We collect the minimum needed to run CoinCatapult and never sell your data. This page explains what we collect, why, and how to ask us to remove it.
1. What we collect
- Account data (if you sign up): email, optional handle, hashed password.
- Submissions: token info you submit (chain, address, name, social links, logo).
- Votes: an anonymous browser ID (cookie), the token voted, timestamp, and a hashed IP for abuse detection.
- Contact messages: the message you send us via the contact form.
- Logs: standard server logs (IP, user agent, path) retained for ≤30 days for security and debugging.
2. What we don’t collect
We don’t use third-party trackers, advertising pixels or analytics SDKs that profile you across sites. We don’t custody funds or wallets — payments are handled by NOWPayments.
3. How we use it
To operate the Service: serve listings, count votes, send transactional notices, prevent abuse and fraud, and respond to your messages. Aggregate, non-identifying metrics may be shared publicly.
4. Cookies
We use first-party cookies for: an anonymous voter ID (so you can vote without an account), session cookies (if you log in), and remembering you dismissed UI elements (e.g. the popup ad). No third-party tracking cookies.
5. Sharing
We share data with infrastructure providers strictly to run the Service: Hostinger (hosting), Backblaze (encrypted backups), NOWPayments (crypto payments). We disclose data when required by law.
6. Your rights
You may request access, correction, or deletion of your personal data. Email [email protected] or use the contact form. We respond within 30 days.
7. Security
Passwords are hashed (never stored in plaintext). All traffic uses HTTPS. We back up the database off-server daily. No system is perfectly secure — choose a strong, unique password.
8. Changes
Material changes will be reflected by the “Last updated” date above.