Privacy Policy
Last updated: May 27, 2025
CryptoRabbit Inc. ("CryptoRabbit," "we," "us," or "our") respects your privacy.
This Privacy Policy explains how we collect, use, store, and share information when you access or use the CryptoRabbit marketplace, mobile apps, websites, APIs, and related services (collectively, the "Platform"). By using the Platform, you consent to the practices described below.
1. Scope
This Policy applies to information we process in connection with:
- Your CryptoRabbit account and profile
- Listings, purchases, and smart-contract activity
- Chats, support tickets, and feedback
- Visits to our websites, dashboards, or APIs
2. Information We Collect
| Category | Examples | Source |
|---|---|---|
| Account Data | Username, email, password hash, preferred language, time zone | You |
| Identity & Compliance Data | Government-ID images, selfie liveness checks, sanctions screening results (only when required by law or risk policy) | You & KYC vendor |
| Financial & Crypto Data | Wallet addresses, on-chain transaction IDs, payment method tokens from third-party on-ramps/off-ramps | You & service partners |
| Usage Data | IP address, device type, browser, referral URL, pages viewed, session duration, clickstream | Automatic |
| Content Data | Listings, photos, descriptions, chat messages, reviews | You |
| Support Data | Bug reports, logs, screenshots | You |
Blockchain transparency: Public blockchains are immutable and searchable by anyone. Information you record on-chain (e.g., wallet address or purchase history) cannot be deleted.
3. How We Use Your Information
- Operate the Platform — account creation, checkout flows, escrow deployment, shipping labels, dispute resolution.
- Personalize & improve — remember preferences, test features, analyze performance.
- Safety & compliance — detect fraud, enforce our Zero-Tolerance Policy, satisfy anti-money-laundering (AML) and know-your-customer (KYC) obligations.
- Communications — transactional emails/push (purchase receipts, dispute updates), mandatory service announcements, and opt-in marketing.
- Legal — comply with requests from regulators, courts, or law-enforcement agencies where legally required.
We do not sell your personal information.
4. Legal Bases (where required)
- Contract necessity — provide the services you request.
- Legitimate interests — fraud prevention, network security, product improvement.
- Legal obligation — AML/KYC, tax, and accounting duties.
- Consent — optional marketing, cookies that are not strictly necessary.
5. How We Share Information
| Recipient | Purpose |
|---|---|
| Wallet-as-a-Service & on/off-ramp providers | Process crypto purchases, withdrawals, and custodial wallet options |
| KYC/AML vendors | Identity verification, sanctions screening |
| Shipping & logistics APIs | Generate labels, fetch tracking data |
| Analytics & crash-reporting tools | Aggregate usage diagnostics |
| Arbitration partners | Human review of disputes that AI cannot resolve |
| Law enforcement / regulators | Only when required by applicable law or valid legal process |
All vendors are contractually bound to protect your data.
6. Cookies & Similar Technologies
- Essential cookies — keep you signed in, secure sessions.
- Analytics cookies — measure traffic and feature adoption.
- Preference cookies — store language or theme choices.
You can control cookies through your browser; disabling may degrade functionality.
7. Security
We employ industry-standard safeguards: encryption in transit & at rest, least-privilege access controls, regular penetration testing, and automated anomaly detection. No method is 100 % secure, and we cannot guarantee absolute security.
8. Data Retention
- Account data — retained while your account is active and for up to 7 years after closure for tax, audit, and fraud-prevention purposes.
- On-chain data — permanent.
- Logs & analytics — typically 12 months unless longer retention is required for investigations.
9. Your Rights
Subject to applicable law, you may have the right to:
- Access the personal information we hold about you.
- Correct inaccurate or incomplete data.
- Delete or restrict processing of your data (except on-chain records and legal holds).
- Object to certain processing (e.g., marketing).
- Port your data to another service.
Use the in-app Privacy Settings to exercise these rights. We will respond within a reasonable time frame.
10. International Transfers
We and our service providers may process and store information in multiple countries. We implement appropriate safeguards (e.g., standard contractual clauses) to protect personal data moving across borders.
11. Children
The Platform is not directed to individuals under 18. We do not knowingly collect personal information from minors. If we discover such data, we delete it promptly.
12. Updates to This Policy
We may update this Privacy Policy at any time by posting a revised version on the Platform. Changes are effective immediately upon posting. Check the "Last updated" date to see when modifications occurred. Continued use signifies acceptance.
13. Questions
If you have privacy-related questions or concerns, open a ticket via the in-app Support center.
Not Legal Advice
This document is provided for convenience and does not constitute legal advice. Consult a qualified lawyer before publishing.