Privacy Policy
Last updated: 21 April 2026
1. Data we collect
- Account data: email address, hashed password, account locale, plan and access expiry.
- Payment metadata: invoice ID, plan purchased, payment method, status. No card or wallet credentials are stored.
- Push subscription data: if you enable push notifications, we store the endpoint and public keys provided by your browser.
- Technical logs: IP address, user agent and timestamps, retained for short periods for security and debugging.
2. How we use your data
- To provide the Service, deliver notifications and process payments.
- To verify email addresses and manage account access.
- To detect abuse, prevent fraud and ensure security.
- To improve the Service through aggregated, non-identifying analytics.
3. We do not sell or rent personal data
We never sell, rent or trade your personal information. We share data only with the minimum necessary processors required to operate the Service: SMTP email provider (transactional emails only), crypto payment processors (invoice processing only), hosting infrastructure.
4. Cookies
We use a single session cookie (cs_session) to keep you signed in. We do not use third-party advertising or tracking cookies.
5. Data retention
Account data is retained while your account is active. Inactive accounts (no access for 12 months) may be deleted upon request or automatically. You may request deletion at any time via support@coinscanner.pro.
6. Your rights
Subject to applicable law (including GDPR for EU residents), you have the right to access, correct, port or delete your personal data. To exercise these rights, contact support@coinscanner.pro.
7. Security
Passwords are stored using bcrypt hashing. Sessions are protected by HTTP-only secure cookies. Communication with the Service is encrypted via TLS.
8. Children
The Service is not intended for individuals under 18. We do not knowingly collect data from minors.
9. Changes
We may update this Privacy Policy. Material changes will be communicated via email or in-app notice.