Data we collect
To operate the platform, we hold:
- Account identifiers — username, email, hashed passphrase (Argon2id).
- License records — keys, seat bindings, activation history, hardware fingerprints.
- Audit telemetry — sign-in events, IP addresses, device fingerprints, console actions.
- Billing details — payment method, billing address, VAT ID. Card data is stored at our PSP, not by us.
Why we collect it
To run the licensing service, prevent abuse, satisfy lawful invoicing requirements, and respond to incidents. We do not sell or share telemetry with third parties for marketing.
Retention
Audit logs are retained for 90 days. Billing records are retained for 7 years per fiscal regulations. On account closure, your operator data is purged after the 14-day grace period; audit and billing records persist on their respective schedules.
Your rights
You may request access, export, correction, or deletion of your personal data. Most actions are self-service via the console — see Profile and Close account. For requests outside the console, write to privacy@kynet.io.
Subprocessors
We use a small set of providers — payment processing, transactional email, infrastructure hosting in EU-WEST-2. The current list is published at kynet.io/legal/subprocessors and changes are notified 30 days in advance.
Cookies
We use a single first-party session cookie for authentication. No analytics cookies, no third-party trackers, no advertising pixels.