Privacy Policy

Last Updated: January 25, 2025

1. Introduction

BiTraider Inc. ("BiTraider," "we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application and services (the "Service").

By using the Service, you consent to the data practices described in this policy. If you do not agree with this policy, please do not use the Service.

2. Information We Collect

2.1 Personal Information You Provide

We collect information that you voluntarily provide when using our Service, including:

• Account Information: Name, phone number, date of birth, address
• Identity Verification (KYC): Government-issued ID, Social Security Number (or equivalent), photographs for identity verification
• Financial Information: Bank account details (for withdrawals), payment card information (processed securely by Stripe)
• Transaction Data: Cryptocurrency purchase history, wallet addresses, transaction amounts and timestamps
• Communications: Messages sent through our support system, feedback, and inquiries

2.2 Information Collected Automatically

When you use our Service, we automatically collect certain information:

• Device Information: Device type, operating system, unique device identifiers, mobile network information
• Usage Data: App features accessed, time spent on features, interaction patterns
• Location Information: Approximate geographic location based on IP address (with your consent, precise location via GPS)
• Security Information: IP addresses, login times, device fingerprints for fraud prevention

2.3 Information from Third Parties

We may receive information from:

• Identity Verification Services: Verification results from third-party KYC providers
• Payment Processors: Transaction confirmations from Stripe and other payment processors
• Cryptocurrency Exchanges: Trade execution confirmations and pricing data from partner exchanges
• Independent Agents: Information about transactions facilitated through our agent network

3. How We Use Your Information

We use collected information for the following purposes:

3.1 Service Delivery

• Creating and managing your account
• Processing cryptocurrency transactions
• Connecting you with independent service agents
• Managing your cryptocurrency wallet
• Providing customer support

3.2 Legal and Compliance

• Verifying your identity (KYC compliance)
• Preventing money laundering and terrorist financing (AML compliance)
• Detecting and preventing fraud
• Complying with legal obligations and regulatory requirements
• Responding to law enforcement requests

3.3 Service Improvement

• Analyzing usage patterns to improve our Service
• Developing new features and services
• Personalizing your experience
• Conducting research and analytics

3.4 Communication

• Sending transaction confirmations and receipts
• Providing customer support responses
• Sending security alerts and notifications
• Sharing updates about our Service (with your consent)

4. How We Share Your Information

We do not sell your personal information. We may share your information in the following circumstances:

4.1 Service Providers

We share information with trusted third-party service providers who assist us in operating our Service:

• Payment Processors: Stripe for payment processing
• Identity Verification: KYC/AML verification service providers
• Cloud Infrastructure: Amazon Web Services (AWS) for hosting and data storage
• Analytics Providers: For service improvement and usage analytics
• SMS Services: Twilio for SMS notifications

4.2 Independent Agents

When you work with an agent, we share necessary information to facilitate transactions and provide support, including your name, phone number, and transaction details.

4.3 Legal Requirements

We may disclose your information when required by law or in response to:

• Court orders or legal process
• Law enforcement requests
• Regulatory inquiries
• Protection of our rights, property, or safety
• Investigation of fraud or illegal activity

4.4 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity.

5. Data Security

5.1 Security Measures

We implement industry-standard security measures to protect your information:

• Encryption of data in transit (TLS/SSL) and at rest
• Secure credential storage using industry best practices
• Regular security assessments and penetration testing
• Access controls limiting employee access to personal information
• Multi-factor authentication for account access

5.2 Wallet Security

Important: BiTraider provides a non-custodial wallet solution. Your private keys are stored encrypted on your device only. We do not have access to your private keys and cannot recover lost wallets.

5.3 Limitations

Despite our security measures, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security of your information.

6. Data Retention

We retain your information for as long as necessary to:

• Provide the Service to you
• Comply with legal obligations (typically 5-7 years for financial records)
• Resolve disputes and enforce our agreements
• Maintain business records

When no longer needed, we securely delete or anonymize your information.

7. Your Privacy Rights

Depending on your jurisdiction, you may have the following rights:

7.1 Access and Portability

You have the right to request a copy of the personal information we hold about you.

7.2 Correction

You can request correction of inaccurate or incomplete personal information.

7.3 Deletion

You may request deletion of your personal information, subject to legal retention requirements.

7.4 Opt-Out

You can opt out of:

• Marketing communications (via unsubscribe link or account settings)
• Certain data collection (though this may limit Service functionality)

7.5 California Privacy Rights (CCPA)

California residents have additional rights under the California Consumer Privacy Act, including the right to know what information is collected, the right to delete information, and the right to opt-out of sale (we do not sell personal information).

7.6 European Privacy Rights (GDPR)

If you are located in the European Economic Area, you have rights under the General Data Protection Regulation, including rights to access, rectification, erasure, restriction of processing, data portability, and to object to processing.

7.7 Exercising Your Rights

To exercise any of these rights, please contact us at privacy@boneyard.io or admin@boneyard.io.

8. Children's Privacy

Our Service is not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If we discover that we have collected information from a child, we will delete it immediately.

9. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place when transferring data internationally, including:

• Standard contractual clauses approved by regulatory authorities
• Compliance with applicable data protection frameworks
• Ensuring service providers meet adequate data protection standards

10. Third-Party Links

Our Service may contain links to third-party websites or services. We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies.

11. Cookies and Tracking Technologies

11.1 Cookies

We use cookies and similar tracking technologies to:

• Remember your preferences and settings
• Understand how you use our Service
• Improve your experience
• Provide security features

11.2 Managing Cookies

You can control cookies through your browser settings. Note that disabling cookies may limit some Service functionality.

12. Changes to This Privacy Policy

We may update this Privacy Policy periodically. We will notify you of material changes by:

• Posting the updated policy with a new "Last Updated" date
• Sending you an email notification (for significant changes)
• Displaying a notice within the Service

Your continued use of the Service after changes constitutes acceptance of the updated Privacy Policy.

13. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Email: admin@boneyard.io
Privacy Officer: privacy@boneyard.io
Compliance: compliance@boneyard.io

14. Data Protection Officer

For EU residents, you can contact our Data Protection Officer at dpo@boneyard.io.

---

We are committed to protecting your privacy and handling your personal information responsibly and transparently.