This applies all contracts, memorandum of understanding's and engagement letters

1. Professional Engagement Notice
The information available on this website is intended solely for general informational purposes and does not constitute a professional advisory relationship. Engagement of RKĀN Ltd. for any services including but not limited to asset audits, due diligence, AML services, or advisory support must be formalised through a signed Memorandum of Understanding (MoU) and/or Letter of Engagement.

2. No Financial or Investment Advice
Nothing on this site shall be construed as financial, legal, investment, or tax advice. We strongly advise that users seek independent counsel from qualified professionals before making financial decisions. RKĀN Ltd. does not provide regulated financial advice under the Financial Services and Markets Act 2000 (UK).

3. Risk Disclosure
Any assessments or insights provided are subject to market, legal, jurisdictional, and political risks. Past outcomes do not guarantee future performance. Clients are solely responsible for their investment decisions and risk appetite. You should not commit capital that you cannot afford to lose. 

4. No Warranties or Guarantees
RKĀN Ltd. makes no representations or guarantees regarding the outcome, accuracy, or completeness of any assessments, analyses, or forecasts presented through this website or in associated engagements.

5. Jurisdictional Limitations
Access to RKĀN Ltd.'s services may be subject to legal restrictions in certain jurisdictions. It is the responsibility of each user to ensure compliance with applicable laws and regulations in their country or territory.

6. Third-Party Content
Links or references to third-party websites are provided for convenience only. RKĀN Ltd. does not monitor or control external sites and assumes no liability for their content or data practices.

7. Forward-Looking Statements
Statements that are predictive or reflect expectations, intentions, or beliefs about future events constitute forward-looking statements. Such statements are inherently uncertain and subject to risk factors beyond our control.

8. Limitation of Liability
RKĀN Ltd., its directors, officers, employees, affiliates, or agents shall not be liable for any loss or damage arising from your use of the website or reliance on any information provided, whether based in contract, tort (including negligence), statute or otherwise.

9. Intellectual Property and Confidentiality
All website content is the intellectual property of RKĀN Ltd. or its licensors. Reproduction, dissemination, or unauthorised use is prohibited. RKĀN Ltd. employs best practices to ensure the confidentiality and integrity of client and proprietary data.

10. Amendments
RKĀN Ltd. reserves the right to modify these legal caveats at any time. Continued use of the website constitutes acceptance of any updated terms.

By accessing and using this website or engaging RKĀN Ltd.'s services, you acknowledge and agree to the following terms. Use of services beyond this platform is governed by formal engagement documents.

The following definitions are applied in accordance with UK regulatory classification standards:

Professional Clients: (i) Deemed Professional Clients include:

• Governments, central banks, public authorities;
• Authorised Market Institutions or Regulated Financial Institutions;
• Listed corporate bodies;
• Pension fund management companies;
• Entities with assets of at least $10 million;
• Licensed Single Family Offices;
• Large undertakings meeting two of the following: (i) balance sheet ≥ $20 million, (ii) annual turnover ≥ $40 million, or (iii) capital ≥ $2 million.

(ii) Service-Based Professional Clients:

• Clients engaging in credit advisory, corporate structuring, M&A, refinancing, or other high-level advisory services.

(iii) Assessed-Based Professional Clients:

• Individuals with net assets ≥ $1 million and demonstrable experience in regulated markets;
• Undertakings with capital ≥ $1 million and verifiable market knowledge.

Market Counterparties:

• Any regulated financial institutions, authorised firms, or categorised professional clients acting in a principal or intermediary capacity.

Who We Are: RKĀN LTD is a global leader in due diligence, Anti-Money Laundering (AML), and asset audit services, committed to ensuring compliance with financial regulations and delivering accurate financial insights to our clients.

Purpose of This Policy: This Privacy Policy outlines how we collect, use, store, share, and protect personal and sensitive information in compliance with global privacy laws, including the General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), Gramm-Leach-Bliley Act (GLBA), and other applicable regulations.

Scope: This policy applies to all individuals whose personal information we process, including clients, employees, contractors, and third parties interacting with our services. It is designed to meet the highest global data protection standards while respecting local laws.

We collect various types of information to provide our services and comply with legal obligations:

• Personal Information:
  
  • Names, addresses, email addresses, phone numbers
  • Identification documents (e.g., passports, driver’s licenses)
  • Employment details

• Sensitive Financial Information:
  
  • Bank account details, transaction histories
  • Asset ownership records
  • Income and tax information
  • Credit history and scores (for AML/KYC purposes)

• Other Data:
  
  • Device information (e.g., IP addresses, browser types)
  • Usage data (e.g., website interactions, if applicable)
  • Information from third parties (e.g., public records, financial institutions)

How We Collect Information:

• Directly from you through forms, client onboarding, or communications
• From third parties, such as regulatory databases or financial institutions
• Automatically via cookies or similar technologies (see Section 9)

We use the collected information for the following purposes:

• Primary Purposes:
  
  • Conducting due diligence, AML checks, and asset audits
  • Ensuring compliance with AML/KYC regulations and other legal requirements
  • Providing and improving our services

• Secondary Purposes:
  
  • Fraud prevention and security enhancement
  • Responding to legal requests or court orders
  • Marketing our services (with opt-out options, where applicable)

We only use personal information for purposes necessary to our services or as required by law, in line with global privacy regulations.

We may share information with the following parties under strict confidentiality and legal compliance:

• Regulatory Bodies and Law Enforcement: To comply with AML/KYC laws, such as reporting suspicious activities to financial intelligence units.
• Service Providers: Third-party vendors for data storage, background checks, or operational support, bound by data protection agreements.
• Clients: As necessary to fulfill audit or due diligence obligations.
• Other Parties: In cases of mergers, acquisitions, or legal requirements.

We may share aggregated or anonymized data for research or statistical purposes. We do not sell personal or sensitive information for marketing purposes.

We implement robust measures to protect your information:

• Encryption: Aligns with several frameworks (including SOC2, ISO 27001:2022, and GDPR) to validate security, privacy, and corporate governance.
• Access Controls: Only authorized personnel can access personal and financial data.
• Security Audits: Regular assessments to identify and mitigate vulnerabilities.
• Physical Security: Secure data centers and physical record storage.
• All web traffic in and out of the RKĀN network is encrypted using high grade 256-bit TLS 1.2+ encryption. Unencrypted traffic is not permitted under any circumstance. In addition, outgoing email transmissions sent from RKĀN are sent via TLS, ensuring your communication is secure.
• Your data is important, which is why we protect it both in transit and in storage. All data stored in our databases and cloud storage are backed up, distributed, and encrypted at rest using industry standard AES-256 encryption.

In case of a data breach, we will notify affected individuals and authorities as required by law (e.g., within 72 hours under GDPR).

• Retention Period: We retain information only as long as necessary for the purposes outlined or as required by law (e.g., 5-7 years for AML records, depending on jurisdiction).
• Deletion: Data is securely deleted when no longer needed or upon request, subject to legal exceptions.
• 
  

As a global company, we may transfer data across borders for processing or storage. We ensure compliance with international laws:

• GDPR Compliance: For EU data, we use standard contractual clauses or other approved mechanisms.
• Other Jurisdictions: We ensure recipients provide adequate data protection levels.
• Notification: You will be informed of international transfers, with the right to object where applicable.

Depending on your jurisdiction, you may have the following rights:

• Access: View the personal information we hold about you.
• Rectification: Correct inaccurate or incomplete data.
• Erasure: Request deletion of your data (subject to legal obligations).
• Restriction: Limit how we process your data in certain cases.
• Portability: Receive your data in a structured, machine-readable format.
• Objection: Object to processing for specific purposes, such as marketing.

To exercise these rights, contact our Data Protection Officer at [insert email address]. We will respond within the legally required timeframe (e.g., one month under GDPR).

• Use of Cookies: We may use cookies or similar technologies to enhance user experience and analyze website traffic. These do not collect sensitive financial information.
• Management: You can manage cookie preferences via your browser settings or by contacting us.
• 
  

We may update this policy to reflect changes in our practices or legal requirements. Significant updates will be communicated via email or our website ([Your data is important, which is why we protect it both in transit and in storage. All data stored in our databases and cloud storage are backed up, distributed, and encrypted at rest using industry standard AES-256 encryption.).

As a due diligence and AML company, we comply with global AML/KYC regulations, which may require sharing information with financial intelligence units or other entities to prevent money laundering and fraud. We ensure such disclosures are lawful and secure.

This policy is designed to meet the requirements of:

Regulation

Jurisdiction

Key Requirements

GDPR

European Union

Data subject rights, international transfers, breach notification

CCPA

California, USA

Consumer rights to access, delete, and opt-out of data sales

GLBA

United States

Protection of financial information, annual privacy notices

PIPEDA

Canada

Consent, accountability, and data protection

Privacy Act

Australia

Australian Privacy Principles for data handling

For additional local laws, we ensure compliance through tailored practices and legal consultation.

Sources:

• Deel’s Global Privacy Policy Template
• Termly’s Privacy Policy Template
• TermsFeed’s Sample Privacy Policy
• Venmo’s Privacy Policy
• Robinhood’s Privacy Policy