Privacy Policy

Last updated: May 27, 2025

CryptoRabbit Inc. ("CryptoRabbit," "we," "us," or "our") respects your privacy.
This Privacy Policy explains how we collect, use, store, and share information when you access or use the CryptoRabbit marketplace, mobile apps, websites, APIs, and related services (collectively, the "Platform"). By using the Platform, you consent to the practices described below.

1. Scope

This Policy applies to information we process in connection with:

  • Your CryptoRabbit account and profile
  • Listings, purchases, and smart-contract activity
  • Chats, support tickets, and feedback
  • Visits to our websites, dashboards, or APIs

2. Information We Collect

CategoryExamplesSource
Account DataUsername, email, password hash, preferred language, time zoneYou
Identity & Compliance DataGovernment-ID images, selfie liveness checks, sanctions screening results (only when required by law or risk policy)You & KYC vendor
Financial & Crypto DataWallet addresses, on-chain transaction IDs, payment method tokens from third-party on-ramps/off-rampsYou & service partners
Usage DataIP address, device type, browser, referral URL, pages viewed, session duration, clickstreamAutomatic
Content DataListings, photos, descriptions, chat messages, reviewsYou
Support DataBug reports, logs, screenshotsYou

Blockchain transparency: Public blockchains are immutable and searchable by anyone. Information you record on-chain (e.g., wallet address or purchase history) cannot be deleted.

3. How We Use Your Information

  • Operate the Platform — account creation, checkout flows, escrow deployment, shipping labels, dispute resolution.
  • Personalize & improve — remember preferences, test features, analyze performance.
  • Safety & compliance — detect fraud, enforce our Zero-Tolerance Policy, satisfy anti-money-laundering (AML) and know-your-customer (KYC) obligations.
  • Communications — transactional emails/push (purchase receipts, dispute updates), mandatory service announcements, and opt-in marketing.
  • Legal — comply with requests from regulators, courts, or law-enforcement agencies where legally required.

We do not sell your personal information.

4. Legal Bases (where required)

  • Contract necessity — provide the services you request.
  • Legitimate interests — fraud prevention, network security, product improvement.
  • Legal obligation — AML/KYC, tax, and accounting duties.
  • Consent — optional marketing, cookies that are not strictly necessary.

5. How We Share Information

RecipientPurpose
Wallet-as-a-Service & on/off-ramp providersProcess crypto purchases, withdrawals, and custodial wallet options
KYC/AML vendorsIdentity verification, sanctions screening
Shipping & logistics APIsGenerate labels, fetch tracking data
Analytics & crash-reporting toolsAggregate usage diagnostics
Arbitration partnersHuman review of disputes that AI cannot resolve
Law enforcement / regulatorsOnly when required by applicable law or valid legal process

All vendors are contractually bound to protect your data.

6. Cookies & Similar Technologies

  • Essential cookies — keep you signed in, secure sessions.
  • Analytics cookies — measure traffic and feature adoption.
  • Preference cookies — store language or theme choices.

You can control cookies through your browser; disabling may degrade functionality.

7. Security

We employ industry-standard safeguards: encryption in transit & at rest, least-privilege access controls, regular penetration testing, and automated anomaly detection. No method is 100 % secure, and we cannot guarantee absolute security.

8. Data Retention

  • Account data — retained while your account is active and for up to 7 years after closure for tax, audit, and fraud-prevention purposes.
  • On-chain data — permanent.
  • Logs & analytics — typically 12 months unless longer retention is required for investigations.

9. Your Rights

Subject to applicable law, you may have the right to:

  1. Access the personal information we hold about you.
  2. Correct inaccurate or incomplete data.
  3. Delete or restrict processing of your data (except on-chain records and legal holds).
  4. Object to certain processing (e.g., marketing).
  5. Port your data to another service.

Use the in-app Privacy Settings to exercise these rights. We will respond within a reasonable time frame.

10. International Transfers

We and our service providers may process and store information in multiple countries. We implement appropriate safeguards (e.g., standard contractual clauses) to protect personal data moving across borders.

11. Children

The Platform is not directed to individuals under 18. We do not knowingly collect personal information from minors. If we discover such data, we delete it promptly.

12. Updates to This Policy

We may update this Privacy Policy at any time by posting a revised version on the Platform. Changes are effective immediately upon posting. Check the "Last updated" date to see when modifications occurred. Continued use signifies acceptance.

13. Questions

If you have privacy-related questions or concerns, open a ticket via the in-app Support center.

Not Legal Advice
This document is provided for convenience and does not constitute legal advice. Consult a qualified lawyer before publishing.