Privacy Policy for Coinrustic
1. Introduction
At Coinrustic, accessible at coinrustic.com, we are committed to protecting your privacy and ensuring the security and integrity of your personal data. This Privacy Policy outlines how we collect, use, disclose, and safeguard your information. We place the highest importance on data protection and privacy, and we comply with all applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all users of coinrustic.com and any services we offer through the website. For the purposes of applicable data protection legislation, Coinrustic is the data controller responsible for the processing of your personal data.
If you have any questions regarding this policy or the handling of your data, please contact us at [email protected].
3. Categories of Data Processed
We collect and process the following categories of personal data:
– Usage Data: Information about your interactions with our website, including IP address, browser type, operating system, pages visited, time spent on pages, and session data.
– Account Data: When you create an account, we collect your full name, email address, postal address, and phone number.
– Profile Data: Information you provide when updating your profile, including product preferences, purchase history, and behavioral data.
– Communication Data: Correspondence between you and Coinrustic, including support tickets, inquiries, and records of communication.
– Technical Data: Device-related information such as your device type, operating system version, browser settings, language preferences, and system configurations.
– Transaction Data: Information related to purchases and transactions on coinrustic.com, including billing and shipping addresses, order history, and payment details (note: we do not store full card numbers).
– Preference Data: Your communication preferences, marketing consents, and interests in products or services.
We do not collect any categories of sensitive personal data unless explicitly required and with your explicit consent.
4. Legal Bases for Processing
We process your personal data only under one or more of the following lawful bases:
– Contract: When the processing is necessary to perform a contract with you or take pre-contractual steps at your request.
– Consent: Where you have given explicit consent for processing of your data (e.g., subscribing to newsletters or accepting analytics cookies).
– Legitimate Interest: Where processing is necessary for our legitimate interests, including website optimization, fraud prevention, customer service, and business performance analysis, provided such interests are not overridden by your data protection rights.
– Legal Obligation: When processing is required to comply with applicable legal and regulatory obligations.
5. Your Rights
As a user, you are entitled to exercise the following rights regarding your personal data:
– Right to Access: Obtain confirmation of whether your personal data is processed and access the data we hold.
– Right to Rectification: Correct inaccuracies or complete incomplete personal data.
– Right to Erasure: Request the deletion of your data where it is no longer necessary, or where consent is withdrawn (subject to legal exceptions).
– Right to Restrict Processing: Request restriction of processing under certain conditions.
– Right to Data Portability: Receive a copy of your personal data in a structured, commonly used, machine-readable format, and have the right to transmit that data to another controller.
To exercise any of these rights or for more information, contact us at [email protected]. We will respond to all legitimate requests in a timely manner and in accordance with applicable laws.
6. Security Measures
We maintain industry-standard technical and organizational safeguards to protect your personal data. These include, but are not limited to:
– Encryption of sensitive information in transit and at rest
– Role-based access controls and authentication protocols
– Secure data storage with controlled physical and logical access
– Routine data backups and disaster recovery protocols
– Employee training in privacy and information security responsibilities
While we strive to use commercially acceptable means to protect your data, no system is entirely secure. We encourage users to safeguard their own credentials and devices.
7. International Transfers
If your data is transferred outside the European Economic Area (EEA) or the United States, we ensure such transfers comply with applicable data protection laws by implementing:
– Standard Contractual Clauses approved by the European Commission
– Other legally recognized mechanisms that offer adequate protection
Transfers will be limited to jurisdictions where data protection regulations meet the equivalency standards prescribed by the GDPR.
8. Data Retention
We retain personal data only as long as necessary for the purposes for which it was collected, including satisfying legal, accounting, and reporting obligations. Retention periods by category:
– Usage Data: Up to 12 months for analytics and diagnostics
– Account and Communication Data: Retained while your account remains active plus up to 3 years post-deactivation
– Transaction Data: Retained for 7 years to comply with tax and financial regulations
– Technical and Profile Data: Linked to account lifecycle, typically deleted upon account termination unless required for fraud or legal purposes
– Preference Data: Retained until consent is withdrawn or data is updated
9. Cookie Policy
coinrustic.com uses cookies and similar technologies to enhance your user experience. Cookies are small text files stored on your device and used for various purposes:
– Essential Cookies: Necessary for website functionality (e.g., login sessions, shopping carts)
– Functional Cookies: Retain your preferences such as language and region
– Analytics Cookies: Help us analyze how users interact with the website, improve performance, and optimize content
– Performance Cookies: Enable collection of metrics such as page load speeds and system errors
We do not use cookies to collect personally identifiable information without your consent.
10. Cookie Management and Compliance with GDPR & CCPA
When you visit coinrustic.com, a cookie consent banner will appear, allowing you to consent to non-essential cookies in compliance with GDPR and CCPA standards.
You can manage your cookie preferences at any time via:
– The cookie settings dialog on our website
– Browser settings, which allow deletion or blocking of cookies (note: this may impact site functionality)
Under the CCPA, residents of California have the right to opt out of the sale of personal data. We do not sell your personal data. If our practices change, we will notify you and provide an appropriate opt-out mechanism.
11. Special Protections for Children Under 13
Our services are not designed for, and we do not knowingly collect data from, children under the age of 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately at [email protected]. We will take prompt steps to delete such information.
12. Policy Updates & User Notifications
We reserve the right to update this Privacy Policy as needed to reflect changes in our practices, legal requirements, or technological advancements. Where significant changes occur, we will provide notice via our website or by contacting you directly, as appropriate.
You are encouraged to review this policy periodically to ensure you remain informed about how we protect your data.
13. Contact
If you have any questions, concerns, or requests regarding this Privacy Policy or our data processing practices, please contact us through the following:
Email: [email protected]
We are committed to full compliance with applicable privacy laws and encourage open dialogue with our users on matters of data protection. For privacy-related requests or concerns, do not hesitate to reach out to us at the contact email provided.