← Back to Home

Privacy Policy

Last Updated: March 15, 2024

1. Introduction and Scope

Encratex ("we," "us," or "our") is committed to protecting your privacy and maintaining the confidentiality of your personal information. This Privacy Policy explains how we collect, use, process, and protect your personal information when you use our hardware wallet products, visit our website, or interact with our services.

This policy applies to all users of our products and services, including individual customers, institutional clients, and website visitors. By using our products or services, you acknowledge that you have read and understood this Privacy Policy and agree to the collection and use of information in accordance with this policy.

Privacy-by-Default Commitment: Our hardware wallets are designed to operate without collecting or transmitting personal data. Your private keys, transaction data, and cryptocurrency holdings never leave your device and are never accessible to Encratex or any third parties.

2. Information We Collect

2.1 Hardware Wallet Device Information

Our hardware wallets are designed with privacy-by-default principles and operate in a completely air-gapped environment. The devices do not collect, store, or transmit any of the following information:

  • Private keys or seed phrases
  • Transaction data or cryptocurrency balances
  • Wallet addresses or account information
  • Usage patterns or device interaction data
  • Location data or network information

2.2 Website and Digital Communications

When you visit our website or communicate with us digitally, we may collect:

  • Contact information including name, email address, and phone number
  • Company information for institutional and business inquiries
  • Technical support requests and related correspondence
  • Website usage data including IP address, browser type, and pages visited
  • Device information such as operating system and screen resolution
  • Referral sources and website navigation patterns

2.3 Business and Commercial Information

For commercial transactions and business relationships, we may collect:

  • Billing and shipping addresses
  • Payment information (processed securely through third-party providers)
  • Purchase history and order details
  • Customer service interactions and support tickets
  • Compliance and verification documentation as required by law

2.4 Automatically Collected Information

We automatically collect certain information when you interact with our digital services:

  • Log files containing access times, pages viewed, and technical errors
  • Cookies and similar tracking technologies (as detailed in our Cookie Policy)
  • Analytics data to improve website performance and user experience
  • Security monitoring data to protect against unauthorized access

3. How We Use Your Information

We use collected information for legitimate business purposes including:

3.1 Primary Business Operations

  • Processing and fulfilling product orders and service requests
  • Providing customer support and technical assistance
  • Responding to inquiries and maintaining customer relationships
  • Managing warranty claims and product returns
  • Conducting quality assurance and product improvement initiatives

3.2 Communication and Updates

  • Sending important product updates and security notifications
  • Providing firmware updates and installation instructions
  • Delivering educational content about cryptocurrency security
  • Sharing relevant industry news and regulatory updates

3.3 Legal and Compliance Requirements

  • Complying with applicable laws and regulatory obligations
  • Maintaining records for audit and compliance purposes
  • Preventing fraud and ensuring transaction security
  • Protecting our legal rights and interests
  • Cooperating with law enforcement when legally required

3.4 Business Improvement and Analytics

  • Analyzing website usage to improve user experience
  • Conducting market research and product development
  • Optimizing our services and operational efficiency
  • Measuring the effectiveness of our communications

4. Data Protection and Security Measures

4.1 Technical Security Measures

We implement comprehensive technical safeguards to protect your personal information:

  • End-to-end encryption for data transmission and storage
  • Multi-factor authentication for system access
  • Regular security assessments and penetration testing
  • Secure data centers with physical access controls
  • Network security monitoring and intrusion detection systems
  • Regular security updates and patch management

4.2 Organizational Security Measures

  • Employee training on data protection and privacy practices
  • Access controls limiting data access to authorized personnel only
  • Confidentiality agreements for all staff and contractors
  • Regular privacy impact assessments
  • Incident response procedures for data breaches

4.3 Data Retention Policies

We retain personal information only as long as necessary for the purposes outlined in this policy or as required by applicable law. Our retention periods vary based on the type of information and legal requirements, typically ranging from 3 to 7 years for business records and compliance documentation.

5. Information Sharing and Disclosure

We do not sell, rent, or trade your personal information to third parties. We may share information only in the following limited circumstances:

5.1 Service Providers and Business Partners

  • Third-party service providers who assist in our operations under strict confidentiality agreements
  • Payment processors for secure transaction handling
  • Shipping and logistics partners for product delivery
  • IT service providers for system maintenance and support

5.2 Legal and Regulatory Requirements

  • Compliance with court orders, subpoenas, or legal processes
  • Cooperation with law enforcement investigations
  • Meeting regulatory reporting requirements
  • Protecting our legal rights and interests

5.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, personal information may be transferred as part of the business transaction, subject to the same privacy protections outlined in this policy.

6. Your Privacy Rights and Choices

Depending on your location and applicable laws, you may have the following rights regarding your personal information:

6.1 Access and Portability Rights

  • Right to access and receive a copy of your personal information
  • Right to data portability in a structured, machine-readable format
  • Right to information about how your data is processed

6.2 Correction and Deletion Rights

  • Right to correct inaccurate or incomplete information
  • Right to request deletion of your personal information
  • Right to request restriction of processing

6.3 Consent and Objection Rights

  • Right to withdraw consent where processing is based on consent
  • Right to object to processing for direct marketing purposes
  • Right to object to automated decision-making

To exercise these rights, please contact us using the information provided in the "Contact Us" section below. We will respond to your request within the timeframes required by applicable law.

7. International Data Transfers

As a UK-based company, we process data in accordance with UK data protection laws including the UK GDPR and Data Protection Act 2018. When we transfer personal information internationally, we ensure appropriate safeguards are in place:

  • Adequacy decisions by the UK Information Commissioner's Office
  • Standard contractual clauses approved by regulatory authorities
  • Binding corporate rules for intra-group transfers
  • Certification schemes and codes of conduct

8. Children's Privacy

Our products and services are not intended for individuals under the age of 18. We do not knowingly collect personal information from children under 18 years of age. If we become aware that we have collected personal information from a child under 18, we will take steps to delete such information promptly.

9. Third-Party Links and Services

Our website may contain links to third-party websites or services that are not operated by us. This Privacy Policy does not apply to third-party websites or services. We encourage you to review the privacy policies of any third-party sites you visit.

10. Data Breach Notification

In the unlikely event of a data breach that poses a risk to your rights and freedoms, we will notify you and relevant regulatory authorities within the timeframes required by applicable law. We maintain comprehensive incident response procedures to minimize the impact of any security incidents.

11. Privacy Policy Updates

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of any material changes by:

  • Posting the updated policy on our website with a new "Last Updated" date
  • Sending email notifications to registered users for significant changes
  • Providing prominent notice on our website for major policy revisions

Your continued use of our products and services after any changes indicates your acceptance of the updated Privacy Policy.

Contact Us

For privacy-related inquiries, to exercise your rights, or to report privacy concerns:

Email: privacy@encratex.com

Phone: +44 7492 605183

Address: 27 Ainger Rd
London NW3 3AT
United Kingdom

Data Protection Officer: Available upon request for data protection inquiries