00Introduction🔗
BuyCrypt (hereinafter — "we", "us", "Platform") is a Delaware-registered company operating a simulated terminal for cryptocurrency trading. The User has the ability to receive a free account with 1,000 virtual USDT to learn trading and test strategies with no risk or loss, in a more convenient interface.
Definitions in this Privacy Policy carry the same meaning as in our General Terms and Conditions. If a term of this Privacy Policy conflicts with or differs from a term in the General Terms, this Policy prevails.
For the purposes of this Policy, we define "User" as a person who visits https://buycrypt.com/, registers an account on the site, and uses BuyCrypt services.
Our registered office is 8 The Green, STE A, Dover, DE 19901, USA.
We care about your privacy. We only collect what we need to run the platform, we don't sell your data, and you can delete it at any time. This document explains the legal details.
Our principles
- Purposefulness — we process personal data fairly and transparently, only for lawful, determined objectives.
- Minimalism — we collect only what's necessary, and we don't keep data longer than we need it.
- Restricted use — we only use data for purposes you've consented to (or as required by competent authority).
- Data quality — we keep records up-to-date, complete, and relevant to the processing purpose.
- Security — we apply technical and organizational measures to protect data from unauthorized access, loss, or damage.
- Individual participation — you can access, correct, and demand deletion of your data at any time.
This Policy informs you about
- Who BuyCrypt is and how to contact us.
- What data we may collect, why, how it's used, and how long we keep it.
- Disclosure of Personal Information to third parties.
- Your ability to access, correct, restrict, transfer, or delete your data.
- The extent of automated decision-making or profiling (we don't do it).
- The security measures we have in place.
- Your rights to lodge a complaint.
01Data we collect🔗
1.1 Users
We may collect, record, and analyze information about Users of our website. In order to provide services, we collect personally identifiable information.
When creating an account, the User provides us with information such as name, email address (or Google/Apple authorization), telephone number, API keys, and other relevant data. This information is used to identify Users and provide them with Services — including mailings, notifications, balance display, transactions, deposit replenishment, support, and marketing — and to meet other contractual obligations.
1.2 Information automatically collected
When you first sign up, your username and/or email are automatically logged. That's it.
We automatically collect certain information when you first register. This may include:
- Your phone number — only when you authorize via mobile phone.
- Your email address — only when logging in via Google and, in some cases, Apple services.
- Your preferred language — only if you choose English or Russian.
- User's name — the name you define yourself (randomly generated by default).
This information is automatically uploaded to https://api.buycrypt.com and stored on our backend server, primarily for platform security, operations, and internal analytics.
By agreeing to this Policy, you authorize us to collect and store the information listed above.
1.3 Promotional emails
If you no longer wish to receive promotional emails, you may opt out by replying to any such email or sending us an opt-out request.
1.4 Data for service provision
We process your Personal Data to provide our services in full — including support, communication, and marketing. When we share such information with contractors (which may be located outside the European Economic Area) to provide high-quality support in emergencies, we rely on your consent and your request. Marketing processing also relies on consent.
You can withdraw consent at any time by emailing us. Your Personal Data will be deleted within 48 hours.
1.5 External links
Please be aware that our site may link to other websites beyond our control. We are not responsible for the content or privacy policies of those sites.
1.6 Children
Our services are exclusively offered to individuals at least 18 years old. We do not process Personal Information of children under this age.
02GDPR, CCPA, and LGPD compliance🔗
2.1 GDPR (European Economic Area)
For Users located in the EEA, privacy rights are granted and all processing of Personal Data is performed in accordance with Regulation (EU) 2016/679 — the General Data Protection Regulation (GDPR) — and applicable US legislation.
2.2 CCPA (California)
For Users located in California, all processing complies with the California Consumer Privacy Act, Cal. Civ. Code § 1798.100 et seq. ("CCPA").
2.3 LGPD (Brazil)
For Users located in Brazil, all processing complies with the Lei Geral de Proteção de Dados ("LGPD").
03Your rights🔗
Users can review, correct, update, delete, or transfer their personally identifiable information. To exercise any of these rights, contact us directly at [email protected]. We will acknowledge your request within 72 hours and handle it promptly and as required by law.
3.1 Right to access
You may contact us to confirm whether we process your personal data. If we do, we will inform you of the categories processed, the processing purposes, the recipients to whom data has been or will be disclosed, and the envisaged storage period or criteria for determining it.
3.2 Right to withdraw consent
Where our processing is based on consent, you may withdraw it at any time. Your Personal Data will be deleted within 48 hours. Withdrawing consent may lead to fewer possibilities to use our Services.
3.3 Right to object
Where processing is based on our legitimate interest (running, maintaining, and developing our business), you may object at any time. We will no longer process your personal data unless we can demonstrate compelling legitimate grounds or require it for legal claims. You may also unsubscribe from direct marketing at any time.
3.4 Right to restriction of processing
You may request that we restrict processing, as foreseen by applicable data protection law — e.g., to verify accuracy after your contest, or to prevent erasure when data is still required for your legal claims. Restriction may lead to fewer possibilities to use our Services.
3.5 Right to data portability
Where processing is based on your consent and carried out by automated means, you have the right to receive your personal data in a structured, commonly used, machine-readable format — and independently transmit it to a third party.
3.6 How to exercise these rights
Primarily use the functions offered by our Services. If those are insufficient, send a letter or email to [email protected] with: your name, address, phone number, email, and a copy of a valid proof of identity. We may request additional identification. We may reject unreasonably repetitive, excessive, or manifestly unfounded requests.
3.7 Complaints
If you are from California and dissatisfied with how we have used your information, you may complain via the CalOPPA Complaint Form. You also have the right to lodge a complaint with a supervisory authority if you believe we violate your rights — contact the California Department of Justice.
If you are from Brazil, you may file a complaint with Brazil's National Data Protection Authority (ANPD) through its official channels.
04Data retention🔗
We retain Personal Data for as long as you use our site and continue to communicate with our support team. Your information will be deleted if you haven't communicated with support for more than 12 months.
4.1 Unsolicited information
If you provide us with personal information we haven't requested, we will endeavor to retain only the information we're entitled to hold given the products and services we provide. However, if unsolicited information is combined with information we're required or entitled to retain, you acknowledge this may be held alongside your personal information.
05Information security🔗
We take security seriously. We follow generally accepted industry standards to protect information submitted to us — both during transmission and once we receive it. We maintain technical, physical, and administrative measures to provide reasonable protection for your Personal Data.
When we or our contractors process your information, we ensure it's protected from unauthorized access, loss, manipulation, falsification, destruction, or unauthorized disclosure via appropriate administrative, technical, and physical measures.
No method of transmission over the Internet, or electronic storage, is 100% secure. We cannot guarantee absolute security — but we apply industry best practices to minimize risk.
We never process sensitive data or criminal offence data, as neither Controller nor Processor. We never undertake profiling of personal data.
06Contractors🔗
We work with third-party service providers for website hosting, application development, maintenance, and other services. They may be located outside the EEA. These contractors may access or process Personal Data on our behalf as part of providing these services. We limit information to what's reasonably necessary for them to perform their functions.
We have data processing agreements in place with our service providers, ensuring GDPR compliance and confidentiality. All data transfers inside and outside the EEA are performed in accordance with these agreements and the highest security standards.
Our main contractors
- Google Analytics — web traffic analysis (Google LLC, USA). Privacy Policy · Opt Out
- Facebook Pixel — web analysis (Facebook Ireland Ltd, Republic of Ireland). About the pixel
- Firebase — cloud database for synchronization (Google, USA). Privacy Policy
- Amplitude — product analytics platform (Amplitude Inc., USA). Privacy Policy · Opt Out
These providers collect Cookies and Usage Data. They may use the data to contextualize and personalize ads in their own advertising networks. Transfer of Personal Data to countries outside the EEA is only possible with your consent.
08Application of this Policy🔗
This Privacy Policy applies to our website. Our website contains links to other websites. Once redirected to another website, this Policy no longer applies.
09Acceptance of these conditions🔗
We assume that all Users have carefully read this document and agree to its content. If you do not agree with this Privacy Policy, you should refrain from using our website.
10Changes and updates🔗
From time to time, we may update this Privacy Policy. We will notify you about material changes by prominently posting a notice on our Service. We encourage you to periodically check back so you always know what information we collect, how we use it, and with whom we share it.
Jan 1, 2024 — Current version. Added explicit CCPA and LGPD sections, clarified 12-month retention, updated contractor list.
11Fraud, phishing, and email scams🔗
BuyCrypt does not partner with anyone claiming to be user-support agents via phone or social media, or promising paid help with your issues. User support is provided only via the BuyCrypt website and is always free.
If you discover what you believe is fraud, phishing, or a scam impersonating BuyCrypt, please email us at [email protected].
12Contact us🔗
If you have any questions about this site, your dealings with us, or anything in this Policy, please contact us at [email protected].
Dover, DE 19901
United States
Delaware reg. no. 117803141