Privacy Policy
Please read this Privacy Policy carefully. It explains your rights and clarifies how seriously we treat the privacy of your data, so you know exactly what we do—and don’t—collect.
Last Updated: 6 June 2019
1. Introduction
This Privacy Policy describes how information about you is collected, used, and disclosed by MyMonero and its group companies (“we” or “us”). Together with our Terms of Service (and any documents referenced in either), it applies to information related to your use of our websites, mobile applications, hosted Monero accounts, and other online products and services (collectively, the “Services”), as well as when you otherwise interact with us.
We may update this Privacy Policy from time to time. When we do, we will revise the “Last Updated” date at the top of this page and, where appropriate, post a notice on our Medium blog, social media channels, or via push notification on your device. Because we intentionally avoid storing your personal contact details (see below), we can’t notify you by email. We encourage you to review this Policy whenever you access the Services so you remain informed about our data practices and how you can partner with us in protecting your privacy.
2. Collection of Information
Information you provide to us – We collect information you provide directly to us. When you open a wallet, you don’t submit personal details to us; typically, any data we receive comes from your communications with our support team or through one-off interactive features. In those cases we explain, in plain language, how the information will be used—no surprises.
Information we collect automatically when you use the Services – When you access or use the Services, we automatically collect limited technical information, including:
- Your wallet’s public address and view key — your private key, mnemonic seed, and other sensitive wallet secrets remain yours and never touch our servers.
- The last date your wallet was accessed.
- The API subdomain used to access the Services (where access occurs via an API).
- Error diagnostics: if a problem occurs, we log basic error details (such as date and error type) plus non-persistent technical data like device type, browser, and operating system via your user agent. If no error occurs, we don’t collect this information.
Information we do not collect – Because privacy is a core design principle, our systems deliberately avoid collecting the following:
- IP Address — We don’t actively track or collect the IP address you use to access the Services. That’s your business.
- Log Information — We don’t keep routine usage logs (browser type, access times, pages viewed, referrers, etc.). As noted above, certain technical details (e.g., browser/OS) may appear in an error log, but only when an error occurs.
- Device Information — We don’t record mobile device details such as hardware model, OS/version, unique device identifiers, or network info during normal use. If an error occurs, we may log device type and OS for diagnosis; otherwise, nothing is stored.
- Information Collected by Cookies and Other Tracking Technologies — We don’t use cookies for tracking or marketing. If you prefer extra certainty, you’re welcome to disable cookies in your browser settings.
- Account Address Information — We store only your public address and view key; we never store or know your private spend key or mnemonic seed. It’s cryptographically impossible for us to move funds on your behalf or access your wallet.
3. Use of Information
We use the limited information we collect for the following purposes:
- Provide, maintain, and improve the Services.
- Deliver the specific services or actions you request and send related information tied to those requests.
- Respond to comments, questions, and requests, and deliver customer support.
- Monitor and analyze trends, usage, and activity in connection with the Services on an aggregated and anonymous basis.
- Process and deliver contest entries, rewards, or outcomes through clearly described interactive features.
- Carry out any other purpose you authorize when providing information (we’ll explain whenever a new data use is involved).
4. Sharing of Information
We may share the limited information we collect about you in the following ways:
- With the Monero network — We share your public account address and transaction details as needed to facilitate transactions you initiate through the Services.
- With vendors, consultants, and service providers who require access to limited information to perform work on our behalf. Our standard practice is to bind vendors to privacy and security obligations consistent with this Policy, and to provide no more data than outlined above. Access to our databases is tightly restricted—even within our company—so third parties almost never receive access to public addresses and view keys we store.
- In response to a legitimate request from a regulator or authority with jurisdiction, where we are satisfied that disclosure is required by applicable law, regulation, or legal process.
- When we believe your actions violate our user agreements or policies, or when necessary to protect the rights, property, and safety of us, our users, or others.
- In connection with, or during negotiations of, a merger, asset sale, financing, or acquisition of all or part of our business. Even then, we treat the database of public addresses and view keys solely as necessary for proper operation of the Services—not as an asset to sell. Any prospective partner or acquirer will be restricted from accessing such data unless and until it is required to keep the Services running.
- With your consent or at your direction, including where we notify you within the Services that certain information will be shared in a particular way and you choose to provide it.
Wherever feasible, information we share is aggregated or de-identified so it cannot reasonably be used to identify you.
5. Security
We use reasonable security measures to help protect information from loss, theft, misuse, unauthorized access, disclosure, alteration, and destruction. As users of our own Services, we take this seriously. Because we do not collect your most sensitive data (like private keys and seeds), your security also depends on your own best practices—please treat it with the same care we do.
6. Your Rights in Relation to Your Information
You have the following rights over information we hold about you:
- Right to Access — You may request copies of information we hold about you at any time. We won’t charge a fee unless your request is “manifestly unfounded or excessive.” Where permitted by law, we may refuse a request; if we do, we’ll explain why.
- Right to Correct — You can ask us to rectify information that is inaccurate or incomplete.
- Right to Erase — You can request deletion of your information from our systems.
- Right to Restrict Processing — You can ask us to “block” or limit how we use your information.
- Right to Data Portability — You can request that we move, copy, or transfer your information.
- Right to Object — You can object to our use of your information, including where we rely on legitimate interests.
Note: because we collect so little about you, it may be difficult—or sometimes impossible—to identify which information relates to you, which can limit the practical exercise of these rights.
7. Contact Us
If you have questions about this Privacy Policy or wish to exercise your rights, please contact us.