GDPR Compliance

Last Updated: December 28, 2025

Introduction

CryptoBot AI is fully compliant with the European Union General Data Protection Regulation (GDPR). This page explains your rights under GDPR and how to exercise them.

Your GDPR Rights

Right to Access

You have the right to request a copy of the personal data we hold about you. This includes your account information, trading history, and any other data we process.

Right to Rectification

You have the right to request correction of inaccurate or incomplete personal data. You can update most information directly in your account settings.

Right to Erasure ('Right to be Forgotten')

In certain circumstances, you have the right to request deletion of your personal data. This includes when the data is no longer necessary for the purposes it was collected, or when you withdraw consent.

Right to Restriction of Processing

You have the right to request restriction of processing your personal data in certain circumstances, such as when you contest the accuracy of the data or object to processing.

Right to Data Portability

You have the right to receive your data in a structured, commonly used, and machine-readable format (e.g., JSON, CSV). You can also request that we transfer this data to another service provider.

Right to Object

You have the right to object to processing of your personal data, including processing based on legitimate interests or for direct marketing purposes.

Right to Withdraw Consent

Where processing is based on consent, you have the right to withdraw consent at any time. This will not affect the lawfulness of processing before withdrawal.

How to Exercise Your Rights

To exercise any of the above rights, please contact us at:

Email: info@expathub-all.com

We will respond to your request within 30 days as required by GDPR.

Legal Basis for Processing

We process your personal data based on the following legal grounds under GDPR:

Art. 6(1)(a) GDPR - Consent: Where you have explicitly consented to processing
Art. 6(1)(b) GDPR - Contract Performance: Necessary to provide our trading services
Art. 6(1)(c) GDPR - Legal Obligation: Required by law (e.g., financial regulations)
Art. 6(1)(f) GDPR - Legitimate Interest: For service improvement and security

Data Retention Period

We retain your data for the following periods:

Account data: Until account deletion or 2 years of inactivity
Trading history: Up to 7 years for legal and tax compliance
Payment records: As required by law (up to 10 years)
Marketing consent: Until consent withdrawal
Support communications: 3 years after resolution

International Data Transfers

Some data may be transferred outside the European Economic Area (EEA). In such cases, we ensure appropriate safeguards are in place:

Standard Contractual Clauses (SCCs) approved by the European Commission
Adequacy decisions for countries with equivalent data protection
Binding Corporate Rules for intra-group transfers
Other GDPR-approved transfer mechanisms

Data Protection Officer

For data protection inquiries, you can contact us at:

Email: info@expathub-all.com

Supervisory Authority

You have the right to lodge a complaint with your local data protection supervisory authority if you believe your rights have been violated. Contact information for EU supervisory authorities can be found at:

European Data Protection Board - Member Authorities

Data Security Measures

We implement appropriate technical and organizational measures to protect your data:

End-to-end encryption for sensitive data (API keys)
Secure HTTPS connections with TLS 1.3
Regular security audits and penetration testing
Access controls and authentication mechanisms
Data backup and disaster recovery procedures
Employee training on data protection

Data Breach Notification

In the event of a data breach that poses a risk to your rights and freedoms, we will notify you and the relevant supervisory authority within 72 hours as required by GDPR Article 33 and 34.

Contact

If you have questions about GDPR compliance, please contact us:

Email: info@expathub-all.com