This document sets out the legal terms governing your use of the Haven Wallet, the Haven website (haven.app), and all associated services operated by Haven Holding Company LLC-FZ. Please read it carefully before using any Haven product or service. If you do not agree to these terms, do not access or use Haven's products or services.
These terms replace all previously published versions. Haven is not soliciting public investment. Nothing in this document constitutes financial, investment, or legal advice.
These Terms and Conditions ("Terms") govern your access to and use of the Haven Wallet application ("Wallet"), the website located at haven.app ("Website"), and any associated services, APIs, or products operated by Haven Holding Company LLC-FZ, a company incorporated in the Meydan Free Zone, Dubai, United Arab Emirates ("Haven", "we", "us", or "our").
By accessing or using any Haven product or service, you confirm that you have read, understood, and agreed to be bound by these Terms and by Haven's Privacy Policy (Part 2) and GDPR Compliance Statement (Part 3), which are incorporated herein by reference. If you do not agree, you must immediately cease using Haven's products and services.
2.1 You must be at least 18 years of age, or the legal age of majority in your jurisdiction, to use the Haven Wallet or Website.
2.2 You are solely responsible for ensuring your use of the Wallet and Website complies with all laws and regulations applicable in your jurisdiction. Haven does not represent that its products are available or appropriate for use in any particular location.
2.3 By using Haven's products, you represent and warrant that you meet the eligibility requirements above and that you are not subject to sanctions, export controls, or other legal prohibitions that would prevent you from using digital asset services.
3.1 The Haven Wallet is a non-custodial, self-sovereign digital asset wallet. It provides biometric-gated access to self-custody digital asset management, fiat on/off ramps through licensed third-party partners, virtual and physical debit card functionality, and related security features including Social-Gated Recovery.
3.2 The Website provides information about Haven, its technology, and its products. It does not constitute a regulated financial service.
3.3 Haven does not provide financial, investment, legal, or tax advice. No content on the Website or within the Wallet constitutes such advice. You are solely responsible for your financial decisions.
3.4 Haven reserves the right to modify, suspend, or discontinue any feature, product, or service at any time, with or without notice. Haven is not liable for any loss arising from such modification, suspension, or discontinuation.
4.1 Haven does not hold, control, or have access to your private keys, digital assets, or biometric data at any time. You are solely and entirely responsible for securing access to your Wallet and the assets held within it.
4.2 Haven's biometric authentication system operates entirely on your device. Haven has no ability to recover your wallet access on your behalf, override biometric verification, or access your assets for any reason.
4.3 If you lose access to your device and have not configured Social-Gated Recovery through the Haven Wallet, Haven cannot restore your access. Asset loss resulting from failure to maintain recovery options is not recoverable by Haven.
4.4 You acknowledge that digital asset transactions are irreversible. Once confirmed on a blockchain network, transactions cannot be reversed, cancelled, or disputed through Haven.
5.1 All content on the Website and within the Wallet — including text, design, trademarks, logos, code, protocols, and architectural documentation — is the intellectual property of Haven Holding Company LLC-FZ, unless otherwise indicated.
5.2 Haven's Continuous Facial Recognition (CFR) technology is deployed under an exclusive licence from YEO Messaging Ltd. Haven's proprietary protocol stack — including the DASR, Owner-Attributed Actions, Social-Gated Biometric Recovery, Blockchain Identity Anchor, and Data-Less Continual Authentication Architecture protocols — is subject to USPTO provisional patent applications filed in April 2026 (App# 64/032,300; 64/032,311; 64/032,324) and is the confidential and proprietary property of Haven Holding Company LLC-FZ.
5.3 You may not reproduce, republish, reverse-engineer, modify, exploit, or create derivative works from any Haven intellectual property without prior written consent from Haven Holding Company LLC-FZ.
6.1 You agree to use the Website and Wallet only for lawful purposes and in a manner consistent with these Terms, applicable law, and the rights of third parties.
6.2 You must not attempt to circumvent, disable, or interfere with the security, authentication, or access control mechanisms of the Wallet or Website.
6.3 You must not use Haven's products to facilitate money laundering, terrorist financing, fraud, tax evasion, or any other activity that violates applicable law.
6.4 You are responsible for securing your device, biometric credentials, and recovery contacts. Haven accepts no liability for losses arising from your failure to maintain appropriate security measures.
6.5 You must not submit false, misleading, or inaccurate information to Haven or through the Wallet.
7.1 The Wallet integrates with third-party services including fiat on/off ramps, card programme providers, and virtual IBAN providers. These integrations are provided for your convenience only.
7.2 Haven does not endorse, control, or accept liability for any third-party service. Your use of third-party services is subject to those providers' own terms and conditions. Haven strongly recommends you review them before use.
7.3 Third-party providers may conduct their own KYC/AML verification and may impose restrictions on service availability by jurisdiction. Haven is not responsible for any decision made by a third-party provider.
In addition to the obligations in Section 6, you must not:
9.1 All products and services are provided "as is" and "as available" without warranty of any kind, express or implied, including without limitation any warranty of merchantability, fitness for a particular purpose, or non-infringement.
9.2 Haven does not warrant that the Wallet or Website will be uninterrupted, error-free, or free of harmful components. Digital asset services involve inherent technical and financial risks.
9.3 Security testing results referenced in Haven's published materials reflect internal testing conditions. Haven does not guarantee that the Wallet is impenetrable under all future conditions.
10.1 To the maximum extent permitted by applicable law, Haven Holding Company LLC-FZ and its officers, directors, employees, agents, licensors, and service providers shall not be liable for any indirect, incidental, special, consequential, or punitive damages arising from or related to your use of Haven's products or services.
10.2 In no event shall Haven's total cumulative liability to you exceed the greater of: (a) the amount you paid Haven in the twelve months prior to the claim; or (b) USD 100.
10.3 Some jurisdictions do not allow the exclusion of certain warranties or limitation of liability. In such jurisdictions, Haven's liability is limited to the maximum extent permitted by law.
You agree to indemnify, defend, and hold harmless Haven Holding Company LLC-FZ and its officers, directors, employees, and agents from and against any claims, liabilities, damages, losses, and expenses (including reasonable legal fees) arising out of or in any way connected with: (a) your access to or use of Haven's products or services; (b) your breach of these Terms; or (c) your violation of any applicable law or the rights of any third party.
12.1 These Terms are governed by and construed in accordance with the laws of the United Arab Emirates and the regulations of the Meydan Free Zone, Dubai, without regard to conflict of law principles.
12.2 Any dispute arising from or relating to these Terms, or the use of Haven's products or services, shall first be subject to good-faith negotiation between the parties for a period of thirty (30) days following written notice of the dispute.
12.3 If the dispute is not resolved through negotiation, it shall be submitted to binding arbitration in Dubai, UAE, conducted in English, in accordance with the rules of the Dubai International Arbitration Centre (DIAC).
13.1 Haven may update these Terms at any time. Changes will be posted at haven.app with an updated effective date. For material changes, Haven will provide reasonable notice where practicable.
13.2 Your continued use of Haven's products or services following the posting of updated Terms constitutes your acceptance of those changes.
For legal enquiries relating to these Terms, please contact:
Haven Holding Company LLC-FZ · Meydan Free Zone, Dubai, UAE
contact@haven.app · haven.app
Haven Holding Company LLC-FZ ("Haven", "we", "us", "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, store, and share personal data when you use the Haven Wallet, haven.app, or any associated service.
This Policy should be read alongside Part 1 (Terms & Conditions) and Part 3 (GDPR Compliance Statement).
1.1 Data You Provide
1.2 Automatically Collected Data
1.3 Biometric Data — On-Device Only
The Haven Wallet uses continuous facial recognition (CFR) biometric authentication to verify that the authorised device owner is present before any wallet action is executed. The following applies to all biometric data:
1.4 Biometric Data Retention
Biometric data is retained only for as long as you enable biometric authentication on your device. It is automatically deleted when you:
Haven has no control over, and takes no action to extend, the retention period for biometric data.
2.1 To provide, operate, and improve the Haven Wallet and Website.
2.2 To communicate with you regarding account activity, product updates, security notices, or support requests.
2.3 To analyse aggregate usage trends and diagnose technical issues.
2.4 To comply with applicable legal obligations and regulatory requirements.
2.5 We do not sell, rent, or trade your personal data to third parties for marketing purposes.
Where GDPR or equivalent data protection legislation applies, our legal basis for processing personal data is:
Because Haven does not store or process biometric data on its servers, Haven does not act as a biometric data controller or processor under GDPR Article 4 definitions with respect to facial recognition data.
4.1 Haven does not sell or rent personal data.
4.2 We may share data with service providers (including analytics, email, and infrastructure providers) under strict confidentiality and data protection agreements consistent with this Policy.
4.3 Fiat and card services are provided by licensed third-party financial partners. Where KYC/AML verification is required, this is conducted by and under the responsibility of those licensed partners. Haven does not receive or store KYC documentation.
4.4 We may disclose personal data where required to do so by applicable law, court order, or legitimate regulatory authority.
4.5 In the event of a merger, acquisition, or sale of Haven's business or assets, personal data may be transferred as part of that transaction, subject to the same obligations set out in this Policy.
5.1 The Website uses cookies and similar tracking technologies to enhance functionality, monitor performance, and analyse user behaviour in aggregate.
5.2 You can manage or disable cookies through your browser settings at any time. Disabling certain cookies may affect the functionality of the Website.
5.3 Haven uses a minimal cookie policy and does not deploy third-party advertising cookies.
6.1 Haven implements industry-standard encryption, access controls, and security practices to protect all personal data we hold.
6.2 Biometric data never leaves your device and is therefore not exposed to any network-level risk arising from Haven's infrastructure.
6.3 No digital system can guarantee absolute security. You are responsible for maintaining the security of your device and access credentials.
7.1 Haven Holding Company LLC-FZ is incorporated in Dubai, UAE. Where personal data is processed or stored by service providers outside the UAE, Haven ensures that appropriate safeguards are in place, including standard contractual clauses or equivalent protections recognised under applicable data protection law.
Subject to applicable law, you have the following rights with respect to your personal data:
To exercise any of these rights, please contact Haven at: contact@haven.app
Haven will respond to all verified requests within 30 days. We may request verification of your identity before processing a request.
9.1 Haven's products and services are not directed at or intended for persons under the age of 18.
9.2 Haven does not knowingly collect personal data from individuals under the age of 18. If you believe a minor has submitted data to Haven, please contact us immediately at contact@haven.app and we will take prompt action to delete it.
10.1 Haven may update this Privacy Policy from time to time. Material changes will be notified via the Website or, where appropriate, by direct communication.
10.2 Continued use of Haven's products following the posting of an updated Policy constitutes acceptance of the changes.
This statement applies to the processing of personal data of individuals in the European Economic Area (EEA) and the United Kingdom (UK) and complements the Privacy Policy in Part 2.
Haven Holding Company LLC-FZ, Meydan Free Zone, Dubai, UAE, is the data controller for personal data processed through haven.app and the Haven Wallet, except where processing is conducted by licensed third-party partners acting as independent data controllers (e.g. KYC/AML verification providers for fiat services).
Contact for data protection matters: contact@haven.app
Via haven.app, Haven collects:
Haven does not collect names, biometric data, payment details, or government-issued identity documents via the website directly.
3.1 Email address collection is based on your explicit consent under GDPR Article 6(1)(a). You may withdraw consent at any time by clicking "unsubscribe" in any email or by contacting Haven directly.
3.2 Analytics data processing is based on Haven's legitimate interests in understanding and improving its website (GDPR Article 6(1)(f)), subject to the cookie preferences you have set.
3.3 For biometric data processed locally on your device, Haven relies on explicit consent (GDPR Articles 6(1)(a) and 9(2)(a)). As biometric data is processed exclusively on-device and is never transmitted to Haven, Haven does not act as a data controller or processor for this data.
4.1 Email addresses and any other personal data collected via the Website are stored on GDPR-compliant infrastructure with appropriate technical and organisational security measures in place.
4.2 Haven applies the principle of data minimisation — we collect only what is necessary for the purposes identified in this document.
4.3 Personal data is retained only for as long as necessary to fulfil the purposes for which it was collected, or as required by applicable law.
As a UAE-incorporated entity serving a global user base, Haven may transfer personal data to countries outside the EEA. Where such transfers occur, Haven ensures adequate protections through:
EEA and UK residents have the following rights under GDPR and the UK GDPR respectively:
To exercise any of these rights, contact Haven at: contact@haven.app. We will respond within 30 days. You also have the right to lodge a complaint with your national data protection authority.
Haven does not currently meet the threshold requiring the formal appointment of a Data Protection Officer under GDPR Article 37. For all data protection enquiries, please contact Haven directly at contact@haven.app.
Haven does not use automated decision-making or profiling that produces legal or similarly significant effects for users, as defined under GDPR Article 22.
Haven Holding Company LLC-FZ
Meydan Free Zone, Dubai, United Arab Emirates
contact@haven.app · haven.app
Effective: April 2026 · All rights reserved.