Privacy Policy

1 Introduction

CoinCapitalpro ("we," "us," "our," or "the Platform") is committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our cryptocurrency trading and investment platform.

						
						Our Commitment
					
					We are committed to processing your personal information in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), and other relevant privacy regulations.

This policy applies to all information collected through our website (coincapitalpro.com), mobile applications, APIs, and related services (collectively, the "Service"). By using the Service, you consent to the practices described in this Privacy Policy.

Scope

This Privacy Policy does not apply to third-party websites, applications, or services that may be linked from our Platform. We encourage you to review the privacy policies of those third parties.

2 Information We Collect

We collect various types of information to provide and improve our services:

2.1 Information You Provide Directly

td>Reviews, comments, feedback, survey responses, forum posts

Category	Examples
Account Information	Name, email address, password, username, profile picture, phone number
Identity Verification (KYC)	Government-issued ID, passport, driver's license, Social Security Number (SSN), date of birth, address
Financial Information	Bank account details, payment card information, billing address, transaction history, investment portfolio
Communications	Support tickets, emails, chat logs, phone call recordings (for quality assurance)
User Content

2.2 Information Collected Automatically

td>Pages visited, time spent, click patterns, search queries, trading activity, login timestamps

Category	Examples
Device Information	IP address, browser type, operating system, device identifiers, hardware model
Usage Data
Location Data	Geographic location derived from IP address, GPS data (with permission)
Cookies & Similar Technologies	Cookie IDs, pixel tags, web beacons, local storage data

2.3 Information from Third Parties

We may receive information about you from:

Identity verification services: Credit bureaus, government databases, sanctions lists
Payment processors: Transaction confirmation data, payment method validation
Security providers: Fraud detection scores, threat intelligence
Business partners: Referral information, affiliate program data
Public sources: Publicly available databases, social media profiles (for compliance purposes)

3 How We Use Your Information

We use the information we collect for the following purposes:

Service Provision and Maintenance

Create and manage your account
Process transactions and execute trades
Maintain and secure your wallet
Provide customer support
Send service-related communications (account updates, security alerts)

Compliance and Security

Verify your identity (KYC/AML compliance)
Detect and prevent fraud, money laundering, and other illegal activities
Monitor for suspicious trading patterns
Comply with legal obligations and regulatory requirements
Respond to law enforcement requests and legal process

Platform Improvement

Analyze usage patterns and user behavior
Test new features and functionality
Optimize user experience and interface design
Conduct research and development
Generate anonymized analytics and insights

Marketing and Communications (with your consent)

Send promotional materials about new features, products, or services
Invite you to participate in surveys or beta testing programs
Provide personalized content and recommendations
Deliver targeted advertising on third-party platforms

						
						Communication Preferences
					
					You can opt out of marketing communications at any time by clicking the "unsubscribe" link in our emails or adjusting your notification preferences in your account settings. Note that you cannot opt out of essential service communications.

4 Legal Basis for Processing (GDPR)

If you are located in the European Economic Area (EEA), our legal basis for processing your personal information includes:

Contract Performance

Processing necessary to perform our Terms of Service, such as creating your account, executing trades, and providing customer support.

Legal Obligation

Processing required to comply with applicable laws and regulations, including anti-money laundering (AML), counter-terrorist financing (CTF), and tax reporting obligations.

Legitimate Interests

Processing for our legitimate business interests, such as fraud prevention, network security, service improvement, and marketing (unless overridden by your rights and freedoms).

Consent

Processing based on your explicit consent, such as for certain cookies, marketing communications, or processing of sensitive data. You may withdraw consent at any time.

Consequences of Not Providing Data

If you choose not to provide certain information (particularly KYC data), you may be unable to access core features of the Platform, including trading, deposits, and withdrawals.

5 Information Sharing and Disclosure

We do not sell your personal information. We may share your information in the following circumstances:

Service Providers

We engage trusted third-party vendors to perform services on our behalf:

Cloud hosting: AWS, Google Cloud, Microsoft Azure
Payment processing: Stripe, PayPal, banking partners
Identity verification: Jumio, Onfido, Sumsub
Customer support: Zendesk, Intercom
Analytics: Google Analytics, Mixpanel
Email delivery: SendGrid, Mailgun

Regulatory Authorities

We may disclose information to comply with legal obligations, court orders, subpoenas, or requests from government agencies, including:

Financial regulators (SEC, CFTC, FinCEN)
Law enforcement agencies
Tax authorities (IRS)
Data protection authorities

Business Transfers

In connection with a merger, acquisition, sale of assets, bankruptcy, or other business transaction, your information may be transferred as part of the transaction.

Protection of Rights

We may disclose information to protect our rights, property, or safety, or the rights, property, or safety of our users or others.

Data Processing Agreements

All third-party service providers are contractually obligated to maintain the confidentiality and security of your data and may only use it for specified purposes.

6 Data Retention

We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required by law.

Retention Periods

Data Type	Retention Period
Account Information	Duration of account + 7 years after closure
KYC/AML Documentation	7 years after account closure (regulatory requirement)
Transaction Records	7 years (tax and regulatory requirement)
Communications	3 years from last interaction
Log Data	1 year, then anonymized
Marketing Data	Until opt-out + 2 years

Deletion

Upon expiration of the retention period, we will securely delete or anonymize your personal information in accordance with industry standards.

7 Data Security

We implement comprehensive security measures to protect your personal information:

						
						Security Measures
					
					Our security infrastructure includes encryption, access controls, monitoring systems, and regular security audits.

Technical Safeguards

Encryption: All data transmitted between your device and our servers is encrypted using TLS 1.3
Data Encryption at Rest: Sensitive data stored in encrypted format using AES-256
Multi-Signature Wallets: Cryptocurrency holdings secured with multi-signature technology
Cold Storage: Majority of digital assets held in offline cold storage
Access Controls: Role-based access, multi-factor authentication, principle of least privilege
Network Security: Firewalls, intrusion detection/prevention systems, DDoS protection
Regular Audits: Penetration testing, vulnerability assessments, code reviews

Organizational Safeguards

Employee background checks and security training
Confidentiality agreements for all employees
Strict internal data handling policies
Incident response plan and breach notification procedures
Regular security awareness training

Security Incident Notification

In the event of a data breach affecting your personal information, we will notify you and relevant authorities within 72 hours as required by applicable law.

8 Your Privacy Rights

Depending on your location, you may have the following rights regarding your personal information:

Right to Access

You have the right to request a copy of the personal information we hold about you, including details about how we process it.

Right to Rectification

You may request correction of inaccurate or incomplete personal information.

Right to Erasure ("Right to be Forgotten")

You may request deletion of your personal information, subject to certain exceptions (e.g., legal obligations, fraud prevention).

Right to Restrict Processing

You may request that we limit the processing of your personal information under certain circumstances.

Right to Data Portability

You may request transfer of your data to another service provider in a structured, machine-readable format.

Right to Object

You may object to processing of your data for direct marketing purposes or based on legitimate interests.

Right to Withdraw Consent

Where processing is based on consent, you may withdraw consent at any time without affecting the lawfulness of prior processing.

Exercising Your Rights

To exercise these rights, please contact our Data Protection Officer at privacy@coincapitalpro.com. We will respond within 30 days. You also have the right to lodge a complaint with your local data protection authority.

California Residents (CCPA/CPRA)

California residents have additional rights:

Right to know what personal information is collected, used, shared, or sold
Right to delete personal information (with exceptions)
Right to opt-out of sale or sharing of personal information
Right to non-discrimination for exercising privacy rights
Right to correct inaccurate personal information
Right to limit use and disclosure of sensitive personal information

9 Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience, analyze site traffic, and personalize content.

Types of Cookies We Use

td>Analytics and usage statistics (Google Analytics)

Category	Purpose	Can You Opt Out?
Essential Cookies	Required for basic functionality (login, security, session management)	No
Performance Cookies	Yes
Functional Cookies	Remember your preferences and settings	Yes
Marketing Cookies	Targeted advertising and campaign tracking	Yes

Managing Cookies

You can control cookie preferences through:

Browser settings (most browsers allow you to refuse or delete cookies)
Our cookie consent tool (available on first visit)
Third-party opt-out tools (youronlinechoices.com, networkadvertising.org)

Browser Settings

Most web browsers automatically accept cookies, but you can usually modify your browser settings to decline cookies. Note that disabling cookies may limit your ability to use certain features of the Platform.

10 International Data Transfers

CoinCapitalpro operates globally, and your information may be transferred to and processed in countries other than your own.

Transfer Safeguards

For transfers from the EEA, UK, or Switzerland to countries without adequate data protection laws, we implement appropriate safeguards:

Standard Contractual Clauses (SCCs): EU Commission-approved contractual terms
Binding Corporate Rules: For intra-company transfers
Certification mechanisms: Privacy Shield Framework (where applicable)

United States Disclosure

If you are located outside the United States, your information may be transferred to the U.S., which may have different data protection laws than your jurisdiction.

11 Children's Privacy

Our Service is not intended for children under the age of 18 (or the age of majority in your jurisdiction).

Age Restrictions

We do not knowingly collect personal information from children. If we become aware that we have collected personal information from a child, we will take steps to delete that information and terminate the account.

Parental Rights

If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately at privacy@coincapitalpro.com.

12 Changes to This Policy

We may update this Privacy Policy periodically to reflect changes in our practices, technology, legal requirements, or other factors.

Notification of Changes

When we make material changes, we will:

Post the updated Privacy Policy on the Platform
Update the "Last Updated" date
Send email notification for significant changes (30 days advance notice when feasible)
Display prominent notices on the Platform

Your Responsibility

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information. Your continued use of the Service constitutes acceptance of the updated Privacy Policy.

13 Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Data Protection Officer

Email: privacy@coincapitalpro.com
Postal Address:
CoinCapitalpro
Attn: Data Protection Officer
123 Blockchain Avenue
New York, NY 10001
United States
Phone: +1 (555) 123-4567

EU Representative (GDPR Article 27)

Email: eu-rep@coincapitalpro.com
Address:
CoinCapitalpro EU Representative
456 Data Street
Dublin 2
Ireland

Supervisory Authority

If you are in the EEA, you have the right to lodge a complaint with your local data protection authority. In Ireland, this is the Data Protection Commission (www.dataprotection.ie).

Table of Contents