Privacy Policy

Coin AI (“Coin,” “we,” “our,” or “us”) provides AI-guided strategy backtesting and paper trading tools at trycoin.ai. This Privacy Policy explains what information we collect when you use our services, why we collect it, and the choices you have. By using Coin AI, you agree to the practices described in this policy.

1. Information we collect

We collect information that you provide directly, information created through your use of the service, and a limited amount of information from third-party providers we rely on to operate.

Information you provide

• Account details: name, email address, and authentication identifiers when you sign up or sign in.
• Strategy and chat content: the prompts, messages, and strategy configurations you enter while using the backtesting pipeline and other AI features.
• Billing information: handled by our payments provider; we receive and store a subset (plan, status, last four digits) but not full card numbers.
• Support communications: any messages you send us by email or in-product channels.

Information collected automatically

• Usage data: pages visited, features used, timestamps, and approximate performance metrics.
• Device and log data: IP address, browser type, operating system, and referring URLs.
• Backtest and paper-trade artifacts: the strategies you run and the generated reports.

Information from third parties

We receive limited data from authentication, analytics, and payment providers so that we can authenticate you, understand product usage, and process subscription payments.

2. How we use information

We use the information we collect to:

• Operate, maintain, and improve the Coin AI service.
• Run the features you request, including backtests, paper trades, AI-generated reports, and market data lookups.
• Authenticate you, prevent fraud, and keep the service secure.
• Process payments and manage subscriptions.
• Respond to support inquiries and send service-related notices.
• Understand aggregate product usage and improve performance.

We do not sell your personal information, and we do not use your strategy or chat content to train third-party models.

3. How we share information

We share information only in the circumstances below:

• Service providers: we use vendors for hosting, authentication, analytics, email delivery, payments, and large language model inference. These providers process information on our behalf under contractual obligations.
• Legal and safety: if required by law or legitimate legal process, or to protect the rights, property, or safety of Coin AI, our users, or others.
• Business transfers: in connection with a merger, acquisition, or sale of assets, subject to standard confidentiality protections.

A current list of key subprocessors is available on request at [email protected].

4. Data retention

We retain different categories of data for different periods:

• Account information (name, email, authentication identifiers): retained for the life of your account and deleted within 90 days of account closure.
• Backtest runs, chat transcripts, and generated reports: retained while your account is active and accessible in-product; deleted within 90 days of account closure or within 30 days of a verified deletion request, whichever comes first.
• Billing records (plan, status, transaction history): retained for seven years from the date of each transaction to comply with financial recordkeeping obligations.
• Server and security logs (IP addresses, access logs): retained for 90 days and then deleted.
• Backup systems: data deleted from primary systems may persist in encrypted backup storage for up to 30 additional days before permanent deletion.

You can request deletion of your account and associated data at any time; see Your rights.

5. Security

We apply reasonable administrative, technical, and physical safeguards designed to protect the information we hold, including encryption in transit, access controls, and principle-of-least-privilege for internal systems. No method of transmission or storage is perfectly secure, so we cannot guarantee absolute security.

6. Your rights

Depending on where you live, you may have rights to access, correct, delete, or port your personal information, and to object to or restrict certain processing. To exercise any of these rights, email [email protected] from the address associated with your account. We will respond within a reasonable timeframe consistent with applicable law.

7. California residents (CCPA)

If you are a California resident, the California Consumer Privacy Act (CCPA) grants you specific rights regarding your personal information.

Right to know. You have the right to request that we disclose the categories and specific pieces of personal information we have collected about you, the categories of sources from which we collected it, our business purpose for collecting it, and the categories of third parties with whom we share it.

Right to delete. You have the right to request that we delete personal information we have collected from you, subject to certain exceptions.

Right to opt out of sale.Coin AI does not sell your personal information, as “sell” is defined under the CCPA. You do not need to submit an opt-out request.

Right to non-discrimination. We will not discriminate against you for exercising any of your CCPA rights.

How to submit a request. To exercise your right to know or right to delete, email [email protected]from the address associated with your account with the subject line “California Privacy Request.” We will respond within 45 days. We may extend this period by an additional 45 days where necessary and will notify you of any extension.

8. European users (GDPR)

If you are located in the European Economic Area, the United Kingdom, or Switzerland, the General Data Protection Regulation (GDPR) or applicable national law grants you the following rights with respect to your personal data.

Lawful basis for processing. We process your personal data under the following lawful bases: (a) performance of a contract, to provide the service you signed up for; (b) legitimate interests, to improve the product, prevent fraud, and ensure security, where those interests are not overridden by your rights; and (c) legal obligation, where processing is required by applicable law.

Your rights. You have the right to: access a copy of your personal data; correct inaccurate data; request erasure where there is no legitimate ground for us to continue processing; restrict or object to processing in certain circumstances; and receive your data in a portable format.

How to submit a request. Email [email protected]from the address associated with your account with the subject line “GDPR Data Request.” We will respond within 30 days. If the request is complex or numerous, we may extend this by a further two months and will inform you of the extension.

Right to complain. You have the right to lodge a complaint with your local data protection supervisory authority. A list of EEA authorities is available at edpb.europa.eu.

9. Cookies and tracking

We use a small number of first-party cookies for authentication and to keep you signed in, and analytics cookies (first- and third-party) to measure product usage. You can control cookies through your browser settings. Disabling essential cookies will prevent you from signing in. For full details on what cookies we use and how to opt out, see our Cookie Policy.

10. Children's privacy

Coin AI is not directed to children under 18. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, contact us so we can take appropriate action.

11. Changes to this policy

We may update this policy as the service evolves. When we make material changes, we will update the “Last updated” date above and, where appropriate, notify you in-product or by email. Continued use of Coin AI after a change means you accept the revised policy.

12. Contact

Questions about this policy or our practices? Email [email protected].

For the companion document, see our Terms and Conditions.