Privacy Policy

1. Introduction & Overview

CoinDiger ("we," "us," "our," or "Company") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website and use our services.

Please read this Privacy Policy carefully. If you do not agree with our policies and practices, please do not use our Services. By accessing and using this website, you acknowledge that you have read, understood, and agree to be bound by all the terms of this Privacy Policy.

2. Information We Collect

2.1 Information You Provide Directly

We collect information that you provide directly to us, including:

• Account Registration Information: Name, email address, phone number, username, password, date of birth, and profile picture.
• Identity Verification: Government-issued ID, proof of address, and biometric data (for enhanced security).
• Payment Information: Bank account details, cryptocurrency wallet addresses (Bitcoin, Ethereum, Dogecoin, Litecoin), payment method information.
• Tax & Compliance: Tax ID numbers, W-9 forms, and other tax documentation (where applicable).
• Communication Data: Messages, inquiries, feedback, support tickets, and correspondence with our team.
• Preference Information: Language preferences, notification settings, and account preferences.
• Referral Information: Referral codes and referred user details for our referral program.

2.2 Information Automatically Collected

We automatically collect certain information about your device and how you interact with our Services:

• Device Information: Device type, operating system, browser type, device ID, IMEI, hardware model.
• Network Information: IP address, ISP, VPN/Proxy detection, MAC address, connection type.
• Usage Data: Pages visited, time spent, clicks, scrolls, features accessed, earning method participation.
• Geolocation: Country, region, city level location (with your permission).
• Cookies & Tracking: Session cookies, persistent cookies, web beacons, pixel tags.
• Security Data: Login attempts, failed authentication, suspicious activity logs.

2.3 Third-Party Information

We may receive information about you from:

• Payment processors and financial institutions
• Social media platforms (if you link your account)
• Identity verification services
• Fraud detection and prevention services
• Data brokers for compliance purposes
• Advertisers and marketing partners
• Other users (e.g., through referral program)

2.4 Sensitive Information

3. How We Use Your Information

We use the information we collect for the following purposes:

3.1 Service Delivery & Account Management

• Creating and managing your account
• Processing transactions and withdrawals
• Calculating and distributing cryptocurrency earnings
• Managing the referral program
• Providing customer support
• Sending transactional emails and notifications

3.2 Security & Fraud Prevention

• Detecting and preventing fraud, abuse, and suspicious activity
• Implementing security measures and monitoring suspicious logins
• Verifying user identity and eligibility
• Enforcing Terms of Service and other agreements
• Protecting against unauthorized access
• VPN/Proxy detection and filtering

3.3 Legal & Compliance

• Complying with legal obligations and regulations
• Responding to government requests and court orders
• Performing tax and regulatory reporting
• Maintaining compliance records
• Anti-money laundering (AML) and Know Your Customer (KYC) procedures

3.4 Marketing & Communications

• Sending promotional materials and newsletters (with consent)
• Notifying you about service updates and changes
• Conducting surveys and feedback requests
• Personalizing your experience
• Analyzing engagement and interests

3.5 Analytics & Performance Improvement

• Analyzing service usage and performance
• Improving user experience and interface design
• Developing new features and services
• Conducting research and statistical analysis
• Optimizing website and app performance

3.6 Legitimate Business Operations

• Managing our business operations
• Financial accounting and audits
• Resolving disputes and legal claims
• Protecting our intellectual property rights

4. Data Sharing & Third Parties

4.1 We May Share Your Data With:

Service Providers

Third-party vendors who perform services on our behalf, including:

• Payment processors and financial institutions
• Cryptocurrency exchanges and wallet providers
• Email service providers
• Cloud hosting providers
• Analytics platforms (Google Analytics, Mixpanel)
• Customer support software
• Identity verification services
• Fraud detection services

Legal Requirements

We will disclose your information when legally required to do so:

• Compliance with court orders and subpoenas
• Government or regulatory investigations
• Law enforcement requests
• Protection of legal rights and safety
• Tax authorities and financial regulators

Business Transfers

In the event of a merger, acquisition, bankruptcy, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change.

Aggregated & De-identified Data

We may share aggregated and de-identified data with third parties for:

• Marketing research and analysis
• Industry benchmarking
• Statistical purposes
• Academic research (with approval)

4.2 We Do NOT Sell Personal Data

4.3 Third-Party Services & Links

Our website may contain links to third-party websites and services. We are not responsible for the privacy practices of these external sites. Please review their privacy policies before providing personal information.

5. Data Security & Protection

5.1 Security Measures

We implement comprehensive security measures to protect your information:

• Encryption: SSL/TLS encryption for data in transit, AES-256 encryption for data at rest
• Authentication: Two-factor authentication (2FA), multi-factor authentication (MFA) support
• Access Control: Role-based access control and principle of least privilege
• Firewalls: Advanced firewall protection and DDoS mitigation
• Intrusion Detection: 24/7 monitoring and intrusion detection systems
• Regular Audits: Security audits and penetration testing
• Data Backups: Encrypted and redundant backup systems
• Secure Development: Secure coding practices and vulnerability scanning

5.2 Employee Access Control

• Only authorized employees have access to personal data
• Employees are bound by confidentiality agreements
• Regular security training and awareness programs
• Background checks for all employees with data access

5.3 Data Breach Notification

In the event of a confirmed data breach that compromises your personal information, we will:

• Notify affected users without undue delay (typically within 48-72 hours)
• Provide information about the nature of the breach
• Recommend measures you can take to protect yourself
• Provide access to credit monitoring services (where applicable)
• Notify regulatory authorities as required by law

6. Data Retention

We retain personal information for as long as necessary to provide services and fulfill legal obligations:

Deletion Process: When we delete information, we use secure deletion methods to ensure data cannot be recovered. Certain information may be retained longer if required by law or for legitimate business purposes.

7. Your Rights & Choices

7.1 Your Privacy Rights

Depending on your location, you may have the following rights:

Right to Access

You have the right to request and receive a copy of your personal data that we hold. We will provide this information in a structured, commonly used electronic format (GDPR right to access).

Right to Rectification

You can request correction of inaccurate or incomplete personal information. You may update your account settings directly, or contact us for assistance.

Right to Erasure

In certain circumstances, you may request deletion of your personal data. However, we may need to retain some information for legal, tax, or security purposes.

Right to Restrict Processing

You can request that we limit how we use your information in certain situations.

Right to Data Portability

You have the right to receive your data in a portable format and transfer it to another service provider.

Right to Object

You can object to certain types of processing, including marketing communications and profiling.

Right to Withdraw Consent

If we process data based on your consent, you can withdraw that consent at any time.

7.2 How to Exercise Your Rights

To exercise any of these rights, please contact us at:

• Email: [email protected]
• Data Subject Request Form: Submit Here
• Account Settings: Manage preferences directly in your account dashboard

Response Time: We will respond to your request within 30 days (45 days for complex requests). You will not be charged unless your request is manifestly unfounded.

7.3 Communication Preferences

You can control how we communicate with you:

• Marketing Emails: Opt-out via the unsubscribe link in emails or account settings
• Notifications: Disable push notifications in your mobile app settings
• SMS Messages: Text "STOP" to our number or request removal through your account
• Analytics Tracking: Opt-out using Do Not Track (DNT) header in your browser

8. Cookies & Tracking Technologies

8.1 Types of Cookies We Use

Essential Cookies

• Session management and login authentication
• CSRF (Cross-Site Request Forgery) protection
• Security and fraud prevention
• Status: Cannot be disabled

Functional Cookies

• Remember your preferences and settings
• Language and theme preferences
• Saved login information
• Status: Can be disabled in privacy settings

Analytics Cookies

• Google Analytics for performance tracking
• Mixpanel for user behavior analysis
• Hotjar for heatmaps and session recording
• Status: Opt-out available

Marketing & Advertising Cookies

• Facebook Pixel for retargeting
• Google Ads for conversion tracking
• Third-party advertiser cookies
• Status: Opt-out available

8.2 Other Tracking Technologies

• Web Beacons & Pixels: Invisible tracking elements embedded in emails and pages
• Log Data: Server logs capture IP addresses, browser type, and access times
• Local Storage: Browser localStorage for storing preferences and data

8.3 Managing Cookies

You can control cookies through your browser settings:

• Chrome: Settings → Privacy and Security → Cookies and site data
• Firefox: Preferences → Privacy & Security → Cookies and Site Data
• Safari: Preferences → Privacy → Cookies and website data
• Edge: Settings → Privacy and Security → Cookies and site permissions

Note: Disabling cookies may affect website functionality and your user experience.

8.4 Do Not Track

Some browsers include a "Do Not Track" feature. We respect DNT signals and will limit our tracking when detected, except for essential analytics and security purposes.

9. International Data Transfers

9.1 Cross-Border Data Transfers

Your information may be transferred to, accessed by, and stored in countries outside of your country of residence. These countries may have data protection laws that differ from your home country.

9.2 Legal Mechanisms for Transfers

We ensure compliance with laws governing international data transfers through:

• Privacy Shield & Standard Contractual Clauses (SCCs): For EU-US and EU-UK transfers
• Data Processing Agreements (DPAs): With all service providers
• Adequacy Decisions: Relying on countries deemed to have adequate protection
• Explicit Consent: For transfers to jurisdictions without adequate protection

9.3 Your Rights in International Transfers

You have the right to obtain information about the transfer mechanisms and safeguards we use. Contact us for details.

10. Legal Compliance

10.1 Applicable Regulations

This Privacy Policy complies with:

• GDPR (EU): General Data Protection Regulation for EU residents
• CCPA (California): California Consumer Privacy Act for California residents
• AGE ACT (Australia): Notifiable Data Breaches scheme
• PIPEDA (Canada): Personal Information Protection and Electronic Documents Act
• LGPD (Brazil): Lei Geral de Proteção de Dados
• State Privacy Laws: Virginia, Colorado, Connecticut, Utah privacy regulations
• AML/KYC Requirements: Anti-money laundering and Know Your Customer regulations
• FinCEN Regulations: US Financial Crimes Enforcement Network requirements

10.2 Children's Privacy

Age Requirement: Our Services are only available to individuals 18 years of age or older. We do not knowingly collect personal information from children under 13 years old.

If we become aware that we have collected personal information from a child under 13 without parental consent, we will immediately delete such information and take appropriate steps to notify the parent.

10.3 Regulatory Authorities

You have the right to lodge a complaint with your local data protection authority:

• EU: Your national Data Protection Authority
• California: California Attorney General
• Other Jurisdictions: Contact your local privacy regulator

10.4 Your Specific Rights by Jurisdiction

California (CCPA/CPRA):

• Right to know what personal information is collected
• Right to delete personal information (limited exceptions)
• Right to opt-out of sales/sharing of personal information
• Right to correct inaccurate information
• Right to limit use of sensitive personal information

European Union (GDPR):

• All rights listed in Section 7 apply
• Right to lodge a complaint with your DPA
• Right to object to automated decision-making

11. Contact Information

11.1 Privacy Questions & Data Requests

If you have any questions about this Privacy Policy or wish to exercise your rights, please contact our Data Protection Officer:

11.2 Response & Escalation

• Initial response within 5 business days
• Full response within 30 days (45 for complex requests)
• Escalation to executive team if not resolved to your satisfaction

11.3 Policy Updates

We may update this Privacy Policy periodically to reflect changes in our practices or applicable laws. We will notify you of material changes by:

• Posting the updated policy on our website
• Updating the "Last Updated" date
• Sending you an email notification (for material changes)
• Requiring your acknowledgment before service continuation (if required)

Continued use of our Services after changes constitutes your acceptance of the updated Privacy Policy.