Privacy Policy

Last updated: May 2026  ·  Kowry Technologies Ltd  ·  Company No. 17202314

1. Who We Are

Kowry Technologies Ltd ("Kowry", "we", "us", "our") is a company registered in England and Wales (Company No. 17202314), with its registered office at 66 Paul Street, London, EC2A 4NA, United Kingdom.

We operate the public website available at kowry.io. Kowry is preparing financial infrastructure for cross-border settlement orchestration; regulated services, account access, and production transaction processing will only be introduced after the required partner, compliance, and operational controls are in place. For the purposes of data protection law, Kowry Technologies Ltd is the data controller of personal data collected through this website and related business communications.

Contact us: privacy@kowry.io

2. What Data We Collect

2.1 Data We Collect Now

• Contact data: Name, email address, organisation, role, and message content when you contact us or request investor/partner materials.
• Business diligence data: Information shared by prospective investors, partners, suppliers, or advisers during meetings, email correspondence, procurement checks, or diligence review.
• Payment interest data: Basic billing or checkout metadata where a user voluntarily starts an investor access or payment flow on the website. Card details are handled by Stripe and are not stored by Kowry.

2.2 Data Collected Automatically

• Device information (type, operating system, browser)
• IP address and approximate location
• Basic server logs required for security and service reliability

2.3 Data Future Regulated Services May Require

If Kowry launches regulated settlement, payment, or account services, we may need to collect additional data through approved onboarding and compliance processes. This may include identity verification documents, beneficial ownership information, bank or mobile money account identifiers, transaction records, sanctions and PEP screening results, source-of-funds information, and operational support records. Those collections will be governed by the applicable product terms, licensing position, partner arrangements, and updated privacy notices in force at that time.

2.4 Data From Third Parties

• Stripe and other payment processors where a website payment or billing flow is used
• Professional advisers, prospective partners, and service providers involved in diligence, security, compliance, or business communications
• Identity verification, banking, mobile money, or regulated partner systems only where future services require them

3. How We Use Your Data

We use your personal data for the following purposes:

• Website and business communications: To respond to enquiries, manage investor or partner conversations, and provide requested materials
• Payment and billing administration: To support website checkout, billing status, receipts, and related support where a payment flow is used
• Legal compliance: To meet applicable corporate, tax, sanctions, AML, KYC, and record-keeping obligations where they apply
• Security: To detect, prevent, and investigate fraud and unauthorised access
• Communication: To send service updates, security alerts, and (with your consent) marketing communications
• Improvement: To improve our platform using support feedback, compliance review, and service performance data
• Legal proceedings: To establish, exercise, or defend legal claims

4. Legal Basis for Processing

• Contract: Processing necessary to provide requested website access, billing support, or business materials
• Legal obligation: Corporate record-keeping, tax reporting, sanctions compliance, and regulated-service obligations where applicable
• Legitimate interests: Security, fraud prevention, investor and partner diligence, service reliability, and business development
• Consent: Marketing communications where you opt in (you may withdraw consent at any time)

5. Data Sharing

We do not sell your personal data. We may share data with:

• Service providers: Payment processors, cloud hosting providers, email providers, security tooling, and professional advisers operating under appropriate confidentiality or data processing arrangements
• Regulatory authorities: Where required by law, including financial regulators and law enforcement agencies
• Regulated partners: Banking, payment, identity verification, or mobile money partners only where required for future regulated services or approved diligence
• Group companies: Kowry subsidiaries, subject to the same data protection standards

All third-party processors are contractually required to protect your data and use it only for the specified purpose.

6. International Transfers

As a platform serving African markets from a UK base, your data may be transferred to and processed in countries outside the UK and EEA. Where this occurs, we ensure appropriate safeguards are in place, including Standard Contractual Clauses approved by the ICO or equivalent mechanisms.

7. Data Retention

• Website enquiries and business communications: Retained for as long as needed to manage the relationship, answer follow-up questions, and maintain appropriate business records.
• Billing and payment records: Retained in line with tax, accounting, payment processor, and fraud-prevention requirements.
• Future regulated-service records: If regulated services launch, KYC, transaction, and compliance records may be retained for the statutory periods required by applicable AML, sanctions, tax, and financial-services rules.
• Marketing data: Retained until you withdraw consent or we determine it is no longer needed.

8. Your Rights

Under UK GDPR, you have the right to:

• Access: Request a copy of the personal data we hold about you
• Rectification: Correct inaccurate or incomplete data
• Erasure: Request deletion of your data (subject to legal retention obligations)
• Restriction: Restrict how we process your data in certain circumstances
• Portability: Receive your data in a structured, machine-readable format
• Object: Object to processing based on legitimate interests or for direct marketing
• Withdraw consent: At any time, where processing is based on consent

To exercise any of these rights, contact us at privacy@kowry.io. We will respond within 30 days. You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk.

9. Cookies

This static website does not currently set analytics or marketing cookies. A production app may use essential cookies for secure sign-in, fraud prevention, and account protection.

• Essential cookies: Used only where required for platform security and account operation.
• Optional cookies: Used only with consent if introduced in future.

You can control cookies through your browser settings.

10. Security

We implement technical and organisational measures to protect personal data, including encrypted transport, access controls, least-privilege administration, and segregation of public website systems from private diligence and operational materials. If future account services are introduced, additional controls such as multi-factor authentication, credential hashing, audit logging, and transaction-level monitoring will be applied as appropriate. No system is completely secure; if you have security concerns, contact us at security@kowry.io.

11. Children

Our platform is not intended for individuals under the age of 18. We do not knowingly collect personal data from minors. If you believe a minor has provided us with personal data, contact us at privacy@kowry.io and we will delete it promptly.

12. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated by email where appropriate or through a prominent notice on the website. Future regulated products may have additional privacy notices or customer terms.

13. Contact

Kowry Technologies Ltd
66 Paul Street, London, EC2A 4NA, United Kingdom
Email: privacy@kowry.io
Company No. 17202314 — Registered in England & Wales