Privacy Policy

Last Updated: November 24, 2025

1. Introduction

CryptoVault ("we," "us," "our," or "Company") is committed to protecting your privacy. This Privacy Policy explains our data practices and your privacy rights when you use our website (cryptovault.defi) and related services.

2. Information We Collect

2.1 Information You Provide Directly

• Contact Information: Name, email address, phone number
• Communication Data: Messages you send us through contact forms or email
• Newsletter Subscriptions: Email address for educational content delivery
• User Preferences: Learning interests, content preferences

2.2 Information Collected Automatically

• Device Information: IP address, browser type, operating system
• Usage Data: Pages visited, time spent on page, click patterns
• Cookies: Session cookies and preference cookies (see Cookie Policy)
• Analytics: Behavioral data to improve our services

2.3 Information from Third Parties

• Analytics providers (Google Analytics)
• Social media platforms (if you link your accounts)
• Partner websites and services

3. How We Use Your Information

We use collected information for the following purposes:

• Service Delivery: Providing educational content and maintaining our platform
• Communication: Responding to inquiries and sending newsletters
• Improvement: Analyzing usage patterns to enhance user experience
• Security: Detecting and preventing fraud or abuse
• Compliance: Meeting legal and regulatory obligations in Thailand and internationally
• Marketing: Sending updates about new content (with your consent)

4. Legal Basis for Processing

We process your information based on:

• Your Consent: When you explicitly agree to data processing
• Contract Fulfillment: To provide services you've requested
• Legal Obligation: To comply with Thai laws and regulations
• Legitimate Interests: To improve services and prevent fraud

5. Data Sharing and Disclosure

We may share your information with:

• Service Providers: Hosting, analytics, email delivery companies
• Legal Requirements: Authorities if required by law
• Business Partners: Carefully selected partners for educational content collaboration
• Affiliate Networks: For tracking and reporting (no personal identification)

We do NOT sell your personal information to third parties.

6. Data Retention

• Account Data: Retained for the duration of your account plus 2 years
• Newsletter Subscribers: Retained until you unsubscribe
• Cookies: Session cookies expire when you close your browser; persistent cookies last up to 365 days
• Analytics Data: Retained for 26 months
• Communications: Retained for 3 years for legal purposes

7. Your Privacy Rights

Depending on your location, you may have the following rights:

• Right to Access: Request a copy of your personal data
• Right to Correction: Update or correct inaccurate information
• Right to Deletion: Request removal of your data ("Right to be Forgotten")
• Right to Portability: Receive your data in a portable format
• Right to Restrict Processing: Limit how we use your information
• Right to Object: Opt-out of marketing communications and profiling

8. Data Security

We implement industry-standard security measures including:

• HTTPS encryption for all data transmission
• Secure data storage with access controls
• Regular security audits and updates
• Staff training on data protection
• Incident response procedures

While we strive to protect your data, no online service is completely secure. We encourage users to practice good security hygiene.

9. International Data Transfers

Your data may be processed in Thailand and other countries. We ensure adequate safeguards for international transfers through:

• Standard contractual clauses
• Adequate privacy legislation in recipient countries
• Your explicit consent when necessary

10. Thailand-Specific Provisions

As a platform focused on Thai users, we comply with:

• Personal Data Protection Act (PDPA): Thailand's primary privacy law
• Digital Economy Promotion Agency (DEPA): Regulations on digital services
• Securities and Exchange Commission (SEC): Disclosure requirements for crypto-related content
• Data localization requirements: When applicable under Thai law

11. Cookies and Tracking Technologies

We use cookies for:

• Essential Cookies: Site functionality and security
• Performance Cookies: Analytics and user behavior tracking
• Preference Cookies: Remembering your settings and choices

See our Cookie Policy for detailed information and opt-out options.

12. Third-Party Links

Our website may contain links to external websites. We are not responsible for the privacy practices of third-party sites. We recommend reviewing their privacy policies before sharing information.

13. Children's Privacy

Our services are not intended for individuals under 18 years of age. We do not knowingly collect data from minors. If we become aware of such collection, we will delete the information promptly.

14. Privacy Policy Updates

We may update this Privacy Policy periodically. Changes will be posted on this page with an updated "Last Modified" date. Continued use of our services implies acceptance of updated terms.

15. Contact Us

For privacy inquiries, data access requests, or complaints:

• Email: privacy@cryptovault.defi
• Mailing Address: CryptoVault, Bangkok, Thailand
• Data Protection Officer: dpo@cryptovault.defi

16. Privacy Shield and GDPR Compliance

While CryptoVault is based in Thailand, we respect GDPR requirements for European users. If you are located in the EU, GDPR protections apply to your data, and you may contact our Data Protection Officer with any concerns.