PRIVACY POLICY
1. INFORMATION WE COLLECT
1.1. API credentials – used to execute buy and sell orders on your behalf. API keys are encrypted in transit (TLS 1.2+) and at rest (AES-256) and are not shared with third parties.
1.2. Transaction data – includes timestamps, trading pairs, order types, quantities, prices, and fees. Used for trade confirmations, logging, and generating analytics.
1.3. Usage metadata – such as IP address, API call timestamps, rate limit information, or error logs. This data helps ensure security, perform diagnostics, and improve the service.
1.4. Contact information – email address, name, and company name. Used for service updates, support inquiries, and sending legally required notifications.
2. HOW WE USE YOUR INFORMATION
2.1. API credentials are used to execute trades, verify account ownership, and protect against unauthorized access.
2.2. Transaction data allows us to generate reports, calculate performance metrics, and resolve disputes.
2.3. Usage metadata is needed to monitor system health, prevent abuse, and optimize performance.
2.4. Contact information is used to send notifications, respond to inquiries, and inform about compliance matters.
3. INFORMATION SHARING AND DISCLOSURE
3.1. Service providers and subcontractors – we may engage trusted partners (e.g., cloud hosting or encryption) who are obligated to maintain confidentiality and use the data solely for providing services.
3.2. Legal compliance – information may be disclosed if required by law, court order, or governmental authorities, as well as to protect our rights, users, or public safety.
3.3. No sale or rental – we never sell, rent, or trade your personal or API data.
4. DATA SECURITY
4.1. Encryption – all sensitive data is encrypted in transit and at rest.
4.2. Access control – role-based access, multi-factor authentication (MFA) for administrative accounts, and periodic reviews are used.
4.3. Network security – firewalls, intrusion detection systems, and regular vulnerability assessments are applied.
4.4. Incident response – in the event of a security breach, we will notify users within 72 hours and take all necessary steps to mitigate the impact.
5. DATA RETENTION
5.1. API credentials are only stored as long as the account is active. Upon closure or request, they are securely deleted within 30 days.
5.2. Transaction data and metadata are retained for at least 5 years to comply with financial regulations and for audit purposes.
5.3. Contact information is stored until you independently request its deletion or unsubscribe from communications.
6. YOUR RIGHTS AND CHOICES
6.1. Access and portability – you can request a copy of your personal data in a machine-readable format.
6.2. Correction and deletion – you can correct inaccurate information or submit a deletion request in accordance with the law.
6.3. Opt-out – you can opt out of non-transactional emails (marketing or informational) at any time.
6.4. API access revocation – you can delete or replace your API keys on the exchange, after which we will securely delete the old data.
7. INTERNATIONAL TRANSFERS
7.1. Our systems and contractors may operate in other countries. Where required, we apply legal safeguards (e.g., standard contractual clauses) to protect your data.
8. COMPLIANCE AND UPDATES
8.1. We comply with current data protection laws, including GDPR and relevant financial regulations.
8.2. The policy may be updated periodically. We will notify you of important changes via email or through the service interface.
8.3. The "Last updated" field always displays the current version.
9. CONTACT US
Point C
Address: 20 Robochaya St, Dnipro, Ukraine
Email: shevanton05071994@gmail.com
Website: https://pointcbot.com
Thank you for entrusting Point C with your crypto trading needs. Our main goal is to protect your privacy and the security of your data.