Privacy Policy
Last Updated: December 2025
1. Introduction
Transio Technologies Limited ("Company," "we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use the Cryptio encryption software (the "Service").
This Policy is provided in compliance with the Data Protection Act, 2012 (Act 843) of the Republic of Ghana. Transio Technologies Limited is registered as a data controller with the Data Protection Commission of Ghana.
2. Our Zero-Knowledge Commitment
IMPORTANT: Cryptio is built on a zero-knowledge architecture. This means we have no technical ability to access, view, or recover:
- Your encryption passwords or keys
- The content of your encrypted files
- Any unencrypted data on your device
Your privacy is protected by mathematics, not just policy.
3. Information We Collect
3.1 Account Information
When you create an account or purchase a license, we collect:
- Email address
- Name (optional)
- Organization name (if applicable)
- Payment information (processed securely by third-party payment processors)
3.2 License Validation Data
To validate your license, we collect:
- License key
- Device identifier (anonymized hardware hash)
- Operating system type and version
- Application version
3.3 Usage Analytics (Optional)
With your consent, we may collect anonymized usage statistics such as:
- Feature usage frequency
- Error reports (crash logs)
- Performance metrics
You may opt out of analytics collection at any time through the application settings.
3.4 Information We Do NOT Collect
We never collect:
- Your encryption passwords or keys
- The content of your files (encrypted or unencrypted)
- File names or metadata of encrypted files
- Any data that would allow us to decrypt your files
4. How We Use Your Information
We use the information we collect to:
- Provide, maintain, and improve the Service
- Process transactions and manage your subscription
- Validate your license and prevent unauthorized use
- Send you technical notices and support communications
- Respond to your inquiries and provide customer support
- Comply with legal obligations
5. Data Sharing and Disclosure
We do not sell your personal data. We may share information only in the following circumstances:
- Service Providers: With third-party vendors who assist in operating our business (e.g., payment processors, hosting providers)
- Legal Compliance: When required by law, court order, or government request
- Business Transfers: In connection with a merger, acquisition, or sale of assets
- With Your Consent: When you have given explicit consent to share specific information
6. Data Security
We implement appropriate technical and organizational measures to protect the personal data we collect, in accordance with Section 28 of the Data Protection Act, 2012. These measures include:
7. Data Retention
We retain your account information for as long as your account is active or as needed to provide you services. After account termination, we retain certain information as required by law or for legitimate business purposes (e.g., to resolve disputes, enforce agreements, or comply with legal obligations).
8. Your Rights Under Ghanaian Law
Under the Data Protection Act, 2012 (Act 843), you have the right to:
- Access (Section 32):Request confirmation of whether we hold your personal data and access to that data
- Correction (Section 33):Request correction or deletion of inaccurate or incomplete data
- Object (Section 39):Object to processing that causes unwarranted damage or distress
- Prevent Direct Marketing (Section 40):Opt out of processing for direct marketing purposes
- Compensation (Section 43):Seek compensation for damage caused by contravention of the Act
To exercise these rights, please contact us at privacy@getcryptio.com. We will respond within 40 days as required by law.
9. International Data Transfers
Your account information may be processed on servers located outside Ghana. Where this occurs, we ensure appropriate safeguards are in place in accordance with Section 45 of the Data Protection Act, 2012, and we only transfer data to jurisdictions that provide adequate levels of data protection.
10. Children's Privacy
The Service is not intended for individuals under the age of 18. We do not knowingly collect personal data from children. If we become aware that we have collected personal data from a child without parental consent, we will take steps to delete that information.
11. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on our website and, where appropriate, by email notification. Your continued use of the Service after such changes constitutes acceptance of the updated Policy.
12. Contact Us
For questions about this Privacy Policy or to exercise your data protection rights:
You also have the right to lodge a complaint with the Data Protection Commission of Ghana at www.dataprotection.org.gh.