Privacy Policy
Last updated: January 7, 2026
Contents
VerifyBTC ("we," "our," or "us") is operated by Digital Macchiato LLC, a Wyoming limited liability company. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Bitcoin ownership verification service at verifybitcoin.io (the "Service"). Please read this policy carefully.
Important: We never collect, store, process, or have access to your Bitcoin private keys, seed phrases, or wallet passwords. Our verification process uses only cryptographic message signatures, which do not expose or transmit private keys. Your funds remain completely under your control at all times.
1. Information We Collect
Account Information
When you create an account, we collect your email address and password (stored securely using Argon2 hashing). You may optionally provide your name.
Verification Data
When you create or complete a verification, we collect Bitcoin addresses, verification request details, cryptographic signatures, and verification status. This data is essential for providing our core service.
Usage Data
We automatically collect information about how you interact with our Service, including IP addresses, browser type, operating system, pages visited, and timestamps. This helps us improve our Service and maintain security.
Payment Information
We do not directly collect or store your payment card details. All payment processing is handled by Stripe, our PCI DSS compliant payment processor. We only receive confirmation of payment status and subscription details.
2. How We Use Your Information
We use the information we collect for the following purposes:
Provide, maintain, and improve our Bitcoin verification services
Process transactions and send related notifications
Send verification status updates and service communications
Respond to your comments, questions, and support requests
Monitor and analyze usage trends to improve user experience
Detect, prevent, and address fraud, abuse, and security issues
Comply with legal obligations and enforce our terms of service
3. Third-Party Services
We use the following third-party services to operate our platform:
Stripe (Payment Processing)
We use Stripe to process payments securely. Stripe is PCI DSS Level 1 compliant, the highest level of certification. When you make a payment, your card details are transmitted directly to Stripe and are never stored on our servers. For more information, see Stripe's Privacy Policy.
SendGrid (Email Delivery)
We use SendGrid to send transactional emails such as verification notifications, password resets, and account updates. SendGrid receives your email address to deliver these messages. For more information, see Twilio's Privacy Policy (SendGrid's parent company).
4. Data Retention
We retain your information for as long as necessary to provide our services and fulfill the purposes described in this policy:
Account data: Retained until you delete your account
Verification records: Retained for 7 years for legal and compliance purposes
Usage logs: Retained for 90 days for security and analytics
Payment records: Retained for 7 years as required by tax and accounting laws
5. Your Rights
For All Users
You have the right to access, correct, or delete your personal information. You can do this through your account settings or by contacting us at legal@verifybitcoin.io.
For European Economic Area (EEA) and UK Residents (GDPR)
Under the General Data Protection Regulation, you have additional rights:
Right of Access: Request a copy of your personal data
Right to Rectification: Request correction of inaccurate data
Right to Erasure: Request deletion of your data ("right to be forgotten")
Right to Portability: Receive your data in a structured, machine-readable format
Right to Restrict Processing: Limit how we use your data
Right to Object: Object to processing based on legitimate interests
To exercise these rights, contact us at legal@verifybitcoin.io. We will respond within 30 days.
For California Residents (CCPA)
Under the California Consumer Privacy Act, you have the right to:
Right to Know: Request disclosure of what personal information we collect and how we use it
Right to Delete: Request deletion of your personal information
Right to Non-Discrimination: We will not discriminate against you for exercising your rights
We do not sell your personal information. We do not share your personal information for cross-context behavioral advertising.
7. International Data Transfers
Your information may be transferred to and processed in the United States, where our servers are located. For transfers from the EEA or UK, we rely on Standard Contractual Clauses approved by the European Commission. By using our Service, you consent to the transfer of your information to the United States.
8. Children's Privacy
Our Service is not intended for individuals under 18 years of age. We do not knowingly collect personal information from children under 18. If we become aware that we have collected personal information from a child under 18, we will take steps to delete that information promptly. If you believe we have collected information from a child, please contact us at legal@verifybitcoin.io.
9. Data Security
We implement appropriate technical and organizational measures to protect your personal information:
Passwords are hashed using Argon2, the winner of the Password Hashing Competition
All data is encrypted in transit using TLS 1.3
Sensitive verification data (including Bitcoin addresses) encrypted at rest using AES-256-GCM
Two-factor authentication (2FA) is available for all accounts
Account lockout after failed login attempts to prevent brute-force attacks
Regular security audits and monitoring
While we strive to protect your information, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security.
10. Contact Us
If you have questions about this Privacy Policy or wish to exercise your rights, please contact us:
Digital Macchiato LLC
Email: legal@verifybitcoin.io
We will respond to all requests within 30 days.
11. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last updated" date. We encourage you to review this Privacy Policy periodically. Your continued use of the Service after any changes constitutes your acceptance of the updated policy.