worldtoken

Privacy Policy

Data We Collect

worldtoken collects information you provide directly — including name, email address, government-issued ID, and financial details — during account registration and KYC verification.

We also collect technical data automatically: IP address, browser type, device identifiers, and session activity. This data is used exclusively for fraud prevention, security monitoring, and platform performance analysis.

How We Use Your Data

Your personal data is used to verify your identity, process transactions, detect fraud, and comply with KYC/AML legal obligations. worldtoken does not sell your personal data to third parties under any circumstances.

Cookies

worldtoken uses session cookies to keep you logged in and preference cookies to remember your display settings. Analytics cookies measure page performance anonymously and do not contain personally identifiable information.

You can control cookie settings through your browser at any time. Disabling session cookies will prevent you from staying logged in to your trading account.

Data Sharing

Your data may be shared with identity verification providers, payment processors, and regulatory authorities when legally required. All third parties are contractually bound to handle your data under standards equivalent to this policy.

Data Security

worldtoken encrypts all personal data in transit using TLS 1.3 and at rest using AES-256 encryption. Access to user data is restricted to authorized personnel and logged for audit purposes.

A third-party security firm conducts annual penetration testing of our data infrastructure. Any identified vulnerabilities are patched within 72 hours of discovery under our responsible disclosure policy.

Your Rights

You have the right to access, correct, or delete your personal data. Submit a request through your account settings or email the worldtoken privacy team directly. [email protected] Requests are processed within 30 days.

Third-Party Links

The worldtoken platform may contain links to external sites. We have no control over the content or privacy practices of those sites and accept no responsibility for their data handling.

Data Retention

Account data is retained for the duration of your active account plus 7 years, as required by financial regulations. After account closure, non-regulatory data is deleted within 90 days.

Policy Updates

worldtoken will notify you of significant changes to this Privacy Policy via email at least 14 days before they take effect. The effective date of the current version is January 1, 2026.