Privacy policy - CryptoGin

Privacy policy

1. General Provisions

1.1. This Privacy Policy (hereinafter referred to as the “Policy”) defines the procedure for processing and protecting information about Users obtained through the use of the CryptoGin exchange service (hereinafter referred to as the “Service”).

1.2. By using the Service, the User confirms their acceptance of the terms of this Policy and consents to the processing of their data in accordance with its provisions.

1.3. The primary purpose of this Policy is to ensure an adequate level of protection of Users’ information, including the prevention of unauthorized access, loss, alteration, or disclosure of data.

1.4. The Service processes data in accordance with applicable legal requirements and international standards in the field of combating fraud and illegal activities (AML/KYC/SoF).

2. Terms and Definitions

2.1. User — an individual or legal entity using the functionality of the Service.

2.2. Personal Data — any information relating to a User who is directly or indirectly identifiable.

2.3. Data Processing — any actions performed on data, including collection, recording, systematization, storage, use, transfer, blocking, and destruction.

2.4. Automated Processing — data processing carried out using software and technical means.

2.5. Third Parties — counterparties, partners, government authorities, and other persons to whom data may be transferred on lawful grounds.

3. Categories of Processed Data

3.1. Within the operation of the Service, the following categories of information may be processed:

- user contact details (e.g., email address, messengers);

- information about requests and completed transactions;

- financial and payment details required to perform exchange operations;

- data provided as part of verification procedures (KYC);

- correspondence with technical support;

- technical data (IP address, cookies, device parameters, log files);

- information obtained from publicly available sources or from third parties on lawful grounds.

3.2. The scope and composition of the processed data are determined by the nature of the User’s interaction with the Service, as well as by legal requirements and the level of transaction risk.

4. Purposes of Data Processing

4.1. Data processing is carried out for the following purposes:

- providing access to the functionality of the Service;

- execution of cryptocurrency and electronic funds exchange operations;

- identification and verification of Users;

- ensuring the security of the Service;

- prevention of fraud, illegal activities, and abuse;

- conducting risk analysis and transaction monitoring;

- compliance with AML/KYC/SoF requirements and other applicable regulations;

- processing User requests;

- compliance with lawful requests of government authorities and partners.

5. Legal Grounds for Data Processing

5.1. Data processing is carried out on the following grounds:

- the User’s consent;

- the necessity to fulfill obligations related to the provision of services;

- compliance with legal requirements;

- protection of the legitimate interests of the Service, including the prevention of fraud.

6. Data Transfer to Third Parties

6.1. The Service has the right to transfer User data to third parties in the following cases:

- upon lawful requests from government and regulatory authorities;

- to payment, technical, and infrastructure partners for the execution of operations;

- to providers of compliance and analytical solutions;

- when necessary to protect the rights and legitimate interests of the Service or Users.

6.2. Data may be transferred without prior notification to the User in cases предусмотренных by law or when required to ensure security.

6.3. In certain cases, data may be transferred outside the User’s jurisdiction (cross-border transfer).

7. Transaction Analysis and Risk Management

7.1. The Service applies automated and manual methods of transaction analysis, including:

- verification of the source of funds;

- analysis of transaction relationships;

- assessment of transaction risks.

7.2. Based on the results of the analysis, the Service has the right to:

suspend the execution of a transaction;

refuse to provide services;

request additional information or documents.

8. Data Storage and Protection

8.1. The Service implements the necessary technical and organizational measures to protect data from unauthorized access, alteration, disclosure, or destruction.

8.2. The data retention period is determined by the purposes of processing, legal requirements, and the need to ensure security and prevent abuse.

9. User Rights

9.1. The User has the right to:

- submit requests regarding the processing of their data;

- request clarification, restriction of processing, or deletion of data, provided this does not contradict legal requirements and the purposes of processing.

9.2. The Service reserves the right to limit the scope of information provided or to refuse to satisfy a request if necessary for:

- prevention of fraud;

- protection of internal control processes;

- compliance with legal requirements.

10. Final Provisions

10.1. This Policy does not constitute a public offer.

10.2. The Service reserves the right to make changes to the Policy at any time.

10.3. The current version of the Policy is published on the website: https://cryptogin.cc

10.4. Continued use of the Service after changes have been made constitutes the User’s acceptance of the updated Policy.