Privacy Policy

Crypto Ledger Privacy Policy describes how personal data is collected, processed, stored, and protected when users interact with the Crypto Ledger application, website, and associated services. This policy applies to all platforms on which the Crypto Ledger software operates, including desktop (Windows, macOS, Linux), mobile (iOS, Android), and the informational website.

This Privacy Policy was last updated in January 2026. Users are encouraged to review this page periodically, as updates may occur to reflect changes in data handling practices, legal requirements, or service capabilities.

Information We Collect

Crypto Ledger collects limited categories of personal data necessary for providing the service. The information collected depends on how users interact with the application and website. The following categories apply:

Account and device information includes the hardware wallet model, firmware version, installed blockchain applications, and operating system details. This data enables the application to display the correct interface, provide compatible updates, and diagnose technical issues. No personally identifiable information is required to use the Crypto Ledger application, and no account creation or registration process exists.

Usage data encompasses anonymized interaction patterns within the application, such as feature usage frequency, navigation patterns, and error occurrences. This information helps improve the application design and identify recurring technical issues. Collection of usage data is optional and can be disabled in the application settings during the initial setup or at any time afterward.

Website visitor data includes standard web server logs (IP address, browser type, referral URL, pages visited, timestamps) collected when users access the Crypto Ledger website. This data is used for security monitoring, abuse prevention, and aggregated traffic analysis.

Cookies and Tracking Technologies

Crypto Ledger website uses cookies and similar technologies to facilitate website functionality and analyze traffic patterns. Cookies are categorized as follows:

Essential cookies enable core website functions such as page navigation, secure areas access, and session management. These cookies do not collect personal data and cannot be disabled without affecting website functionality.

Analytics cookies collect anonymized data about website usage patterns, including pages visited, time spent on each page, and bounce rates. These cookies use third-party analytics services (detailed in the Third-Party Tools section) and can be disabled through the cookie consent banner displayed on the first visit.

Marketing cookies may be placed by advertising partners to build a profile of user interests and display relevant advertisements on other websites. These cookies require explicit opt-in consent and are not placed without user authorization.

Users can manage cookie preferences at any time by accessing the cookie settings link available in the website footer. Browser settings can also be configured to block or delete cookies, though this may impair website functionality.

Analytics and Performance Monitoring

Crypto Ledger uses analytics tools to understand how users interact with the application and website. Analytics data is processed in aggregated form and does not include private keys, recovery phrases, account balances, or transaction details.

The application integrates analytics through opt-in telemetry that collects anonymized events such as feature usage, error reports, and session duration. Users who decline analytics during setup do not transmit any telemetry data. The website employs standard analytics platforms for traffic analysis and performance monitoring.

Analytics data retention follows a rolling 26-month window, after which aggregated data is archived and raw event data is permanently deleted. Users can request deletion of their analytics data at any time by contacting the support team with the relevant device identifier.

Third-Party Tools and Services

Crypto Ledger integrates with third-party services to provide certain features. Data shared with these services is governed by their respective privacy policies. The third-party integrations include:

• Blockchain network nodes receive transaction data (public addresses and transaction details) when users send or receive cryptocurrencies. This data is inherently public on blockchain networks and is not considered personal data in most jurisdictions.
• Swap service providers (such as Changelly, 1inch, and Paraswap) receive transaction parameters when users execute cryptocurrency swaps within the application. These providers process the exchange and may collect additional data under their own privacy policies.
• Cloud infrastructure providers host the Crypto Ledger backend services, including the genuine check server, firmware update distribution, and support ticketing system. These providers process data under data processing agreements that require compliance with applicable data protection regulations.
• Push notification services (Apple Push Notification Service and Firebase Cloud Messaging) deliver transaction alerts and app updates to mobile users. These services receive device tokens but not account data or transaction details.

Data Security

Crypto Ledger implements technical and organizational measures to protect personal data against unauthorized access, alteration, disclosure, or destruction. Security measures include encryption of data in transit using TLS 1.3, encryption of stored data at rest, access controls limiting employee access to personal data on a need-to-know basis, regular security audits by independent third-party firms, and incident response procedures for potential data breaches.

We never ask for your recovery phrase or private keys. The Crypto Ledger application is designed so that recovery phrases and private keys are generated and stored exclusively on the hardware wallet secure element. These cryptographic secrets are never transmitted to Ledger servers, the Crypto Ledger application host device, or any third party. Any request for a recovery phrase or private keys, regardless of the source, should be treated as a phishing attempt.

Data Retention

Crypto Ledger retains personal data only for as long as necessary to fulfill the purposes described in this policy. Specific retention periods apply to different data categories:

Website server logs are retained for 90 days and then permanently deleted. Analytics data follows a 26-month retention cycle. Support ticket data is retained for 3 years after the last interaction to enable follow-up on recurring issues. Cookie consent records are retained for 13 months in accordance with regulatory guidelines.

Upon request, users can obtain deletion of their personal data subject to legal retention requirements. Deletion requests can be submitted through the support portal or by email to the address provided on the Crypto Ledger Contact page.

User Rights

Crypto Ledger respects user rights regarding personal data. Depending on the applicable jurisdiction, users may have the right to access personal data held about them, request correction of inaccurate data, request deletion of personal data, restrict processing of personal data, data portability (receiving personal data in a structured format), and objection to processing based on legitimate interests.

Requests can be submitted through the support portal. Identity verification may be required before processing requests to prevent unauthorized access to personal data. Responses to rights requests are provided within 30 days, or within the timeframe required by applicable law.

International Data Transfers

Crypto Ledger may transfer personal data to countries outside the user jurisdiction for processing by service providers and infrastructure partners. Such transfers are protected by appropriate safeguards, including Standard Contractual Clauses approved by relevant regulatory authorities, adequacy decisions recognizing sufficient data protection standards in the receiving country, and binding corporate rules where applicable.

Children Privacy

Crypto Ledger services are not directed at individuals under the age of 18. The application and website do not knowingly collect personal data from minors. If Crypto Ledger becomes aware that personal data from a minor has been collected, that data will be deleted promptly.

Changes to This Policy

Crypto Ledger reserves the right to update this Privacy Policy to reflect changes in data handling practices, legal requirements, or service features. Material changes will be communicated through the application interface or the website. Continued use of the service after policy updates constitutes acceptance of the revised terms.

Contact for Privacy Inquiries

Users with questions or concerns about this Privacy Policy or data handling practices can contact the Crypto Ledger privacy team through the support portal at support.ledger.com or by visiting our Contact page. Privacy-related inquiries are handled with priority and responded to within the timeframes required by applicable data protection regulations.