Privacy and data protection
Privacy Policy
A clear explanation of what Coinwaka collects, why we collect it, how we protect it, when we share it, and the controls users have over their data.
Financial platforms must keep certain records for security, fraud prevention, tax, audit, sanctions, and regulatory reasons. Some deletion requests may therefore be limited by legal retention obligations.
01
Scope of this policy
This Privacy Policy explains how Chainwaka Technologies ("Coinwaka", "we", "us") collects, uses, stores, protects, shares, and retains personal data when you use our websites, mobile applications, trading services, wallets, P2P marketplace, Earn products, APIs, support channels, and related services.
This policy applies to visitors, registered users, merchants, institutional users, API users, job applicants, support contacts, and people who interact with Coinwaka communications or security workflows.
02
Information we collect
We collect information you provide directly, information generated through your use of Coinwaka, information required by law or risk controls, and information from trusted service providers.
- Account data: name, email, phone number, username, password metadata, country, language, timezone, preferences, referral data, and communication settings.
- Identity and compliance data: date of birth, nationality, address, government ID, selfie or liveness data, business documents, beneficial ownership data, source-of-funds information, sanctions screening results, and due-diligence records.
- Financial and transaction data: deposits, withdrawals, trades, orders, P2P trades, fiat payment references, wallet addresses, blockchain transaction hashes, balances, fees, Earn positions, rewards, and tax/reporting records.
- Security and device data: IP address, device identifiers, browser data, sign-in history, session data, API key metadata, passkey metadata, 2FA status, risk scores, fraud signals, and anti-phishing settings.
- Support and communications: tickets, chat messages, call notes, attachments, dispute evidence, survey responses, and emails.
03
How we use information
We use personal data to operate Coinwaka, protect users, comply with law, improve products, and communicate clearly with you. We do not sell personal data.
- Create accounts, verify identity, authorize sessions, process transactions, settle trades, calculate fees, and provide account features.
- Detect fraud, unauthorized access, phishing, sanctions exposure, market abuse, suspicious transactions, account takeover, and platform misuse.
- Provide P2P escrow workflows, dispute handling, merchant reputation, payment-name checks, and marketplace safety controls.
- Maintain customer support, incident response, bug reports, compliance records, audits, accounting, tax reporting, and legal obligations.
- Improve reliability, user experience, product quality, risk models, AI tools, customer education, and platform performance.
04
Legal bases and legitimate interests
Where applicable privacy law requires a legal basis, we process personal data to perform our contract with you, comply with legal obligations, protect vital or public interests, pursue legitimate business interests, and process consent-based data where consent is required.
Our legitimate interests include platform security, fraud prevention, product improvement, transaction monitoring, dispute resolution, customer support, business analytics, and protecting Coinwaka, users, and the public from harm.
05
How we share information
We share information only when there is a business, operational, compliance, legal, safety, or user-authorized reason. We require service providers to protect information and use it only for approved purposes.
- Verification, sanctions screening, fraud-prevention, blockchain analytics, payment, banking, custody, cloud infrastructure, communications, customer support, analytics, and security providers.
- Counterparties in P2P or marketplace transactions where necessary to complete an order, resolve a dispute, or confirm payment details.
- Regulators, law enforcement, courts, tax authorities, auditors, professional advisers, and other parties when required or permitted by law.
- Corporate transaction parties if Coinwaka is involved in a merger, acquisition, financing, restructuring, or sale of assets, subject to appropriate safeguards.
06
Blockchain transparency
Blockchain transactions are public by design. Wallet addresses, transaction hashes, asset movements, smart-contract interactions, and network metadata may be visible on public blockchains and cannot be deleted or altered by Coinwaka.
When you deposit or withdraw digital assets, blockchain data may be linked to your account for compliance, accounting, security, and support purposes.
07
AI, automation, and risk decisions
Coinwaka may use automated systems, machine learning, and AI-assisted tools to detect fraud, prioritize support, summarize risk signals, generate alerts, monitor market abuse, identify account-takeover risk, and improve product experiences.
Important restrictions such as account suspension, enhanced verification, or withdrawal review may involve automated risk signals, but Coinwaka may also apply human review where appropriate or legally required.
08
Data security
We use administrative, technical, and physical safeguards designed for a financial platform. No system is risk-free, but Coinwaka applies layered controls to reduce the likelihood and impact of unauthorized access, misuse, or loss.
- Encryption in transit and at rest for sensitive systems.
- Role-based access controls, audit logs, least-privilege permissions, and production access review.
- Passkeys, 2FA, withdrawal checks, device monitoring, suspicious sign-in detection, and anti-phishing tooling.
- Cold-storage controls, wallet risk monitoring, incident response procedures, and security testing.
09
Retention
We retain personal data for as long as needed to provide services, comply with law, resolve disputes, prevent fraud, meet audit obligations, enforce agreements, and maintain accurate financial and compliance records.
Regulated financial, identity, transaction, tax, and compliance records may be retained after account closure where law, legitimate interest, or risk obligations require it. Data that is no longer needed is deleted, anonymized, or isolated according to retention rules.
10
Your privacy choices and rights
Depending on your location, you may have rights to access, correct, delete, restrict, object to, or export certain personal data. Some requests may be limited by law, security obligations, transaction integrity, fraud-prevention needs, or financial recordkeeping requirements.
- Update basic profile information in your account settings.
- Manage notifications, marketing preferences, and selected cookie choices.
- Request access, correction, deletion, or export through Support or privacy@coinwaka.com.
- Close your account once open obligations, disputes, investigations, and balances are resolved.
11
International transfers
Coinwaka may process and store information in countries other than your country of residence. When personal data is transferred internationally, we use safeguards appropriate to the data, provider, legal requirement, and processing context.
12
Children
Coinwaka is not intended for children. You must be at least 18 years old to use Coinwaka. We do not knowingly collect personal data from children. If we learn that a child has provided personal data, we will take appropriate steps to restrict the account and delete data where legally possible.
13
Changes and contact
We may update this Privacy Policy as products, legal obligations, risks, or operational practices change. Material updates will be communicated through the platform, email, or other reasonable means.
Privacy questions and requests can be sent to privacy@coinwaka.com or through the Support page.