Data Protection & Encryption
How we secure your personal information
At Crypto AI Advisor, your data security is our top priority. We implement industry-standard encryption and security measures to protect your personal information, ensuring compliance with GDPR and best practices in data protection.
What We Encrypt
All sensitive personal data is encrypted at rest in our database using military-grade encryption standards:
1. Email Addresses
- Encryption Method: AES-256-CBC with random initialization vectors
- Hash Storage: SHA-256 hash for fast lookups while maintaining privacy
- Purpose: Protects your email from unauthorized access and data breaches
2. Binance API Credentials
- Encryption Method: AES-256-CBC encryption
- Security: Your API keys and secret keys are never stored in plain text
- Access: Only decrypted when needed to fetch your balance information
- Read-Only: We only request read-only API permissions (no trading or withdrawal capabilities)
3. Manual Balance Data
- Encryption Method: AES-256-CBC encryption for amounts and currency codes
- Hashing: Currency codes are also hashed (SHA-256) for database integrity
- Security: Both the cryptocurrency types you hold and their amounts are encrypted
- Privacy: Your complete financial portfolio remains protected even if using manual entry instead of Binance integration
4. Passwords
- Hashing Method: bcrypt with salt
- One-Way: Passwords are hashed (not encrypted), making them impossible to reverse
- Security: Even we cannot see your password
Encryption Standards
AES-256 Encryption
We use Advanced Encryption Standard (AES) with 256-bit keys, the same encryption standard used by governments and financial institutions worldwide. This provides:
- Virtually unbreakable encryption (would take billions of years to crack with current technology)
- FIPS 140-2 compliant encryption
- Random initialization vectors for each encryption, preventing pattern detection
SHA-256 Hashing
For email lookups, we use SHA-256 cryptographic hashing:
- Allows fast user authentication without storing emails in plain text
- One-way function that cannot be reversed
- Normalized input (lowercase, trimmed) for consistent hashing
Infrastructure Security
- Encryption Keys: Stored separately from encrypted data in secure environment variables
- Database Access: Limited to authorized systems with strict access controls
- HTTPS Only: All data transmission uses TLS 1.3 encryption
- No Third-Party Access: Your encrypted data is never shared with third parties
- Regular Security Audits: Continuous monitoring and security updates
GDPR Compliance
Our encryption practices align with GDPR Article 32 requirements for data security:
- Technical Measures: State-of-the-art encryption for personal data at rest
- Pseudonymization: Email hashing provides pseudonymization while maintaining functionality
- Data Minimization: We only collect and store what's necessary
- Right to Erasure: You can request complete deletion of your data at any time
- Breach Protection: Even if our database is compromised, your data remains encrypted and unreadable
What We Don't Do
- ❌ Store emails in plain text
- ❌ Store API keys in plain text
- ❌ Store passwords in plain text or with weak encryption
- ❌ Share your data with third parties
- ❌ Use your API keys for trading or withdrawals
- ❌ Track or sell your personal information
Your Control
You maintain full control over your data:
- Delete Anytime: Remove your Binance credentials with one click in the app
- Account Deletion: Request complete account deletion through our Account Deletion page
- Data Export: Request a copy of your data (contact agent@crypto-ai-advisor.com)
- Transparency: Our code and security practices are documented
Questions About Data Protection?
If you have any questions about how we protect your data or want to learn more about our security measures, please contact us:
- Email: agent@crypto-ai-advisor.com
- Company: Arthak d.o.o.
For general privacy information, see our Privacy Policy.