Privacy Policy

I. Controller

The Controller in the meaning of the General Data Protection Regulation (“GDPR” in the following) and other national data protection laws and provisions is

Trustless Technologies GmbH
Marburger Str. 2
D-10789 Berlin

Vertretungsberechtiger Geschäftsführer: Felix Stein

Telefon: +49 (0) 30 58 84 94 34
E-Mail: contact@cryptowoo.com

Registergericht: Amtsgericht Charlottenburg
Registernummer: HRB 200132

II. General Information on Data Processing

Data protection is of particular significance to us. Therefore, we only collect and use personal data of our users insofar as is required to provide our content and services and a functioning website. Personal data includes all information referring to an identified or identifiable natural person (“Person Concerned” in the following).

The collection and use of personal data of our users is always conducted in accordance with the GDPR and the applicable national data protection laws and provisions. If the processing of personal data is required, and such processing is not allowed by statutory regulations, we always seek the consent of the Person Concerned.

In general, we do not transfer personal data to third parties. A transfer only takes place, if you have given your express consent (Art. 6 Sec. 1 p. 1 lit. a GDPR); if a legitimate interest in such transfer exists and there is no reason to assume that you have an overriding and legitimate interest in you data not being transferred (Art. 6 Sec. 1 p. 1 lit. f GDPR); if a transfer is necessary for compliance with a legal obligation (Art. 6 Sec. 1 p. 1 lit. c GDPR); or if a transfer is necessary for the performance of a contract to which you are a party (Art. 6 Sec. 1 p. 1 lit. b GDPR).

III. Visits on our Website

When you visit our website www.cryptowoo.com, the browser you use automatically sends information to the server on our website. The following information are collected and stored until automatic deletion:

  • IP adress,
  • Time of the server request,
  • Referrer URL,
  • Browser type and browser version,
  • Operating system used,
  • Host name of the accessing computer.

These data are only stored temporarily in a so-called log file. Not affected by this are the IP addresses of the user or other data that allow the assignment of the data to a user. A storage of this data together with other personal data of the user does not take place. When using this data, we draw no conclusions about the person concerned.

The legal basis for this processing is Art. 6 Sec. 1 p. 1 lit. f GDPR. The legitimate interest in the meaning of the GDPR is providing a working website with properly delivered content, optimizing our systems and providing law enforcement with the information needed to prosecute cyberattacks. As soon as there is no legitimate interest and there is no statutory retention requirement, these data will routinely deleted.

In addition, we use cookies and analytics and marketing services. Further information can be found under sections IV. and V. in this privacy policy.

IV. Cookies

On our website we use cookies. Cookies are small text files automatically generated by your browser which may be saved on your terminal device. This does not mean, though, that we directly become aware of your identity.

On the one hand, the use of cookies serves to make the use of our offer more pleasant for you. In addition, we use cookies to optimize usability and our offer and for statistical collection.

We use so-called session cookies to recognize that you have already visited individual pages on our website. These cookies are automatically deleted after leaving our site. In addition, we use temporary cookies that are stored on your device for a specific period of time. Visit our page again, it will automatically detect that you were with us already and what settings and adjustments they have made in order not to have to enter it again. The data collected includes the frequency of page views, search terms entered, and the use of website features.

The use of cookies for the statistical recording and evaluation of our offer is described in more detail in Section V. These cookies allow us to automatically recognize when you visit our site again that you have already been with us. These cookies are automatically deleted after the expiration of the storage period of one month.

If you click “ok” in the cookie note displayed on our website, you authorize us to set cookies. If you click “reject” only the technically necessary cookies are set.

The data processed by cookies are for the purposes mentioned in order to safeguard our legitimate interests as well as third parties according to Art. 6 Sec. 1 p. 1 lit. f GDPR required. Most browsers automatically accept cookies. However, you can set your browser in a way that it does not save cookies on your computer or always a hint appears before a new cookie is created. However, disabling cookies completely may mean that you can not use all features of our website.

V. Analytic tools

The legal basis for using the analytic tools listed below is Art. 6 Sec. 1 p. 1 lit. f GDPR. We want to ensure a needs-based design and the continuous optimization of our website. On the other hand, we use the tracking measures to statistically record the use of our website and evaluate it for the purpose of optimizing our offer for you. These interests are to be regarded as justified within the meaning of the aforementioned legal basis.

1. Google Analytics

This website uses Google Analytics, a web analytics service provided by Google Inc. (“Google” in the following). To analyse the use of the website, the personal data of the customer, which are transmitted to the responsible person, are made available to the following recipient: – Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.

Google Analytics uses so-called “cookies”, text files that are stored on the computer of the customer and facilitate analysis of the customer’s use of the website. Information generated by the cookie about your use of this website (including your IP address) is transmitted to a Google server in the United States and stored there. In case of activated IP anonymisation on this website, however, the IP address, is previously truncated by Google within member states of the European Union or in other states which are party to the agreement on the European Economic Area. Only in exceptional cases is a full IP address transmitted to a Google server in the USA and truncated there. On behalf this website’s owner, Google will use this information to evaluate your use of the website, compile reports about website activities, and provide the website’s operator with further services related to website and Internet usage. Google will not link the IP address transferred by the customer’s browser as part of Google Analytics with any other data held by Google.

The customer may refuse the use of cookies by selecting the appropriate settings on the browser, however, the person responsible points out to the customer that in this case the customer may not be able to use all functions of this website. In addition, the customer can prevent data generated by the cookie and relating to their use of the website (including the IP address) from being collected and processed by Google, by downloading and installing a browser plug-in from the following link: https://tools.google.com/dlpage/gaoptout?hl=en.

The customer can prevent Google Analytics from collecting data by clicking on the following. An opt-out cookie is set which prevents the collection of data on future visits to this website: Disable Google Analytics

The customer can find more information on this at https://tools.google.com/dlpage/gaoptout?hl=en and at https://www.google.com/intl/en/analytics/privacyoverview.html (general information about Google Analytics and Data Privacy).

Please note that the code “anonymizeIp” (“analytics.js”) has been added to Google Analytics on our website to guarantee anonymised registration of IP addresses (so-called IP masking). Personal data will not be made available to third parties without the written consent of the customer, unless this is required by law.

2. Google Adwords Conversion Tracking

This website uses Google AdWords. AdWords is an online advertising program from Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, United States (“Google” in the following).

In the context of Google AdWords we use the so-called conversion tracking. When you click on an ad served by Google, a cookie is set for conversion tracking. Cookies are small text files that your Internet browser stores on your computer. These cookies expire after 30 days and are not used to personally identify users. Should the user visit certain pages of the website and the cookie has not yet expired, Google and the website can tell that the user clicked on the ad and proceeded to that page. Each Google AdWords customer receives a different cookie. Cookies cannot be tracked through the websites of AdWords customers. The information collected using the conversion cookie is used to generate conversion statistics for AdWords customers who have opted for conversion tracking. Customers see the total number of users who clicked on their ad and were redirected to a page with a conversion tracking tag. However, you will not receive any information that personally identifies users.

If you do not want to participate in tracking, you can opt out of this by easily disabling the Google Conversion Tracking cookie by changing your browser settings. They are then not included in the conversion tracking statistics. “Conversion cookies” are stored on the basis of Art. 6 (1) lit. f GDPR. The website operator has a legitimate interest in analysing user behaviour in order to optimise both its website and its advertising. For more information about Google AdWords and Google Conversion Tracking, see the Google Privacy Policy: https://www.google.de/policies/privacy/.

You can configure your browser to inform you about the use of cookies so that you can decide on a case-by-case basis whether to accept or reject a cookie. Alternatively, your browser can be configured to automatically accept cookies under certain conditions or to always reject them, or to automatically delete cookies when closing your browser. If a cookie is deactivated, the functionality of the website may be restricted.

VI. Contact via our website

Due to statutory regulations our website contains information that enables a quick electronic communication with our company (email address, in particular). If you contact us via email, your personal data, which you submit voluntarily, are automatically saved for the purpose of use and communication. Such data will not be transferred to third parties. The data will be deleted, when the legal retention period expires and the data are no longer required to perform or initiate a contract. The legal basis for processing data, which are transferred by sending an email, is Art. 6 Sec. 1 p. 1 lit. f GDPR. The legitimate interest in the meaning of the GDPR is to process and answer your contact request.

Emails may be forwarded to and processed by Zendesk Inc., 1019 Market Street, 6th Floor, San Francisco, California 94103 (“Zendesk” in the following). Through Zendesk’s certification in the US-EU Privacy Shield and the conclusion of a contract as a processor with us, Zendesk is committed to adhering to EU privacy standards and to providing the data in accordance with Zendesk’s Privacy Policy on our behalf to process.

The data will be deleted as soon as they are no longer required to fulfil the purposes mentioned above, i.e. when the respective communication with the user is finished. The communication is deemed finished when the circumstances suggest that the matter in question has been resolved conclusively.

You have the right to object to the storage of your personal data at any time. For this purpose, please contact the Controller mentioned in Sec I. (in writing, per email or by phone). The data from any prior communication will then be deleted; a further communication will not be possible.

VII. Contact form

Users of our website have the opportunity to contact us via a contact form. If you take this option, the data given in the input screen will be transmitted to us and saved. These data are:

  • Name,
  • Email adress,
  • personal data in the message.

At the time of sending the message, the following data are also stored:

  • IP adress,
  • Time of the server request.

The legal basis for this data processing is Art. 6 Sec. 1 p. 1 lit. a GDPR. For the processing of this data, your consent is obtained as part of the submission process and reference is made to this privacy policy. Sending the contact form without this declaration of consent is not possible. Alternatively, contact via the provided e-mail address is possible. In this case, the user’s personal data transmitted by e-mail will be stored.

We only need the collected data to answer your contact request. The data stored at the time of dispatch serve to ensure the security of our systems and to prevent the misuse of the contact form. Any further use or disclosure of this data will not take place.

These data will be forwarded to and processed by Zendesk Inc., 1019 Market Street, 6th Floor, San Francisco, California 94103 (“Zendesk” in the following). Through Zendesk’s certification in the US-EU Privacy Shield and the conclusion of a contract as a processor with us, Zendesk is committed to adhering to EU privacy standards and to providing the data in accordance with Zendesk’s Privacy Policy on our behalf to process.

The data will be deleted as soon as it is no longer necessary for the purpose of its collection. For the personal data from the input form of the contact form, this is the case when the respective conversation with the user has ended. The conversation is ended when it can be inferred from the circumstances that the relevant facts have been finally clarified.

If the contract request results in a contract or contract initiation, the legal basis for further data processing is Art. 6 Sec. 1 p. 1 lit. b GDPR.

You have the opportunity to withdraw your consent to the processing and storage of your data at any time with effect for the future. For this purpose, please contact the controller named in I. (in writing, by e-mail or by telephone). The data from the previous communication is then deleted.

VIII. Registration

Users can register on our website. This requires the collection of personal data. The data is entered into an input screen and transmitted to us and stored. A transfer of data to third parties does not take place. The following personal data are collected during the registration process:

  • Name,
  • Name of the company,
  • Email address.

At the time of the registration, the following data are also stored

  • IP adress,
  • Time of the server request.

The legal basis for this data processing is Art. 6 Sec. 1 p. 1 lit. a GDPR. For the processing of this data, your consent is obtained as part of the registration process and reference is made to this privacy policy. A registration without this declaration of consent is not possible.

If the registration serves the performance of a contract of which the user is a party or contract initiation, an additional legal basis for the processing of the data is Art. 6 Sec. 1 p. 1 lit. b GDPR. Under a contractual relationship, on the basis of Art. 6 Sec. 1 p. 1 lit. b GDPR data will forwarded to payment and logistics service providers.

A registration of the user is necessary for the use of our services. In addition, data collection is necessary to prevent abuse of our website and to be able to act against the corresponding users in the case of illegal content.

Registered users have the opportunity to rate and comment our products on our website. In order to avoid misuse of our website and to be able to take action against the respective users in the case of illegal content, on the basis of Art. 6 Sec. 1 p. 1 lit. f GDPR at the time of sending the rating the IP address of the user and date and time will be saved.

These data will be forwarded to and processed by Mailgun Technologies Inc., 535 Mission St., 14th Floor, San Francisco, California 94105 („Mailgun“ in the following). Through Mailgun’s certification in the US-EU Privacy Shield and the conclusion of a contract as a processor with us, Mailgun is committed to adhering to EU privacy standards and to providing the data in accordance with Mailgun’s Privacy Policy on our behalf to process.

As a user, you have the option at any time of cancelling the registration or modifying the data stored about you. The data will be deleted if the registration on our website is cancelled or modified and there are no further data retention or other legitimate interests of the person responsible for data storage.

IX. Newsletter

By subscribing to our newsletter, you agree to the following notices regarding registration, sending and statistical evaluation procedures as well as your right of withdrawal.

If you sign up for our newsletter via our website, the data given in the input screen will be sent to us and saved. These data are:

  • Name,
  • Email adress.

The legal basis for this data processing is Art. 6 Sec. 1 p. 1 lit. a GDPR. For the processing of this data, your consent is obtained as part of the submission process and reference is made to this privacy policy. Following the registration on our website, you will receive an Email confirming that you have to click on a link to confirm your subscription to the newsletter. If the link in this email is not clicked within 24 hours, your data will be deleted. This ensures that no one can sign up with an email address to which he has no access.

In accordance with the legal requirements, the newsletter registrations are logged by saving the registration and confirmation time and the IP address. Also, changes to your stored data will be noted.

These data will be forwarded to and processed by the platform “MailChimp” of the company Rocket Science Group, LLC, 675 Ponce De Leon Ave NE, Suite 5000. Atlanta, GA 30308, USA („MailChimp“ in the following). Through MailChimp’s certification in the US-EU Privacy Shield and the conclusion of a contract as a processor with us, MailChimp is committed to adhering to EU privacy standards and to providing the data in accordance with MailChimp’s Privacy Policy on our behalf to process.

To improve and understand our customers’ interests, the newsletter includes a “web-beacon”, a pixel-sized file that is retrieved from the MailChimp server when the newsletter is opened. This retrieves technical data such as the IP address and information about the browser and system used. In addition, it is recorded if and at what time the newsletter is opened and which links are clicked on.

The aim of these analyzes is to better understand the reading habits of the users and to constantly improve the content of the newsletter and make it more interesting. The information can be technically assigned to individual subscribers, but it is neither in ours nor in the interest of MailChimp to monitor individual users. Our legitimate interest is exclusively collecting statistical values.

The logging of the registration procedure, the collection and evaluation of the statistical data as well as the use of MailChimp are carried out on the basis of our legitimate interests acc. Art. 6 Sec. 1 p. 1 lit. f GDPR. Our interest is a user-friendly and secure newsletter that meets the needs of users while serving our business interests, as well as preventing misuse of our offerings.

Users have the opportunity to withdraw their consent to the processing and storage of the data at any time with effect for the future. For this purpose, please contact the controller named in I. (in writing, by e-mail or by telephone) or use the “unsubscribe link”, which you will find at the end of each newsletter.

X. Rights of the data subject

As the Person Concerned (= data subject) you have the following rights against the Controller. If you wish to assert any of such rights, please contact the Controller under the contact details mentioned in I.

1. Right of access (Art. 15 GDPR)

You have the right to obtain information from the Controller on whether or not personal data concerning you are being processed.
Where that is the case, you may obtain from the Controller access to the personal data and information on the purposes of the processing; the categories of personal data concerned; the recipients or categories of recipient to whom the personal data have been or will be disclosed; where possible, the envisaged period for which the personal data will be stored, or, if not possible, the criteria used to determine that period; the existence of the right to request from the Controller rectification or erasure of personal data or restriction of processing of personal data concerning you or to object to such processing; the right to lodge a complaint with a supervisory authority; where the personal data are not collected from you, any available information as to their source; the existence of automated decision-making, including profiling, referred to in Art. 22, Sec. 1 and 4 GDPR and, at least in those cases, meaningful information about the logic involved, as well as the significance and the envisaged consequences of such processing to you; information on the transfer of personal data to a third country or to an international organization, and the appropriate safeguards pursuant to Art. 46 GDPR relating to the transfer.

2. Right to Rectification (Art. 16 GDPR)

You have the right to obtain from the Controller without undue delay the rectification and/or completion of personal data concerning you that is incorrect or incomplete.

3. Right to Erasure (Art. 17 GDPR)

You have the right to obtain from the Controller the erasure of personal data stored by us, if the personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed; if you withdraw consent on which the processing is based, and where there is no other legal ground for the processing; if you object to the processing pursuant to Art. 21, Sec. 1 and there are no overriding legitimate grounds for the processing, or you object to the processing pursuant to Article 21, Sec. 2; if the personal data have been unlawfully processed; if the personal data have to be erased for compliance with a legal obligation; or if the personal data have been collected in relation to the offer of information society services referred to in Art. 8, Sec. 1 GDPR.

This right to erasure does not apply to the extent that processing is necessary for exercising the right of freedom of expression and information; for compliance with a legal obligation; for reasons of public interest; or for the establishment, exercise or defence of legal claims.

4. Right to Restriction of Processing (Art. 18 GDPR)

You have the right to obtain from the Controller restriction of processing, if the accuracy of the personal data is contested by you, for a period enabling the controller to verify the accuracy of the personal data; if the processing is unlawful and you oppose the erasure of the personal data and request the restriction of their use instead; if the Controller no longer needs the personal data for the purposes of the processing, but they are required by you for the establishment, exercise or defence of legal claims; or if you have objected to processing pursuant to Art. 21 Sec. 1 GDPR, pending the verification whether the legitimate grounds of the Controller override those of you.

Where processing has been restricted, such personal data shall, with the exception of storage, only be processed with your consent or for the establishment, exercise or defence of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the Union or of a Member State.

If you have obtained restriction of processing, you shall be informed by the Controller before the restriction of processing is lifted.

5. Right to Data Portability (Art. 20 GDPR)

You have the right to receive the personal data concerning you, which you have provided to a controller, in a structured, commonly used and machine-readable format and have the right to transmit those data to another controller.

6. Right to Object

Insofar as your personal data are processed on the basis of legitimate interests in accordance with Art. 6 Sec. 1 p. 1 lit. f GDPR, you have the right to object such processing of your personal data on grounds relating to your particular situation. If your objection is directed against direct marketing, you have a general right to object which we will implement without you being required to submit grounds relating to your particular situation.

7. Right to Withdraw Consent (Art. 7 Sec. 3 GDPR)

You have the right to withdraw your consent at any time so that we are not allowed to continue processing data based on such consent in the future.

8. Right to lodge a complaint with a supervisory authority (Art. 77 GDPR)

You have the right to lodge a complaint with a supervisory authority. You may address the supervisory authority of your habitual residence or place of work, or the supervisory authority concerned with us.

XI. Data Security

To protect your data, we use the SSL (Secure Socket Layer) method on our website, combined with the highest level of encryption supported by your browser. Whether a single page of our website is transmitted in encrypted form is indicated by the closed presentation of the key or lock symbol in the status bar of your browser.

Incidentally, we use appropriate technical and organizational security measures to protect your data against manipulation, loss, destruction or against unauthorized access by third parties.

XII. Currency and Amendment of this Privacy Policy

This Privacy Policy is currently applicable in its version from May 2018. A further development of our services and website or amended statutory regulations may make it necessary to amend this Privacy Statement in the future.