Privacy Policy

Cryptin.ai (the “platform”, “we”) is a public-facing research lab studying AI and machine-learning based crypto trading strategies. This Privacy Policy applies to the website hosted at cryptin.ai and to the linked official mobile app (“Coin Wise / Next Candle / Cryptin”).

The party responsible for processing your personal data is the operator of the platform. Please refer to the Contact section below to reach us.

The Cryptin.ai website does not have user accounts, forms or sign-ups, and does not ask you for personal data. The mobile app may process limited data for specific features. Below we summarise what we touch in each environment.

Website (cryptin.ai):

• Server logs: IP address, user-agent, request time and visited path are processed transiently by our hosting provider Vercel for reliability and security.
• Preference cookie: a single cookie (NEXT_LOCALE) stores your selected interface language on your device. It is not shared with third parties.
• No marketing analytics: we currently do not use Google Analytics, advertising pixels, fingerprinting or cross-site tracking.

Mobile app:

• Anonymous device identifier: a system-generated anonymous id may be used to attach app state to a device. It is not tied to your real identity.
• Crash & error reports: Firebase Crashlytics collects technical error logs (stack traces, device model, OS version) so that we can fix bugs.
• Anonymous session metrics: high-level usage metrics such as which screen was opened or error rates may be collected.
• Push token: a Firebase Cloud Messaging token is stored to deliver notifications.
• Subscription state: in-app purchases are verified by Apple App Store / Google Play. We do not see your payment details — only the active/inactive status of the subscription.

What we never collect: full name, government ID, national identification number, bank/card data, crypto wallet private keys, mnemonic phrases or any financial-account credentials are never requested or stored.

We use the limited data we process only for:

• Keeping the website and app running (legitimate interest).
• Detecting bugs, crashes and abuse (legitimate interest).
• Replying to user-initiated emails (performance of contract / legitimate interest).
• Meeting our legal obligations (legal obligation).

Because the platform does not create user accounts, we do not run marketing, profiling or automated decision-making.

The website uses one functional preference cookie (NEXT_LOCALE – language preference). We do not use marketing, advertising or third-party tracking cookies. You can delete cookies in your browser at any time; the only effect is that your language preference will not be remembered.

• Server logs: up to 30 days.
• Crashlytics reports: up to 90 days.
• Firebase Cloud Messaging push token: as long as the app is installed (invalidated on uninstall).
• Subscription state: as long as the subscription is active and for any subsequent period required for accounting and tax purposes.

We do not sell, rent or expose your data to marketing partners. Only the following processors, bound by contract, can access the data:

• Vercel Inc. – website hosting infrastructure.
• Google Firebase (Firestore, Cloud Messaging, Crashlytics) – mobile app infrastructure.
• Apple App Store / Google Play – app distribution and subscription management.

We may be required to disclose data when compelled to do so by a competent court order or regulatory authority.

Because our service providers operate globally, your data may be processed in a country other than your own (for example in the EU or the United States). Such transfers rely on the providers' standard contractual clauses and their own compliance programmes.

We apply industry-standard safeguards to protect your data against unauthorised access, loss and alteration: HTTPS / TLS encryption, least-privilege access, vendor certifications (SOC 2, ISO 27001), access logging. No system transmitted over the internet, however, can be guaranteed to be 100% secure.

Depending on the data-protection law that applies to you (GDPR, UK GDPR, CCPA, KVKK and similar), you may have the right to:

• Request access to the personal data we process.
• Ask us to correct inaccurate or incomplete data.
• Request erasure (“right to be forgotten”) in certain cases.
• Restrict or object to processing.
• Request data portability in a structured, machine-readable form.
• Opt out of the “sale” of personal data (under CCPA).
• Lodge a complaint with your supervisory authority.

To exercise these rights, contact us at the address below. We will review and respond to requests within 30 days.

Cryptin.ai is not intended for users under 18. If you are under 18, please do not use the platform or install the app. If we become aware that we have unintentionally collected personal data from a child, we will delete it.

We may update this policy from time to time. The current version is always available on this page — please check the last updated date at the top. For material changes, we may provide additional notice through the mobile app or the homepage.

For privacy or data-protection requests: privacy@cryptin.ai — for all other questions: hello@cryptin.ai