Privacy and Data Protection

This Privacy Policy explains how Crypto Recovery Agency collects, uses, protects, retains and discloses personal information when you visit our website, contact our team, request a case review, report a crypto scam or submit supporting evidence.

Effective: July 11, 2026 Last updated: July 11, 2026 Version 1.0

Information We Collect

We may collect contact details, case information, transaction records, public wallet addresses, communications and evidence you choose to submit.

Why We Use It

Information may be used to review inquiries, assess reported incidents, communicate with you, maintain records and protect our website and users.

How We Protect It

We use administrative, technical and organizational safeguards designed to reduce unauthorized access, alteration, disclosure or loss.

Your Privacy Choices

Depending on your location, you may request access, correction, deletion, restriction or another available privacy right.

Never submit wallet credentials

Do not send us a wallet seed phrase, recovery phrase, private key, exchange password, wallet password, PIN, remote-access credential or two-factor authentication code. We do not need these credentials to conduct an initial review of public blockchain transactions.

01

Scope and Identity of the Controller

This Privacy Policy applies to personal information processed through cryptorecoveryagency.org, our online forms, communications and related services operated by Crypto Recovery Agency, referred to in this policy as “we,” “us” or “our.”

For purposes of applicable privacy law, the organization responsible for determining how and why personal information is processed is:

Legal business name: [INSERT REGISTERED LEGAL BUSINESS NAME]
Business address: [INSERT COMPLETE BUSINESS ADDRESS]
Privacy email: privacy@cryptorecoveryagency.org
Telephone: [INSERT BUSINESS TELEPHONE NUMBER]

This policy applies to website visitors, prospective clients, clients, individuals reporting suspected cryptocurrency fraud, people submitting evidence and individuals who communicate with us.

02

Personal Information We Collect

The personal information we collect depends on how you interact with us and what information you choose to provide.

Contact and identification information

  • Name, initials or preferred form of address.
  • Email address, telephone number and country.
  • Preferred method of communication.
  • Business or organization information where relevant.

Case and incident information

  • Description and date of the reported incident.
  • Type of suspected scam, fraud, theft or unauthorized transaction.
  • Approximate amount and type of cryptocurrency involved.
  • Names, usernames, email addresses, phone numbers, websites or profiles associated with suspected parties.
  • Existing case reference numbers and updates.

Blockchain and transaction information

  • Public wallet addresses.
  • Transaction hashes, transaction IDs and blockchain network information.
  • Transaction dates, amounts and destination details.
  • Exchange, wallet provider or payment-platform information.

Evidence and communications

  • Screenshots, receipts, invoices and payment confirmations.
  • Emails, chat logs, social-media messages and correspondence.
  • Documents and files submitted for assessment.
  • Messages sent through our forms, email or other official channels.

Website and technical information

  • Internet Protocol address and approximate location derived from it.
  • Browser type, operating system, device type and language.
  • Referring pages, pages viewed, interaction events and timestamps.
  • Security logs, form-submission records and spam indicators.
  • Cookie and consent preferences.
Do not submit secret wallet data. We do not request or require your seed phrase, recovery phrase, private key, account password, exchange password, PIN or two-factor authentication code.
03

Sources of Personal Information

We may obtain personal information from the following sources:

  • Directly from you when you complete a form, contact us, submit evidence or communicate with our team.
  • From a person acting for you, such as a legal representative, family member or authorized agent.
  • Automatically from your device through server logs, security systems, cookies and similar technologies.
  • From public blockchains, blockchain explorers and publicly visible transaction records.
  • From publicly available sources, including websites, public profiles, company records and scam-reporting resources.
  • From service providers that support website hosting, security, email, analytics, form delivery and document storage.
04

How We Use Personal Information

We may use personal information for the following purposes:

  • To receive, review and respond to inquiries.
  • To conduct an initial crypto-recovery case assessment.
  • To examine submitted transaction information and supporting evidence.
  • To trace and document publicly visible blockchain activity where appropriate.
  • To communicate about an existing or prospective case.
  • To request clarification or additional relevant records.
  • To prepare findings, summaries or supporting case documentation.
  • To manage our relationship with clients and prospective clients.
  • To operate, maintain, secure and improve the website.
  • To detect spam, fraud, misuse, malicious files and cybersecurity threats.
  • To comply with applicable legal obligations, court orders and lawful requests.
  • To establish, exercise or defend legal claims.
  • To enforce our terms, policies and agreements.

We will not use submitted case information in a materially different way without providing appropriate notice or obtaining consent where required.

06

How We Disclose Personal Information

We do not disclose personal information merely because it has been submitted to us. We may disclose information in the following circumstances:

Service providers

We may use carefully selected vendors to provide hosting, email delivery, cybersecurity, secure storage, technical support, analytics, form processing, document management and related business services.

Professional advisers

Information may be disclosed to lawyers, accountants, forensic professionals, consultants or other advisers where reasonably necessary and subject to appropriate confidentiality obligations.

Exchanges, wallet providers and other organizations

With authorization or where otherwise legally permitted, relevant information may be shared with exchanges, wallet providers, financial institutions or other organizations involved in a reported transaction.

Authorities and legal process

We may disclose information when required by applicable law, regulation, court order, subpoena or another valid legal process, or when reasonably necessary to protect rights, safety and security.

Business transactions

Information may be transferred as part of a merger, acquisition, financing, restructuring, sale of assets or similar business transaction, subject to appropriate legal safeguards.

We do not disclose seed phrases or private keys because we do not request or knowingly collect them. Never send these credentials to us.
07

Cookies, Analytics and Similar Technologies

Our website may use cookies, local storage, pixels and similar technologies to operate the website, remember preferences, maintain security, measure website performance and understand general usage.

Types of cookies that may be used

  • Strictly necessary cookies required for security, form processing, consent management and core website functions.
  • Preference cookies that remember settings and choices.
  • Analytics cookies used to understand general website traffic and performance.
  • Marketing cookies only where such technologies are actually used and permitted by applicable law.

Where legally required, non-essential cookies will not be activated until you provide consent. You may change cookie preferences through [INSERT LINK OR NAME OF COOKIE SETTINGS TOOL].

Update this section to identify every analytics, advertising, chat, reCAPTCHA, video, map and tracking service installed on the website.
08

Public Blockchain Information

Public blockchain networks maintain transaction records that may be visible to anyone. Information recorded on a public blockchain can include wallet addresses, transaction hashes, amounts, timestamps and token-transfer activity.

Public blockchain data may be permanent or difficult to alter. We do not control public blockchain networks and generally cannot erase, modify or reverse information recorded on them.

Although a public wallet address does not always directly identify a person, it may become linked to an individual when combined with exchange records, communications or other information.

Information you submit through our private forms is separate from information already recorded on a public blockchain.
09

Data Security

We use reasonable administrative, technical and organizational safeguards designed to protect personal information against unauthorized access, acquisition, alteration, disclosure, destruction or loss.

Depending on the nature of the processing, our safeguards may include:

  • HTTPS/TLS encryption for website connections.
  • Access controls and role-based permissions.
  • Strong passwords and multi-factor authentication where available.
  • Malware scanning, firewalls and security monitoring.
  • Secure hosting and maintained software.
  • File-type, file-size and upload validation.
  • Spam prevention and submission-rate controls.
  • Restricted access to case files and evidence.
  • Backup, recovery and incident-response procedures.
No internet transmission or storage system can be guaranteed to be completely secure. Submit only information reasonably necessary for your inquiry or case.
10

Data Retention

We retain personal information only for as long as reasonably necessary for the purposes described in this policy, including providing services, maintaining appropriate business records, resolving disputes, protecting security and complying with legal obligations.

Information category Suggested retention entry
General contact inquiries [INSERT ACTUAL RETENTION PERIOD, FOR EXAMPLE 12–24 MONTHS]
Unaccepted case-review submissions [INSERT ACTUAL RETENTION PERIOD]
Client case records and evidence [INSERT ACTUAL RETENTION PERIOD AND LEGAL BASIS]
Financial and contractual records [INSERT PERIOD REQUIRED BY APPLICABLE LAW]
Security and server logs [INSERT ACTUAL RETENTION PERIOD]
Cookie and consent records [INSERT ACTUAL RETENTION PERIOD]

When information is no longer required, we may delete, anonymize or securely dispose of it, subject to technical limitations and applicable legal requirements.

11

International Data Transfers

We are based in the United States. If you access our services from another country, your personal information may be transferred to, stored in or processed in the United States or another country where our service providers operate.

Privacy and data-protection laws may differ between countries. Where required, we use appropriate safeguards for international transfers, which may include contractual protections, adequacy mechanisms or another legally recognized transfer method.

Identify the actual countries in which your hosting, email, cloud-storage, analytics and support providers process information.
12

Your Privacy Rights and Choices

Depending on your jurisdiction and subject to applicable exceptions, you may have the right to:

Access

Request confirmation and a copy of certain personal information we maintain.

Correction

Ask us to correct inaccurate or incomplete personal information.

Deletion

Request deletion of certain information, subject to legal and operational exceptions.

Portability

Request certain information in a portable format where this right applies.

Object or Restrict

Object to or request restriction of certain processing where permitted.

Withdraw Consent

Withdraw consent where consent is the basis for processing.

How to submit a privacy request

Email privacy@cryptorecoveryagency.org with the subject line “Privacy Rights Request.” Describe your request and identify the email address used when communicating with us.

We may request reasonable information to verify your identity and protect personal information from unauthorized disclosure. Authorized agents may be required to provide evidence of their authority.

We will respond within the period required by applicable law. Certain requests may be limited or denied where a legal exception applies, including where information is needed for security, legal claims, recordkeeping or compliance.

Complaints

You may contact us with a privacy concern. Where applicable, you may also lodge a complaint with the privacy or data-protection authority responsible for your location.

13

California Privacy Notice

This section applies only to the extent that Crypto Recovery Agency is subject to the California Consumer Privacy Act, as amended.

Categories that may be collected

  • Identifiers, such as name, email address, telephone number and IP address.
  • Customer-record information submitted in connection with an inquiry or service.
  • Commercial information, such as service and transaction records.
  • Internet or electronic-network activity.
  • Approximate geolocation derived from technical information.
  • Audio, electronic, visual or similar information included in communications or evidence.
  • Professional or employment information where voluntarily provided and relevant.
  • Inferences reasonably derived from submitted case information.

California rights

Subject to applicability and legal exceptions, California residents may have rights to know, access, correct or delete certain personal information and to receive information about how it is collected and disclosed.

Sale and sharing statement

Select and publish only the statement that accurately reflects the website:

Option A: We do not sell personal information or share it for cross-context behavioral advertising as those terms are defined by California law.

Option B: We may use advertising or analytics technologies that constitute sale or sharing under California law. Use our “Your Privacy Choices” mechanism to opt out.

We do not discriminate against individuals for exercising applicable privacy rights.

California requests may be submitted by emailing privacy@cryptorecoveryagency.org or through [INSERT PRIVACY REQUEST FORM LINK].

If the business is not subject to the CCPA, avoid presenting this section as a claim that the law necessarily applies. Obtain legal advice regarding the applicable thresholds.
14

Children’s Privacy

Our services are not directed to children under 13, and we do not knowingly collect personal information from children under 13 through this website.

Individuals who are not legally able to enter into a service agreement should involve a parent, guardian or authorized representative.

If you believe a child has submitted personal information without appropriate authorization, contact privacy@cryptorecoveryagency.org so the matter can be reviewed.

15

Third-Party Websites and Services

Our website may contain links to third-party websites, blockchain explorers, exchanges, wallet providers, authorities or other online services.

We do not control third-party privacy, security or content practices. A link does not necessarily mean that we endorse or are responsible for the linked service.

Review the privacy policy and security practices of any third-party service before submitting personal information or connecting a cryptocurrency wallet.

16

Changes to This Privacy Policy

We may update this Privacy Policy to reflect changes in our services, technology, legal obligations or data practices.

The updated version will be posted on this page with a revised “Last updated” date. Where required, we may provide additional notice of a material change through the website, email or another appropriate method.

We encourage you to review this policy periodically.

17

Contact Us About Privacy

Contact us with questions, concerns or requests relating to this Privacy Policy or our handling of personal information.

Crypto Recovery Agency

Have a question about your personal information?

Contact our privacy team to ask a question or submit an applicable privacy-rights request.