PRIVACY POLICY
XXCrypto (“Company”, “we”, “our”, or “us”) respects your privacy and is committed to protecting the personal information of our users (“you”, “your”). This Privacy Policy explains how we collect, use, store, share, and protect your information when you access or use our website https://www.xxcrypto.com, mobile applications, educational materials, copy trading services, and any related features (collectively, the “Platform”).
By using the Platform, you agree to the terms of this Privacy Policy. If you do not agree, please discontinue use of the Platform.
1. Information We Collect
1.1 Personal Data
  • Email address
  • Login credentials and account information
1.2 Technical Data
  • IP address
  • Browser type and device identifiers
  • Pages visited, time spent on the Platform, referral link
  • Cookies, analytics, and tracking technologies
1.3 Trading Activity Data
  • Data on your trading activity within your connected CoinW account (for copy trading functionality only).
2. How We Use Your Information
We use the collected data to:
  • Provide and improve the Platform and its features
  • Facilitate copy trading functionality with your CoinW account
  • Personalize your user experience
  • Ensure Platform security and prevent misuse
  • Communicate with you (support, updates, service notifications)
3. Legal Basis for Processing (GDPR Users)
If you are located in the European Economic Area (EEA), we process your personal data on the following legal bases:
  • Your consent
  • Performance of a contract with you
  • Compliance with legal obligations
  • Legitimate interests (e.g., improving services, ensuring security)
4. Sharing of Information
We may share your information with:
  • Service providers (hosting, analytics, authentication, compliance providers)
  • Business partners (e.g., CoinW, for enabling copy trading features you choose to use)
  • Regulators or law enforcement (where required by law)
  • Corporate transactions (mergers, acquisitions, restructuring)
We do not sell your personal information.
5. International Data Transfers
Your personal information may be transferred and processed in countries outside of your country of residence. Where such transfers occur, we apply safeguards to ensure your data remains protected.
5.1 European Economic Area (EEA)
If we transfer your personal information from the EEA to a country that has not been granted an adequacy decision by the European Commission, - we rely on the Standard Contractual Clauses (SCCs).
These are legally binding agreements between the data exporter (the EU entity sending the data) and the data importer (XXCrypto or our service providers outside the EU). The SCCs require the importer to protect your personal data to EU standards, even if local laws provide fewer protections.
5.2 United Kingdom (UK)
For transfers from the UK, we rely on either:
  • he International Data Transfer Agreement (IDTA), or
  • the UK Addendum to the EU Standard Contractual Clauses, as approved by the UK Information Commissioner’s Office (ICO).
Both mechanisms ensure that your data continues to be protected under standards consistent with UK data protection law.
5.3 Switzerland
For transfers from Switzerland, - we rely on the EU Standard Contractual Clauses, adapted where necessary to comply with the Swiss Federal Data Protection Act (FADP). This ensures that your personal information receives an equivalent level of protection.
5.4 Transfer Impact Assessments (TIAs)
In line with the requirements of the Court of Justice of the European Union (Schrems II decision), we also carry out Transfer Impact Assessments (TIAs) before transferring personal data internationally. These assessments consider, among other factors:
  • The nature of the data being transferred,
  • The legal and regulatory environment of the destination country, and
  • The likelihood of access by local government or law enforcement authorities.
Where necessary, we implement supplementary technical, organizational, or contractual measures to ensure that your personal data remains protected to a standard essentially equivalent to that required under European, UK, and Swiss law.
6. Data Retention
We retain your information only for as long as necessary to:
  • Provide services to you
  • Comply with legal obligations
  • Resolve disputes and enforce agreements
When no longer needed, data will be securely deleted or anonymized.
7. Your Rights
Depending on your jurisdiction, you may have the right to:
  • Access, correct, or delete your personal information
  • Restrict or object to processing of your data
  • Withdraw consent (where processing is based on consent)
  • Data portability (receive your information in a machine-readable format)
  • Lodge a complaint with your local data protection authority
To exercise your rights, contact us at [email protected].
8. Cookies & Tracking
We use cookies and similar technologies to improve user experience, analyze traffic, and personalize content. You can manage cookie preferences in your browser settings.
9. Security Measures
We implement industry-standard security measures, including encryption, access controls, and monitoring, to protect your data. However, no method of transmission or storage is 100% secure, and we cannot guarantee absolute security.
10. Children’s Privacy
The Platform is not directed to children under the age of 18. We do not knowingly collect information from minors. If we become aware of such data, we will delete it promptly.
11. Third-Party Links
Our Platform may contain links to third-party websites or services. We are not responsible for their privacy practices. Please review their policies before providing personal information.
12. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. The “Last Updated” date indicates when changes were made. Continued use of the Platform after changes constitutes acceptance of the updated Policy.
13. Contact Us
If you have questions, concerns, or requests regarding this Privacy Policy, please contact us at:
XXCrypto Legal & Compliance Team
Email: [email protected]
Website: https://www.xxcrypto.com
SPECIAL NOTICE FOR RESIDENTS OF CALIFORNA, USA
14. California Privacy Rights (CCPA/CPRA Notice)
If you are a resident of State of California (USA), you may have additional rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA).
14.1 Categories of Personal Information Collected
  • Identifiers (email address, login credentials)
  • Internet/technical information (IP address, browser type, device identifiers, Platform usage data, cookies)
  • Trading activity data (limited to CoinW account activity used for copy trading features)
Over the past 12 months, XXCrypto has collected the following categories of personal information:
14.2 No Sale of Personal Information
XXCrypto does not sell your personal information to third parties.
14.3 Right to Know and Access
You have the right to request disclosure of the categories and specific pieces of personal information we have collected about you.
14.4 Right to Delete
You may request the deletion of personal information we have collected, subject to legal and contractual obligations.
14.5 Right to Correct
You may request correction of inaccurate personal information.
14.6 Right to Opt-Out of Sale or Sharing
Although we do not sell your data, California residents have the right to direct us not to sell or share personal information. You can exercise this right by contacting us at [email protected].
14.7 Right to Non-Discrimination
We will not discriminate against you for exercising any of your privacy rights under the CCPA/CPRA.
14.8 Authorized Agents
You may authorize another person to submit a privacy request on your behalf, provided proper documentation is supplied.