Privacy policy.

This Privacy Policy describes how Cryptorium s.r.o. ("Cryptorium", "we", "our", or "us"), registered at Betliarska 22, 851 07 Bratislava – mestská časť Petržalka, Slovakia, with company registration number 56 684 258, collects, uses, and shares personal information related to your use of our products, services, and website (https://www.cryptorium.org). This policy complies with the European General Data Protection Regulation ("GDPR") and outlines our commitment to the transparent, lawful, fair, and secure handling of your personal data.

For questions regarding this Privacy Policy or your personal data, please contact us at: contact@cryptorium.org.

1. Definitions

1.1. Personal Data

"Personal Data" refers to any information used to identify you directly or indirectly, including your name, identification number, location data, and online identifiers.

1.2. Controller of Personal Data

Cryptorium s.r.o. acts as the Controller of your personal data, determining the methods and purposes for data collection and processing.

1.3. Data Processors

We engage third-party vendors to process your personal information on our behalf. See Section 7 for details.

2. Information We Collect

2.1. Information Provided by You

Cryptorium collects personal information provided when registering an account, including your full name, address, email address, phone number, identity verification documents (such as passports or ID cards), financial information, and transaction details necessary for compliance with anti-money laundering (AML) regulations.

We never request sensitive data such as racial or ethnic origin, sexual orientation, political beliefs, or biometric data.

2.2. Cookies

Our website uses cookies to enhance user experience. Cookies help store preferences, analyze website interactions, and optimize performance. You may manage cookie preferences through your browser settings.

2.3. Log Files

Log files may store data such as IP addresses, browser types, ISP, operating systems, referring/exit pages, timestamps, and clickstream data to improve services and enhance security.

2.4. Information from Third Parties

We may obtain data from partners, public databases, identity verification services, and marketing partners to ensure compliance with AML laws and improve service delivery.

3. Use of Your Information

We use your information to:

  • Provide and maintain our services;

  • Process transactions and payments;

  • Ensure compliance with legal obligations (AML, CTF, and other financial regulations);

  • Communicate effectively with you;

  • Enhance security and fraud prevention;

  • Improve services through analytics and research;

  • Conduct marketing activities (with your consent).

4. Sharing Your Information

We share your information with:

  • Service providers and vendors (payment processors, IT services, analytics);

  • Identity verification services (e.g., SumSub);

  • Advertising and marketing partners;

  • Financial institutions and legal advisors;

  • Law enforcement and regulatory authorities, if legally required;

  • Successors in case of business transfers or restructuring.

5. Security Measures

We implement rigorous physical, technical, and administrative security measures, including TLS encryption (version 1.3 or higher) and data encryption. However, we advise users to maintain secure passwords and verify the authenticity of our website.

Please notify us immediately at contact@cryptorium.org if you suspect any unauthorized activity.

6. Data Retention

We retain personal data for as long as your account is active and for up to 5 years following account closure to comply with regulatory obligations (AML/CTF). Cookies and log files are retained for up to one year.

7. International Data Transfers

We may transfer your data internationally to third-party processors. All such transfers adhere to GDPR safeguards, including adequacy decisions or standard contractual clauses to ensure secure data handling.

8. Your Rights

Under the GDPR, you have the right to:

  • Access, correct, or delete your personal data;

  • Object to or restrict data processing;

  • Request data portability;

  • Withdraw consent at any time;

  • Opt-out of marketing communications;

  • File a complaint with your local Data Protection Authority.

Contact us at contact@cryptorium.org to exercise your rights.

9. Automated Decision-Making

Cryptorium does not solely rely on automated processes for decisions significantly affecting your rights. Human oversight is always involved in critical decisions.

10. Children's Privacy

Our services are not intended for children under 13. If you suspect unauthorized data collection from a minor, please contact us immediately.

11. Changes to This Policy

We may update this Privacy Policy occasionally. Changes will be communicated through email and our website.

12. Contact Information

For questions, requests, or concerns related to this policy or your data, contact us at:

  • Cryptorium s.r.o.

  • Betliarska 22, 851 07 Bratislava – mestská časť Petržalka, Slovakia

  • Email: contact@cryptorium.org