CryptoWits Sp. z o.o. (“CryptoWits”, “we”, “us”, “our”) is committed to protecting the privacy of visitors to our website and our customers. This Privacy Policy describes how we handle your personal data when you access our services, which include our content on the website located at CryptoWits.com, or any other websites, pages, features, or content we own or operate (collectively, the “Site(s)”), and related services (referred to collectively hereinafter as “Services”).

If you have any questions about this Policy, please send them to [email protected].

Changes to this privacy policy

We may modify this Privacy Policy from time to time. Please check the date at the top of this notice to see when it was last updated.

Our Relationship to you

CryptoWits operates as a Polish entity to provide Services to our customers. You are contracting with:

CryptoWits Sp. z o.o.

116/52 Piotrkowska Street, zip- code: 90-006; City: Łódź, Republic of Poland

KRS: 0001077767

NIP: 7252338848

CryptoWits decides how your personal information is processed in relation to the Services provided to you (referred to as a “data controller” under GDPR).

Personal Information we collect

Personal information means any data which relates to a living individual who can be identified from that data, or from that data and other information which is in the possession of, or is likely to come into the possession of, CryptoWits (or its representatives or service providers).

Information you provide to us

This includes information you provide to us in order to establish an account and access our Services. This information is either required by law (e.g. to verify your identity), necessary to provide the requested services, or is relevant for our legitimate interests described in greater detail below.

The nature of the Services you are requesting will determine the kind of personal information we might ask for, but may include:

Identification Information: Full name, date of birth, nationality, gender, signature, phone number, home address, and/or email.

Formal Identification Information: Government issued identity document such as Passport, National Identity Card (Dowód Osobisty), Tax ID number (NIP), and/or any other information deemed necessary to comply with our legal obligations under financial or anti-money laundering laws.

Financial Information: Bank account information, transaction history, and/or tax identification.

Transaction Information: Information about the transactions you make on our Services, such as the amount, and/or timestamp.

Correspondence: Survey responses, information provided to our support team.

Information we collect automatically or generate about you

This includes information we collect automatically, such as whenever you interact with the Sites or use the Services. This information helps us address customer support issues, improve the performance of our Sites and applications, provide you with a streamlined and personalized experience, and protect your account from fraud by detecting unauthorized access. Information collected automatically includes:

Online Identifiers: Geo location/tracking details, operating system, browser name and version, and/or personal IP addresses.

Usage Data: Authentication data, security questions, click-stream data, and other data collected via cookies and similar technologies. Please read our Cookie Policy for more information.

Information collected from third parties

This includes information we may obtain about you from third party sources. The main types of third parties we receive your personal information from are:

Public Databases, Credit Bureaus & ID Verification Partners: To verify your identity in accordance with applicable law.

Blockchain Data: To ensure parties using our Services are not engaged in illegal or prohibited activity and to analyze transaction trends for research and development purposes.

How we use your personal information

We may use your information in the following ways and for the following purposes:

1) To maintain legal and regulatory compliance

CryptoWits needs to process your personal information in order to comply with anti-money laundering and security laws. We also process your personal information in order to help detect, prevent, and mitigate fraud and abuse of our Services.

2) To provide CryptoWits’s Services

We process your personal information to provide Services to you. For example, when you want to exchange currency on our platform, we require certain information such as your identification, contact and payment information.

3) To provide communications and customer services

We may send you service updates regarding administrative or account-related information, security issues, or other transaction-related information. These communications are important to share developments relating to your account that may affect how you can use our Services.

4) In our legitimate business interests

Sometimes the processing of your personal information is necessary for our legitimate business interests, such as to enhance security, monitor and verify identity or service access, and to combat spam or other malware or security risks.

Legal bases for processing your information

We rely on legal bases for processing your information under the GDPR. These bases mean we will only process your data where we are legally required to, where processing is necessary to perform any contracts we entered with you, for our legitimate interests to operate our business, or where we have obtained your consent to do so.

Disclosing your personal information to third parties

We will only share your personal information with the following types of third parties:

Identity verification services to prevent fraud.

Financial institutions which we partner with to process payments you have authorized.

Service providers under contract who help with parts of our business operations.

Law enforcement, regulators, or any other third parties when we are compelled to do so by applicable law.

How we protect and store personal information

CryptoWits implements and maintains reasonable measures to protect your information. We protect your personal information by maintaining physical, electronic, and procedural safeguards in compliance with the applicable laws and regulations, including GDPR.

Retention of personal information

We will retain your personal information for as long as necessary to fulfill the purposes for which we collected it, including for the purposes of satisfying any legal, accounting, or reporting requirements.

Children’s personal information

Our Services are not directed to children under 18. If we learn that we have collected personal information from a child under 18, we will take steps to delete such information from our files as soon as possible.

Your rights under GDPR

Under GDPR, you have several rights regarding your personal data, including:

The right to access your personal data

The right to rectify inaccurate personal data

The right to erase your personal data

The right to restrict processing of your personal data

The right to data portability

The right to object to processing of your personal data

To exercise any of these rights, please contact us at [email protected].

By using our Services, you acknowledge that you have read and understood this Privacy Policy.