Platform Privacy Policy

1. Introduction

Simplytao Inc. is committed to protecting the security of our Services and your data in accordance with Panama's Law No. 81 of 2019 on Personal Data Protection and industry best practices. This Platform Privacy Policy outlines our technical and organizational measures, user responsibilities, and incident response procedures for our trading platform.

2. Security Measures

2.1. Data Protection:

• We use industry-standard encryption (e.g., AES-256, TLS 1.3) to protect data in transit and at rest.
• Access to personal data is restricted to authorized personnel with a need-to-know basis, using role-based access controls.
• Multi-factor authentication (MFA) is implemented for administrative access to our systems.

2.2. Platform Security:

• Regular security audits and penetration testing are conducted to identify and mitigate vulnerabilities.
• We maintain firewalls, intrusion detection systems, and monitoring tools to protect against unauthorized access and cyberattacks.
• Smart contracts and blockchain integrations are audited by reputable third-party firms to ensure integrity.

2.3. Compliance:

• We comply with Panama's Law No. 81 of 2019, including requirements for secure data storage, user consent, and breach notifications.
• AML/CTF measures are implemented per Law No. 23 of 2015, including transaction monitoring and KYC verification.

3. User Responsibilities

3.1. You are responsible for:

• Securing your account credentials, including passwords, private keys, and recovery phrases. Do not share these with anyone.
• Enabling MFA on your account where available.
• Using secure devices and networks to access the Services. Avoid public Wi-Fi or untrusted devices.
• Promptly reporting any suspected security breaches or unauthorized access to support@simplytao.ai.

3.2. SimplyTAO is not liable for losses resulting from your failure to secure your account or devices.

4. Data Breach Response

4.1. In the event of a data breach, we will:

• Investigate and contain the breach promptly.
• Notify affected users within 72 hours, as required by Law No. 81 of 2019, unless the breach is unlikely to result in harm.
• Provide details of the breach, its impact, and recommended actions to mitigate risks.

4.2. We will cooperate with regulatory authorities, including the Autoridad Nacional de Transparencia y Acceso a la Información (ANTAI), and provide necessary disclosures as required by law.

5. Third-Party Security

5.1. We engage third-party service providers (e.g., custodians, cloud providers) that adhere to industry-standard security practices.

5.2. You acknowledge that third-party services may introduce risks beyond our control, and you agree to review their security policies.

6. Monitoring and Updates

6.1. We continuously monitor our systems for suspicious activity and update our security measures to address emerging threats.

6.2. This Platform Privacy Policy may be updated periodically, with changes posted on our website.