PRIVACY POLICY

Last updated: April 27, 2026

Quick summary: Cryptoorbit is a free educational tool. We collect minimal data (only what's needed for the service to work), we never sell your data, and you can delete your account anytime. This Privacy Policy complies with global privacy laws including GDPR (EU), CCPA/CPRA (California), UK GDPR, LGPD (Brazil), PIPEDA (Canada), and Australian Privacy Act.

1. WHO WE ARE

Cryptoorbit ("we", "us", "our", "the Cryptoorbit team") provides a free educational web application for cryptocurrency scenario simulation, DCA calculation, portfolio tracking, and historical data exploration.

Contact: cryptoexplorer.sp@gmail.com

2. WHAT INFORMATION WE COLLECT

2.1 Information You Provide

When you use Cryptoorbit, you may provide us with:

Email address — if/when you create an account
Username — optional, for personalization
Calculator inputs — cryptocurrencies, amounts, expected growth rates, target years (used only for the calculation)

2.2 Information Collected Automatically

When you visit Cryptoorbit, we automatically collect:

IP address (anonymized for analytics)
Browser type and version
Device type (desktop / mobile)
Pages visited and time spent
Referral source (e.g., TikTok, direct visit)

2.3 Information We Do NOT Collect

❌ Real names or identities
❌ Phone numbers
❌ Payment information (the app is free)
❌ Cryptocurrency wallet addresses
❌ Private keys or seed phrases
❌ Bank account details

3. HOW WE USE YOUR INFORMATION

We use collected information to:

Provide the calculator services
Save your scenarios (if you have an account)
Send essential service emails (account verification, password reset)
Understand how users interact with the app
Improve features and fix bugs
Comply with legal obligations

4. LEGAL BASIS (GDPR)

If you are in the European Economic Area (EEA), we process your personal data based on:

Your consent — for analytics cookies and optional marketing emails
Contract performance — to provide the service you requested
Legitimate interests — to improve our service and prevent abuse
Legal obligations — to comply with applicable laws

5. COOKIES AND TRACKING

We use cookies for:

Essential cookies — required for the app to work (login session)
Functional cookies — remember your preferences (theme, currency)
Analytics cookies — Google Analytics, anonymized (only with your consent)

You can manage cookies through our cookie banner and your browser settings. Refusing optional cookies will not prevent you from using core features.

6. THIRD PARTIES WE WORK WITH

We share limited information with these service providers, strictly for app functionality:

CoinGecko (cryptocurrency price data) — no personal data shared
Google Analytics (usage statistics) — anonymized
Hosting provider (Netlify or similar) — server infrastructure

We do NOT sell, rent, or share your personal data for marketing or advertising purposes.

6.1 Business Transfers

If Cryptoorbit is involved in a merger, acquisition, sale of assets, reorganization, or similar business transaction, your information may be transferred as part of that transaction to the new owner or successor company.

In such cases, we commit to:

Notify you in advance via email (if you have an account) and/or a prominent notice in the app
Give you the option to delete your account before the transfer takes effect
Ensure the new owner agrees to honor the privacy commitments in this Privacy Policy
Comply with all GDPR requirements regarding data transfers

This clause is standard practice for digital services and does not change how we currently handle your data.

7. DATA RETENTION

Account data — kept until you delete your account
Saved scenarios — kept until you delete them
Analytics data — anonymized after 14 months
Server logs — automatically deleted after 30 days

8. YOUR RIGHTS (GDPR)

If you are an EU/EEA resident, you have the right to:

Access — request a copy of your data
Correct — fix inaccurate data
Delete — request deletion ("right to be forgotten")
Portability — receive your data in a portable format
Object — object to processing for legitimate interests
Withdraw consent — at any time
Complain — file a complaint with your local Data Protection Authority

To exercise these rights, email us: cryptoexplorer.sp@gmail.com

9. DATA SECURITY

We implement reasonable technical and organizational measures to protect your data:

HTTPS encryption for all data in transit
Passwords stored using bcrypt hashing (never plain text)
Limited access to personal data within our team
Regular security updates
Two-factor authentication for administrative access
Database hosted on GDPR-compliant infrastructure (Supabase, EU servers)

However, no system is 100% secure. If you suspect a security issue, please contact us immediately at cryptoexplorer.sp@gmail.com.

9.1 Data Breach Notification

In the event of a personal data breach that poses a risk to your rights and freedoms, we will:

Notify the relevant supervisory authority within 72 hours of becoming aware of the breach (as required by GDPR Article 33)
Notify affected users without undue delay via the email address associated with their account (as required by GDPR Article 34)
Provide details about the nature of the breach, likely consequences, and measures taken to address it
Document all breaches in our internal records for compliance purposes

9.2 Data Protection Contact

For all privacy-related inquiries, including exercising your rights, reporting a breach, or asking questions about this Privacy Policy, contact us at:

📧 cryptoexplorer.sp@gmail.com

We will respond to all legitimate inquiries within 30 days, as required by GDPR Article 12.

10. CHILDREN'S PRIVACY

Cryptoorbit is not intended for users under 18. We do not knowingly collect data from minors. If you believe we have inadvertently collected such data, please contact us and we will delete it.

COPPA Compliance (USA): In compliance with the Children's Online Privacy Protection Act (COPPA), we do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us at cryptoexplorer.sp@gmail.com and we will promptly delete the information.

10.1 REGIONAL PRIVACY RIGHTS

For California Residents (CCPA / CPRA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):

Right to Know — request information about personal data we collect, use, and disclose
Right to Delete — request deletion of your personal data
Right to Correct — request correction of inaccurate data
Right to Opt-Out of Sale — Cryptoorbit does NOT sell your personal data to third parties
Right to Limit Use of Sensitive Personal Information — we do not collect sensitive personal information
Right to Non-Discrimination — we will not discriminate against you for exercising your rights

To exercise these rights, contact: cryptoexplorer.sp@gmail.com

For UK Residents (UK GDPR)

UK residents have rights under the UK GDPR that mirror EU GDPR rights described in Section 8 above.

For Brazilian Residents (LGPD)

If you are a resident of Brazil, you have rights under the Lei Geral de Proteção de Dados (LGPD), including access, correction, deletion, portability, and the right to object to processing. These rights are similar to GDPR rights described above.

For Canadian Residents (PIPEDA)

Canadian residents have rights under the Personal Information Protection and Electronic Documents Act (PIPEDA), including the right to access, correct, and withdraw consent for processing of personal information.

For Australian Residents

Australian residents have rights under the Privacy Act 1988 and Australian Privacy Principles (APPs), including access, correction, and complaint rights.

For Other Jurisdictions

If you are located in a jurisdiction not specifically mentioned above, you may still have privacy rights under your local laws. Please contact us to learn more about your rights.

11. INTERNATIONAL DATA TRANSFERS

Your data may be processed in countries outside your country of residence. When personal data is transferred outside the European Economic Area (EEA), we ensure adequate protection through:

Standard Contractual Clauses (SCCs) approved by the European Commission
Adequacy decisions issued by the European Commission for the destination country
Data Processing Agreements (DPAs) with all third-party processors
Technical safeguards including encryption and access controls

By using Cryptoorbit, you acknowledge that your data may be transferred to and processed in countries that may have different data protection laws than your country of residence.

12. CHANGES TO THIS POLICY

We may update this Privacy Policy from time to time. Significant changes will be communicated via email (if you have an account) or a notice in the app. The "Last updated" date at the top will reflect the most recent revision.

13. CONTACT US

For privacy-related questions or to exercise your rights:

📧 cryptoexplorer.sp@gmail.com

Important: Cryptoorbit is an educational tool, not a financial advisor. Cryptocurrency investments involve risk. We are not responsible for any financial decisions you make based on calculations from our app.