This Privacy Policy explains how Tondo Inc. collects, uses, and shares information when you use
the authentication service at auth.tondoinc.com and related services associated
with tondoinc.com (the "Service").
1. Information We Collect
Identifiers: phone number and any information you choose to provide.
OTP metadata: timestamps, delivery status, and verification outcomes for OTPs.
Usage and device data: IP address, browser type, device identifiers, and logs.
Support communications: messages sent to our support or security teams.
2. How We Use Information
Authenticate users and deliver OTPs.
Detect and prevent fraud, abuse, or unauthorized access.
Operate, maintain, and improve the Service.
Send security alerts and service-related notifications.
Comply with legal obligations and enforce our Terms.
3. OTP Messages and Notifications
We send OTPs and security notifications via SMS, voice call, or other channels. Message frequency
varies, and message and data rates may apply. OTP delivery is required to access the Service.
You can opt out of non-essential notifications by contacting
support@tondoinc.com.
We will never ask for your OTP outside the sign-in flow. If you receive an unexpected request for
a code, contact us immediately.
4. Sharing of Information
We may share information with:
Service providers: vendors who help deliver OTPs, host infrastructure, or monitor security.
Legal and compliance: if required by law, legal process, or to protect rights and safety.
Business transfers: in connection with a merger, acquisition, or asset sale.
5. Data Retention
We retain information for as long as needed to provide the Service, comply with legal obligations,
resolve disputes, and enforce our agreements. Retention periods vary by data type and purpose.
6. Security
We use reasonable administrative, technical, and physical safeguards to protect information. No
method of transmission or storage is 100% secure, so we cannot guarantee absolute security.
7. Your Choices and Rights
Update your phone number by contacting support.
Request access, correction, or deletion of your information where applicable.
Opt out of non-essential notifications by contacting support.
8. Children's Privacy
The Service is not directed to children under 13 (or older where required by law), and we do not
knowingly collect personal information from children.
9. International Transfers
Tondo Inc. is based in the United States, and your information may be processed in the United States
or other locations where our service providers operate.
10. Changes to This Policy
We may update this Privacy Policy from time to time. We will post the updated policy on this page
and update the "Last updated" date.