Your Privacy Matters
By accessing or using DoronX, you agree to the collection and use of information in accordance with this policy. We operate under applicable data protection laws and financial regulations. Our services are provided by Lazy Logic Limited, a registered company operating globally.
This policy applies to all users of the DoronX mobile app, web app at doronx.com, and any related services including pay.doronx.com, gamecore.doronx.com, and API integrations.
Information We Collect
We collect information you provide directly, data generated through your use of our services, and information from third-party partners.
Identity Data
Full name, date of birth, national ID or passport number, selfie/photo ID for KYC verification.
Contact Data
Email address, phone number, and physical address for account communication and verification.
Financial Data
Wallet balances, transaction history, bank account details, Mobile Money numbers, and crypto addresses.
Device & Usage Data
IP address, device type, OS version, app version, pages visited, features used, and session duration.
- Blockchain data: On-chain transaction hashes, wallet addresses, and network confirmations for Web3 funding flows (BEP20, ERC20, TRC20, Solana, BTC).
- KYC/AML data: Identity verification documents submitted to comply with financial regulations. Processed by our regulated KYC provider.
- Games data: In-game actions, DORX token balances, leaderboard rankings, and tournament participation via gamecore.doronx.com.
- Support data: Messages, complaints, and support tickets submitted to our team.
- Referral data: Your referral code usage and the accounts you've referred.
How We Use Your Information
| Purpose | Data used | Basis |
|---|---|---|
| Account creation & authentication | Identity, contact, device | Contract performance |
| Processing transactions (MoMo, crypto, transfers) | Financial, identity | Contract performance |
| KYC/AML compliance | Identity, financial | Legal obligation |
| Vault yield calculations (AAVE v3) | Financial, blockchain | Contract performance |
| Virtual card issuance (Maplerad) | Identity, financial | Contract performance |
| Smart Invoice & Payment Stands | Financial, contact | Contract performance |
| Fraud detection & security | Device, usage, financial | Legitimate interest |
| Customer support | All applicable | Legitimate interest |
| Product improvement & analytics | Usage, device | Legitimate interest |
| Marketing communications (opt-in only) | Contact, usage | Consent |
| Games & DORX rewards | Games, identity | Contract performance |
We never sell your personal data to third parties for their marketing purposes.
Who We Share Data With
We share your data only with trusted partners necessary to deliver our services. All third-party processors are bound by data processing agreements and applicable law.
- Maplerad: For USD virtual card issuance and management. Processes your identity and financial data under their own privacy policy.
- Paystack / Hubtel: For payment processing, Mobile Money integrations (MTN MoMo, Vodafone Cash, AirtelTigo Money).
- AAVE v3 / Polygon: Blockchain interactions for Vault yield are executed on-chain and are publicly visible by nature of blockchain technology.
- KYC Provider: Identity documents for regulatory verification. We do not store raw document images beyond the required period.
- WalletConnect: For Web3 wallet connections. DoronX does not receive your private keys — ever.
- Law enforcement / regulators: When required by law, court order, or to protect the rights and safety of users.
- Business transfers: In the event of a merger, acquisition, or sale of assets, your data may be transferred. We will notify you beforehand.
How We Protect Your Data
We implement industry-standard technical and organisational measures to protect your personal information from unauthorised access, alteration, disclosure, or destruction.
- 256-bit AES encryption for all data at rest and TLS 1.3 for data in transit.
- Biometric authentication support and mandatory two-factor authentication (2FA) for sensitive operations.
- Zero-knowledge wallet design: We never store your private keys or seed phrases. Web3 signing is performed client-side.
- Real-time fraud monitoring and anomaly detection across all transaction flows.
- Regular security audits and penetration testing by independent security professionals.
- Secure backups with geographic redundancy and tested disaster-recovery procedures.
Despite our best efforts, no method of electronic transmission or storage is 100% secure. If you suspect unauthorised access to your account, contact us immediately at security@doronx.com.
Cookies & Similar Technologies
We use cookies and similar technologies in our web application to maintain sessions, remember preferences, and improve performance. We do not use third-party advertising cookies.
| Cookie type | Purpose | Duration |
|---|---|---|
| Essential / Session | Authentication, security, session state | Session |
| Functional | Language, theme, UI preferences | 1 year |
| Analytics | Aggregate usage patterns (anonymised) | 90 days |
| PWA / Service Worker | Offline access, push notifications | Persistent |
You can manage cookie preferences in your browser settings. Disabling essential cookies will affect your ability to use the app.
Your Data Rights
Depending on your location, you have specific rights regarding your personal data. We honour these rights for all users regardless of jurisdiction.
- Right of access: Request a copy of all personal data we hold about you.
- Right to rectification: Request correction of inaccurate or incomplete data.
- Right to erasure: Request deletion of your data, subject to legal retention obligations.
- Right to restrict processing: Request that we limit how we use your data in certain circumstances.
- Right to data portability: Receive your data in a structured, machine-readable format.
- Right to object: Object to processing based on legitimate interest, including direct marketing.
- Rights related to automated decisions: Request human review of automated decisions that significantly affect you.
To exercise any of these rights, contact us at privacy@doronx.com. We will respond within 30 days. Identity verification may be required before we action your request.
How Long We Keep Your Data
We retain your personal data only for as long as necessary to provide our services and comply with legal obligations.
| Data category | Retention period | Reason |
|---|---|---|
| Account & identity data | 5 years after account closure | AML/KYC regulatory requirement |
| Transaction records | 7 years | Financial regulation |
| Support communications | 3 years | Dispute resolution |
| Usage & analytics | 12 months | Product improvement |
| Marketing preferences | Until withdrawal of consent | Consent basis |
| Games & DORX activity | Duration of account | Service delivery |
Children's Privacy
DoronX services are intended for users aged 18 and over. We do not knowingly collect personal information from anyone under the age of 18. If we become aware that a child under 18 has provided us with personal information, we will take steps to delete such information immediately.
If you are a parent or guardian and believe your child has provided us with personal data, please contact us at privacy@doronx.com.
Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or for other operational reasons. When we make material changes, we will:
- Send you an in-app notification and/or email at least 14 days before the changes take effect.
- Update the "Last updated" date at the top of this page.
- Maintain a changelog so you can review what changed and when.
Continued use of DoronX after the effective date constitutes acceptance of the revised policy.
Contact Our Privacy Team
Questions about your privacy?
Our Data Protection team is here to help. Reach out and we'll respond within 2 business days. For urgent security concerns, we aim to respond within 24 hours.
privacy@doronx.com security@doronx.com