Last Updated: Nov 20, 2025

Introduction

Welcome to CryptoRisk (“we,” “our,” “us”).
We respect your privacy and are committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, and protect your information when you use our website and services (“Services”).

Who We Are

CryptoRisk is a financial technology platform that provides portfolio-level risk analytics and risk management tools for cryptocurrency investors.

Information We Collect

We collect only the information necessary to provide and improve our Services. This may include:

a. Information You Provide to Us
‍Account details (e.g., name, email address, and password if you register)
Portfolio data that you manually input (e.g., asset names, quantities, cost basis)
Payment information (if you subscribe to a paid plan, processed via secure third-party providers such as Stripe)
Support requests or messages you send us
‍
b. Information Collected Automatically
‍Log data (IP address, browser type, operating system, referring URLs, and timestamps)
Usage data (how you interact with dashboards, analytics, or AI agents)
Cookies and analytics data (through tools like Google Analytics or similar)

How We Use Your Information

We use your data for the following purposes:
To provide and maintain the CryptoRisk Services
To generate and display portfolio risk analytics and metrics
To communicate with you regarding updates, support, and account matters
To improve platform performance and user experience
To comply with legal or regulatory obligations

We do not sell or rent your personal data to third parties.

Legal Basis for Processing (GDPR)

Under the General Data Protection Regulation (GDPR), we process personal data based on one or more of the following lawful bases:
Contractual necessity — to deliver the Services you request
Legitimate interest — to improve functionality and ensure security
Consent — for optional analytics, cookies, or marketing communications
Legal obligation — where required to comply with applicable laws

How We Store and Protect Your Data

We take data protection seriously and implement appropriate technical and organizational measures to safeguard your data, including:
Encrypted data transmission (HTTPS / SSL)
Secure cloud hosting with access control
Limited employee access to sensitive data
Regular security and compliance audits

Data is stored on secure servers located within the European Economic Area (EEA) or with trusted providers that comply with GDPR-equivalent protections.

Data Retention

We retain your personal data only for as long as necessary:
Account data: kept until you delete your account
Transaction and billing data: retained for up to 7 years for tax and audit compliance
Analytical or log data: anonymized or deleted after [12–24 months]

When data is no longer needed, we securely delete or anonymize it.

Cookies and Analytics

We use cookies to enhance your browsing experience and analyze traffic.
You can control or disable cookies through your browser settings.

Analytics tools (like Google Analytics) may collect anonymized usage data to help us understand platform performance.
No personally identifiable financial data is shared.

Sharing of Data

We may share limited data only with:
Service providers (e.g., cloud hosting, analytics, payment processors) under strict data-processing agreements
Legal authorities if required by law or regulation

We will never sell, trade, or share your personal data with marketers or third parties for advertising.

International Transfers

If data is transferred outside the EEA, it is done under GDPR-compliant safeguards, such as EU Standard Contractual Clauses (SCCs) or equivalent frameworks ensuring adequate protection.

Your Rights (EU/EEA Users)

Under GDPR, you have the following rights:
Access – request a copy of your personal data
Rectification – correct inaccurate or incomplete information
Erasure – request deletion (“right to be forgotten”)
Restriction – limit how your data is processed
Data portability – request transfer of your data to another provider
Objection – object to processing based on legitimate interests or marketing

To exercise these rights, contact us at support@cryptorisk.ai

We will respond within 30 days in accordance with applicable laws.

Children’s Privacy

CryptoRisk is intended for users aged 18 and older.
We do not knowingly collect personal data from minors.
If you believe a child has provided us with personal information, please contact us so we can delete it.

Third-Party Links

Our website may contain links to third-party websites or services.
We are not responsible for their privacy practices and encourage you to review their policies before providing personal data.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time.
All changes will be posted on this page with an updated “Last updated” date.
Continued use of the Services after changes take effect constitutes acceptance of the revised policy.

Contact Us

If you have any questions, concerns, or data requests, please contact:
support@cryptorisk.com
CryptoRisk, Stockholm, Sweden

Plain English Summary

We respect your privacy. We collect only what’s needed to operate CryptoRisk, we keep it secure, we don’t sell your data, and you can request to see or delete it anytime.

‍