Privacy Policy

1. Introduction

cryptr.ee ("we", "us", "our") operates the cryptr.ee website and service. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service. We are committed to protecting your privacy and handling your data transparently.

2. Account types

cryptr.ee offers two account modes, each with a different privacy model:

• • Standard account: Your email address, username, and wallet addresses are stored together in a single account record. This allows full account recovery via email and direct support assistance.
• • Anonymous account (Privacy by Design): Your billing data (email, subscription) and your public page data (username, wallet addresses) are stored in separate database tables with no direct technical link between them. The connection is established exclusively through a Page Access Key that only you possess. This is a pseudonymization approach as defined by GDPR Article 4(5) — data that cannot be attributed to a specific person without additional information (the key) held separately.

Both account types require a valid email address for authentication. Anonymous mode does not exempt users from applicable laws — it provides architectural data separation as an additional privacy measure.

3. Data we collect

We collect the following types of information:

• • Account information: Email address provided during registration. For Standard accounts, your username is stored in the same record. For Anonymous accounts, your username is stored separately.
• • Wallet addresses: Cryptocurrency wallet addresses you add to your page. These are public blockchain addresses and are displayed publicly on your page.
• • Page view analytics: We track page views, wallet copy events, and explorer link clicks for your dashboard analytics.
• • IP addresses: Collected for security purposes (rate limiting, abuse prevention) and anonymized analytics.

4. Analytics

We use Simple Analytics, a privacy-friendly analytics service that does not use cookies, does not track users across websites, and does not collect personal data. Simple Analytics is GDPR compliant and processes data within the EU. We do not use Google Analytics or any cookie-based tracking tools.

5. Cookies

cryptr.ee does not use cookies for tracking or analytics. We store an authentication token in your browser's local storage to keep you logged in. This is not a cookie and is not shared with any third parties.

6. Payments

Premium subscriptions are processed by Stripe. We do not store your credit card details on our servers. All payment information is handled directly by Stripe in accordance with their privacy policy. We only receive confirmation of payment status from Stripe.

7. Data storage and security

Your data is stored on servers located in the European Union. We use industry-standard security measures including encrypted connections (HTTPS/TLS), secure password hashing, and regular backups. Access to user data is restricted to authorized personnel only.

8. Data sharing

We do not sell, trade, or rent your personal information to third parties. We only share data with third-party services essential to operating cryptr.ee: Stripe for payment processing and Simple Analytics for website analytics. Wallet addresses you add to your page are publicly visible by design -- this is the core function of the service.

9. Your rights (GDPR)

Under the General Data Protection Regulation (GDPR), you have the following rights:

• • Access: Request a copy of the personal data we hold about you.
• • Rectification: Request correction of inaccurate personal data.
• • Deletion: Delete your account and all associated data from your dashboard settings. Account deletion is permanent and removes all your data from our servers.
• • Portability: Request your data in a machine-readable format.
• • Objection: Object to the processing of your personal data.

10. Data separation architecture (Anonymous accounts)

For Anonymous accounts, we implement a Privacy by Design architecture in accordance with GDPR Article 25. This means:

• • Separate storage: Your billing information (email, subscription status) and your public page data (username, wallet addresses, profile settings) are stored in different database tables with no foreign key relationship.
• • Client-side key: The only link between your billing account and your public page is a Page Access Key stored exclusively in your browser. We store only a SHA-256 hash of this key on our servers.
• • No server-side mapping: Our servers do not maintain any persistent record linking your email address to your public username or page content. A database export does not reveal this relationship.

Important: This architecture is designed as a privacy measure, not as a means to circumvent the law. We retain all data required by applicable regulations (email, IP addresses, timestamps) and will comply with lawful requests from competent authorities as described in section 12.

11. Law enforcement and legal compliance

cryptr.ee fully cooperates with law enforcement within the framework of applicable law. We may disclose user data when:

• • Required by a valid court order, subpoena, or other binding legal process.
• • Necessary to prevent imminent harm, fraud, or illegal activity.
• • Required by the laws of the Republic of Estonia or the European Union.

For Anonymous accounts, data separation means that we may provide account data and page data separately. Correlation of these datasets may require additional legal process. We do not proactively reconstruct links between anonymous accounts and pages outside of lawful requests.

12. Changes to this policy

We may update this Privacy Policy from time to time. We will notify you of any significant changes by posting the new policy on this page and updating the "Last updated" date. Continued use of the service after changes constitutes acceptance of the updated policy.

13. Contact

If you have questions about this Privacy Policy or want to exercise your data rights, contact us at support@cryptr.ee.