We use cookies

We use essential cookies to run the site, and optional cookies for analytics. We never sell your data. Cookie Policy · Privacy Policy

Sign InGet Started Free

Privacy Policy (US)

Last updated: March 30, 2026

Service Provider: CryptaCount, Inc., 131 Continental Dr, Suite 305, Newark DE 19713, USA (File Number 10054523 (Delaware Division of Corporations)), trading as “CryptaTax.”

1. Introduction

CryptaCount, Inc. (“we,” “us,” or “our”) operates the CryptaTax platform — a software-as-a-service (SaaS) tool for personal crypto tax filing and calculation. This Privacy Policy explains how we collect, use, store, and share your personal information when you use our Service.

CryptaTax is a software tool, not a professional service provider. We process personal data solely to provide this software service. We do not provide tax, accounting, legal, or financial advice.

For Tax Adviser accounts: CryptaCount, Inc. acts as data controller for your account data, and as data processor for your clients’ data processed through the Service (governed by the Data Processing Agreement).

2. Data We Collect

2.1 Account Data

  • Name and email address
  • Authentication credentials (via OAuth providers — we do not store passwords)
  • Billing information (processed by our payment processor — we do not store card numbers)

2.2 Crypto & Financial Data

  • Blockchain wallet addresses you connect to the Service
  • On-chain transaction data retrieved from public blockchains via blockchain data infrastructure
  • Exchange transaction history imported via read-only API keys you provide
  • Your cost basis method selections, transaction classification overrides, and preferences
  • Generated tax reports, capital gains/losses calculations, and tax form outputs

2.3 Technical & Usage Data

  • IP address, browser type, operating system, device identifiers
  • Pages visited, features used, session duration, timestamps
  • Error logs and application performance data
  • Referral source and approximate geolocation (derived from IP, not GPS)

2.4 Data We Do NOT Collect

  • Private keys or wallet seed phrases — never, under any circumstances
  • Exchange passwords or write-access credentials
  • Payment card numbers (handled entirely by our payment processor)

3. How We Use Your Data

We use your personal information for the following purposes:

  • Providing and operating the Service, including processing blockchain and exchange data and generating tax reports;
  • Managing your account, authenticating access, and processing payments;
  • Communicating with you about the Service (support, updates, security alerts);
  • Improving and developing the Service (analytics, error tracking, feature development);
  • Preventing fraud, abuse, and unauthorised access;
  • Complying with legal obligations and responding to lawful requests;
  • Sending marketing communications (only with your prior opt-in consent).

4. Who We Share Data With

We do not sell your personal data. We share data only in the following circumstances:

  • Service providers: Third-party processors that assist in providing the Service, including our payment processor and Google Cloud Platform (hosting and infrastructure). These providers process data only on our instructions and under contractual data protection obligations. Note: blockchain data providers are not processors — they provide access to publicly available blockchain data only and do not receive personal data from us.
  • Analytics: Google Analytics (with IP anonymisation where applicable) for usage statistics. You may opt out — see our Cookie Policy.
  • Legal requirements: Where required by law, regulation, court order, or governmental request.
  • Business transfers: In connection with a merger, acquisition, or sale of assets, subject to the acquiring party assuming the obligations of this Privacy Policy.

5. Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes described in this policy:

  • Account data: For the duration of your account plus 12 months after termination (to enable reactivation and resolve disputes).
  • Transaction and financial data: For the duration of your account plus the applicable statutory retention period in your jurisdiction (typically 5–10 years for tax records).
  • Technical/usage data: Aggregated and anonymised within 26 months of collection.
  • Marketing consent records: For the duration of consent plus 3 years.

After the retention period, data is securely deleted or irreversibly anonymised.

6. Security

We implement appropriate technical and organisational measures to protect your personal data, including:

  • Encryption in transit (TLS 1.2+) and at rest (AES-256);
  • Access controls and authentication (OAuth 2.0, role-based access);
  • Regular security reviews and monitoring;
  • Data hosted on Google Cloud Platform with SOC 2 Type II, ISO 27001, and ISO 27017 certifications;
  • No storage of private keys, wallet seeds, exchange passwords, or payment card numbers.

No system is perfectly secure. If you become aware of a security incident, please contact us immediately at info@cryptacount.com.

7. Your Rights

Depending on your jurisdiction, you may have the following rights:

  • Access: Request a copy of the personal information we hold about you;
  • Correction: Request correction of inaccurate personal information;
  • Deletion: Request deletion of your personal information, subject to legal retention requirements;
  • Opt-out of sale: We do not sell personal information. If this changes, we will provide an opt-out mechanism;
  • Non-discrimination: We will not discriminate against you for exercising your privacy rights.

California residents (CCPA/CPRA): You have additional rights under the California Consumer Privacy Act, including the right to know what personal information we collect, the right to delete, and the right to opt out of the sale or sharing of personal information. We do not sell or share your personal information as defined under the CCPA.

To exercise any right, contact us at info@cryptacount.com. We will respond within 45 days (or 30 days where required by state law).

8. Do Not Track & Global Privacy Control

Our website respects Do Not Track (DNT) browser signals. When DNT is enabled, we do not load non-essential analytics or tracking scripts. We also honour Global Privacy Control (GPC) signals where applicable.

9. Cookies

We use cookies and similar technologies. For full details, categories, and your consent options, please see our Cookie Policy / Opt-Out Preferences page.

10. Children

The Service is not intended for anyone under 18 years of age . We do not knowingly collect personal data from children. If you believe we have collected data from a child, please contact us immediately and we will delete it.

11. Third-Party Links

The Service may contain links to third-party websites or services. This Privacy Policy does not apply to those third parties. We recommend reviewing their privacy policies before providing any personal data.

12. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be notified at least 30 days in advance by email or in-app notification. The “Effective date” at the top indicates the last revision. Continued use after the effective date constitutes acceptance.

13. Contact

CryptaCount, Inc.
131 Continental Dr, Suite 305, Newark DE 19713, USA
File Number 10054523 (Delaware Division of Corporations)
Email: info@cryptacount.com