right to Know: Request information regarding the categories and specific pieces of personal data we have collected.
Right to Delete: Request deletion of your personal data (subject to legal retention requirements).
Right to Opt Out: Although we do not sell your personal data, you have the right to direct us to not sell your information, if applicable.
To exercise these rights, please contact us using the details provided in Section 10.

8. Data Sharing and Disclosure
We do not sell your personal data. However, we may share your information with:

Financial and Payment Service Providers: To process payments and ensure regulatory compliance.
Service Providers and Infrastructure Partners: For hosting, analytics, security, and fraud detection.
Legal and Regulatory Authorities: When required by law, court order, or regulatory request.
Other Third Parties: With your consent or as otherwise disclosed at the time of collection.

9. International Data Transfers
Your information may be transferred to and processed in the United States or other countries. Since our operations are based in the U.S., all data processing will comply with applicable U.S. laws. We take appropriate measures to ensure that your data is adequately protected.

10. Cookies and Tracking Technologies
We use cookies and similar tracking technologies to:

Enhance website performance and user experience.
Analyze site traffic and user behavior.
Prevent fraud and unauthorized access.
You can manage your cookie preferences through your browser settings; however, disabling cookies may affect the functionality of our website.

11. Advertising and Marketing
We may use third-party advertising services (e.g., Google Ads, Facebook Ads) to display personalized advertisements based on your browsing history and interactions. You can opt out of interest-based ads by visiting optout.aboutads.info.

12. Third-Party Payment Services
When you make a payment, your information is processed by our third-party payment providers. These providers have their own privacy policies governing the use of your payment details. We do not store your full payment details on our systems.

13. Children's Privacy
Our services are intended solely for individuals aged 18 and older. We do not knowingly collect data from minors. If we become aware that personal data from a minor has been collected in error, we will promptly take steps to remove that information.

14. Updates to This Privacy Policy
We may update this Privacy Policy from time to time. Significant changes will be communicated via email and posted on our website. Continued use of our services after such updates indicates your acceptance of the revised policy.

15. Contact Information
-----------------------
If you have any questions or concerns regarding this Privacy Policy or our data practices, please contact us at:

Email: support@myduti.jhadruk.com
Website: https://myduti.com