Privacy Policy

1. Introduction

Crypto Recovery Authority ("CRA", "we", "us", or "our") is committed to protecting your privacy and handling personal information with care, security, and transparency. This Privacy Policy explains how we collect, use, store, disclose, and protect information obtained through our website, communications, and service-related interactions.

By using our website or submitting information to us, you acknowledge that you have read and understood this Privacy Policy.

2. Information We Collect

We may collect personal, technical, and case-related information necessary to operate our website, respond to inquiries, and provide our services.

This may include your name, email address, phone number, country or location, and any other contact details you provide through forms or communications. It may also include wallet addresses, transaction hashes, exchange records, screenshots, communications, case documentation, and any supporting information submitted in connection with a digital asset investigation or recovery matter.

In addition, we may collect certain technical information automatically, including IP address, browser type, device information, pages visited, time spent on the website, referral source, and general usage data.

3. How We Use Your Information

We use collected information for legitimate business and service-related purposes, including reviewing and assessing submitted cases, communicating with you, providing investigation and recovery support services, preparing documentation, improving our website and operations, maintaining security, fulfilling legal and compliance obligations, and responding to lawful requests from regulatory, legal, or law enforcement authorities.

Where appropriate, we may also use information to administer internal records, prevent misuse of our website or services, and evaluate service quality.

4. Legal Basis and Permitted Use

Where applicable under relevant privacy laws, we process personal information on the basis of consent, contractual necessity, legal obligation, legitimate interests, or other lawful grounds permitted by applicable law.

By submitting information to us in connection with an inquiry or case, you acknowledge that such information may be processed for assessment, communication, documentation, compliance, and service delivery purposes.

5. Confidentiality of Case Information

We recognize that many matters submitted to us involve highly sensitive information. Case materials, communications, and supporting documents are handled with a high degree of confidentiality and are only accessed by authorized personnel or disclosed where reasonably necessary for service delivery, legal compliance, formal reporting, or communication with relevant third parties connected to the matter.

While we apply professional standards of confidentiality and internal handling procedures, no electronic transmission or storage system can be guaranteed to be completely secure.

6. Sharing of Information

We do not sell personal information. We may disclose information only where reasonably necessary and appropriate, including to service providers, compliance professionals, legal representatives, law enforcement agencies, regulators, forensic partners, or other relevant third parties involved in case handling, legal processes, technical support, security operations, or lawful business administration.

Any such disclosure will be limited to the extent reasonably required for the relevant purpose.

7. Data Retention

We retain personal and case-related information only for as long as reasonably necessary to fulfill the purposes for which it was collected, including service delivery, documentation, internal recordkeeping, compliance requirements, dispute resolution, legal obligations, and enforcement of our rights.

Retention periods may vary depending on the type of data, the status of the matter, applicable legal obligations, and the need to preserve records for legitimate business or legal purposes.

8. Data Security

We implement appropriate administrative, technical, and organizational measures designed to protect personal and case-related information from unauthorized access, misuse, loss, alteration, or disclosure. These measures may include restricted access controls, secure communication practices, internal confidentiality standards, and other reasonable safeguards appropriate to the nature of the information.

Despite these efforts, no method of internet transmission or electronic storage can provide absolute security, and users submit information at their own risk.

9. International Data Handling

Because digital asset matters may involve international communications, platforms, or counterparties, information submitted to us may be processed or accessed across multiple jurisdictions where reasonably necessary for service delivery, legal coordination, or case support. By using our website or submitting a case, you acknowledge that your information may be handled in jurisdictions that may have different data protection standards from your own.

10. Your Rights

Subject to applicable law, you may have the right to request access to personal information we hold about you, request correction of inaccurate information, request deletion of certain information, object to or restrict certain processing activities, or withdraw consent where processing is based on consent.

These rights are not absolute and may be limited where retention or processing is necessary for legal, contractual, compliance, security, or legitimate business purposes.

11. Third-Party Services and Links

Our website may contain links to third-party websites, platforms, or services. We are not responsible for the privacy practices, security standards, or content of third-party websites or services. Users should review the relevant privacy policies of any external site they access.

12. Children's Privacy

Our website and services are not intended for individuals under the age of 18, and we do not knowingly collect personal information from minors. If we become aware that personal information has been submitted by a minor without proper authorization, we may take appropriate steps to delete that information.

13. Changes to This Privacy Policy

We may update or revise this Privacy Policy from time to time to reflect legal, operational, technical, or business changes. Any revised version will be posted on our website and will take effect from the date of publication unless otherwise stated. Continued use of our website or services after such updates constitutes acknowledgment of the revised policy.

14. Contact

If you have any questions about this Privacy Policy or the way your information is handled, you may contact us through the official contact methods listed on our website.