← Back to TraceProof

Privacy Policy

Last updated: 10 June 2026

1. Data Controller

The data controller is INSIDE MARKETING INTERNATIONAL FZE, registered at SAIF Lounge, Sharjah, UAE 121974. For any privacy-related enquiries, please contact us at privacy@traceproof.tech.

2. What Data We Collect

We collect the following categories of personal data when you use our service:

• Identity data: name, email address
• Case data: wallet addresses, transaction details, IBAN numbers, payment information, and narrative descriptions you provide through the wizard
• Technical data: IP address, browser type, device information, and usage logs
• Payment data: processed securely via PayPal (including debit/credit card, Apple Pay, and Google Pay); we do not store card details

3. Legal Basis for Processing

We process your data on the following legal bases under UK GDPR:

• Contract performance: to provide the forensic analysis and report generation service you have requested
• Legitimate interests: to improve our service, prevent fraud, and ensure security
• Consent: for marketing communications (where applicable)
• Legal obligation: to comply with applicable laws and regulations

4. How We Use Your Data

• To generate forensic investigative reports and fraud report statements
• To trace cryptocurrency transactions and analyse financial flows
• To communicate with you about your case and deliver reports
• To process payments for our services
• To improve our AI analysis capabilities

5. Data Sharing

We do not sell your personal data. We may share data with:

• AI service providers (Anthropic) for report generation — data is processed under strict data processing agreements
• Blockchain analytics providers (Moralis, Breadcrumbs) for on-chain tracing
• Payment processors (PayPal, including card networks, Apple Pay, Google Pay) for transaction processing
• Analytics providers (Google Analytics) for website usage statistics — data is anonymised where possible
• Law enforcement if required by law or court order

6. Data Retention

We retain your case data for a maximum of 12 months after report generation, unless you request earlier deletion. Technical logs are retained for 30 days. Payment records are retained as required by UK tax law (6 years).

7. Your Rights

Under UK GDPR, you have the right to:

• Access your personal data
• Rectify inaccurate data
• Request erasure ("right to be forgotten")
• Restrict processing
• Data portability
• Object to processing
• Lodge a complaint with the ICO (Information Commissioner's Office)

To exercise any of these rights, contact privacy@traceproof.tech.

8. International Transfers

Some of our service providers are based outside the UK. Where data is transferred internationally, we ensure appropriate safeguards are in place (such as Standard Contractual Clauses or adequacy decisions).

9. Security

We implement appropriate technical and organisational measures to protect your data, including encryption in transit and at rest, access controls, and regular security reviews.

10. Changes to This Policy

We may update this policy from time to time. Material changes will be communicated via our website.