Privacy Policy

Coin Stacker operates coin-stacker.com and related public, account, dashboard, support, and administrative surfaces. This policy applies when you visit the site, create an account, sign in, request email verification codes, use dashboard features, contact support, or interact with security and abuse-prevention systems.

Where this policy refers to Coin Stacker, we mean the operator of coin-stacker.com. We do not present Coin Stacker as a bank, broker, exchange, custodian, investment adviser, or regulated financial institution.

Account and authentication data may include email address, username, password hash, OAuth provider identifiers, invite-code registration context, session status, login time, authentication events, and account state.

Security and device data may include IP address, IP hash, browser, device type, operating system, request metadata, abuse-prevention events, rate-limit activity, and administrator security logs.

Product and support data may include dashboard actions, membership and checkout state, exchange-connection labels, trading-bot configuration state, support messages, referrer, campaign parameters, and basic analytics events.

We use data to create and authenticate accounts, deliver email verification, maintain sessions, route users to the correct account or agency context, operate dashboards, process support requests, and administer membership or checkout workflows.

We also use data to detect abuse, investigate suspicious activity, prevent unauthorized access, enforce rate limits, improve reliability, understand feature usage, debug incidents, comply with legal or security obligations, and protect users and the platform.

Google OAuth requests the minimum profile scopes required for sign-in, such as openid, email, and profile. Google handles its own authentication flow; Coin Stacker never receives or stores your Google password.

We use cookies and local storage for sessions, language preferences, dashboard theme preferences, security state, and product operation. Disabling these technologies may prevent login, localization, or dashboard features from working correctly.

We may share data with infrastructure, hosting, database, email, analytics, authentication, security, and support providers where necessary to operate the service. These providers are expected to process data only for defined service purposes.

We may disclose information if required by law, to protect rights and safety, to investigate abuse or fraud, to enforce our terms, or as part of a business reorganization, merger, acquisition, or asset transfer, subject to appropriate safeguards.

We keep personal data only for as long as needed for account operation, security, audit, legal, support, analytics, and business continuity purposes. Security logs may be retained where necessary to investigate abuse or protect the platform.

Coin Stacker is operated online and may process data across borders through infrastructure and service providers. We apply reasonable administrative, technical, and organizational safeguards, but no internet service can guarantee absolute security.

Depending on your location, you may have rights to request access, correction, deletion, portability, restriction, or objection to certain processing. You may also request that we review account data or support records associated with your email address.

To protect account security, we may need to verify your identity before fulfilling requests. Some data may be retained where required for legal, security, anti-fraud, dispute, accounting, or platform-integrity purposes.

Coin Stacker is not intended for children or for users who are not legally able to enter into service terms. We do not knowingly collect personal data from children.

We may update this policy as our service, security controls, legal obligations, or operating model changes. Privacy questions can be sent to support@coin-stacker.com or through the contact page.