Permanent links to current versions:

Cryptolocator General terms of use:

Privacy and Cookie policy (this document, is an integral annex to the Terms):

Anti-Money Laundering (AML) & Know Your Customer (KYC) Policy (hereinafter “AML and KYC Policy”):


Welcome to the Privacy Policy of Website (hereinafter “Website”)! Here we explain what data we collect when you come to our Website and use it. We also explain why we collect this data and with whom your data is shared. Please read it over and contact us with any questions regarding this document. Before you can sign up for a personal account with Cryptolocator, please review this Privacy Policy and signify your acceptance of the various sections.


We respect your privacy and value its importance, and are wholly committed to keeping your information safe and secure. This Privacy Policy applies to the Website and all Services offered by Company on Website and/or its affiliates. This Privacy Policy is designed to assist you in understanding how we collect, store, process and use the information, that can be used to identify an individual directly or indirectly (“Personal Data”), collected through the use of our Website and (or) our mobile application, you provide to us and to assist you in making informed decisions when using our Website and our Services.

All references to the ‘Company’, ‘us’, ‘our’, ‘we’ or ‘Cryptolocator’, ‘’ means Crypto Technologies LTD, registered in the Republic of Seychelles, company No: 215792, whose registered office is located at: Suite 1, Second Floor, Sound & Vision House, Francis Rachel Str., Victoria, Mahe, Seychelles, the administrator of the Website.

Please review this Privacy Policy before you use the Website or any of the Services or features offered on or through the Website. If you do not wish us to use your Personal Data in the ways described in this Privacy Policy, then you should not access or use the Website, Platform or use any of the Services.

By using the Website and its Services, you agree to be bound by this Privacy Policy. If you do not agree to this Privacy Policy, please do not use the Website or its Services.

By continuing to use the Website and Services after having been informed of any such changes to these conditions acceptance of the revised Privacy Policy is implied. This Privacy Policy is an integral part of the Cryptolocator General Terms of Use.

For the purposes of this Policy, Company defines the term “User”, “Visitor” or “You” as a natural or legal person, either a visitor of or as User with a trading Account.

If we, or a fraud prevention agency, determine that you pose a fraud, money laundering or other criminal risks, we may refuse to provide the Services you have requested, or we may stop providing existing services to you.




All terms are understood in the meaning given to them by the Terms. is a peer-to-peer platform service that enables its users to buy and sell digital currencies with a lot of different ways to exchange. All transactions are made directly between Users. Company is not itself a party to any transactions conducted by its Users and only acts as an arbiter in resolving disputes and as an escrow agent to provide secure transactions.

Any information stored on the Company Platform is treated as confidential. All information is stored securely and is accessed by authorized personnel only. Cryptolocator implements and maintains appropriate technical, security and organizational measures to protect Personal Data against unauthorized or unlawful processing and use, and against accidental loss, destruction, damage, theft or disclosure.

We process your data in an appropriate and lawful manner, in accordance with the General Data Protection Regulation (Regulation (EU) 2016/679) (the “Regulation” or the “GDPR”).

Note that you will need to successfully open and register a User Account with us (as subject to our User approval requirements and policies) in order to request and receive any of our Services.

We update this Privacy Policy periodically and post all updates on our Website as they are made. Please check this Privacy Policy on our Website regularly for updates check-up.

If You do not agree with the fact that Your information is provided to us, or the use of this information in other ways in accordance with this Policy and the Terms, You should not use the Website




The following sections cover the specifics of each of the two groups from which data is collected: Website Visitors and Users of our Services.

Website Visitors and collection of Visitors Data

If you are a Visitor to our Website only and not a User of our Services or the Website otherwise, then this section is relevant for you. In cases when required by the applicable law, we will ask for your explicit consent to process Personal Data, which shall be collected on this Website or volunteered by you. The Personal Data is collected from Visitors only if they voluntarily submit such data to us. Visitors may refuse to supply Personal Data, except that it may prevent them from engaging in certain Website related activities. However, if you do not grant the requested consent to the processing of your Personal Data, the use of this Website may not be possible. Company may collect, record and analyze Data of Visitors to our Website.

We may collect your Internet protocol address, geographical location, the type of browser and operating system you use, length of visit, the domain name of your Internet service provider, page views and Website navigation paths, as well as information about the timing and frequency of your service use. The source of the usage Data is our analytics tracking system. This usage data may be processed to administer our Website, to block Visitors from access to the Website if such users are located in certain jurisdictions and for the purposes of analyzing the use of the Website and Services and improving Visitors’ experience, performance and future development of the Services. The legal basis for this processing is our legitimate interest for monitoring and improving our Website and Services.

Furthermore, Company may collect and process Personal Data that you voluntarily (with your consent) give to Company in our Website’s forms, such as when you sign up for information and newsletters.

If you join one of our mailing lists, we track how you interact with emails we send you. This helps us to understand what is important to you and improve the content we provide. We track whether you open our emails, which links you follow, and when you do so.

You can manage your preferences or unsubscribe at any time by following the links in emails we send you.

If you provide Cryptolocator with your social media details, Cryptolocator may retrieve publicly available data about you from social media. Such Personal Data may comprise your IP address, first and last name, your postal and email address, your telephone number, your job title, data for social networks, your areas of interest, interest in Cryptolocator Services, and certain information about the company you are working for (company name and address) and all other publicly available data.

Purpose of processing Personal Data

Company uses the collected data to communicate with Visitors, to administer and protect our business, the Website and our Services (including troubleshooting, data analysis, testing, system maintenance, support, reporting and hosting of data), to customize content for Visitors and to improve its Website by analyzing how Visitors navigate its Website. Cryptolocator will process all data in order to monitor and improve Websites and Services.

Sharing and storing of Personal Data

Company may also share such aggregated and anonymized statistical data with service vendors or contractors in order to monitor and analyze the Visitor behavior on its Website. The data we collect from you is stored within the territories of the European Union.

Links to other Websites

The Website may contain links to websites maintained by third parties, whose information and privacy practices are different from ours. We are not responsible or liable for the information or privacy practices employed by such third parties. We encourage you to read the privacy statements of all third-party websites before using such websites or submitting any personal data or any other information on or through such websites.


In order to provide services to its Users, we collect certain types of data from them. This section will describe how Users` data are collected and used by us.

Company will process your account data you provide when you create an individual Account, perform transactions with other Users on the Company Platform, or use other Company Services.
Users will be asked to provide the following data:

  • Contact data: email address, country of residence, mobile phone number (must be provided during the process of registration on the Website). We will collect this information to identify you as a client and distinguish you from other users of our Services; to let you register on our Website; to provide you with user and technical support, to notify you about changes to our terms of use or Privacy policy, to deal with your enquiries, requests, complaints or reported issues, contact you in the course of providing the requested Services, to provide you with advertising materials, provided, however, that we receive prior consent from you to perform such activity);
  • Account data: username and password. We will ask you to provide this information to be able to use our Services, to ensure the security of our Users, Website and our Services.
  • Trade data: your transactional history on the Website; payment methods; offers information; Buyer and Seller usernames; trade chats; time scale of trade. We collect it to perform an Agreement between you and us, for internal recordkeeping, for billing and invoice purposes, for tax purposes and to resolve a disputed trade.
  • Identity verification data may be required when you pass certain trade volume limits, during trade disputes, fraud investigations, and to ensure Account ownership. As part of our ID verification process, we require you to provide us with documents that verify your identities such as your government-issued ID, passport or driving license. We collect this information to conduct User due diligence measures on you, to establish and verify your identity, for KYC purposes, to resolve a disputed trade, to protect our Users from fraud.
  • Usage Data includes details about how you use our Services and the Website. To administer and protect our business, the Website and our Services (including troubleshooting, data analysis, testing, system maintenance, support, reporting and hosting of data, to market our products and Services to you by email or other means if you have subscribed).
  • Technical Data includes internet protocol (IP) address, your login data, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform, and other technology on the devices which you (whether a User or otherwise) use to access and browse the Website. We use it to administer and protect our business, the Website and our Services (including troubleshooting, data analysis, testing, system maintenance, support, reporting and hosting of data), to carry out market research campaigns.
  • Website Visit Data includes the full Uniform Resource Locators (URL), clickstream to, through and from the Website (including date and time), services you viewed or searched for, page response times, download errors, length of visits to certain pages, page interaction information (such as scrolling, clicks, and mouse-overs), methods used to browse away from the page. To administer and protect our business, the Website and our Services (including troubleshooting, data analysis, testing, system maintenance, support, reporting and hosting of data), to carry out market research campaigns, To deliver relevant Website content and advertisements to you, and measure or understand the effectiveness of the advertising that we serve to you.


  • The source of the Contact data, Account data, Trade data, Identity verification data is a User who opens an Account.
  • The source of the Usage data, Technical data, Website Visit data is browser and Google Analytics.
  • The above-mentioned data will be used and processed for the purposes of performing a detailed Know Your Customer procedure according to necessary Anti-Money Laundering and Anti-Terrorist regulations, performing a contract that we have with you; as part of our legitimate (business) interests to verify the identity of our Users, mitigate against risks (such as potential or suspected fraud). These Personal Data will be used for operating our Website, providing our Services, ensuring the security of our Website and Services, maintaining backups of our databases and communicating with Users.



We may collect Personal Data from Users in a variety of ways: when Users visit our Website, apply for or register on the Website, fill out forms, create an Account and use the Services available on our Website. When you communicate with us for support service or other purposes (e.g. by emails, chat etc.), or provide any feedback, we keep such information and our responses to you in the records of your Account.

During a User’s registration at Company’s peer-to-peer platform, Users provide data such as an email address, country of residence, mobile phone number, username and password. We will ask you to provide us with your Identity verification data when you pass certain trade volume limits.
The Users Data shall be collected and processed by a third party –, which is a trusted partner of Company for collecting and processing Users data on behalf of Company. Shuftipro is an experienced identity verification company that will process Personal Data for the purposes of the necessary KYC/AML procedures. Shuftipro will obtain and process all the above stated Personal Data and run KYC/AML procedures and ensure the compliance with the relevant AML legislation. For the purposes of the maintaining Users’ Accounts and reviewing Users for the purposes of KYC/AML compliance, Cryptolocator will collect and process the same that Shuftipro will collect in the process of User verification (KYC) procedure.

Automated technologies or interactions. When you interact with our Website, we may automatically collect Technical, Website visit and Usage Data about your equipment, browsing actions and patterns. We may collect this Personal data by using cookies, server logs and other similar technologies.

The Company will also use some of this data for personalizing Service experience, analyzing Website usage, improve Website offerings, help to respond to Users’ or Visitors` requests and support needs, contact you about new Services, modification of the Terms of Use, Privacy Policy, communicate Cryptolocator news, updates, promotions and related information regarding Company, its Services, administering a contest, surveys, promotions and other Website features.




We, upon receiving your consent, may provide you with promotional messages and other information about Services of ours, our affiliates, and third parties such as partners and notices and other information related to the Services and your interests.

By selecting the checkbox “I agree to subscribe to promotional messages and other information about Services of ours, our affiliates and third parties such as partners, and notices and other information related to the Services and my interests” or its equivalent, you consent that we may send all such aforementioned materials and information to your email.

You can manage your preferences or unsubscribe at any time by following the links in emails we send you.




We will only use your Personal Data when the law allows us to. Most commonly, we will use your Personal Data in the following circumstances:


  • When you wish to enter into a User’s relationship with us;
  • When we need to perform the Agreement or one which are about to enter into with you as a User;
  • In order to operate and provide our Services, users support, improvements and customization of our Services;
  • To communicate with you regarding our Services;
  • Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests;
  • When we need to comply with a legal or regulatory obligation.




Our legitimate interest. It means that our interest is to conduct and manage our business affairs appropriately and responsibly, to protect the reputation of our business and to provide our Visitors with the best possible Service and the Users of the Website with a secure experience. We do not use your Personal Data for activities where our interests are overridden by the impact on you (unless we have your consent or are otherwise required or permitted to by law).

Performance of an Agreement. It means processing your data where it is necessary for the performance of an Agreement to which you are a party or in order to take steps at your request before concluding an agreement. This includes our Terms.

Legal obligation. We process your Personal Data where it is necessary for compliance with a legal or regulatory obligation we are subject to.

Marketing. Collecting Personal Data for this purpose, we are able to form a view on what we think you may want or need. This is how we then decide which of our Services may be relevant or of interest to you.


We will only use your Personal Data for the purposes we collected it for, unless we reasonably consider that we need to use it for another reason and that reason is compatible with the original purpose, or we are obliged to process your data by applicable laws or court / enforceable orders.

If you wish to get an explanation as to how the processing for the new purpose is compatible with the original purpose, please contact us at [email protected].

If we need to use your Personal Data for an unrelated purpose, we will notify you and we will explain the legal basis that allows us to do so. Please note that we may process your Personal Data without the need to obtain your consent, in compliance with the above rules, where this is required or permitted by law.





Our Website may use “cookies” to enhance User experience. Cookies, pixel tags and similar technologies (collectively ‘cookies’) are files containing small amounts of information which are downloaded to any internet enabled device – such as your computer or smartphone – when you visit the Website or use our application.


We use cookies and other technologies to facilitate your internet sessions and use of our application, offer you Services according to your preferred settings, track use of our Website and application and to compile statistics about activities carried out on our Website. Users are free to decline our Cookies if your browser or browser add-on permits, unless our Cookies are required to prevent fraud or ensure the security of Websites we control.


When You visit the Website for the first time, we invite You to read and accept the Privacy and Cookie Policy. We will ask You to choose which categories of Cookies You agree to process (with the exception of the necessary Cookies, without which the normal functioning of the Site is impossible), and confirm Your consent to the Policy within the limits specified by You. By continuing to use the Website, You agree to the placement of files in Your browser in accordance with this Policy.

We use session tracking technologies and persistent tracking technologies. Tracking technologies (such as Cookies) can be persistent (i.e. they are stored on Your computer until You delete them) or temporary (i.e. they are stored until You close Your browser).


We update this Cookie Policy periodically and post all updates on our Website as they are made. Please check this Policy on our Website regularly for updates check-up.


Different types of cookies

Session cookies are temporary cookies which only exist during the time you use the Website (or sometimes, until you close the browser after using the Website). Session cookies help our Website remember what you chose on the previous page, avoiding the need to re-enter information and improve your experience while using the Website.

Persistent cookies stay on your device after you’ve visited our Website. Persistent cookies help us identify you as a unique visitor. The length of time a cookie stays on your device depends on its type.


The cookies on the Website may be from any of the following categories:


  1. Essential Cookies or Strictly Necessary Cookies: These cookies are essential to the Service in order for you to move around the Service and to use its features. Without these cookies, certain features could not function. No information about your browsing habits is gathered by these cookies.
  2. Functional Cookies: These cookies remember how you prefer to use the Service and enable us to improve the way the Service works. We can remember your settings and help provide you with ads. Functional Cookies are persistent cookies that the Service remembers when your computer or device comes back to that Service.
  3. Analytics Cookies: Analytics Cookies allow us to improve our Services by collecting information about your use of the Services. We use these cookies to help to improve how the Website works. For example, Analytics Cookies show us statistics, which are the most frequently visited pages on the Service, help us record any difficulties you have with the Service, and show us whether our advertising is effective or not. We cannot identify you personally using these cookies, but third parties who provide these cookies may be able to.
  4. Behavioral Advertising Cookies: Behavioral Advertising Cookies are used for delivering relevant advertisements to users both on and off the Service. We analyze what pages you visit on these sites, what products or Services you view, and whether you view or click on ads that are shown to you. We may also use a cookie to learn whether someone who has seen an ad later has visited and has taken an action on the advertiser’s site. We use this information to send you interest-based ads and may also share this information with third parties. Similarly, our partners may use a cookie to determine whether we have shown an ad and how it performed, or provide us with information about how you interact with ads. We may also work with a partner to show you an ad on or off the Service, such as after you have visited a partner’s site or application.


If you choose to disable or block our cookies on your computer or other device, you will need to do so in a pop-up window when you enter the Website. If you block cookies, you may be unable to access certain areas of our Website and certain functions and pages will not work in the usual way.


Some of the Cookie files we use are listed below. This list is not exhaustive, but provides an overview of the main areas of use of Cookies. When You visit the Website, the Cookies described below may be installed on Your device.


We use the following Cookie files:


Subgroup of Cookie files

Cookie files


Zm yuidss yp ymex yc yandexuid yandex_gid yabs-sid yabs-frequency skid sMLIIeQQeFnYt  mda kNAcVGYFWhx is_gdpr_b is_gdpr instruction I gdpr computer _ym_uid _ym_isad _ym_d L FxuGQqNNo

selectedBalanceCurrency  language dashboardSortBy dashboardParams browser_secret _ym_uid _ym_isad _ym_d _gid _ga __cfduid




You can accept or reject all Cookies on all sites that You visit by changing the settings in Your Internet browser. For example, when You use Internet Explorer version 11.0, You should do the following:


  1. select “Settings”, then “Internet Options”;
  2. go to the “Privacy” tab;
  3. use the mouse to select Your preferred settings.


For each browser it is necessary to use its own settings to change and delete Cookies. Please note that certain functionality of the Site may not be available when Cookies are disabled. To learn more about how to adjust or change Your browser settings, refer to Your browser's instructions or go to either

If You use different devices to access the Site (for example, a smartphone, tablet, computer, etc.), You should make sure that each browser on each device is configured according to Your Cookie preferences.




We sometimes need to share Personal Data we process with third parties. Your information will not be sold, exchanged, or shared with any third parties without your consent, except to provide Company’s Services or as required by law. By using our Services and accepting our Terms of Use, you consent to the disclosure of your Personal Data as described in this Policy.

We may share information with government authorities and/or law enforcement officials if required for the purposes above, if mandated by law or if required for the legal protection of its own legitimate interests in compliance with applicable laws. We will only use and share your information where it is necessary for us to lawfully carry out our business activities. The legal basis for this data processing is our legitimate interest and our legal obligation.

Disclosure to prevent damage and disclosure to legal authorities.

We will reveal User’s Personal Data without prior permission only when we have reason to believe that the disclosure of this information is required to establish the identitification, to contact or to initiate legal proceedings against a person or persons who are suspected of infringing rights or property belonging to Cryptolocator or to others who could be harmed by the User’s activities. We are permitted to disclose Personal Data when we have good reason to believe that this is legally required and when the competent authorities have required to provide them with such Personal Data.

We require all affiliated entities and third-party service providers to respect the security of your Personal Data and to treat it in accordance with the law. We do not allow them to use your Personal Data for their own purposes and only permit them to process your Personal Data for specified purposes and in accordance with our documented instructions.




We store your information primarily within the European Economic Area.

However, some features and requirements of the Services involve transferring your information to third-party service providers outside the European Economic Area when it may be necessary in order to:

  • provide the requested Services,
  • fulfil our contractual obligations to you,
  • exercise and enforce our contractual rights and Terms of Use,
  • comply with our legal and/or regulatory obligations or assert, file or exercise a legal claim.

We will only transfer your Personal Data to countries that have been deemed to provide an adequate level of protection for Personal Data by the European Commission. In the absence of an adequacy decision, we will use specific contracts approved by the European Commission, which give Personal Data the same protection it has in Europe.

If such service providers are not established in a country ensuring an adequate level of protection within the meaning of Regulation (EU) 2016/679, such as the United States, the transfers will be covered by the standard data protection clauses adopted by the European Commission or by another appropriate safeguard mechanism such as the Privacy Shield Framework.




For Website Users, all Accounts are located in European Data Region, all Personal Data is processed in the EEA.

The Company takes the security of the data that it collects very seriously. The Company has implemented a number of technical, organizational and administrative measures to ensure the confidentiality, integrity, availability and privacy of your Personal Data and to protect your Personal Data from loss, theft, unauthorized access, misuse, alteration or destruction which are generally accepted by the industry to protect the Personal Data in its possession.

These measures include, but are not limited to the implementation of current security technologies: Secure Sockets Layered (SSL) technology to ensure that your information is fully encrypted and sent across the Internet securely, secure coding principles, regular penetration testing. Only authorized Website personnel are permitted to have access to your Personal Data, and these personnel are required to treat the information as highly confidential. The security measures will be reviewed regularly in light of new and relevant legal and technical developments. Additionally, we use encryption (HTTPS/TLS) to protect data transmitted to and from our Website.

Transport Layer Security (TLS) is a protocol that provides privacy and data integrity between two communicating applications. It's the most widely deployed security protocol used today, and is used for Web browsers and other applications that require data to be securely exchanged over a network, such as file transfers, VPN connections, instant messaging and voice over IP.

The Company is committed to handling your information with high standards of information security. However, the transmission of such data over the Internet using personal computers or mobile devices is not completely safe and therefore we cannot guarantee the security of documents submitted to our Website. Any transmission of such documents is at your own risk. As soon as we receive your Personal Data, we implement strict security measures and procedures to avoid unauthorized access from any third party.




We take technical, organizational and legal actions or ensure that they are taken to protect your Personal Data from unauthorized or accidental access, collection, storage, use, transfer, blocking or destruction, as well as from other illegal actions or accidental leaks.

For example, we provide:

  • restriction and indication of the Company's employees who have access to Personal Data;
  • familiarization of the Company's employees with the requirements of the applicable legislation and regulations on the processing and protection of Personal Data;
  • accounting and storage of material data carriers and their use, which excludes theft, substitution, unauthorized copying and destruction of information;
  • identification of security threats to the confidentiality of Personal Data during their processing and formation of threat variants;
  • development of Personal Data protection systems based on threat modes;
  • testing and checking the availability and effectiveness of information security tools;
  • implementation of a permissive system for access to information resources, hardware and software for processing and protecting information;
  • registration and recording of actions of users of Personal Data information systems;
  • password protection of Users ' access to the Personal Data information system;
  • implementation of anti-virus control, prevention of penetration into the corporate network;
  • detection of intrusions into the Company's corporate network that violate or create prerequisites for violating the established requirements for Personal Data security;
  • centralized management of the Personal Data protection system;
  • training employees who use information security tools used in Personal Data information systems on the rules for working with them;
  • monitoring User actions, conducting proceedings on violations of Personal Data security requirements.



Personal Data that we process for any purpose or purposes shall not be kept for longer than it is necessary for that purpose or those purposes.

Visitors data will be removed 14 days after your visit to our Website.

Users may request the deletion of their Account through our Website.

We will retain and delete your Personal Data as follows:

For all Users who have deleted their Account:

  • Usage, Website visit and technical data is removed 14 days after Account deletion.
  • Contact data is not generally stored by our processors but they may retain activity logs for a short period of time (this time varies depending on the processor in question but is not greater than 12 months).

For Users who have not conducted or initiated any cryptocurrency transactions, we will delete all personal data 14 days after the approval of your Account deletion request.

For Users who have conducted or initiated any trades or sent or received any bitcoin transactions using their wallet and whose Account deletion request has been approved by us, our data deletion policy is the following:

  • Your profile and Offers will be hidden 14 days after you delete your Account.
  • Your Contact data will be deleted 5 years after you delete your account. Trade chat messages are deleted 180 days after the trade is completed. Trade chat messages from disputed trades will be deleted 5 years after you delete your Account.
  • Your Account data, Trade data, Identity verification data will be deleted 5 years after you delete your Account.

In some cases, it is not possible for us to specify in advance the periods for which your Personal Data will be retained. In such cases, we will determine the period of retention based on the period we need to access the data for the provision of Services, resolving your disputed trades or other issues or for any other auditing or legal reasons.

Notwithstanding the other provisions of this Section, we may retain your Personal Data where such retention is necessary for compliance with a legal obligation to which we are subject, or in order to protect your vital interests or the vital interests of another natural person.

Cryptolocator will not retain data longer than it is necessary to fulfill the purposes it was obtained for or as required by applicable laws or regulations. When a Users’ Account is terminated or expired, all Personal Data collected through the Website will be deleted, as required by applicable law.

We store collected information for as long as it is necessary to be able to provide Services to you. In some cases, we can keep your information longer than 5 years: such exceeding can be used only in a case of arising of legal requirements that will oblige us to store your information for more than 5 years.

Every User or Visitor can invoke the right to be forgotten at any time. Users and Visitors can request a list of their Personal Data. In case you wish to obtain such data send an e-mail to [email protected] You will receive the list within one month from receiving your request by Company.




Your principal rights under data protection law are:

  • Request access to your Personal Data. This enables you to receive a copy of the Personal Data we hold about you and to check that we are lawfully processing it. You may send an email to [email protected] requesting such information as the Personal Data which we process. You shall receive one copy free of charge via email of the Personal Data which is undergoing processing. Any further copies of the information processed shall incur a charge of €20.00.
  • Right to information when collecting and processing Personal Data about you from publicly accessible or third party sources. When this take places, we will inform you, within a reasonable and practicable timeframe, about the third party or publicly accessible source from whom we have collected your Personal data.
  • Request erasure of your Personal Data. This enables you to ask us to delete or remove Personal Data where:
  1. there is no good reason for us continuing to process it;
  2. you have successfully exercised your right to object to processing (see below);
  3. we may have processed your information unlawfully; or
  4. we are required to erase your Personal Data to comply with local law.

Note, however, that we may not always be able to comply with your request of erasure for specific legal reasons you will be notified about, if applicable, at the time of your request. These may include instances where the retention of your Personal Data is necessary to:

  1. comply with a legal or regulatory obligation to which we are subject; or
  2. establish, exercise or defend a legal claim.
  • Request correction or rectification of the Personal Data that we hold about you. This enables you to have any incomplete or inaccurate data we hold about you corrected and/or updated, though we may need to verify the accuracy of the new data you provide to us. As mentioned, it is in your interest to keep us informed of any changes or updates to your Personal Data which may occur during the course of your relationship with us.
  • Object to processing of your Personal Data where we are relying on a legitimate interest (or those of a third party) and there is something about your particular situation which makes you want to object to processing on this ground as you feel it impacts on your fundamental rights and freedoms. You also have the right to object where we are processing your Personal Data for direct marketing purpose.
  • In some cases, we may demonstrate that we have compelling legitimate grounds to process your personal information that override your rights and freedoms.
  • Request restriction of processing of your Personal Data. This enables you to ask us to suspend the processing of your Personal Data in the following scenarios:
  1. if you want us to establish the data's accuracy;
  2. where our use of the data is unlawful but you do not want us to erase it;
  3. where you need us to hold onto the data even if we no longer require it, as you need it to establish, exercise or defend legal claims; or
  4. where you have objected to our use of your Personal Data, but we need to verify whether we have overriding legitimate grounds to use it.
  • Request the transfer of your Personal Data to you or to a third party. We will provide to you, or a third party you have chosen, your Personal Data in a structured, commonly used, machine-readable format. Note that this right only applies to automated information which you initially provided consent for us to use or where we used the information to perform a contract with you.
  • Request to withdraw your consent at any time where we are relying on consent to process your Personal Data (which will generally not be the case). This will not however affect the lawfulness of any processing which we carried out before you withdrew your consent. Any processing activities that are not based on your consent will remain unaffected.

If You believe that Your rights and/or legitimate interests have been violated, You have the right to file a claim or complaint with the competent state authority. For example, if You are located in the territory of the European Union, You have the right to file a complaint with the Supervisory authority of the relevant member state of the European Union ("Supervisory authority").

If You believe that automated processing of Your Data violates Your rights and/or interests or creates significant negative consequences for You, we will ensure human intervention in the results of automatic processing and ensure Your right to challenge decisions made using automation tools.


Kindly note that none of these data subject rights are absolute, and must generally be weighed against our own legal obligations and legitimate interests. If a decision is taken to override your data subject request, you will be informed of this by our data protection team along with the reasons for our decision.




In the event of Personal Data breach Cryptolocator is obliged to notify the appropriate supervisory authority without undue delay and, where, feasible, not later than 72 hours after having become aware of it. In such situation, you also shall be notified immediately.




If something in the text of this Policy remains unclear to You, we will be glad to clarify its provisions.


If you have any further questions regarding the data Company collects, or how we use it, then please feel free to contact us by email at [email protected]


Crypto Technologies LTD, registered in the Republic of Seychelles, company No: 215792, registered office is located at: Suite 1, Second Floor, Sound & Vision House, Francis Rachel Str., Victoria, Mahe, Seychelles.