We are a platform built for people who have already had trust violated once. We take that context seriously -and it shapes every decision we make about how we collect, use, and protect your information.
We believe you should know exactly what information we handle before you share anything with us. This table is plain and complete.
We use your data only for the purpose you submitted it. Nothing more.
Your TXID and wallet address are used as inputs to trace fund movements on the public blockchain. This is the sole purpose of collecting this data.
Your email address is used to send your completed report and to follow up if we have questions about your case. It is not added to any marketing list.
Your payment TXID is used solely to confirm that a payment was made before we begin work. Once verified, it is not referenced further.
Standard server logs (IP address, access time) are retained for 30 days to detect abuse, brute-force attempts, and fraudulent submissions. They are not used for any other purpose.
In the event we are subject to a lawful legal order from a competent authority, we may be required to disclose data. We will notify you where legally permitted to do so.
We never sell, share, rent, or otherwise transfer your data to advertisers, data brokers, analytics companies, or any third party for commercial purposes.
We do not keep data longer than necessary. Once your case is closed and your report delivered, case data is retained only for the period required by our legal obligations and then deleted.
If you request deletion of your data at any point, we will action that request promptly -see your rights below.
Note: Blockchain transaction data (your TXID and associated public wallet addresses) is permanently and publicly recorded on the blockchain -that is its nature. Our deletion of your data from our systems does not remove anything from the blockchain itself.
Regardless of where you are in the world, we recognise and honour these fundamental data rights.
You can request a copy of all personal data we hold about you. We will provide it in a readable format within 30 days.
If data we hold about you is inaccurate or incomplete, you can request that we correct or complete it.
You can request deletion of your personal data. We will action this within 30 days, subject to any legal retention obligations.
You can object to how we process your data. Where your objection is valid, we will cease the relevant processing.
In certain circumstances you can request that we limit how we use your data while a dispute or review is in progress.
You can request your data in a structured, machine-readable format so that it can be transferred to another service.
To exercise any of these rights, email us at privacy@chaintracelabs.com. We will respond within 30 days. You also have the right to lodge a complaint with your national data protection authority if you believe your rights have not been respected.
We use only technically essential cookies required for the platform to function. We do not use advertising cookies, third-party trackers, analytics platforms that profile users, or pixel tracking of any kind.
We do not use Google Analytics, Facebook Pixel, Hotjar, Intercom, or any similar third-party tool that collects data on your browsing behaviour.
We query publicly accessible blockchain data to perform traces. Your TXID is submitted as a read-only query to public blockchain data -this is equivalent to searching a public database.
Our server host processes data incidentally as part of delivering the website. They are contractually bound to data protection obligations and do not access your case data.
We have no advertising relationships. Your data is never shared with or sold to any advertiser, marketing platform, or data broker -under any circumstances.
We do not share your case data with exchanges, trading platforms, or other cryptocurrency services except as required by a lawful legal order.
If compelled by a valid, lawful legal order from a competent authority in an applicable jurisdiction, we may be required to disclose data. We will notify you where permitted by law.
Your case data, descriptions of your incident, and communications with us are never used to train AI models or included in any research dataset.
We apply reasonable technical and organisational measures to protect data from unauthorised access, loss, or disclosure. These include encrypted transmission (HTTPS), access controls, and regular review of data handling practices.
No internet-based system can guarantee absolute security. If we become aware of a breach that affects your personal data, we will notify you in accordance with applicable law.
To exercise any of your data rights, ask a question about how your information is handled, or raise a concern -contact us directly. We respond to all privacy-related enquiries within 30 days.