This article explains how KAST protects, manages, and limits the use of your personal data. You’ll learn what safeguards are in place, who has access, and how long we retain your data.
How Does KAST Protect My Personal Data?
KAST takes the subject of personal data seriously. We use strict security measures to protect all personal data and limit its use to only what is necessary. Our systems are built with multiple layers of protection, ensuring your data remains secure at all times.
Who Has Access to My Data?
Access to your personal data is strictly limited to a minimal number of KAST employees, and only when it is absolutely necessary for authorized purposes. Your information is never freely available and is always reviewed under strict controls. In addition, any partners or service providers who handle your data are required to follow the same high standards of privacy and security. This ensures that your data is protected both inside and outside of KAST.
How Long Does KAST Retain My Data?
We retain personal data for a minimum of five years, or longer if required to meet legal, regulatory, or operational obligations. This retention period ensures we can comply with financial record-keeping standards, resolve disputes, prevent fraud, and maintain accurate business records. After this period, personal data is securely deleted or anonymized unless continued retention is necessary for ongoing compliance or legitimate business purposes.
How Can I Manage or Erase My Personal Data?
You have the right to control how KAST uses your personal data. This includes the ability to:
- Withdraw your consent for us to use your personal data, where consent is the basis for processing.
- Request deletion of your personal data when it's no longer needed, subject to legal or regulatory retention requirements.
To exercise these rights, contact our Concierge team. Some data may need to be kept for compliance purposes, but our team will guide you through the process.
Where Can I Read the Full Privacy Policy?
You can find complete details on how we collect, use, and protect your data in our Privacy Policy. The policy covers everything from data usage to retention periods in greater detail.
Frequently asked questions
Is my personal data ever shared without my consent?
No. Your personal data is never sold or shared with third parties without your consent. It is only used for regulatory compliance, service delivery, or security purposes.
What happens if my data is no longer needed?
If your personal data is no longer required for compliance or operational use, it is promptly deleted from our systems. This ensures we do not store unnecessary or outdated information.
Does KAST encrypt my personal data?
Yes. All personal data stored by KAST is encrypted and protected with industry-standard security protocols. This prevents unauthorized access and keeps your information safe.
How can I request access to or deletion of my data?
You can request access to your personal data, or ask for its deletion, by contacting our Concierge team. Depending on regulatory requirements, some data may need to be retained for legal or compliance purposes.
What does it mean that data defaults to the longer retention period?
If two data retention rules differ, KAST will always follow the longer retention period. This ensures compliance with regulations and provides a consistent approach to handling sensitive information.
Do employees at KAST see my full account details?
No. Only a minimal number of employees have access, and only when necessary to resolve specific issues, comply with regulations, or improve security.