KansenKansen

Privacy Policy

Kansen AI

This Privacy Policy describes how Kansen AI (“Kansen AI,” “we,” “us,” or “our”) collects, uses, discloses, and otherwise processes information in connection with our blockchain analytics platform for prediction markets (the “Services”), our website, and related applications, APIs, and products.

Our Services analyze publicly available blockchain data from prediction market protocols (such as Polymarket, Kalshi-adjacent on-chain venues, Augur-derivative protocols, and similar platforms) and produce analytical insights, wallet labeling, market intelligence, risk scores, and behavioral signals. This Privacy Policy applies to information about our customers, website visitors, and individuals whose data may be processed through the Services.

1. Scope and Important Notice About Blockchain Data

A substantial portion of the data we process is public blockchain data, including wallet addresses, transaction histories, trading positions on prediction markets, smart contract interactions, and on-chain metadata. This data is permanently and publicly available on the relevant blockchains by design. We did not create this data, we do not control its public availability, and we cannot remove it from the underlying blockchains.

Where applicable law treats wallet addresses or related on-chain identifiers as personal data (for example, under the EU General Data Protection Regulation when such identifiers can be linked to an identifiable individual), this Privacy Policy describes how we handle that data. In many jurisdictions, however, pseudonymous blockchain addresses standing alone are not treated as personal data.

2. Information We Collect

2.1 Information You Provide to Us

  • Account information: name, business email, employer, job title, billing details, and authentication credentials.
  • Customer-submitted data: wallet addresses, queries, watchlists, tags, notes, case files, and any other content you submit through the Services.
  • Communications: messages you send to support, sales, or other Kansen AI personnel.
  • Compliance information: for enterprise and regulated customers, information collected for KYC, sanctions screening, and onboarding diligence.

2.2 Information We Collect Automatically

  • Usage data: queries run, dashboards viewed, features used, API calls, session duration, and interaction patterns.
  • Device and log data: IP address, browser type, operating system, device identifiers, referring URLs, and timestamps.
  • Cookies and similar technologies: as described in Section 8.

2.3 Information We Collect from Public and Third-Party Sources

  • Public blockchain data: wallet addresses, transactions, balances, smart contract calls, prediction market positions, resolution outcomes, and other on-chain activity across supported networks.
  • Publicly available off-chain data: social media handles, ENS and other naming-service records, public forum posts, public attribution claims, public press, court filings, sanctions lists, and information from public-facing project sites and exchanges.
  • Data licensed from third parties: commercial data feeds, sanctions and watchlist providers, identity verification vendors, and partner attribution sources.
  • Customer-contributed attribution: labels, tags, and intelligence shared by customers in ways that improve the platform (where contractually permitted).

2.4 Derived and Inferred Data

We generate derived data, including wallet clustering, entity attribution, risk scores, behavioral classifications (e.g., “informed trader,” “market maker,” “potential wash-trader,” “insider-correlated”), profitability metrics, and other analytical outputs. These are our inferences and may not be accurate in any individual case. We treat material accuracy issues seriously and provide a process for affected persons to contest attributions (see Section 11).

3. How We Use Information

We use the information described above to:

  • Provide, operate, maintain, and improve the Services, including building analytics models, clustering heuristics, and entity-attribution systems.
  • Generate insights, risk signals, and labels for prediction market participants and protocols.
  • Train, validate, and benchmark our machine learning and statistical models. We do not use customer-submitted confidential queries or case files to train models that are made available to other customers unless the customer has explicitly agreed otherwise.
  • Authenticate users, prevent fraud and abuse, and secure the Services.
  • Communicate with you about your account, billing, product updates, and security matters.
  • Conduct research and produce aggregated or de-identified industry reports.
  • Comply with legal obligations, respond to lawful requests, and enforce our terms.

4. Legal Bases for Processing (EEA, UK, and Similar Jurisdictions)

Where required by law, we rely on the following legal bases:

  • Contract: to provide the Services to our customers.
  • Legitimate interests: to operate, secure, and improve our business; to analyze publicly available blockchain and market data; to detect and investigate market manipulation, fraud, and illicit finance in prediction markets; and to provide our customers with the analytics they need. We balance these interests against the rights and freedoms of individuals.
  • Legal obligation: to comply with applicable laws, including AML/CFT and sanctions regimes where applicable to us or our customers.
  • Consent: where we ask for and obtain it (for example, certain marketing communications).

5. How We Share Information

  • With our customers: analytical outputs, labels, risk signals, and attributions are provided to the customers who subscribe to the Services. These customers may include trading firms, market operators, protocol teams, researchers, financial institutions, and government or law-enforcement agencies.
  • With service providers: cloud hosting, data infrastructure, security, analytics, payment processing, and similar vendors, under appropriate contractual protections.
  • With public authorities: in response to valid legal process, or where we believe in good faith that disclosure is necessary to comply with law, protect rights, or prevent harm.
  • In corporate transactions: in connection with a merger, acquisition, financing, or sale of assets, subject to customary confidentiality protections.
  • Aggregated or de-identified data: we may share aggregated statistics and de-identified insights publicly or commercially.

We do not sell personal information in the conventional sense. Whether certain disclosures of derived analytics constitute a “sale” or “sharing” under specific U.S. state privacy laws is addressed in Section 10.

6. Data Retention

We retain account and customer data for the duration of the customer relationship and for a reasonable period thereafter to comply with legal obligations, resolve disputes, and enforce agreements. Public blockchain data is, by its nature, retained indefinitely on the underlying blockchains, and we may retain ingested and derived datasets for as long as they remain useful for the Services. Log data is typically retained for up to 24 months.

7. International Data Transfers

We operate globally. Personal information may be processed in the United States and other jurisdictions whose data-protection laws may differ from those in your country. Where required, we use appropriate transfer mechanisms such as the EU Standard Contractual Clauses and the UK International Data Transfer Addendum.

8. Cookies and Tracking Technologies

We use cookies and similar technologies on our website and customer portal for authentication, preferences, analytics, and security. You can manage cookies through your browser settings; disabling certain cookies may limit functionality.

9. Security

We implement administrative, technical, and physical safeguards designed to protect information we process, including encryption in transit and at rest, access controls, logging, and personnel training. No system is perfectly secure, and we do not warrant absolute security.

10. Your Rights and Choices

Depending on your jurisdiction, you may have rights to access, correct, delete, restrict, or object to processing of personal information we hold about you, to data portability, and to withdraw consent. Residents of California, Colorado, Connecticut, Virginia, Texas, and other U.S. states with comprehensive privacy laws have specific rights under those laws, including the right to opt out of certain disclosures and profiling.

Important limitations specific to our business:

  • We cannot delete data from public blockchains. Requests to erase on-chain data can only be honored to the extent of removing it from our internal systems, where doing so is consistent with our legal obligations and legitimate interests.
  • Where retaining wallet attributions or risk signals is necessary for compliance, fraud prevention, sanctions screening, or the integrity of market-surveillance functions for our customers, we may decline deletion requests as permitted by law.
  • To exercise rights regarding a specific wallet address, you will generally need to provide evidence that you control that address (for example, a signed message from the address).

To submit a request, contact us at support@kansen.ai. You may also have a right to complain to your local data protection authority.

11. Contesting Attributions and Labels

If you believe an attribution, label, cluster, or risk signal applied by our Services is materially inaccurate and concerns you, you may submit a contestation request to attributions@kansen.ai. We will review the request, give appropriate weight to evidence you provide (including cryptographic proof of address control), and correct material inaccuracies where warranted. We may decline to alter outputs based solely on disagreement with our analytical conclusions.

12. Children

The Services are intended for businesses and adult professionals. We do not knowingly collect personal information from individuals under 18.

13. Third-Party Sites and Protocols

The Services analyze data from third-party prediction market protocols, blockchains, and data sources. We are not responsible for the privacy practices of those third parties.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will post the updated version on our website and update the “Last Updated” date. Material changes will be communicated through reasonable means.

15. Contact Us

If you have questions about this Privacy Policy or our practices, contact:

Kansen AI
Attn: Privacy Team
Email: support@kansen.ai

For EEA/UK matters, our designated representative and Data Protection Officer (where applicable) can be reached at the address above.