Privacy Policy
Effective Date: 23 July 2025
1. Introduction
CryptoMinute.ai ("CryptoMinute," "we," "us," or "our") is an AI-powered crypto-news aggregator and analytics service accessible via web, mobile and API (collectively, the "Service"). This Privacy Policy explains what data we collect, how we use it, the legal bases for processing, and the choices and rights available to you. By using the Service you accept the practices described here.
YouTube API Services: CryptoMinute.ai uses YouTube API Services to provide video content and analytics. By using our Service, you also agree to be bound by the Google Privacy Policy.
2. Scope
This Policy applies to all visitors, registered users and API clients worldwide. It governs personal data provided directly by you and data generated from your use of the Service.
3. What Data We Collect
| Category | Examples | Source |
|---|---|---|
| Account Data | Email, username, hashed password (if you create an account) | Direct |
| Usage & Log Data | IP address, browser type, device OS, referring/exit pages, time-stamps, error logs | Automatic |
| Analytics & Cookies | Cookie identifiers, page-views, click paths, session length | Automatic |
| Subscription & Payment Data | Name, billing address, VAT ID, last four digits of card, payment token | Direct; processor |
| Communications | Emails, support tickets, survey responses | Direct |
| AI-Generated Scores | Sentiment/impact scores linked to news URLs but not to individuals | Derived |
We do not intentionally collect special categories of data or information about minors.
4. Legal Bases for Processing (GDPR)
We rely on one or more of the following:
- Consent – e.g., when you sign up for email alerts.
- Performance of a Contract – to deliver core features such as personalised feeds.
- Legitimate Interests – improving security and analytics while respecting your rights.
- Compliance with Legal Obligations – tax, accounting and anti-fraud duties.
5. How We Use Data
- Provide & Maintain the Service – display curated news, calculate AI scores, operate APIs.
- Personalise Experience – remember language settings, favourite coins and push-alert preferences.
- Analytics & Performance – measure engagement to improve relevance. Uses Google Analytics (optional).
- Marketing – send product updates or offers if you opt-in; you may unsubscribe anytime.
- Security & Fraud Prevention – detect DDoS, spam or unauthorised scraping.
6. Cookies & Tracking Technologies
We use first-party and limited third-party cookies for session management, analytics and (in the free tier) advertising. None of these cookies store plain personal identifiers. You can disable cookies in your browser, but some features may break. See our separate Cookie Notice for details.
7. Data Sharing
| Recipient | Purpose | Safeguard |
|---|---|---|
| Hosting & Cloud Providers | Serve the site, store backups | EU/EEA data centres where practical |
| Payment Processor (Stripe or equivalent) | Subscription billing | PCI-DSS compliance |
| Analytics Vendors | Site usage stats | IP-anonymisation; contract clauses |
| Advertising Partners (free tier) | Contextual ads only; no sensitive profiling | DPA & opt-out links |
| Legal & Regulatory | Respond to lawful requests, enforce Terms | As required by law |
We never sell your personal data.
8. International Transfers
Where data is transferred outside the EEA, we rely on Standard Contractual Clauses or an adequacy decision, consistent with GDPR Art. 46.
9. Data Retention
We keep personal data only as long as necessary:
- Account data – while your account is active plus up to 12 months.
- Billing records – 10 years (tax law).
- Logs – 30 days, unless required for security audits.
- AI scores – stored indefinitely but not linked to any user.
We then delete or anonymise the data.
10. Your Privacy Rights
Under GDPR you may: access, rectify, erase, restrict, object and port your personal data, and withdraw consent at any time.
To exercise any right, email privacy@cryptominute.ai. We respond within one month. You also have the right to lodge a complaint with Portugal's supervisory authority (CNPD).
11. "Do Not Track" & Global Privacy Control
Browsers may send "DNT" or GPC signals. Currently we do not alter tracking in response, but we continue to evaluate industry standards.
12. Children
The Service is not directed to children under 16, and we do not knowingly collect data from them.
13. Security
We apply encryption in transit (TLS 1.3), encryption at rest, firewalls, role-based access controls and regular security audits. In case of a data breach impacting personal data, we will notify affected users and regulators within 72 hours, per GDPR Art. 33.
14. Changes to This Policy
We may update this Policy from time to time. Material changes will be announced by email (if applicable) and posted here with a new "Effective Date." Continued use after the update signifies acceptance.
15. Contact
Questions, requests or complaints?
Email: privacy@cryptominute.ai