Back to Home

Privacy Policy

Last updated: January 2025

1. Introduction

Hashwake ("we," "our," or "us") is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service, including our web application and cryptocurrency risk analysis tools.

This Privacy Policy is designed to comply with the General Data Protection Regulation (GDPR) (EU) 2016/679 and other applicable data protection laws. By using the Service, you consent to the data practices described in this policy.

2. Data Controller

Hashwake acts as the data controller for personal data collected through the Service. For questions about this Privacy Policy or our data practices, please contact us at:

Email: privacy@hashwake.app

3. Information We Collect

3.1 Information You Provide

When you use the Service, we may collect information that you voluntarily provide, including:

  • Email address when you create an account
  • Payment information when you subscribe to Pro features (processed securely by Stripe)
  • Chart settings and preferences you save
  • Feedback or support requests you submit
  • Any other information you choose to provide through the Service

3.2 Automatically Collected Information

When you access the Service, we automatically collect certain information, including:

  • Usage Data: Information about how you interact with the Service, including pages visited, features used, charts viewed, and time spent on the Service
  • Technical Information: IP address, browser type and version, device information, operating system, and unique device identifiers
  • Subscription Data: Subscription status, plan type, billing history, and payment status
  • Chart Settings: Your saved chart configurations, display preferences, and analytical settings

3.3 Information from Third Parties

We may receive information about you from third-party services, including:

  • Authentication providers (Supabase) for account management
  • Payment processors (Stripe) for subscription billing
  • Cryptocurrency data providers for market information
  • Analytics services for understanding Service usage

4. How We Use Your Information

We use the information we collect for the following purposes:

  • Service Provision: To provide, maintain, and improve the Service, including displaying risk metrics, processing analysis, and generating insights
  • User Experience: To personalize your experience, save your preferences, and provide relevant analysis and features
  • Subscription Management: To manage your subscription, process payments, and provide access to Pro features
  • Security: To detect, prevent, and address security issues, fraud, and unauthorized access
  • Analytics: To understand how users interact with the Service and improve functionality
  • Legal Compliance: To comply with applicable laws, regulations, and legal processes
  • Communication: To respond to your inquiries, provide support, and send important Service updates

We process your personal data based on the following legal bases under GDPR:

  • Legitimate Interest: To provide and improve the Service, ensure security, and prevent fraud
  • Consent: When you provide explicit consent for specific processing activities
  • Legal Obligation: To comply with applicable laws and regulations
  • Contract Performance: To perform our obligations under these Terms and manage your subscription

5. Information Sharing and Disclosure

We do not sell, rent, or trade your personal data. We may share your information in the following circumstances:

5.1 Service Providers

We may share information with third-party service providers who assist us in operating the Service, including:

  • Supabase: Authentication and database services
  • Stripe: Payment processing and subscription management
  • Vercel: Hosting and infrastructure
  • Cryptocurrency Data Providers: Market data and analysis feeds
  • Analytics Services: Usage analytics and monitoring

These service providers are contractually obligated to protect your information and use it only for the purposes we specify.

5.2 Legal Requirements

We may disclose your information if required by law, regulation, legal process, or governmental request, including to:

  • Comply with court orders or legal processes
  • Respond to government requests
  • Enforce our Terms of Use
  • Protect our rights, privacy, safety, or property
  • Prevent or investigate fraud or security issues

5.3 Business Transfers

In the event of a merger, acquisition, reorganization, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change in ownership or control of your personal information.

6. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. Specifically:

  • Account data is retained while your account is active and for 30 days after deletion
  • Subscription and billing data is retained for up to 7 years for tax and accounting purposes
  • Usage and technical data is typically retained for up to 24 months
  • Chart settings are retained while your account is active
  • Legal and compliance records may be retained for longer periods as required by law

When we no longer need your personal data, we will securely delete or anonymize it, except where retention is required for legal purposes.

7. Your Rights Under GDPR

If you are located in the European Economic Area (EEA), you have the following rights regarding your personal data:

  • Right of Access: You have the right to request access to your personal data and receive a copy of the data we hold about you
  • Right to Rectification: You have the right to request correction of inaccurate or incomplete personal data
  • Right to Erasure: You have the right to request deletion of your personal data, subject to certain limitations
  • Right to Restrict Processing: You have the right to request restriction of processing of your personal data
  • Right to Data Portability: You have the right to receive your personal data in a structured, commonly used format
  • Right to Object: You have the right to object to processing of your personal data based on legitimate interests
  • Right to Withdraw Consent: Where processing is based on consent, you have the right to withdraw consent at any time

To exercise any of these rights, please contact us at privacy@hashwake.app. We will respond to your request within one month, though this period may be extended by two additional months if necessary.

You also have the right to lodge a complaint with a supervisory authority in your jurisdiction if you believe we have violated your data protection rights.

8. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These measures include:

  • Encryption of data in transit using industry-standard HTTPS/TLS protocols
  • Secure authentication through Supabase with encrypted password storage
  • Secure payment processing through PCI-compliant payment processor (Stripe)
  • Regular security assessments and updates
  • Access controls and authentication requirements for our systems

However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to protect your personal data, we cannot guarantee absolute security. You are responsible for maintaining the security of your account credentials.

9. International Data Transfers

Your information may be transferred to and processed in countries outside the European Economic Area (EEA). When we transfer personal data outside the EEA, we ensure appropriate safeguards are in place, including:

  • Standard Contractual Clauses approved by the European Commission
  • Adequacy decisions by the European Commission
  • Other appropriate safeguards as required by GDPR

10. Children's Privacy

The Service is not intended for individuals under the age of 18. We do not knowingly collect personal data from children. If you believe we have collected information from a child, please contact us immediately, and we will take steps to delete such information.

11. Third-Party Links

The Service may contain links to third-party websites, services, or applications. We are not responsible for the privacy practices of these third parties. We encourage you to review the privacy policies of any third-party services you access.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any material changes by:

  • Posting the updated Privacy Policy on the Service
  • Updating the "Last updated" date at the top of this page
  • Providing notice through the Service or by email

Your continued use of the Service after such changes constitutes your acceptance of the updated Privacy Policy.

13. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

Email: privacy@hashwake.app