LIANKALegal Document

Privacy

Privacy Policy

Effective: June 1, 2025Lianka Inclianka.io

Lianka Inc

Effective Date: June 1, 2025

Last Updated: June 1, 2025

lianka.io

This Privacy Policy explains how Lianka Inc collects, uses, stores, shares, and protects your personal data when you access or use the Lianka Platform. Please read it carefully. By using the Platform, you consent to the practices described in this Policy.

1. Definitions
2. Who We Are and How to Contact Us
3. What Personal Data We Collect
4. How We Collect Your Data
5. Legal Basis for Processing
6. How We Use Your Personal Data
7. How We Share Your Data
8. Blockchain and On-Chain Data
9. Cookies and Tracking Technologies
10. Data Retention
11. Data Security
12. Your Rights
13. KYC and Identity Verification
14. Children's Privacy
15. International Data Transfers
16. Changes to This Policy
17. Complaints

1. Definitions

In this Privacy Policy, unless the context otherwise requires:

"Account" means your registered user account on the Lianka Platform.
"Data Controller" means Lianka Inc, the entity that determines the purposes and means of processing your personal data.
"Personal Data" means any information relating to an identified or identifiable natural person.
"Platform" means the digital investment platform accessible at lianka.io and associated applications.
"Processing" means any operation performed on personal data, including collection, storage, use, disclosure, or deletion.
"Special Category Data" means personal data revealing racial or ethnic origin, political opinions, religious beliefs, health data, or biometric data.
"Third Party" means any person or entity other than you or the Company.
"User" means any individual who has registered an Account on the Platform.

2. Who We Are and How to Contact Us

2.1 The Data Controller for all personal data processed through the Platform is:

Lianka Inc

Trading as: Lianka

Website: lianka.io

Email: supportlianka@gmail.com

2.2 If you have any questions or concerns about how we handle your personal data, please contact us at supportlianka@gmail.com. We aim to respond to all data-related enquiries within five (5) business days.

2.3 Data Protection Contact. The Company does not currently have a formally designated Data Protection Officer (DPO), as this is not required at our current scale and operational structure. All data protection enquiries should be directed to our general contact email. If the Company's data processing activities expand to a scale that triggers a mandatory DPO requirement under applicable law, a DPO will be designated and their contact details published on the Platform.

3. What Personal Data We Collect

3.1 We collect and process the following categories of personal data:

A. Registration and Identity Data

Full name (collected during KYC verification).
Email address (provided at registration).
Date of birth (collected during KYC verification).
Nationality and country of residence (collected during KYC).
Government-issued identification number (collected during KYC).
Photograph or scan of identity document (collected during KYC).
Selfie or liveness verification image (collected during KYC, where required).

B. Financial and Transaction Data

USDT deposit amounts and transaction timestamps.
Blockchain wallet addresses (deposit origin and withdrawal destination).
Transaction hashes and on-chain identifiers.
Withdrawal amounts, dates, and processing status.
Account balance history, ROI records, and cycle data.
Referral earnings and referral relationship records.

C. Technical and Device Data

IP address and approximate geographic location derived from IP.
Browser type, version, and operating system.
Device type and unique device identifiers.
Session timestamps, login history, and access logs.
Pages visited on the Platform and time spent on each page.

D. Communications Data

Content of emails, support messages, and enquiries sent to the Company.
Platform notification preferences and history.
Records of any disputes or complaints you have raised.

E. Behavioural and Preference Data

Investment timeframe preferences.
Notification preferences (email and in-app).
Platform settings and configuration choices.

3.2 We do not collect Special Category Data (such as health, political, or biometric data) except to the extent that a User's government-issued identity document incidentally contains such information.

4. How We Collect Your Data

4.1 We collect your personal data through the following means:

Direct Collection: Data you provide when registering an Account, completing KYC, submitting a deposit, requesting a withdrawal, contacting support, or updating your profile.

Automated Collection: Data collected automatically when you access the Platform, including through server logs, cookies, and analytics tools. This includes technical and device data described in Section 3(C).

Blockchain Sources: Publicly available on-chain data associated with wallet addresses used in connection with your Account. Blockchain data is permanent and immutable - we cannot erase it.

Third-Party KYC Providers: Where we use third-party identity verification services to process KYC, those providers may collect additional data on our behalf as described in Section 13.

5. Legal Basis for Processing

5.1 We process your personal data on the following legal grounds, depending on the nature of the processing:

Contractual Necessity: Processing required to provide the Platform services to you - including managing your Account, processing deposits and withdrawals, applying ROI, and operating the referral system.

Legal Obligation: Processing required to comply with applicable legal requirements, including anti-money laundering (AML), counter-terrorism financing (CTF), and Know Your Customer (KYC) obligations.

Legitimate Interests: Processing for our legitimate business interests, including fraud prevention, security monitoring, platform improvement, and analytics - where such interests are not overridden by your rights.

Consent: Where we request your specific consent for a particular processing activity, such as sending marketing communications. You may withdraw consent at any time.

6. How We Use Your Personal Data

6.1 We use your personal data for the following purposes:

A. Account Management

Creating, maintaining, and securing your Account.
Authenticating your identity on login.
Managing your Account lifecycle (ACTIVE, GRACE, INACTIVE, FROZEN, TERMINATED states).
Sending system notifications relevant to your Account.

B. Financial Operations

Processing deposits and initiating your investment cycle.
Applying daily ROI calculations to your Active Deposit.
Processing withdrawal requests and verifying destination addresses.
Crediting referral and promotion bonuses.
Calculating and updating your Loyalty Score and Rank Level.

C. KYC and Compliance

Verifying your identity before processing your first withdrawal.
Complying with applicable anti-money laundering and counter-terrorism financing requirements.
Maintaining records required by law.
Investigating suspected fraudulent or prohibited activity.

D. Security and Fraud Prevention

Monitoring login activity and detecting unusual access patterns.
Investigating and responding to suspected security breaches.
Protecting the integrity of the Platform and its Users.

E. Customer Support

Responding to your enquiries, complaints, and support requests.
Maintaining records of our communications with you.

F. Platform Improvement

Analysing how Users interact with the Platform to improve functionality and user experience.
Diagnosing and resolving technical issues.

G. Legal and Administrative

Enforcing our Terms of Service.
Defending or pursuing legal claims.
Complying with court orders, regulatory requests, or lawful government demands.

7. How We Share Your Data

7.1 We do not sell your personal data to third parties. We share your data only as described in this Section.

Service Providers: We may share your data with trusted third-party service providers who process data on our behalf, including cloud hosting providers, email delivery services, analytics platforms, and KYC verification providers. All such providers are contractually bound to process your data only as instructed by us and in accordance with applicable privacy laws.

Legal and Regulatory Authorities: We may disclose your personal data to law enforcement agencies, regulatory bodies, courts, or government authorities where required to do so by law, court order, or to protect the rights, property, or safety of the Company, its Users, or the public.

Business Transfers: In the event of a merger, acquisition, restructuring, or sale of all or part of the Company's business, your personal data may be transferred to the acquiring entity. We will notify you of any such transfer and the applicable privacy terms.

With Your Consent: We may share your data with other third parties where you have given your explicit prior consent.

7.2 We require all third parties with whom we share your data to maintain appropriate security standards and to process your data only for the specified purpose.

8. Blockchain and On-Chain Data

8.1 When you deposit or withdraw USDT through the Platform, your wallet address and transaction details are recorded on a public blockchain (Tron or BNB Smart Chain). This data is:

Publicly visible to anyone who queries the blockchain.
Permanent and immutable - it cannot be deleted or altered by us or anyone else.
Outside the scope of any right to erasure request (see Section 12).

8.2 The Company records blockchain wallet addresses you use in connection with your Account. This allows us to verify deposits, process withdrawals, and detect suspicious activity.

8.3 Custody Model. Once you deposit USDT to a Platform deposit address, custody of those funds passes to the Company. The Company does not operate a segregated client account structure (i.e. your funds are not held separately from the Company's operating funds in a third-party custodian). This means your deposited funds are not protected by deposit insurance, investor compensation schemes, or equivalent protections. You should only deposit amounts you are prepared to risk in full. The Company maintains internal accounting records that track each User's Account balance separately for operational purposes.

You should assume that all blockchain transaction data associated with your wallet addresses is permanently public. If privacy is a concern, consider using dedicated wallet addresses for Platform transactions.

9. Cookies and Tracking Technologies

9.1 The Platform uses cookies and similar tracking technologies to enhance your experience and collect usage data.

Types of Cookies We Use

Strictly Necessary Cookies: Required for the Platform to function. These include session cookies that maintain your login state. You cannot disable these without impacting your ability to use the Platform.

Functional Cookies: Remember your preferences and settings, such as your chosen investment timeframe and notification preferences.

Analytics Cookies: Help us understand how Users interact with the Platform, which pages are most visited, and where errors occur. This data is aggregated and generally not linked to your identity.

9.2 You may control non-essential cookies through your browser settings. Disabling analytics cookies will not affect your ability to use the Platform's core functions.

9.3 We do not use advertising cookies or share data with advertising networks.

9.4 Cookie Consent. When you first access the Platform, you will be presented with a cookie notice. By continuing to use the Platform after seeing this notice, you consent to our use of non-essential cookies as described in this Section. You may withdraw consent for non-essential cookies at any time through your browser settings or by contacting us. Withdrawal of cookie consent does not affect the lawfulness of prior processing.

10. Data Retention

10.1 We retain your personal data for as long as is necessary for the purposes set out in this Policy, or as required by applicable law.

10.2 Specific retention periods:

Account data (email, settings, preferences): Retained for the duration of your Account and for five (5) years following Account closure.
KYC and identity documents: Retained for five (5) years following Account closure, or longer where required by law.
Financial and transaction records: Retained for seven (7) years from the date of the transaction, in line with standard financial record-keeping requirements.
Support communications: Retained for three (3) years from the date of the last communication.
Technical logs and access records: Retained for ninety (90) days unless required for an ongoing security investigation.
Blockchain data: Permanently recorded on the public blockchain and not within our control to delete.

10.3 When personal data is no longer required, we securely delete or anonymise it.

11. Data Security

11.1 We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include:

Encrypted data transmission using Transport Layer Security (TLS/HTTPS).
Hashed storage of passwords using industry-standard algorithms (bcrypt).
JWT-based session authentication with defined expiry periods.
Role-based access controls limiting administrator access to sensitive data.
Regular security reviews and vulnerability monitoring.

11.2 Notwithstanding the above, no method of electronic transmission or storage is completely secure. We cannot guarantee absolute security of your data. You are responsible for maintaining the confidentiality of your login credentials.

11.3 In the event of a data breach that is likely to result in a risk to your rights and freedoms, we will notify you as soon as reasonably practicable and will take appropriate remedial action.

12. Your Rights

12.1 Depending on your location and applicable law, you may have the following rights in respect of your personal data:

Right of Access: You may request a copy of the personal data we hold about you.

Right to Rectification: You may request that we correct any inaccurate or incomplete personal data.

Right to Erasure: You may request that we delete your personal data where it is no longer necessary for the purposes for which it was collected, subject to our legal retention obligations. Note that blockchain data cannot be deleted.

Right to Restriction: You may request that we restrict processing of your personal data in certain circumstances (for example, while you contest the accuracy of the data).

Right to Data Portability: You may request a copy of your personal data in a structured, machine-readable format.

Right to Object: You may object to processing based on legitimate interests or for direct marketing purposes.

Right to Withdraw Consent: Where processing is based on consent, you may withdraw it at any time without affecting the lawfulness of prior processing.

12.2 To exercise any of these rights, please contact us at supportlianka@gmail.com with the subject line "Data Rights Request." We will respond within thirty (30) days. We may ask you to verify your identity before fulfilling a request.

12.3 Certain rights cannot override our legal obligations. For example, we cannot delete transaction records that we are legally required to retain.

13. KYC and Identity Verification

13.1 KYC verification is required before a User's first withdrawal. During KYC, we collect identity documents and may use third-party verification providers to process them.

13.2 Where we use third-party KYC providers, those providers act as data processors under our instruction. We ensure they are subject to appropriate data processing agreements and security standards.

13.3 KYC data is used exclusively for identity verification and compliance purposes. It is not shared with other Users or used for marketing.

13.4 Rejected KYC documents are flagged in your Account. You may resubmit corrected documents. The Company retains all submitted KYC documents for the periods set out in Section 10, regardless of verification outcome.

Your identity documents are treated as highly sensitive data. They are stored with encryption, accessible only to authorised administrators, and never shared with third parties except as required by law.

14. Children's Privacy

14.1 The Platform is not intended for use by persons under the age of eighteen (18). We do not knowingly collect personal data from children.

14.2 If we become aware that a person under the age of eighteen (18) has registered an Account or provided us with personal data, we will take immediate steps to delete that data and close the Account.

14.3 If you believe a child under eighteen (18) has provided us with personal data, please contact us immediately at supportlianka@gmail.com.

15. International Data Transfers

15.1 The Company and its service providers may be located in, or process personal data in, jurisdictions outside your country of residence, including countries that may not provide the same level of data protection as your home jurisdiction.

15.2 EU/EEA Users. If you are located in the European Union or European Economic Area, please note that: (a) the Company is not currently established in the EU and has not appointed an EU representative under Article 27 of the GDPR; (b) if the GDPR applies to your use of the Platform, you have the rights described in Section 12 of this Policy and may lodge a complaint with your local data protection authority (supervisory authority) in addition to contacting us directly; (c) where we transfer your data outside the EEA, we rely on standard contractual clauses (SCCs) or other lawful transfer mechanisms to ensure an adequate level of protection. If GDPR applicability is a concern for your use case, please contact us at supportlianka@gmail.com before registering.

15.2 Where we transfer personal data internationally, we take steps to ensure that appropriate safeguards are in place, including contractual protections (such as standard contractual clauses), to maintain a comparable level of protection for your data.

15.3 By using the Platform and accepting this Policy, you consent to the transfer, storage, and processing of your personal data in such jurisdictions.

16. Changes to This Policy

16.1 We may update this Privacy Policy from time to time to reflect changes in our data practices, legal obligations, or the Platform's features.

16.2 When we make material changes, we will notify you via the Platform notification system or by email to your registered address, providing at least fourteen (14) days' notice before the changes take effect.

16.3 The "Last Updated" date at the top of this Policy reflects the most recent revision. Continued use of the Platform after the effective date of any change constitutes acceptance of the updated Policy.

17. Complaints

17.1 If you have a concern or complaint about how we handle your personal data, please contact us in the first instance at supportlianka@gmail.com. We take all privacy complaints seriously and will respond within five (5) business days.

17.2 If you are not satisfied with our response, you may have the right to lodge a complaint with the data protection authority in your jurisdiction, depending on applicable local law.

By using the Lianka Platform, you confirm that you have read and understood this Privacy Policy and consent to the collection and use of your personal data as described herein.

Lianka Inc - lianka.io - supportlianka@gmail.com