We handle sensitive situations involving financial loss. Our approach to your data reflects that — minimal collection, clear purpose, no selling, no surprises. This policy tells you exactly what we collect, why, and what control you have over it.
Our data model is built around a simple principle: collect only what is genuinely necessary to deliver the service you requested. The diagram below shows what we receive, what we process, and what we never touch.
This Privacy Policy explains how we — the operator of this blockchain transaction tracing platform — collect, use, store, and protect your personal data when you use our website or purchase our services.
We are the data controller for any personal data you provide to us through this platform. Our contact details for data protection matters are provided in Section 11 of this policy.
This policy applies to all users of the platform, including those who only browse our resources without purchasing a service. By using this platform, you acknowledge that you have read this policy.
We apply a minimum-collection principle: we only collect data that is genuinely necessary to provide the service you requested.
For users in jurisdictions governed by GDPR or similar data protection law, we process personal data under the following legal bases:
We do not use your data for purposes beyond those listed above without obtaining your explicit consent first. We do not use your data for marketing unless you have separately opted in to receive marketing communications.
We do not sell, rent, or trade your personal data. We share data only in the limited circumstances below:
We retain personal data only for as long as necessary to fulfil the purpose for which it was collected, or as required by law.
On expiry of a retention period, data is securely deleted or anonymised. You may request earlier deletion of certain data at any time — see Section 7 for details on how to exercise this right.
We implement appropriate technical and organisational measures to protect personal data against unauthorised access, loss, or disclosure. Our security practices include:
All data transmitted between your browser and our servers is encrypted using TLS.
Access to user data is restricted to staff who require it to deliver or support the service.
No employee accesses your data without a legitimate operational need. Access is logged.
In the event of a data breach affecting your rights, we will notify you and relevant authorities within the legally required timeframe.
No system is entirely immune to risk. We cannot guarantee absolute security, but we take all reasonable steps to protect the data we hold. If you believe your data may have been compromised, contact us immediately.
Depending on your jurisdiction, you have a range of rights regarding your personal data. We honour all of the following:
Request a copy of all personal data we hold about you, including the purposes for which it is used.
Ask us to correct any inaccurate personal data we hold about you without undue delay.
Request deletion of your personal data where there is no compelling reason for us to continue holding it.
Object to processing of your data where we rely on legitimate interests as our legal basis.
Request that we limit processing of your data in certain circumstances, such as while a dispute is resolved.
Receive your personal data in a structured, commonly used, machine-readable format for transfer to another service.
Submit your request in writing to support@chaingracelabs.com. We will respond within 30 days. We may ask you to verify your identity before processing the request. There is no charge for exercising your rights. If you believe we have not handled your data correctly, you have the right to lodge a complaint with the relevant data protection authority in your jurisdiction.
We use a minimal set of cookies necessary for the platform to function securely. We do not use advertising cookies, cross-site tracking cookies, or any third-party marketing technology.
This platform is not directed at individuals under the age of 18. We do not knowingly collect personal data from minors. If you believe a minor has submitted personal data to us, please contact us immediately and we will delete it promptly.
We may update this Privacy Policy from time to time to reflect changes in our services, technology, or applicable law. When we make material changes, we will notify registered users by email and update the version number and date at the top of this page. The current version of this policy always governs how we use your data.
We encourage you to review this policy periodically. Continued use of the platform after a policy update constitutes acceptance of the revised policy.
For any privacy-related queries, to exercise your data rights, or to raise a concern about how we handle your information: