KEDOSS

Privacy Policy

Last updated: February 2026

1. Information We Collect

We collect the following types of information:

  • Account Information — Name, email address, phone number, password (hashed), country, and role selection.
  • KYC Documents — Government-issued ID, proof of address, and selfie for identity verification. These are stored securely and reviewed by our team.
  • Property & Payment Data — Property details, tenant information, rent amounts, payment records, and transaction history.
  • CCTV Credentials — For property owners who add CCTV cameras, we store stream URLs and authentication credentials in encrypted form. Only the property owner can access these.
  • Usage Data — IP address, browser type, device information, pages visited, and interaction patterns.

2. How We Use Your Data

  • Provide and maintain the Platform's services
  • Process subscriptions, boosts, and credit purchases
  • Send transactional emails (verification, password reset, payment reminders)
  • Send push notifications and in-app alerts
  • Verify user identities through KYC review
  • Generate reports and analytics for property owners
  • Detect and prevent fraud, including payment discrepancy alerts
  • Improve Platform features and user experience

3. Third-Party Services

We share data with the following third-party services as needed:

  • Stripe & Paystack — Payment processing for subscriptions, boosts, and credit packs.
  • Resend — Transactional email delivery.
  • Twilio — SMS and WhatsApp notifications (when enabled by admin).
  • OneSignal — Web push notifications.
  • Supabase — Database hosting and file storage.

We do not sell your personal data to third parties. Data is shared only as necessary to provide the services described above.

4. Data Security

We implement industry-standard security measures to protect your data:

  • Passwords are hashed using bcrypt
  • CCTV credentials are stored encrypted in the database
  • All API communication uses HTTPS/TLS encryption
  • Authentication tokens are hashed before storage
  • Rate limiting protects against brute-force attacks
  • Input sanitization prevents injection attacks

5. Data Retention

We retain your data for as long as your account is active. Payment records and audit logs are retained for a minimum of 7 years for compliance purposes. KYC documents are retained for 2 years after verification approval, after which re-verification may be required. You may request deletion of your account and associated data at any time.

6. Your Rights

You have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your data (subject to legal retention requirements)
  • Export your data in a portable format
  • Withdraw consent for optional data processing
  • Object to processing of your data for marketing purposes

To exercise any of these rights, contact us at privacy@kedoss.com.

7. Cookies & Local Storage

We use localStorage to store authentication tokens, theme preferences, and UI state (such as sidebar collapse state and PWA install prompt dismissal). We do not use third-party tracking cookies. Analytics, if enabled, use privacy-respecting tools.

8. Children's Privacy

The Platform is not intended for users under the age of 18. We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, please contact us so we can remove it.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes via email or through the Platform. Your continued use of the Platform after changes constitutes acceptance of the updated policy.

10. Contact

For privacy-related inquiries, contact us at privacy@kedoss.com.