Privacy Policy

1. Introduction

XRP Dashboard ("we," "our," or "us") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website and use our services.

2. Information We Collect

2.1 Personal Information

We may collect the following personal information when you use our Service:

• Account Information: Email address, username, password (encrypted)
• Profile Data: Display name, profile picture, user preferences
• Payment Information: Billing address, payment method details (processed by Stripe)
• Communication Data: Messages you send to our support team

2.2 Financial and Portfolio Data

• Wallet Information: Public wallet addresses you choose to connect
• Transaction Data: Transaction history, portfolio positions, P&L calculations
• Trading Data: Trading preferences, alerts, and custom settings
• Market Analysis: Your interactions with AI insights and market predictions

2.3 Technical Information

• Usage Data: How you interact with our Service, features used, time spent
• Device Information: IP address, browser type, operating system, device identifiers
• Log Data: Server logs, error reports, performance metrics
• Cookies and Tracking: Session cookies, analytics cookies, preference cookies

3. How We Use Your Information

3.1 Service Provision

• Provide and maintain our cryptocurrency portfolio management services
• Process transactions and manage your account
• Generate AI-powered insights and market analysis
• Send real-time notifications and alerts
• Calculate P&L and portfolio metrics

3.2 Communication and Support

• Respond to your inquiries and provide customer support
• Send important service updates and security notifications
• Deliver marketing communications (with your consent)
• Conduct user surveys and feedback collection

3.3 Security and Legal Compliance

• Protect against fraud, spam, and abuse
• Comply with legal obligations and regulatory requirements
• Enforce our Terms of Service
• Detect and prevent security incidents

3.4 Service Improvement

• Analyze usage patterns to improve our Service
• Develop new features and functionalities
• Conduct research and analytics
• Optimize performance and user experience

4. Legal Basis for Processing (GDPR)

For users in the European Union, we process your personal data based on:

• Contract Performance: To provide services you've requested
• Legitimate Interest: To improve our services and prevent fraud
• Consent: For marketing communications and non-essential cookies
• Legal Obligation: To comply with applicable laws and regulations

5. Information Sharing and Disclosure

5.1 Service Providers

We may share your information with trusted third-party service providers:

• Payment Processing: Stripe for payment processing and billing
• Cloud Infrastructure: AWS, Google Cloud, or similar providers
• Analytics: Google Analytics for website and usage analytics
• Email Services: Email service providers for notifications
• Database Services: PostgreSQL, Redis, and InfluxDB hosting providers

5.2 Legal Requirements

We may disclose your information when required to:

• Comply with applicable laws, regulations, or legal processes
• Respond to lawful requests from public authorities
• Protect our rights, privacy, safety, or property
• Enforce our Terms of Service

5.3 Business Transfers

In the event of a merger, acquisition, or asset sale, your information may be transferred. We will provide notice before your personal data is transferred and becomes subject to a different Privacy Policy.

6. Data Security

We implement comprehensive security measures to protect your personal information:

6.1 Technical Safeguards

• Encryption: Data encrypted in transit (TLS/SSL) and at rest (AES-256)
• Access Controls: Multi-factor authentication and role-based access
• Network Security: Firewalls, intrusion detection, and DDoS protection
• Regular Security Audits: Vulnerability assessments and penetration testing

6.2 Operational Safeguards

• Employee Training: Security awareness and data protection training
• Incident Response: Procedures for detecting and responding to security incidents
• Data Minimization: We collect and retain only necessary data
• Regular Backups: Secure, encrypted backups with tested recovery procedures

7. Cookie Policy

7.1 Types of Cookies We Use

• Essential Cookies: Required for basic site functionality and security
• Analytics Cookies: Google Analytics to understand how you use our Service
• Preference Cookies: Remember your settings and preferences
• Functional Cookies: Enhance user experience and provide personalized features

7.2 Managing Cookies

You can control cookies through your browser settings. However, disabling certain cookies may limit your ability to use some features of our Service. Our cookie consent banner allows you to accept or decline non-essential cookies.

8. Data Retention

We retain your personal information for different periods depending on the type of data:

• Account Data: Retained while your account is active and for 7 years after closure
• Transaction Data: Retained for 7 years for tax and regulatory compliance
• Communication Records: Retained for 3 years from the date of last communication
• Analytics Data: Aggregated analytics data retained indefinitely (anonymized)
• Technical Logs: Retained for 90 days unless needed for security investigations

You may request deletion of your personal data at any time, subject to legal obligations and legitimate business interests.

9. Your Rights and Choices

9.1 General Rights

• Access: Request a copy of your personal information
• Correction: Update or correct inaccurate personal information
• Deletion: Request deletion of your personal information
• Data Portability: Receive your data in a machine-readable format
• Objection: Object to certain types of data processing

9.2 GDPR Rights (EU Users)

If you are located in the European Union, you have additional rights under GDPR:

• Right to Rectification: Correct inaccurate personal data
• Right to Erasure: Request deletion of your personal data
• Right to Restrict Processing: Limit how we process your data
• Right to Data Portability: Transfer your data to another service
• Right to Object: Object to processing based on legitimate interests
• Right to Withdraw Consent: Withdraw consent for consent-based processing

9.3 Exercising Your Rights

To exercise any of these rights, please contact us atsupport@xrpdashboard.com. We will respond to your request within 30 days.

10. International Data Transfers

Your information may be processed in countries other than your own. We ensure adequate protection for international transfers through:

• Adequacy Decisions: Transfers to countries with adequate data protection
• Standard Contractual Clauses: EU-approved contractual protections
• Certification Programs: Privacy Shield and similar frameworks (where applicable)
• Binding Corporate Rules: Internal data protection standards

11. Third-Party Services and Links

Our Service may contain links to third-party websites or integrate with third-party services. This Privacy Policy does not apply to third-party sites or services. We encourage you to review the privacy policies of any third-party services you use.

Key Third-Party Integrations:

• Google Analytics: Website usage analytics
• Stripe: Payment processing and billing
• Cryptocurrency Exchanges: Portfolio data synchronization
• XRPL Network: Blockchain data and transaction monitoring

12. Children's Privacy

Our Service is not intended for individuals under the age of 18. We do not knowingly collect personal information from children under 18. If you become aware that a child has provided us with personal information, please contact us, and we will take steps to remove such information.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

• Posting the new Privacy Policy on this page
• Updating the "Last Updated" date at the top of this policy
• Sending an email notification for significant changes
• Displaying a prominent notice on our Service

Your continued use of the Service after changes take effect constitutes acceptance of the updated Privacy Policy.

14. Contact Information