Data Privacy Policy

Last updated: 15th January 2026

Data Controller Information

CryptoHub Luxis Ltd, a company registered in Cyprus with registration number HE968574 and VAT number CY96251473X, located at Gladstonos Street 52, Limassol 3089, Limassol District, Cyprus, acts as the data controller for the personal information collected through this website and our business operations.

Data We Collect

We collect personal data that you voluntarily provide to us when you use our website, contact us, or engage with our services. The data we collect includes:

  • Contact information such as name, email address, phone number, and company details
  • Communication records including messages, enquiries, and correspondence
  • Technical information such as IP address, browser type, and device information
  • Website usage data including pages visited, time spent on site, and interaction patterns
  • Professional information related to your business requirements and project specifications

How We Use Your Information

We use the personal data we collect for legitimate business purposes, including how we use your information to provide our services, communicate with you, and improve our offerings. Specifically, we use your data to:

  • Respond to your enquiries and provide customer support
  • Deliver our business operational data management services
  • Communicate important updates about our services and your account
  • Analyse website performance and user experience
  • Comply with legal obligations and regulatory requirements
  • Protect our business interests and prevent fraudulent activity

Legal Basis for Processing

Under the General Data Protection Regulation (GDPR), we process your personal data based on the following legal grounds:

  • Consent: When you have given clear consent for us to process your data for specific purposes
  • Contract: When processing is necessary for the performance of a contract with you
  • Legitimate interests: When we have a legitimate business interest that doesn't override your rights
  • Legal obligation: When we need to process data to comply with legal requirements

Cookies and Tracking Technologies

We may use cookies and tracking technologies for analytics, advertising, and remarketing purposes, including Google Ads. These technologies help us measure campaign effectiveness, deliver relevant advertisements, and improve our services. You can manage your cookie preferences at any time through our cookie consent banner. For detailed information about our use of cookies, please refer to our Cookie Policy.

Data Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share your data only in the following circumstances:

  • With trusted service providers who assist us in operating our website and conducting business
  • When required by law or to protect our legal rights
  • In connection with a business transaction such as a merger or acquisition
  • With your explicit consent for specific purposes

Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected. Data retention periods vary depending on the type of information and legal requirements:

  • Contact form submissions: Retained for up to 3 years unless deleted upon request
  • Client project data: Retained for the duration of our business relationship plus 7 years for legal compliance
  • Website analytics data: Retained for up to 26 months
  • Marketing communications: Retained until you unsubscribe or withdraw consent

Your Rights

Under GDPR and applicable data protection laws, you have the following rights regarding your personal data:

  • Right of access: Request copies of your personal data
  • Right to rectification: Request correction of inaccurate or incomplete data
  • Right to erasure: Request deletion of your personal data under certain circumstances
  • Right to restrict processing: Request limitation of how we use your data
  • Right to data portability: Request transfer of your data to another organisation
  • Right to object: Object to processing based on legitimate interests or direct marketing
  • Right to withdraw consent: Withdraw consent at any time where processing is based on consent

Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. Our security measures include encryption, access controls, regular security assessments, and staff training on data protection principles.

International Data Transfers

As we operate within the European Union, your personal data is primarily processed within the EEA. If we transfer data outside the EEA, we ensure appropriate safeguards are in place, including adequacy decisions, standard contractual clauses, or other approved mechanisms.

Children's Privacy

Our services are not directed at children under the age of 16, and we do not knowingly collect personal data from children. If we become aware that we have collected data from a child without proper consent, we will take steps to delete such information promptly.

Changes to This Policy

We may update this privacy policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any material changes by posting the updated policy on our website with a revised effective date.

Contact Us

If you have any questions about this privacy policy, wish to exercise your rights, or need to contact us regarding data protection matters, please reach out using the following contact information:

Supervisory Authority

If you believe we have not handled your personal data in accordance with applicable laws, you have the right to lodge a complaint with the Cyprus Commissioner for Personal Data Protection or your local data protection authority.